$ rpki-client -vvf repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa File: 3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa (raw, json) Hash identifier: rNa2on5+DMAnzayjr8XpEII8JqHWgOprf/5TlZrlTb0= Subject key identifier: 90:74:39:4C:C4:24:59:61:62:A6:73:EA:9F:88:64:27:7E:5D:4E:94 Certificate issuer: /CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Certificate serial: 63C0753203D9AC827031AB3A23796265B6D012FD Authority key identifier: CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa Signing time: Thu 03 Apr 2025 06:00:01 +0000 ROA not before: Thu 03 Apr 2025 05:55:01 +0000 ROA not after: Thu 02 Apr 2026 06:00:01 +0000 asID: 139399 IP address blocks: 123.253.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 15:25:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:c0:75:32:03:d9:ac:82:70:31:ab:3a:23:79:62:65:b6:d0:12:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Validity Not Before: Apr 3 05:55:01 2025 GMT Not After : Apr 2 06:00:01 2026 GMT Subject: CN=9074394CC424596162A673EA9F8864277E5D4E94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2d:f1:20:e5:80:78:f7:35:90:1a:d9:fe:4b: 5a:a4:4b:31:a0:d8:20:88:ee:fd:3b:ba:2a:1c:5b: 8d:de:ba:2b:40:55:6e:19:a4:14:95:d2:18:57:a2: af:09:c9:16:3f:64:da:df:74:40:8b:63:ac:66:65: 9c:c5:56:35:95:13:93:8f:c8:09:11:d6:b2:44:c3: 5e:e4:d3:74:c6:77:8f:f2:d0:a7:cf:2f:a3:6d:06: ce:2d:c9:6a:f5:a8:36:89:36:f2:96:45:d3:7e:67: ee:54:70:cb:35:f5:87:9f:60:37:b2:1b:ca:bf:35: 9b:03:44:dd:d7:36:05:a1:6e:b5:90:48:05:7f:69: a8:36:dc:fa:84:22:14:d9:a7:53:16:9d:d8:82:08: 34:5e:9e:be:b8:c1:9a:9c:58:a1:e0:5f:17:1a:1b: d1:5e:fa:53:a0:17:fe:78:db:6f:c5:61:a8:22:c1: 39:cb:d8:78:c7:3a:73:74:6f:86:a9:e2:4b:b5:4a: 8b:13:3e:33:f9:14:51:3f:da:ef:9d:89:10:e2:a7: 1c:1e:67:df:b3:44:1f:69:1a:5e:84:fd:d0:c8:b3: f8:63:a9:16:6c:79:67:15:4c:a8:7f:1f:66:4c:97: 2f:e6:1e:d5:c5:95:d5:99:35:cc:ab:1a:91:38:a8: 72:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:74:39:4C:C4:24:59:61:62:A6:73:EA:9F:88:64:27:7E:5D:4E:94 X509v3 Authority Key Identifier: keyid:CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.253.244.0/22 Signature Algorithm: sha256WithRSAEncryption a6:9d:a6:ff:08:31:25:76:da:cd:4b:91:c6:2e:5b:0a:45:ca: 41:6a:48:43:61:0e:3c:1b:ba:2c:9a:00:66:ff:e0:2d:9f:18: fc:f8:5a:16:d6:07:15:22:31:3c:ef:7e:9e:f8:20:44:3b:4f: 6d:f9:fe:37:b2:dd:b6:94:e8:81:1d:c1:eb:18:8c:f4:9c:d9: 04:82:e2:58:d2:4c:f1:04:08:1b:d5:41:46:ff:c1:d0:2d:33: 9f:8a:07:02:f4:7e:3c:86:07:1c:78:68:30:dc:3c:de:82:f4: 4b:c6:cb:59:59:93:6e:51:10:90:22:d5:83:48:5c:16:a8:2b: bd:89:d8:97:7f:a4:59:4b:e2:cc:bf:c5:b4:1a:c5:3c:af:fb: 05:f3:40:1f:d4:4f:03:a2:c4:ae:6b:9a:5a:e3:41:f5:63:78: e7:c3:c6:56:d0:5e:66:a7:5a:bc:ab:76:97:85:05:90:b5:0b: 07:2b:d5:5f:46:3a:2c:87:d6:9e:16:46:68:a1:2a:c3:01:f0: 95:ec:c5:54:0b:cf:c9:a2:3e:f8:85:50:97:80:45:fb:f0:b0: 4f:30:a0:99:e4:34:8b:48:90:3e:ad:6a:18:f8:3f:b7:89:35: 0a:a4:a6:9f:57:59:88:53:80:5a:31:d1:8b:a3:02:ce:5b:ac: d2:84:f7:aa -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUY8B1MgPZrIJwMas6I3liZbbQEv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRD RkQ3RTI2QzAeFw0yNTA0MDMwNTU1MDFaFw0yNjA0MDIwNjAwMDFaMDMxMTAvBgNV BAMTKDkwNzQzOTRDQzQyNDU5NjE2MkE2NzNFQTlGODg2NDI3N0U1RDRFOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5LfEg5YB49zWQGtn+S1qkSzGg 2CCI7v07uiocW43euitAVW4ZpBSV0hhXoq8JyRY/ZNrfdECLY6xmZZzFVjWVE5OP yAkR1rJEw17k03TGd4/y0KfPL6NtBs4tyWr1qDaJNvKWRdN+Z+5UcMs19YefYDey G8q/NZsDRN3XNgWhbrWQSAV/aag23PqEIhTZp1MWndiCCDRenr64wZqcWKHgXxca G9Fe+lOgF/5422/FYagiwTnL2HjHOnN0b4ap4ku1SosTPjP5FFE/2u+diRDipxwe Z9+zRB9pGl6E/dDIs/hjqRZseWcVTKh/H2ZMly/mHtXFldWZNcyrGpE4qHKXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkHQ5TMQkWWFipnPqn4hkJ35dTpQwHwYDVR0j BBgwFoAUynBPeF6liz9lnm48j3Hi1M/X4mwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDIxOTg1Yi1hMGU2LTRlMDUtYmVmNi1mZTZmNWE2ZTJmNDMvMC9DQTcwNEY3ODVF QTU4QjNGNjU5RTZFM0M4RjcxRTJENENGRDdFMjZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRDRkQ3 RTI2Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0MjE5ODViLWEwZTYtNGUwNS1i ZWY2LWZlNmY1YTZlMmY0My8wLzMxMzIzMzJlMzIzNTMzMmUzMjM0MzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM5Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7/fQwDQYJ KoZIhvcNAQELBQADggEBAKadpv8IMSV22s1LkcYuWwpFykFqSENhDjwbuiyaAGb/ 4C2fGPz4WhbWBxUiMTzvfp74IEQ7T235/jey3baU6IEdwesYjPSc2QSC4ljSTPEE CBvVQUb/wdAtM5+KBwL0fjyGBxx4aDDcPN6C9EvGy1lZk25REJAi1YNIXBaoK72J 2Jd/pFlL4sy/xbQaxTyv+wXzQB/UTwOixK5rmlrjQfVjeOfDxlbQXmanWryrdpeF BZC1Cwcr1V9GOiyH1p4WRmihKsMB8JXsxVQLz8miPviFUJeARfvwsE8woJnkNItI kD6tahj4P7eJNQqkpp9XWYhTgFox0YujAs5brNKE96o= -----END CERTIFICATE-----Generated at Sun Apr 6 08:28:15 2025 by rpki-client