$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133322e302f32342d3234203d3e203435333036.roa File: 3131392e31352e3133322e302f32342d3234203d3e203435333036.roa (raw, json) Hash identifier: FgWk4lEb+N8VyrkhQkA7AsDgO4pzlnxAR+so0eMn0MM= Subject key identifier: D9:F0:84:0B:BD:AA:F1:0D:76:B9:6D:4E:0D:86:B3:44:10:D4:0A:78 Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 33A1F0C89D213D71491A8796900B594DEEB02799 Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133322e302f32342d3234203d3e203435333036.roa Signing time: Sun 18 May 2025 05:00:00 +0000 ROA not before: Sun 18 May 2025 04:55:00 +0000 ROA not after: Sun 17 May 2026 05:00:00 +0000 asID: 45306 IP address blocks: 119.15.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:a1:f0:c8:9d:21:3d:71:49:1a:87:96:90:0b:59:4d:ee:b0:27:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: May 18 04:55:00 2025 GMT Not After : May 17 05:00:00 2026 GMT Subject: CN=D9F0840BBDAAF10D76B96D4E0D86B34410D40A78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e5:68:c5:96:26:6b:cd:4f:59:4e:d0:04:54: 8b:64:a7:c2:24:44:c7:bc:6e:4f:3c:94:a4:b3:29: 18:8c:36:46:05:a7:53:a1:45:0f:d6:2b:ca:cb:d0: aa:bd:b1:50:75:ea:90:79:a2:4f:bb:d7:9b:54:d2: c0:f6:f9:9e:1a:da:b2:d0:08:57:28:f2:a6:67:04: 99:ce:7a:ac:72:24:1f:99:e0:13:55:8d:a9:12:26: b0:1c:ce:dc:ff:27:db:57:ff:91:e0:10:be:8c:26: 56:6b:99:c0:4b:33:fd:cf:ec:4d:f4:56:95:87:dd: c7:2c:11:10:b0:d9:eb:21:03:bf:30:f9:5d:f1:82: 2d:7b:97:3e:79:96:62:c8:32:0a:99:56:69:fd:74: 9c:85:fd:7e:5d:0c:04:43:c7:ba:72:e0:e5:3e:3b: 00:d9:3d:52:c1:31:0f:b1:eb:98:d2:a0:5c:d1:73: 71:12:37:2d:d9:c5:d9:2f:18:11:6d:cf:cc:2a:0c: a0:bf:49:4d:32:de:37:e3:1a:f5:a8:30:d7:4a:e0: 79:78:c1:85:71:45:8c:60:0f:c2:93:f7:24:74:79: 19:2f:e0:85:f9:32:c9:95:a2:e3:4f:9d:8b:90:f3: 56:a9:82:19:25:c6:f5:74:1b:2e:a3:98:a0:7e:91: d4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:F0:84:0B:BD:AA:F1:0D:76:B9:6D:4E:0D:86:B3:44:10:D4:0A:78 X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133322e302f32342d3234203d3e203435333036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.15.132.0/24 Signature Algorithm: sha256WithRSAEncryption 27:21:ee:0c:8f:a1:aa:d3:5a:3f:1b:ce:da:70:53:03:cb:fd: 9c:26:87:05:2c:49:23:32:d6:89:be:f7:57:17:37:3a:c8:5f: 38:d8:ec:de:e0:5d:5f:42:e7:fc:5f:44:22:05:b6:75:b0:f4: 2c:8b:59:7f:7a:f1:af:8b:2b:d5:4e:87:ec:15:78:b5:b1:db: bb:80:4e:c3:91:31:95:3d:01:f5:32:e3:13:37:6d:13:a4:9f: 0b:8e:26:7a:a1:ae:cf:1c:7e:78:63:7d:66:bc:46:96:de:72: 77:e2:96:d8:40:37:27:cc:7f:00:26:2e:fc:1a:c1:79:18:00: 2f:7e:79:16:47:8a:6f:13:67:40:b0:c5:db:4a:aa:40:48:e5: 3c:df:59:c9:12:9f:0a:ac:35:c8:d1:87:fc:9b:83:7b:f9:de: eb:64:a9:05:b3:0d:c5:7a:cb:dc:15:c3:1c:a1:20:a3:dd:9c: 76:55:ed:d0:e6:ae:06:17:ad:be:33:5e:31:5f:4b:fb:fc:ca: 45:77:99:dd:9d:39:81:65:54:dd:30:34:3e:db:f5:36:5b:1d: ee:ab:f2:01:39:bd:23:db:64:a3:21:e5:25:04:b5:22:48:f8: d8:2a:38:8e:d1:65:7c:a2:8a:7d:47:09:a4:3f:29:60:ba:6a: 7b:4f:b5:80 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUM6HwyJ0hPXFJGoeWkAtZTe6wJ5kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNTA1MTgwNDU1MDBaFw0yNjA1MTcwNTAwMDBaMDMxMTAvBgNV BAMTKEQ5RjA4NDBCQkRBQUYxMEQ3NkI5NkQ0RTBEODZCMzQ0MTBENDBBNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe5WjFliZrzU9ZTtAEVItkp8Ik RMe8bk88lKSzKRiMNkYFp1OhRQ/WK8rL0Kq9sVB16pB5ok+715tU0sD2+Z4a2rLQ CFco8qZnBJnOeqxyJB+Z4BNVjakSJrAcztz/J9tX/5HgEL6MJlZrmcBLM/3P7E30 VpWH3ccsERCw2eshA78w+V3xgi17lz55lmLIMgqZVmn9dJyF/X5dDARDx7py4OU+ OwDZPVLBMQ+x65jSoFzRc3ESNy3ZxdkvGBFtz8wqDKC/SU0y3jfjGvWoMNdK4Hl4 wYVxRYxgD8KT9yR0eRkv4IX5MsmVouNPnYuQ81apghklxvV0Gy6jmKB+kdQ9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2fCEC72q8Q12uW1ODYazRBDUCngwHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMxMzEzOTJlMzEzNTJlMzEzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcPhDANBgkqhkiG 9w0BAQsFAAOCAQEAJyHuDI+hqtNaPxvO2nBTA8v9nCaHBSxJIzLWib73Vxc3Oshf ONjs3uBdX0Ln/F9EIgW2dbD0LItZf3rxr4sr1U6H7BV4tbHbu4BOw5ExlT0B9TLj EzdtE6SfC44meqGuzxx+eGN9ZrxGlt5yd+KW2EA3J8x/ACYu/BrBeRgAL355FkeK bxNnQLDF20qqQEjlPN9ZyRKfCqw1yNGH/JuDe/ne62SpBbMNxXrL3BXDHKEgo92c dlXt0OauBhetvjNeMV9L+/zKRXeZ3Z05gWVU3TA0Ptv1Nlsd7qvyATm9I9tkoyHl JQS1Ikj42Co4jtFlfKKKfUcJpD8pYLpqe0+1gA== -----END CERTIFICATE-----Generated at Sat Jun 7 14:03:06 2025 by rpki-client