$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133312e302f32342d3234203d3e203435333036.roa File: 3131392e31352e3133312e302f32342d3234203d3e203435333036.roa (raw, json) Hash identifier: KiKi/4BGJg0K48DdjCfOcOBa77JCOo4OxuIg38BvrXI= Subject key identifier: FA:97:55:2D:7C:72:02:88:86:D9:D1:DA:41:C7:CA:40:00:F6:C2:BD Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 3580FFE17C42680DB03B96FC037324E8A9DD8408 Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133312e302f32342d3234203d3e203435333036.roa Signing time: Sun 18 May 2025 07:00:00 +0000 ROA not before: Sun 18 May 2025 06:55:00 +0000 ROA not after: Sun 17 May 2026 07:00:00 +0000 asID: 45306 IP address blocks: 119.15.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:80:ff:e1:7c:42:68:0d:b0:3b:96:fc:03:73:24:e8:a9:dd:84:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: May 18 06:55:00 2025 GMT Not After : May 17 07:00:00 2026 GMT Subject: CN=FA97552D7C72028886D9D1DA41C7CA4000F6C2BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c4:46:98:11:54:49:bb:95:85:51:8b:55:db: 43:07:d5:b0:f5:d8:85:26:06:fc:1a:6c:a9:87:aa: 86:53:c8:f6:76:9a:69:74:e8:29:f1:05:3d:90:b6: b7:bf:bd:83:f0:91:71:57:f9:05:23:8d:5b:7a:05: 50:fd:3c:63:e0:d6:b7:65:23:91:53:64:af:71:09: 40:a0:b1:c6:65:fa:cd:2d:03:1e:20:b9:ed:a3:f3: 07:28:67:76:bd:b5:ec:f4:66:66:3b:8e:15:a6:31: 23:fe:b2:55:17:29:ec:3c:a6:b3:1e:fb:e5:be:2c: 95:62:e9:db:d5:af:77:b9:31:a3:45:a4:cf:72:48: b8:8a:32:61:b9:a1:62:a7:d1:b0:81:e7:cb:53:5a: 42:99:4f:d3:bf:61:5c:c4:35:89:0c:cd:9c:7d:e0: 85:73:13:d0:d1:f3:9d:a5:1a:fa:0b:1a:ff:ef:56: ec:89:4d:ae:e6:3c:68:c6:d3:2a:28:54:c6:ec:9f: ac:b3:8c:46:88:b0:89:b7:e8:b0:71:39:cf:7b:41: 9f:7b:aa:d8:e8:76:27:a7:0c:f9:c3:56:b6:ff:a4: a0:75:b2:2f:5b:95:97:68:3b:3c:e0:ce:52:3a:cf: b0:68:38:c2:64:5b:c9:6e:5b:0a:d8:9e:bc:84:e7: bf:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:97:55:2D:7C:72:02:88:86:D9:D1:DA:41:C7:CA:40:00:F6:C2:BD X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133312e302f32342d3234203d3e203435333036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.15.131.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:ab:d6:a5:35:72:c3:6b:c1:35:3b:73:5d:36:29:cb:02:73: a0:43:7d:bf:62:86:79:8d:70:c0:46:13:86:43:ca:37:a7:2d: 26:84:8e:2a:df:7d:1f:45:70:eb:97:58:37:93:ac:fe:5e:3a: 99:cb:8b:14:0f:60:b2:af:ad:0b:f4:54:b2:3c:5f:ec:99:b3: 0f:e7:22:45:e2:79:a7:6c:d3:4e:a2:be:d4:e6:cf:9b:51:65: 75:4a:df:24:cf:c4:f3:91:23:1f:f1:1a:fa:85:30:e7:89:2b: c0:21:88:6b:5b:40:51:11:8e:4f:71:ff:04:0e:c3:ec:43:03: 11:18:ed:cb:04:fb:cf:9c:37:00:1c:67:e2:39:28:69:12:a6: b1:e5:d6:4f:93:4d:cb:f9:85:d3:08:6b:74:c8:a2:51:35:1c: 69:15:36:e7:30:b7:16:27:af:0d:f9:cf:e6:af:a0:f3:b6:a3: 62:3f:bc:17:24:e8:ea:c0:75:99:4d:dc:e0:d4:89:a0:18:74: d6:4d:68:86:ff:51:99:e7:dd:ea:46:ed:5e:1e:17:7b:71:50: a2:bf:ef:4e:15:26:c3:46:b1:ee:5b:48:64:de:0c:77:97:d4: dc:e5:35:ae:7b:16:1f:a1:59:e7:ee:f5:22:bb:1a:18:e7:6e: 0f:11:56:76 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNYD/4XxCaA2wO5b8A3Mk6KndhAgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNTA1MTgwNjU1MDBaFw0yNjA1MTcwNzAwMDBaMDMxMTAvBgNV BAMTKEZBOTc1NTJEN0M3MjAyODg4NkQ5RDFEQTQxQzdDQTQwMDBGNkMyQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMxEaYEVRJu5WFUYtV20MH1bD1 2IUmBvwabKmHqoZTyPZ2mml06CnxBT2Qtre/vYPwkXFX+QUjjVt6BVD9PGPg1rdl I5FTZK9xCUCgscZl+s0tAx4gue2j8wcoZ3a9tez0ZmY7jhWmMSP+slUXKew8prMe ++W+LJVi6dvVr3e5MaNFpM9ySLiKMmG5oWKn0bCB58tTWkKZT9O/YVzENYkMzZx9 4IVzE9DR852lGvoLGv/vVuyJTa7mPGjG0yooVMbsn6yzjEaIsIm36LBxOc97QZ97 qtjodienDPnDVrb/pKB1si9blZdoOzzgzlI6z7BoOMJkW8luWwrYnryE579/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+pdVLXxyAoiG2dHaQcfKQAD2wr0wHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMxMzEzOTJlMzEzNTJlMzEzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcPgzANBgkqhkiG 9w0BAQsFAAOCAQEAnqvWpTVyw2vBNTtzXTYpywJzoEN9v2KGeY1wwEYThkPKN6ct JoSOKt99H0Vw65dYN5Os/l46mcuLFA9gsq+tC/RUsjxf7JmzD+ciReJ5p2zTTqK+ 1ObPm1FldUrfJM/E85EjH/Ea+oUw54krwCGIa1tAURGOT3H/BA7D7EMDERjtywT7 z5w3ABxn4jkoaRKmseXWT5NNy/mF0whrdMiiUTUcaRU25zC3FievDfnP5q+g87aj Yj+8FyTo6sB1mU3c4NSJoBh01k1ohv9Rmefd6kbtXh4Xe3FQor/vThUmw0ax7ltI ZN4Md5fU3OU1rnsWH6FZ5+71IrsaGOduDxFWdg== -----END CERTIFICATE-----Generated at Sat Jun 7 13:59:24 2025 by rpki-client