$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133342e302f32342d3234203d3e203435333036.roa File: 3131392e31352e3133342e302f32342d3234203d3e203435333036.roa (raw, json) Hash identifier: nSNHUbZiqo6P3F9SIZ9EN5nCLPpwycyYrfB+M+PV3zw= Subject key identifier: 3D:F9:90:9D:9E:43:E0:E4:8F:02:61:04:DB:EF:1A:39:0F:6F:AF:4E Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 59D922B9C3EF173A0A4CD591084B033FA87801BC Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133342e302f32342d3234203d3e203435333036.roa Signing time: Sun 18 May 2025 06:00:00 +0000 ROA not before: Sun 18 May 2025 05:55:00 +0000 ROA not after: Sun 17 May 2026 06:00:00 +0000 asID: 45306 IP address blocks: 119.15.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:d9:22:b9:c3:ef:17:3a:0a:4c:d5:91:08:4b:03:3f:a8:78:01:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: May 18 05:55:00 2025 GMT Not After : May 17 06:00:00 2026 GMT Subject: CN=3DF9909D9E43E0E48F026104DBEF1A390F6FAF4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f8:b5:17:3d:a8:06:8f:13:1e:36:b4:e6:c7: 1e:45:3b:f2:a3:62:f0:82:a5:a7:0c:b9:e6:9f:0c: ed:7f:32:90:5b:53:cc:91:43:04:60:fd:6c:5c:04: db:c0:31:e8:3b:03:7f:d7:70:51:49:c7:b7:82:97: 82:83:bd:64:f2:95:be:33:84:1e:d9:f0:bc:36:9b: 53:62:da:d4:c6:5a:cd:ae:d9:e8:20:b0:5a:43:28: 20:56:86:52:3f:c3:3b:22:25:1e:7a:e5:1f:ca:51: 20:97:26:24:a0:4e:c3:88:35:f3:f5:1d:8a:9c:82: 54:78:d4:2d:59:c5:41:28:f4:b6:ef:be:21:07:04: d9:3c:fd:ff:53:0a:d9:32:79:67:20:85:43:71:5f: b5:f7:ac:77:2e:4c:b3:b7:ed:3c:4a:7b:a2:5f:88: 8d:68:ec:9b:b3:26:4f:f7:48:8c:0e:79:1c:f2:89: f3:4e:eb:85:7b:f6:46:44:4e:b9:3b:b5:a0:f5:de: ac:05:2e:69:51:d9:9b:7b:74:83:5b:6e:76:23:70: cc:76:cf:bf:d6:33:48:18:73:c1:3e:fe:42:7e:2d: 44:24:0d:03:43:36:5a:62:55:d8:b8:45:12:98:b5: c0:34:1e:14:2c:4f:e4:09:81:81:29:b9:0e:07:ac: 27:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F9:90:9D:9E:43:E0:E4:8F:02:61:04:DB:EF:1A:39:0F:6F:AF:4E X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133342e302f32342d3234203d3e203435333036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.15.134.0/24 Signature Algorithm: sha256WithRSAEncryption 17:22:22:a4:ce:e5:29:52:ec:23:6b:43:2a:e6:78:ee:aa:f5: 39:07:93:c2:d0:f1:51:02:cd:b2:59:87:82:da:1d:c8:58:c5: 12:13:34:4c:25:5e:de:46:42:7f:39:fa:8c:b5:0f:6b:64:f8: 24:63:27:9d:06:c8:7e:b7:3c:7f:0d:c2:de:82:df:c4:bd:30: af:d4:92:ec:6c:3d:aa:39:48:b7:28:a3:de:ce:ab:e6:af:e5: 39:88:d1:56:d2:60:48:ec:62:13:b0:ff:f3:85:c3:c5:e0:fc: e6:67:d0:dc:1b:13:4a:f1:aa:c4:30:58:47:2c:01:2f:8a:2c: 2d:b9:63:be:ca:31:e9:a0:4a:63:05:0e:00:9d:44:43:13:1c: 90:4f:6a:4e:96:f9:2c:a4:dd:57:95:8c:de:4b:9c:6f:1b:c3: 13:2d:0b:6f:2b:d9:c7:3f:09:d2:39:ca:f8:ad:5a:ad:b0:84: b7:32:ac:e6:59:58:2a:37:d1:6a:ad:11:16:67:a6:27:af:11: 42:77:a8:bf:d1:54:e8:4a:9e:c5:e0:6d:90:78:4f:54:66:7c: 45:b0:88:b7:a8:55:96:20:3b:78:f0:c2:02:40:a4:73:c2:0f: 47:f1:07:8d:f5:fc:87:bc:5b:d8:a7:e5:34:47:65:c6:a7:69: 1f:47:4d:57 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWdkiucPvFzoKTNWRCEsDP6h4AbwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNTA1MTgwNTU1MDBaFw0yNjA1MTcwNjAwMDBaMDMxMTAvBgNV BAMTKDNERjk5MDlEOUU0M0UwRTQ4RjAyNjEwNERCRUYxQTM5MEY2RkFGNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg+LUXPagGjxMeNrTmxx5FO/Kj YvCCpacMueafDO1/MpBbU8yRQwRg/WxcBNvAMeg7A3/XcFFJx7eCl4KDvWTylb4z hB7Z8Lw2m1Ni2tTGWs2u2eggsFpDKCBWhlI/wzsiJR565R/KUSCXJiSgTsOINfP1 HYqcglR41C1ZxUEo9LbvviEHBNk8/f9TCtkyeWcghUNxX7X3rHcuTLO37TxKe6Jf iI1o7JuzJk/3SIwOeRzyifNO64V79kZETrk7taD13qwFLmlR2Zt7dINbbnYjcMx2 z7/WM0gYc8E+/kJ+LUQkDQNDNlpiVdi4RRKYtcA0HhQsT+QJgYEpuQ4HrCeNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPfmQnZ5D4OSPAmEE2+8aOQ9vr04wHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMxMzEzOTJlMzEzNTJlMzEzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcPhjANBgkqhkiG 9w0BAQsFAAOCAQEAFyIipM7lKVLsI2tDKuZ47qr1OQeTwtDxUQLNslmHgtodyFjF EhM0TCVe3kZCfzn6jLUPa2T4JGMnnQbIfrc8fw3C3oLfxL0wr9SS7Gw9qjlItyij 3s6r5q/lOYjRVtJgSOxiE7D/84XDxeD85mfQ3BsTSvGqxDBYRywBL4osLbljvsox 6aBKYwUOAJ1EQxMckE9qTpb5LKTdV5WM3kucbxvDEy0LbyvZxz8J0jnK+K1arbCE tzKs5llYKjfRaq0RFmemJ68RQneov9FU6EqexeBtkHhPVGZ8RbCIt6hVliA7ePDC AkCkc8IPR/EHjfX8h7xb2KflNEdlxqdpH0dNVw== -----END CERTIFICATE-----Generated at Sat Jun 7 14:09:48 2025 by rpki-client