$ rpki-client -vvf repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3131392e322e36342e302f31392d3234203d3e203137343530.roa File: 3131392e322e36342e302f31392d3234203d3e203137343530.roa (raw, json) Hash identifier: Uce528/KV3oCstaRCZguiOogFuox/yiwX1g2nJn55uk= Subject key identifier: 1F:0A:AC:6C:68:19:DD:82:9B:E1:C0:AC:E2:E2:86:0E:2E:82:BE:68 Certificate issuer: /CN=4AC7DCD8EB1234ADC427AEBE3949E8691638A707 Certificate serial: 4A092CF6CD6828B784B7434C15CE14D4BB03A1FE Authority key identifier: 4A:C7:DC:D8:EB:12:34:AD:C4:27:AE:BE:39:49:E8:69:16:38:A7:07 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer Subject info access: rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3131392e322e36342e302f31392d3234203d3e203137343530.roa Signing time: Wed 28 May 2025 03:02:23 +0000 ROA not before: Wed 28 May 2025 02:57:23 +0000 ROA not after: Wed 27 May 2026 03:02:23 +0000 asID: 17450 IP address blocks: 119.2.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.crl rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:18:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:09:2c:f6:cd:68:28:b7:84:b7:43:4c:15:ce:14:d4:bb:03:a1:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AC7DCD8EB1234ADC427AEBE3949E8691638A707 Validity Not Before: May 28 02:57:23 2025 GMT Not After : May 27 03:02:23 2026 GMT Subject: CN=1F0AAC6C6819DD829BE1C0ACE2E2860E2E82BE68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:18:d4:63:e4:fb:70:f5:ed:dc:27:4c:f7:dd: fe:85:1e:34:36:ae:7d:bf:e0:cc:63:b5:61:ec:7b: e2:dc:11:55:0e:40:de:30:17:c2:4a:c7:0c:d7:3d: 44:32:e4:bd:1f:df:47:c2:2f:f9:82:4b:89:42:7c: a6:ce:f6:80:e6:1f:bf:89:e6:e4:eb:84:0d:bb:c8: d8:2e:68:af:60:51:3c:07:e6:47:a0:52:29:9a:76: 24:a6:57:c9:0f:fc:5d:82:c1:ad:ad:e0:71:76:da: e9:be:07:70:5c:5a:94:df:0e:90:1c:b7:ce:42:c3: a0:4a:37:fe:35:27:c7:c8:e4:7f:3c:41:7a:9a:d2: fb:da:72:90:7a:ed:b2:63:df:f4:74:1e:7c:ac:e8: 98:73:df:ff:3f:7e:1c:b8:a9:a1:a9:b5:37:0d:f7: c7:85:b5:07:28:99:91:5f:31:31:d5:f8:c8:58:cb: 09:99:ef:1e:75:9b:b7:a7:b1:77:e2:99:20:ae:e8: 7d:d1:b4:82:30:a6:16:ee:16:7d:88:0f:5a:ec:a4: 43:c5:4f:47:be:92:ef:68:44:7f:41:51:c1:23:53: c5:60:4c:0a:1f:e2:f6:aa:31:92:e4:38:ca:61:fc: cd:a1:77:eb:43:af:1e:1f:7a:a3:ba:55:7d:40:97: 2d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:0A:AC:6C:68:19:DD:82:9B:E1:C0:AC:E2:E2:86:0E:2E:82:BE:68 X509v3 Authority Key Identifier: keyid:4A:C7:DC:D8:EB:12:34:AD:C4:27:AE:BE:39:49:E8:69:16:38:A7:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3131392e322e36342e302f31392d3234203d3e203137343530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.64.0/19 Signature