$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3133342e302f32342d3234203d3e203538333639.roa File: 3131362e3139372e3133342e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: nxH3/VyIdpDsL/pe1FC+Q8TAybfrCFUz5rkGbribbww= Subject key identifier: 84:63:FA:07:D5:61:B9:D2:88:E3:7B:1C:22:08:19:BF:70:10:F8:44 Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 5D0F23FC0DC3FE92E2B3748F0C8EEA3E31240BA9 Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3133342e302f32342d3234203d3e203538333639.roa Signing time: Mon 02 Jun 2025 02:03:39 +0000 ROA not before: Mon 02 Jun 2025 01:58:39 +0000 ROA not after: Mon 01 Jun 2026 02:03:39 +0000 asID: 58369 IP address blocks: 116.197.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:0f:23:fc:0d:c3:fe:92:e2:b3:74:8f:0c:8e:ea:3e:31:24:0b:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jun 2 01:58:39 2025 GMT Not After : Jun 1 02:03:39 2026 GMT Subject: CN=8463FA07D561B9D288E37B1C220819BF7010F844 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2a:30:ed:25:99:a4:22:08:f6:7e:7f:f1:7a: bb:ec:d6:32:67:1d:d4:5c:e1:d1:f5:4a:7d:12:0b: 53:78:3d:a5:3d:bd:01:b6:f3:47:6f:5d:dc:58:42: bb:11:5a:a4:f5:1b:c8:93:fe:5b:36:8e:dd:12:89: a8:ff:45:14:07:72:c5:c6:7e:e9:ae:d5:72:58:1e: 22:81:1b:10:82:04:37:c0:39:7a:31:f8:b8:25:70: 1e:d5:00:36:f9:57:d6:52:ed:e1:8f:49:31:a1:77: f1:01:ac:d1:23:26:ec:46:5a:f9:21:60:6b:69:50: 94:6d:26:7a:94:59:20:3d:dd:27:18:98:7f:50:22: c3:ca:bb:12:aa:27:4a:80:f6:aa:b0:56:3d:09:97: 93:c1:c9:83:c7:c9:1e:6b:71:1f:1a:8b:16:85:d2: 4f:b9:80:67:54:5a:2b:77:74:f0:fb:1e:47:ea:7d: 4d:6f:e5:63:07:6f:df:4a:e9:f6:e7:89:db:c9:8f: 2c:cf:50:48:63:25:c0:1a:3d:18:0a:3d:39:07:bc: 32:57:89:31:8a:02:b9:d0:6c:47:e5:bb:38:28:81: 79:1d:98:0e:f2:66:09:84:27:41:7e:c7:42:6a:7a: 30:e8:fc:f5:f4:c6:72:dc:2d:15:27:c6:8b:b1:86: e4:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:63:FA:07:D5:61:B9:D2:88:E3:7B:1C:22:08:19:BF:70:10:F8:44 X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3133342e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.197.134.0/24 Signature Algorithm: sha256WithRSAEncryption 97:d5:14:cd:ea:6b:c4:61:17:ba:be:ae:15:8a:60:f7:5e:ee: 0b:11:db:78:be:78:e9:40:fe:4a:41:5a:a9:fa:12:56:2a:4a: 8b:81:c9:52:2f:39:cf:33:5f:fd:be:8c:35:62:db:b1:c9:5e: 19:0b:32:4b:09:b6:75:92:cd:bd:23:c3:b7:10:dd:ba:75:f5: cf:bd:72:c4:c5:1d:be:f4:0e:cb:c5:3c:32:ed:1c:ff:8b:86: 3d:7f:87:60:1f:e8:2e:16:03:b6:a5:76:24:a2:48:d4:aa:73: 3f:cd:93:b3:88:e3:28:a8:d6:44:9a:83:17:87:19:86:ee:94: f7:31:1d:62:a8:be:44:3d:73:0d:40:a2:75:41:c2:ca:c3:2c: 51:8d:e3:49:4c:a8:7c:c6:9c:25:06:d7:c0:b8:85:07:67:bb: a7:35:6e:88:4e:c9:65:f6:52:32:d1:ff:eb:7c:fe:99:9d:b8: 81:c8:03:b5:18:af:9c:e0:b0:8a:8c:06:81:0b:bc:0b:5c:b0: 62:22:2e:0d:30:00:43:33:9b:07:f2:0b:43:87:31:26:ef:90: db:19:46:be:c4:7f:d3:4b:92:69:64:c9:70:6b:0a:bb:83:70: 16:66:fe:72:dc:a0:2a:e5:b6:a4:98:e1:fc:0c:4a:68:dc:98: 0b:2c:29:29 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXQ8j/A3D/pLis3SPDI7qPjEkC6kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yNTA2MDIwMTU4MzlaFw0yNjA2MDEwMjAzMzlaMDMxMTAvBgNV BAMTKDg0NjNGQTA3RDU2MUI5RDI4OEUzN0IxQzIyMDgxOUJGNzAxMEY4NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHKjDtJZmkIgj2fn/xervs1jJn HdRc4dH1Sn0SC1N4PaU9vQG280dvXdxYQrsRWqT1G8iT/ls2jt0Siaj/RRQHcsXG fumu1XJYHiKBGxCCBDfAOXox+LglcB7VADb5V9ZS7eGPSTGhd/EBrNEjJuxGWvkh YGtpUJRtJnqUWSA93ScYmH9QIsPKuxKqJ0qA9qqwVj0Jl5PByYPHyR5rcR8aixaF 0k+5gGdUWit3dPD7HkfqfU1v5WMHb99K6fbnidvJjyzPUEhjJcAaPRgKPTkHvDJX iTGKArnQbEfluzgogXkdmA7yZgmEJ0F+x0JqejDo/PX0xnLcLRUnxouxhuRBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhGP6B9VhudKI43scIggZv3AQ+EQwHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMxMzEzNjJlMzEzOTM3MmUzMTMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdMWGMA0GCSqG SIb3DQEBCwUAA4IBAQCX1RTN6mvEYRe6vq4VimD3Xu4LEdt4vnjpQP5KQVqp+hJW KkqLgclSLznPM1/9vow1YtuxyV4ZCzJLCbZ1ks29I8O3EN26dfXPvXLExR2+9A7L xTwy7Rz/i4Y9f4dgH+guFgO2pXYkokjUqnM/zZOziOMoqNZEmoMXhxmG7pT3MR1i qL5EPXMNQKJ1QcLKwyxRjeNJTKh8xpwlBtfAuIUHZ7unNW6ITsll9lIy0f/rfP6Z nbiByAO1GK+c4LCKjAaBC7wLXLBiIi4NMABDM5sH8gtDhzEm75DbGUa+xH/TS5Jp ZMlwawq7g3AWZv5y3KAq5bakmOH8DEpo3JgLLCkp -----END CERTIFICATE-----Generated at Thu Jun 5 18:28:45 2025 by rpki-client