$ rpki-client -vvf repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132302e32392e3135322e302f32312d3234203d3e203338373538.roa File: 3132302e32392e3135322e302f32312d3234203d3e203338373538.roa (raw, json) Hash identifier: RS9Byz+j3EdqEQMObrbAR7PmpA8rmEiuqCAVbbyaqzQ= Subject key identifier: 46:62:5E:FA:1A:AC:77:BE:33:69:03:1F:49:EB:98:6D:4D:31:3E:03 Certificate issuer: /CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4 Certificate serial: 6AE008EDAE40C0CBA0FC9A931E90FE66F89C4686 Authority key identifier: 9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132302e32392e3135322e302f32312d3234203d3e203338373538.roa Signing time: Mon 02 Jun 2025 01:00:00 +0000 ROA not before: Mon 02 Jun 2025 00:55:00 +0000 ROA not after: Mon 01 Jun 2026 01:00:00 +0000 asID: 38758 IP address blocks: 120.29.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.crl rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 09:17:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:e0:08:ed:ae:40:c0:cb:a0:fc:9a:93:1e:90:fe:66:f8:9c:46:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4 Validity Not Before: Jun 2 00:55:00 2025 GMT Not After : Jun 1 01:00:00 2026 GMT Subject: CN=46625EFA1AAC77BE3369031F49EB986D4D313E03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d4:15:04:54:ed:73:30:a3:95:ab:94:d5:8f: fe:50:bb:3e:f5:89:4e:5e:1c:f8:14:c1:82:70:73: c4:1b:52:3a:d5:33:1f:45:06:c8:d4:62:e8:d7:e3: de:10:f7:5b:7e:88:fc:18:c4:fd:8a:c5:56:9f:e5: 3c:77:a9:29:6b:e4:49:5f:c5:3b:17:79:b1:ea:2d: 48:e4:54:c7:7a:23:49:32:c9:6e:81:c6:7a:87:1c: b6:cd:07:1a:9e:18:bd:e8:a5:b3:71:c5:0f:d2:7a: 93:f2:a4:12:a2:78:a6:98:e5:35:1b:1a:0b:32:4b: 79:b2:4b:a0:0f:32:3b:87:85:db:c7:f2:c1:0b:4e: 67:18:c5:ae:ae:6f:57:d4:62:cb:ba:2d:48:16:7b: 60:7f:a4:a4:0f:bb:ba:7d:ab:84:24:7f:dd:da:00: 1d:86:82:77:61:ea:78:a6:9e:0b:d5:fb:82:93:4d: 2b:a9:99:95:27:c8:f5:00:7f:1c:c0:19:06:69:a7: a9:b4:3c:29:01:85:2d:98:4b:fb:13:70:33:fc:82: 0a:d9:30:39:5c:42:ad:53:d5:55:99:9e:15:c8:7c: 80:b3:6c:77:83:95:d1:3f:fa:cf:6e:cb:24:e1:a1: 6c:63:bb:54:24:25:39:b9:58:48:eb:b6:60:6b:14: 2d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:62:5E:FA:1A:AC:77:BE:33:69:03:1F:49:EB:98:6D:4D:31:3E:03 X509v3 Authority Key Identifier: keyid:9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132302e32392e3135322e302f32312d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.29.152.0/21 Signature Algorithm: sha256WithRSAEncryption b8:37:de:d9:30:c2:1f:e2:66:84:6a:12:8e:d7:56:f3:14:dc: 