Algorithm: sha256WithRSAEncryption 45:5a:bf:81:e7:7a:b7:37:d7:d8:22:5d:d5:c9:f4:cf:88:4e: 70:8a:36:fe:bf:6d:c4:15:48:51:37:11:55:f5:b5:36:65:07: dc:22:91:4e:81:17:ec:8f:96:ae:1d:52:af:9f:80:df:89:67: 49:24:f6:f4:9d:37:c2:0a:e3:be:9b:08:09:96:3a:06:42:f7: f7:96:4b:e1:b9:b9:f4:e8:74:14:f1:d8:8c:e8:50:c6:f3:ba: dd:a4:17:3d:53:b2:0e:c3:b5:aa:af:0d:85:16:83:9d:ac:ea: ee:c2:30:68:d5:4c:13:8c:0a:c0:9d:46:71:24:44:9f:d3:e2: 9b:3b:63:82:6d:97:b3:87:f8:c3:ac:13:8b:4f:47:8c:c3:ee: 4b:1c:d5:ed:b1:91:c6:19:11:eb:4c:31:93:4f:09:fc:93:b0: 0f:9f:c1:23:9a:05:9f:6d:02:53:4e:3c:9f:35:7b:d8:9a:89: 44:1e:97:0f:61:a7:c3:19:9d:f5:c7:5d:ee:b5:d4:06:25:77: 64:b2:0e:07:7f:d4:c8:bc:af:8b:76:11:d0:93:58:b7:09:ae: 8a:af:1c:0c:ef:84:b2:f5:58:ae:2b:47:af:67:3d:1d:90:f4: 9e:a5:00:0d:95:0e:41:c0:c0:3b:2b:5f:32:fb:9b:3b:f2:33: a7:3c:09:c3 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUSgks9s1oKLeEt0NMFc4U1LsDof4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFDN0RDRDhFQjEyMzRBREM0MjdBRUJFMzk0OUU4Njkx NjM4QTcwNzAeFw0yNTA1MjgwMjU3MjNaFw0yNjA1MjcwMzAyMjNaMDMxMTAvBgNV BAMTKDFGMEFBQzZDNjgxOUREODI5QkUxQzBBQ0UyRTI4NjBFMkU4MkJFNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAGNRj5Ptw9e3cJ0z33f6FHjQ2 rn2/4MxjtWHse+LcEVUOQN4wF8JKxwzXPUQy5L0f30fCL/mCS4lCfKbO9oDmH7+J 5uTrhA27yNguaK9gUTwH5kegUimadiSmV8kP/F2Cwa2t4HF22um+B3BcWpTfDpAc t85Cw6BKN/41J8fI5H88QXqa0vvacpB67bJj3/R0Hnys6Jhz3/8/fhy4qaGptTcN 98eFtQcomZFfMTHV+MhYywmZ7x51m7ensXfimSCu6H3RtIIwphbuFn2ID1rspEPF T0e+ku9oRH9BUcEjU8VgTAof4vaqMZLkOMph/M2hd+tDrx4feqO6VX1Aly2FAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUHwqsbGgZ3YKb4cCs4uKGDi6CvmgwHwYDVR0j BBgwFoAUSsfc2OsSNK3EJ66+OUnoaRY4pwcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzgwNjFmMS1mYTMwLTRiZDYtODFhMC0yZWM2NzA4MzZjNDIvMC80QUM3RENEOEVC MTIzNEFEQzQyN0FFQkUzOTQ5RTg2OTE2MzhBNzA3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFDN0RDRDhFQjEyMzRBREM0MjdBRUJFMzk0OUU4NjkxNjM4 QTcwNy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDM4MDYxZjEtZmEzMC00YmQ2LTgx YTAtMmVjNjcwODM2YzQyLzAvMzEzMTM5MmUzMjJlMzYzNDJlMzAyZjMxMzkyZDMy MzQyMDNkM2UyMDMxMzczNDM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV3AkAwDQYJKoZIhvcNAQEL BQADggEBAEVav4Hnerc319giXdXJ9M+ITnCKNv6/bcQVSFE3EVX1tTZlB9wikU6B F+yPlq4dUq+fgN+JZ0kk9vSdN8IK476bCAmWOgZC9/eWS+G5ufTodBTx2IzoUMbz ut2kFz1Tsg7DtaqvDYUWg52s6u7CMGjVTBOMCsCdRnEkRJ/T4ps7Y4Jtl7OH+MOs E4tPR4zD7ksc1e2xkcYZEetMMZNPCfyTsA+fwSOaBZ9tAlNOPJ81e9iaiUQelw9h p8MZnfXHXe611AYld2SyDgd/1Mi8r4t2EdCTWLcJroqvHAzvhLL1WK4rR69nPR2Q 9J6lAA2VDkHAwDsrXzL7mzvyM6c8CcM= -----END CERTIFICATE-----Generated at Thu Jun 5 18:30:10 2025 by rpki-client