$ rpki-client -vvf repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132322e3130322e34302e302f32312d3234203d3e203338373538.roa File: 3132322e3130322e34302e302f32312d3234203d3e203338373538.roa (raw, json) Hash identifier: oTh96cvu9N7dUKNXeMRvCfiS16/pskUDIN5zzPcyPFs= Subject key identifier: D7:41:DC:E9:0B:26:0C:3C:68:1C:5E:48:60:DD:8F:CA:60:71:4B:D3 Certificate issuer: /CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4 Certificate serial: 75B5F2EC15BFF596245BB8A438EADA4D4B4D7FD7 Authority key identifier: 9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132322e3130322e34302e302f32312d3234203d3e203338373538.roa Signing time: Mon 02 Jun 2025 01:00:01 +0000 ROA not before: Mon 02 Jun 2025 00:55:01 +0000 ROA not after: Mon 01 Jun 2026 01:00:01 +0000 asID: 38758 IP address blocks: 122.102.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.crl rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 09:17:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:b5:f2:ec:15:bf:f5:96:24:5b:b8:a4:38:ea:da:4d:4b:4d:7f:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4 Validity Not Before: Jun 2 00:55:01 2025 GMT Not After : Jun 1 01:00:01 2026 GMT Subject: CN=D741DCE90B260C3C681C5E4860DD8FCA60714BD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4c:0b:ed:e0:9a:e5:23:d3:c7:8e:2c:ec:fa: 59:77:b3:11:fa:81:33:4d:b0:8a:e6:a3:89:34:87: da:06:57:4b:62:8f:93:2b:61:1a:c6:f2:b8:03:fa: e2:54:9b:75:28:4c:1f:8f:42:ec:85:bc:c6:68:d5: 67:9c:cc:e2:ce:80:cb:18:14:74:be:90:22:dd:39: c7:96:25:bc:46:96:25:0f:e5:9f:5b:89:df:3f:06: 0c:3d:c6:83:5c:3c:27:7b:01:9e:fe:96:37:e0:f9: e1:c5:6e:d5:44:35:06:1b:fb:fd:01:c1:d5:ca:04: c9:56:9e:95:6c:d4:5e:7b:ee:58:a5:5f:02:41:51: 6a:39:f1:53:a9:0e:42:d4:33:23:e7:b3:98:5d:75: 4a:b4:47:e8:db:3f:73:9f:08:9e:0e:b2:7c:69:fd: 47:e1:0c:f1:e5:97:cd:75:ef:13:91:80:47:28:18: 5d:cb:ff:af:99:c2:19:cf:03:56:77:25:e5:8a:8f: 46:39:14:e1:03:2d:66:0b:29:0e:b9:ca:86:2a:28: 72:47:2f:00:14:3f:fb:19:ce:83:01:91:91:d6:0e: 4f:b7:56:4c:7f:07:d8:90:87:05:51:86:d1:bd:29: 26:25:c5:46:bb:f3:3f:93:ca:ca:b0:fc:fc:07:02: e8:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:41:DC:E9:0B:26:0C:3C:68:1C:5E:48:60:DD:8F:CA:60:71:4B:D3 X509v3 Authority Key Identifier: keyid:9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132322e3130322e34302e302f32312d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.102.40.0/21 Signature Algorithm: sha256WithRSAEncryption 08:9f:8e:19:57:0f:2c:78:42:64:20:51:8f:2d:12:bf:f4:2f: