$ rpki-client -vvf repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3231382e3130302e37342e302f32342d3234203d3e203535363539.roa File: 3231382e3130302e37342e302f32342d3234203d3e203535363539.roa (raw, json) Hash identifier: KCBeNM9Sn0PIpboyPHdjgvvuRVmSaWYIbnHGh3xSCK0= Subject key identifier: 67:3E:9C:64:73:98:F8:EB:F0:D1:EE:72:18:25:17:86:7E:12:1F:70 Certificate issuer: /CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Certificate serial: 34855409F192492CFD599A2A659816433CA56E9C Authority key identifier: 3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3231382e3130302e37342e302f32342d3234203d3e203535363539.roa Signing time: Mon 12 May 2025 08:00:05 +0000 ROA not before: Mon 12 May 2025 07:55:05 +0000 ROA not after: Mon 11 May 2026 08:00:05 +0000 asID: 55659 IP address blocks: 218.100.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:85:54:09:f1:92:49:2c:fd:59:9a:2a:65:98:16:43:3c:a5:6e:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Validity Not Before: May 12 07:55:05 2025 GMT Not After : May 11 08:00:05 2026 GMT Subject: CN=673E9C647398F8EBF0D1EE72182517867E121F70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ad:85:7f:8d:43:31:63:59:bc:f9:a7:12:dd: 79:75:00:37:09:1a:ca:5f:a6:92:33:e7:ea:07:7f: 38:5d:5f:d9:e5:21:17:85:f0:d3:28:18:56:78:38: 0d:6f:77:4f:88:8c:fa:c3:9c:83:24:38:f5:05:e3: 3e:90:8c:cb:d2:52:8b:48:df:07:0e:d2:1f:55:6e: 3f:09:f1:be:47:b5:13:70:ea:a5:a9:e1:68:ad:dd: 6b:48:a5:11:6d:a9:ab:32:b9:30:0b:e4:68:7f:ed: 9f:92:3c:f4:84:94:3a:45:fe:8b:11:f7:b0:12:25: fc:62:da:58:6a:8b:88:fb:25:22:4f:b3:75:b0:44: 96:30:65:ac:5b:0b:07:e7:a1:f5:9e:a3:58:76:83: ff:8c:88:01:c7:61:45:d1:ad:fe:53:43:68:b0:46: 52:2a:75:d6:99:94:6f:55:5e:d8:9a:2f:06:c4:bb: 71:1e:40:69:6c:76:77:00:50:7d:ce:cd:19:e6:30: 58:ba:96:34:e4:b8:ff:c1:33:b1:9f:54:e7:cc:63: c1:8c:55:79:e6:51:d4:df:eb:85:d0:f7:a0:99:3b: 72:c5:49:3c:56:e9:da:83:e6:97:f5:49:83:d8:84: 79:b6:8c:a8:72:6d:67:a3:92:f1:be:17:1c:eb:e5: 99:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:3E:9C:64:73:98:F8:EB:F0:D1:EE:72:18:25:17:86:7E:12:1F:70 X509v3 Authority Key Identifier: keyid:3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3231382e3130302e37342e302f32342d3234203d3e203535363539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.100.74.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:44:5b:6a:c8:6a:b1:29:30:e0:59:9e:0b:61:3f:62:82:fa: f6:00:8a:93:ce:73:3e:92:3d:8e:7e:3d:4b:34:3a:cb:20:b5: 29:58:2c:db:0e:13:11:b8:85:96:22:63:e6:11:99:eb:45:f1: a6:f6:92:c0:02:43:40:46:6a:eb:a4:9e:71:53:26:0b:c0:36: 87:4b:2e:2a:a2:62:cf:1e:1e:cc:0f:e5:6f:19:eb:c7:41:be: ee:ba:15:cc:84:9d:c7:b7:55:fa:43:25:11:30:5e:36:2a:c8: 7c:41:94:87:83:50:b1:f6:f9:b7:eb:2e:76:70:1d:8c:0e:d0: 82:d0:8a:99:a0:b8:5d:72:85:59:31:0d:71:18:4b:4e:dc:3c: 21:a4:66:6f:c8:4e:3f:a6:ba:6a:32:9a:58:63:89:14:c0:1a: 17:3a:01:3e:5a:a6:c6:7d:8d:1c:16:08:88:69:88:31:13:40: c2:7d:4e:d6:5d:31:a4:5e:e1:e4:96:93:61:b4:47:10:82:4f: 51:8d:4c:23:52:06:ac:bf:a0:22:ec:83:ef:84:bb:03:07:51: 15:17:55:f9:5d:7b:02:f2:b8:95:09:de:8c:f6:cc:a9:39:c1: 01:45:bf:08:21:28:90:e0:ce:d1:6f:25:43:72:73:22:4f:e4: 91:d7:f8:9c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNIVUCfGSSSz9WZoqZZgWQzylbpwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2 NDg5MkMyNTAeFw0yNTA1MTIwNzU1MDVaFw0yNjA1MTEwODAwMDVaMDMxMTAvBgNV BAMTKDY3M0U5QzY0NzM5OEY4RUJGMEQxRUU3MjE4MjUxNzg2N0UxMjFGNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/rYV/jUMxY1m8+acS3Xl1ADcJ GspfppIz5+oHfzhdX9nlIReF8NMoGFZ4OA1vd0+IjPrDnIMkOPUF4z6QjMvSUotI 3wcO0h9Vbj8J8b5HtRNw6qWp4Wit3WtIpRFtqasyuTAL5Gh/7Z+SPPSElDpF/osR 97ASJfxi2lhqi4j7JSJPs3WwRJYwZaxbCwfnofWeo1h2g/+MiAHHYUXRrf5TQ2iw RlIqddaZlG9VXtiaLwbEu3EeQGlsdncAUH3OzRnmMFi6ljTkuP/BM7GfVOfMY8GM VXnmUdTf64XQ96CZO3LFSTxW6dqD5pf1SYPYhHm2jKhybWejkvG+Fxzr5ZlHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZz6cZHOY+Ovw0e5yGCUXhn4SH3AwHwYDVR0j BBgwFoAUP26bxfFvHDq1/WNufeBv3WSJLCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MWRiMzczMC1mNDk5LTQ0OWYtYjZmMi03YTVkZWI1MzJiMGMvMC8zRjZFOUJDNUYx NkYxQzNBQjVGRDYzNkU3REUwNkZERDY0ODkyQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2NDg5 MkMyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxZGIzNzMwLWY0OTktNDQ5Zi1i NmYyLTdhNWRlYjUzMmIwYy8wLzMyMzEzODJlMzEzMDMwMmUzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANpkSjANBgkqhkiG 9w0BAQsFAAOCAQEAWkRbashqsSkw4FmeC2E/YoL69gCKk85zPpI9jn49SzQ6yyC1 KVgs2w4TEbiFliJj5hGZ60XxpvaSwAJDQEZq66SecVMmC8A2h0suKqJizx4ezA/l bxnrx0G+7roVzISdx7dV+kMlETBeNirIfEGUh4NQsfb5t+sudnAdjA7QgtCKmaC4 XXKFWTENcRhLTtw8IaRmb8hOP6a6ajKaWGOJFMAaFzoBPlqmxn2NHBYIiGmIMRNA wn1O1l0xpF7h5JaTYbRHEIJPUY1MI1IGrL+gIuyD74S7AwdRFRdV+V17AvK4lQne jPbMqTnBAUW/CCEokODO0W8lQ3JzIk/kkdf4nA== -----END CERTIFICATE-----Generated at Sat Jun 7 11:52:02 2025 by rpki-client