$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3132392e302f32342d3234203d3e203435333036.roa File: 3131392e31352e3132392e302f32342d3234203d3e203435333036.roa (raw, json) Hash identifier: 8CMqMpoCs6b6HNia3ifuD/WpzvcJj1kVCsO8zPSQ7wc= Subject key identifier: 8B:35:A6:A8:1B:8A:6C:06:A4:55:B8:DA:27:33:72:6D:9A:61:4A:03 Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 5716BE5A2A164F01C2831FBD1CE8B27F4106C38B Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3132392e302f32342d3234203d3e203435333036.roa Signing time: Sun 18 May 2025 06:00:01 +0000 ROA not before: Sun 18 May 2025 05:55:01 +0000 ROA not after: Sun 17 May 2026 06:00:01 +0000 asID: 45306 IP address blocks: 119.15.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:16:be:5a:2a:16:4f:01:c2:83:1f:bd:1c:e8:b2:7f:41:06:c3:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: May 18 05:55:01 2025 GMT Not After : May 17 06:00:01 2026 GMT Subject: CN=8B35A6A81B8A6C06A455B8DA2733726D9A614A03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:86:2b:03:29:b8:65:2f:f7:f4:66:84:73:db: c1:00:42:ea:76:72:9f:f6:41:c8:52:fa:44:92:84: 1b:8e:b5:00:c2:4b:b2:ac:e4:35:c2:9b:0f:01:65: 77:78:01:3b:14:59:28:e0:6b:de:f1:40:98:e9:ca: 91:46:fd:54:92:dd:dc:8c:d1:5b:03:04:ac:f2:8a: 12:b5:57:17:8d:51:9b:a0:c0:21:93:0e:7e:fa:e7: 6d:04:1f:0f:80:a5:68:f6:17:bf:e0:ef:6e:76:ba: ce:60:00:a1:47:20:69:ea:56:7c:2a:dd:ae:05:7d: a8:fc:6b:f0:62:69:55:5e:cb:ba:04:59:3f:ad:9f: 2f:76:b1:da:79:cf:81:14:c8:d9:39:79:cd:94:4b: 28:83:8b:c8:89:39:a8:2c:7f:51:d9:52:a8:49:cd: 0f:ea:0d:46:ff:d8:53:d7:38:f2:d4:2b:95:f7:1c: a2:61:0e:f9:7e:7e:a3:fa:bf:de:6c:34:55:f4:40: b0:b6:42:16:34:36:d1:7d:91:ff:19:da:7c:ba:77: 34:7f:08:68:2c:a5:72:73:68:bf:b1:7e:3d:26:af: 04:90:da:5e:f1:3c:5c:0f:ab:74:88:a4:53:0e:17: ce:a7:9f:34:86:e8:68:da:cd:2b:18:b2:3c:b3:46: cd:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:35:A6:A8:1B:8A:6C:06:A4:55:B8:DA:27:33:72:6D:9A:61:4A:03 X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3132392e302f32342d3234203d3e203435333036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.15.129.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:b8:9c:fb:42:5a:ce:30:57:c7:7c:26:c3:0c:2f:df:78:d2: 33:7c:61:1f:cb:8f:e6:bd:64:dc:8f:e9:1f:d6:57:7c:d1:7d: f5:a8:db:c9:8c:db:85:5b:b7:b7:0a:71:4d:26:f4:78:a4:90: 70:f7:a6:2e:4e:89:c6:a1:84:4f:bc:51:93:94:06:68:b5:a8: 77:42:a4:c4:8a:a5:27:84:3a:f2:fa:23:44:4b:a0:76:e6:da: 7d:76:6d:1a:cb:94:dd:ee:81:45:7d:5a:ff:e3:6d:bd:7a:32: dd:6c:02:5a:ed:98:06:05:f5:d3:6e:54:74:f5:2c:df:af:7b: 37:b5:1f:ac:11:68:8c:7a:ec:ad:d4:e1:0c:5c:d8:2e:58:62: a1:8b:62:16:c1:ca:64:f4:f4:ec:f1:b3:97:72:78:23:50:71: d6:4d:1d:c6:05:65:8b:75:ec:00:a3:fa:48:6a:14:d9:3c:6f: 5e:d0:4b:37:21:f0:43:b6:7c:3b:d6:00:60:88:ee:1f:c6:ef: 48:a3:52:cc:19:29:86:0a:3d:c8:65:88:83:f8:22:56:e2:40: 3c:ea:04:c8:35:c5:da:e0:88:d6:cd:9b:62:24:80:8c:92:c8: 3b:e4:45:f9:8b:64:17:06:09:1a:07:88:55:94:80:41:6e:dd: 2b:b9:86:7e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVxa+WioWTwHCgx+9HOiyf0EGw4swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNTA1MTgwNTU1MDFaFw0yNjA1MTcwNjAwMDFaMDMxMTAvBgNV BAMTKDhCMzVBNkE4MUI4QTZDMDZBNDU1QjhEQTI3MzM3MjZEOUE2MTRBMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0hisDKbhlL/f0ZoRz28EAQup2 cp/2QchS+kSShBuOtQDCS7Ks5DXCmw8BZXd4ATsUWSjga97xQJjpypFG/VSS3dyM 0VsDBKzyihK1VxeNUZugwCGTDn76520EHw+ApWj2F7/g7252us5gAKFHIGnqVnwq 3a4Ffaj8a/BiaVVey7oEWT+tny92sdp5z4EUyNk5ec2USyiDi8iJOagsf1HZUqhJ zQ/qDUb/2FPXOPLUK5X3HKJhDvl+fqP6v95sNFX0QLC2QhY0NtF9kf8Z2ny6dzR/ CGgspXJzaL+xfj0mrwSQ2l7xPFwPq3SIpFMOF86nnzSG6GjazSsYsjyzRs0dAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUizWmqBuKbAakVbjaJzNybZphSgMwHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMxMzEzOTJlMzEzNTJlMzEzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcPgTANBgkqhkiG 9w0BAQsFAAOCAQEAm7ic+0JazjBXx3wmwwwv33jSM3xhH8uP5r1k3I/pH9ZXfNF9 9ajbyYzbhVu3twpxTSb0eKSQcPemLk6JxqGET7xRk5QGaLWod0KkxIqlJ4Q68voj REugdubafXZtGsuU3e6BRX1a/+NtvXoy3WwCWu2YBgX1025UdPUs3697N7UfrBFo jHrsrdThDFzYLlhioYtiFsHKZPT07PGzl3J4I1Bx1k0dxgVli3XsAKP6SGoU2Txv XtBLNyHwQ7Z8O9YAYIjuH8bvSKNSzBkphgo9yGWIg/giVuJAPOoEyDXF2uCI1s2b YiSAjJLIO+RF+YtkFwYJGgeIVZSAQW7dK7mGfg== -----END CERTIFICATE-----Generated at Sat Jun 7 13:57:11 2025 by rpki-client