e6:dc:2a:f4:60:9f:a8:81:57:b0:d3:89:a9:ae:5e:2b:85:95: 5f:ac:02:1a:98:d8:1f:dc:95:32:0d:4a:d6:60:ef:e7:be:54: 7d:9a:23:59:ba:c3:4a:41:13:40:ed:37:86:4e:bd:d6:a3:55: bf:2b:b2:c4:78:ca:63:a8:22:4d:af:55:58:60:03:e7:28:95: c4:09:f2:90:00:9f:94:1a:3d:e6:da:7a:a6:62:04:d5:5d:e3: d8:22:b7:50:29:ff:26:3c:0f:80:bd:56:1c:b1:fc:01:ee:60: 1d:50:66:6c:8f:5f:11:b6:3a:cf:d6:79:97:c7:cd:03:a9:13: 22:f5:72:a0:ed:e2:aa:04:44:a4:bf:0c:7a:4e:3b:d8:cf:e1: a4:64:77:49:6e:6b:02:05:d2:ae:02:9d:c3:86:e6:09:b0:9b: c1:70:a9:45:9e:98:9a:72:a1:c5:3c:d4:37:dd:25:5d:f8:f1: c6:15:d8:73:ba:0e:75:9f:a1:cd:7e:ee:70:e7:22:8b:9e:ad: b2:ee:6e:a9:25:9e:d4:7e:7b:7d:3b:27:a6:ab:0f:89:8b:08: 05:2e:be:5b:d8:7e:dd:01:16:f0:f4:5d:e4:ea:a5:62:6d:06: 4c:d8:63:f1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdbXy7BW/9ZYkW7ikOOraTUtNf9cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZFQjI1MTU1Q0YxQUZGOTBBRTExREEwMjk4RjE2NEQ1 NTQ5ODZGNDAeFw0yNTA2MDIwMDU1MDFaFw0yNjA2MDEwMTAwMDFaMDMxMTAvBgNV BAMTKEQ3NDFEQ0U5MEIyNjBDM0M2ODFDNUU0ODYwREQ4RkNBNjA3MTRCRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDETAvt4JrlI9PHjizs+ll3sxH6 gTNNsIrmo4k0h9oGV0tij5MrYRrG8rgD+uJUm3UoTB+PQuyFvMZo1WeczOLOgMsY FHS+kCLdOceWJbxGliUP5Z9bid8/Bgw9xoNcPCd7AZ7+ljfg+eHFbtVENQYb+/0B wdXKBMlWnpVs1F577lilXwJBUWo58VOpDkLUMyPns5hddUq0R+jbP3OfCJ4Osnxp /UfhDPHll8117xORgEcoGF3L/6+ZwhnPA1Z3JeWKj0Y5FOEDLWYLKQ65yoYqKHJH LwAUP/sZzoMBkZHWDk+3Vkx/B9iQhwVRhtG9KSYlxUa78z+Tysqw/PwHAuitAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU10Hc6QsmDDxoHF5IYN2PymBxS9MwHwYDVR0j BBgwFoAUn+slFVzxr/kK4R2gKY8WTVVJhvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjRlMTk1ZS0xMmRlLTRjM2MtOTNlNS01MjJlZTU0MDE4ZDYvMC85RkVCMjUxNTVD RjFBRkY5MEFFMTFEQTAyOThGMTY0RDU1NDk4NkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZFQjI1MTU1Q0YxQUZGOTBBRTExREEwMjk4RjE2NEQ1NTQ5 ODZGNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiNGUxOTVlLTEyZGUtNGMzYy05 M2U1LTUyMmVlNTQwMThkNi8wLzMxMzIzMjJlMzEzMDMyMmUzNDMwMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3pmKDANBgkqhkiG 9w0BAQsFAAOCAQEACJ+OGVcPLHhCZCBRjy0Sv/Qv5twq9GCfqIFXsNOJqa5eK4WV X6wCGpjYH9yVMg1K1mDv575UfZojWbrDSkETQO03hk691qNVvyuyxHjKY6giTa9V WGAD5yiVxAnykACflBo95tp6pmIE1V3j2CK3UCn/JjwPgL1WHLH8Ae5gHVBmbI9f EbY6z9Z5l8fNA6kTIvVyoO3iqgREpL8Mek472M/hpGR3SW5rAgXSrgKdw4bmCbCb wXCpRZ6YmnKhxTzUN90lXfjxxhXYc7oOdZ+hzX7ucOcii56tsu5uqSWe1H57fTsn pqsPiYsIBS6+W9h+3QEW8PRd5OqlYm0GTNhj8Q== -----END CERTIFICATE-----Generated at Sat Jun 7 04:15:36 2025 by rpki-client