16:0a:44:35:8a:91:7f:66:21:ea:d7:c8:d8:77:cc:da:cd:e5: bc:41:4a:05:4a:34:4f:ca:18:0d:d2:e1:20:23:8d:d8:18:43: 84:29:6d:ac:01:5d:f7:cf:89:ed:f2:7b:fb:d2:65:c5:f8:f2: c5:b7:30:8b:d2:db:a8:ae:f1:73:31:5a:7c:6a:4d:4f:6f:3f: ed:d1:04:da:e8:b5:5f:24:75:5c:e3:80:70:c9:b0:be:14:0c: d8:00:32:54:ce:6f:8b:7c:ff:7f:0a:e8:19:e1:32:97:75:f0: 1f:6c:ec:df:69:af:33:e2:2b:06:27:8a:ef:fb:6c:80:f2:57: 4c:db:21:5c:2f:56:52:37:d9:fb:16:35:19:19:c3:eb:62:87: 13:c9:d4:70:4d:81:8e:b8:ae:a2:7e:30:df:ce:e2:bb:86:29: 66:44:2e:d0:61:f2:cf:2d:3d:8f:ae:b5:62:de:6f:57:82:df: 51:51:fc:71:e9:91:6c:95:8f:a4:14:cb:9a:c4:b0:15:1a:4d: 13:b7:24:0c:9e:52:55:ca:5e:43:14:cb:56:3c:5d:8b:d3:56: cd:cb:11:c8:12:8f:6a:68:50:57:9f:4a:5e:d4:5d:12:bf:2a: 8e:d1:2c:ec -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUauAI7a5AwMug/JqTHpD+ZvicRoYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZFQjI1MTU1Q0YxQUZGOTBBRTExREEwMjk4RjE2NEQ1 NTQ5ODZGNDAeFw0yNTA2MDIwMDU1MDBaFw0yNjA2MDEwMTAwMDBaMDMxMTAvBgNV BAMTKDQ2NjI1RUZBMUFBQzc3QkUzMzY5MDMxRjQ5RUI5ODZENEQzMTNFMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX1BUEVO1zMKOVq5TVj/5Quz71 iU5eHPgUwYJwc8QbUjrVMx9FBsjUYujX494Q91t+iPwYxP2KxVaf5Tx3qSlr5Elf xTsXebHqLUjkVMd6I0kyyW6BxnqHHLbNBxqeGL3opbNxxQ/SepPypBKieKaY5TUb GgsyS3myS6APMjuHhdvH8sELTmcYxa6ub1fUYsu6LUgWe2B/pKQPu7p9q4Qkf93a AB2Ggndh6nimngvV+4KTTSupmZUnyPUAfxzAGQZpp6m0PCkBhS2YS/sTcDP8ggrZ MDlcQq1T1VWZnhXIfICzbHeDldE/+s9uyyThoWxju1QkJTm5WEjrtmBrFC0tAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURmJe+hqsd74zaQMfSeuYbU0xPgMwHwYDVR0j BBgwFoAUn+slFVzxr/kK4R2gKY8WTVVJhvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjRlMTk1ZS0xMmRlLTRjM2MtOTNlNS01MjJlZTU0MDE4ZDYvMC85RkVCMjUxNTVD RjFBRkY5MEFFMTFEQTAyOThGMTY0RDU1NDk4NkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZFQjI1MTU1Q0YxQUZGOTBBRTExREEwMjk4RjE2NEQ1NTQ5 ODZGNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiNGUxOTVlLTEyZGUtNGMzYy05 M2U1LTUyMmVlNTQwMThkNi8wLzMxMzIzMDJlMzIzOTJlMzEzNTMyMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3gdmDANBgkqhkiG 9w0BAQsFAAOCAQEAuDfe2TDCH+JmhGoSjtdW8xTcFgpENYqRf2Yh6tfI2HfM2s3l vEFKBUo0T8oYDdLhICON2BhDhCltrAFd98+J7fJ7+9Jlxfjyxbcwi9LbqK7xczFa fGpNT28/7dEE2ui1XyR1XOOAcMmwvhQM2AAyVM5vi3z/fwroGeEyl3XwH2zs32mv M+IrBieK7/tsgPJXTNshXC9WUjfZ+xY1GRnD62KHE8nUcE2Bjriuon4w387iu4Yp ZkQu0GHyzy09j661Yt5vV4LfUVH8cemRbJWPpBTLmsSwFRpNE7ckDJ5SVcpeQxTL Vjxdi9NWzcsRyBKPamhQV59KXtRdEr8qjtEs7A== -----END CERTIFICATE-----Generated at Sat Jun 7 04:25:55 2025 by rpki-client