$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3132382e302f32342d3234203d3e203435333036.roa File: 3131392e31352e3132382e302f32342d3234203d3e203435333036.roa (raw, json) Hash identifier: 3mPJMmSU87HxOCz1kx2GnX89IU0Xnf2eTb3lccTca1k= Subject key identifier: 1A:EA:D9:3C:F2:AE:22:2F:39:2C:7A:90:A6:39:B2:60:3E:89:C7:50 Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 1C96923A323F91CBFC07BD1DAC56FB6506662805 Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3132382e302f32342d3234203d3e203435333036.roa Signing time: Sun 18 May 2025 06:00:00 +0000 ROA not before: Sun 18 May 2025 05:55:00 +0000 ROA not after: Sun 17 May 2026 06:00:00 +0000 asID: 45306 IP address blocks: 119.15.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:96:92:3a:32:3f:91:cb:fc:07:bd:1d:ac:56:fb:65:06:66:28:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: May 18 05:55:00 2025 GMT Not After : May 17 06:00:00 2026 GMT Subject: CN=1AEAD93CF2AE222F392C7A90A639B2603E89C750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:44:45:69:85:a5:89:e8:b4:f1:10:69:d3:03: 60:00:55:65:f7:bc:c2:47:95:99:0d:50:c5:db:1b: 04:94:ec:21:fd:e4:56:56:a8:62:69:4d:2e:0c:32: b2:1b:bd:5e:da:26:12:1d:30:e0:77:91:11:16:86: 7b:5b:88:81:91:64:dc:7d:69:dc:6a:fa:9c:7f:83: 81:a2:9b:85:74:68:24:08:d0:c8:b8:ed:0f:38:30: 9b:b2:67:ca:92:45:b5:e9:7e:bf:78:ad:d3:2d:75: 65:aa:05:9c:d6:9e:68:bc:a7:04:0b:d0:14:92:90: 17:e5:f2:e1:27:c5:3c:b3:90:50:a3:f6:33:a6:68: 65:5c:7d:df:59:18:c9:89:55:61:c8:71:58:24:e1: 12:d5:4c:7e:7d:71:33:d7:a0:fb:26:27:a3:88:81: 94:89:31:ce:d2:19:1a:59:85:9c:f8:42:50:25:e2: ec:88:e2:60:7d:4a:bd:36:e8:8e:a2:f8:3a:1b:a2: 54:08:8e:76:fc:0e:3c:eb:bb:81:f2:5f:54:4b:fa: 74:85:d3:07:a3:a7:cb:03:37:6e:c5:07:95:a2:a0: c5:2a:43:5d:15:1b:4f:44:62:66:25:05:ba:a0:0c: 61:e6:12:3d:36:54:e1:83:46:b2:c1:e0:a3:4f:42: a4:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:EA:D9:3C:F2:AE:22:2F:39:2C:7A:90:A6:39:B2:60:3E:89:C7:50 X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3132382e302f32342d3234203d3e203435333036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.15.128.0/24 Signature Algorithm: sha256WithRSAEncryption 97:64:cb:46:3c:27:6e:17:29:fe:56:bb:b5:22:46:13:3c:ca: a0:7b:0f:a3:59:c3:5e:0d:53:f4:5a:82:2b:20:63:a1:cd:37: 1a:a6:75:36:51:69:22:18:a7:3f:72:66:48:31:e7:3d:02:da: 0e:d7:7e:72:a2:c1:11:8a:fc:e7:6f:86:95:1d:dc:3d:e0:dc: f1:dc:9c:29:70:ce:fb:b4:5a:ca:8a:7d:dc:cf:1b:e5:8a:90: b5:45:15:ca:26:5a:63:1f:5e:41:a4:0a:dc:96:13:76:9f:2a: a5:aa:40:34:2b:1f:24:e1:1e:18:32:64:82:5f:23:cb:58:4d: 6e:f1:0e:c4:9e:a2:e5:c6:5f:27:92:b0:11:34:b2:d2:a8:43: f0:3c:fc:3f:45:23:f1:01:1b:38:be:31:6e:ae:93:93:e3:23: 7c:f0:33:18:db:8f:14:71:e4:0f:99:37:78:14:2b:a0:85:2e: 29:3f:d0:62:1c:98:1f:0f:07:84:45:a0:a0:60:d9:77:89:d1: b9:4f:a8:b0:92:64:77:07:8d:6d:00:0c:ba:7e:d8:82:bf:7b: f9:ff:b4:95:3a:bc:3b:13:0b:a5:3d:b2:b3:b0:49:1b:09:99: 1c:5f:d8:5f:e7:df:66:18:c6:53:71:54:e4:27:eb:63:6b:71: 9e:be:d5:c8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHJaSOjI/kcv8B70drFb7ZQZmKAUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNTA1MTgwNTU1MDBaFw0yNjA1MTcwNjAwMDBaMDMxMTAvBgNV BAMTKDFBRUFEOTNDRjJBRTIyMkYzOTJDN0E5MEE2MzlCMjYwM0U4OUM3NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkREVphaWJ6LTxEGnTA2AAVWX3 vMJHlZkNUMXbGwSU7CH95FZWqGJpTS4MMrIbvV7aJhIdMOB3kREWhntbiIGRZNx9 adxq+px/g4Gim4V0aCQI0Mi47Q84MJuyZ8qSRbXpfr94rdMtdWWqBZzWnmi8pwQL 0BSSkBfl8uEnxTyzkFCj9jOmaGVcfd9ZGMmJVWHIcVgk4RLVTH59cTPXoPsmJ6OI gZSJMc7SGRpZhZz4QlAl4uyI4mB9Sr026I6i+DobolQIjnb8Djzru4HyX1RL+nSF 0wejp8sDN27FB5WioMUqQ10VG09EYmYlBbqgDGHmEj02VOGDRrLB4KNPQqQbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUGurZPPKuIi85LHqQpjmyYD6Jx1AwHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMxMzEzOTJlMzEzNTJlMzEzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcPgDANBgkqhkiG 9w0BAQsFAAOCAQEAl2TLRjwnbhcp/la7tSJGEzzKoHsPo1nDXg1T9FqCKyBjoc03 GqZ1NlFpIhinP3JmSDHnPQLaDtd+cqLBEYr852+GlR3cPeDc8dycKXDO+7Rayop9 3M8b5YqQtUUVyiZaYx9eQaQK3JYTdp8qpapANCsfJOEeGDJkgl8jy1hNbvEOxJ6i 5cZfJ5KwETSy0qhD8Dz8P0Uj8QEbOL4xbq6Tk+MjfPAzGNuPFHHkD5k3eBQroIUu KT/QYhyYHw8HhEWgoGDZd4nRuU+osJJkdweNbQAMun7Ygr97+f+0lTq8OxMLpT2y s7BJGwmZHF/YX+ffZhjGU3FU5CfrY2txnr7VyA== -----END CERTIFICATE-----Generated at Sat Jun 7 13:58:32 2025 by rpki-client