$ rpki-client -vvf repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/3131372e35332e3134342e302f32322d3234203d3e203538333937.roa File: 3131372e35332e3134342e302f32322d3234203d3e203538333937.roa (raw, json) Hash identifier: VU8aewyjzq2AYRn/AxX4KNN9MCg2XSh/07PYP4YW+KQ= Subject key identifier: 0D:63:A8:46:B6:2B:69:C2:48:C0:68:B0:CA:16:7C:E4:84:24:86:F2 Certificate issuer: /CN=498B46B789361D2AAA4E5CF9B2A81E223925A89F Certificate serial: 36BB6F39164904A4255353BF66CA195F69D49C69 Authority key identifier: 49:8B:46:B7:89:36:1D:2A:AA:4E:5C:F9:B2:A8:1E:22:39:25:A8:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/498B46B789361D2AAA4E5CF9B2A81E223925A89F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/3131372e35332e3134342e302f32322d3234203d3e203538333937.roa Signing time: Mon 02 Jun 2025 02:04:12 +0000 ROA not before: Mon 02 Jun 2025 01:59:12 +0000 ROA not after: Mon 01 Jun 2026 02:04:12 +0000 asID: 58397 IP address blocks: 117.53.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/498B46B789361D2AAA4E5CF9B2A81E223925A89F.crl rsync://repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/498B46B789361D2AAA4E5CF9B2A81E223925A89F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/498B46B789361D2AAA4E5CF9B2A81E223925A89F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:bb:6f:39:16:49:04:a4:25:53:53:bf:66:ca:19:5f:69:d4:9c:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=498B46B789361D2AAA4E5CF9B2A81E223925A89F Validity Not Before: Jun 2 01:59:12 2025 GMT Not After : Jun 1 02:04:12 2026 GMT Subject: CN=0D63A846B62B69C248C068B0CA167CE4842486F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6a:c1:15:6b:d5:bc:fd:ac:05:c3:2a:11:00: c5:c9:f0:6a:a5:e6:59:c2:d0:e5:73:0f:7a:ad:91: 8d:e0:b8:06:02:d0:ac:d7:d1:7f:b4:76:e6:de:29: 8d:5e:60:9f:82:e6:a0:14:eb:0e:d7:b9:f7:b3:1c: dc:6d:4d:5d:ee:ae:19:cc:60:fe:7b:3a:ac:57:33: 1b:99:0e:84:26:ca:f7:bc:c2:64:30:31:c9:c4:4f: c0:07:61:48:bb:b2:9b:b6:cb:07:ce:39:16:91:b8: 2d:02:46:13:39:e1:8d:65:da:b8:06:2b:8c:00:4f: 1d:bc:ec:49:3d:c6:28:84:8c:a5:b6:a0:7a:d2:bb: 63:39:f2:23:3d:8d:9d:dd:b4:3f:13:bc:d6:ec:d9: 73:2a:21:49:a0:99:cb:b3:81:af:7e:58:8e:dd:98: 9c:56:7a:46:77:78:a3:c3:47:e4:bc:15:6c:5b:44: af:ec:3c:9e:16:4e:2b:bf:87:fa:e7:e8:13:81:3f: 70:22:e3:0f:61:9d:6d:e5:81:d6:0c:8c:40:6c:7e: bf:17:e6:6b:34:b7:e3:28:7e:9c:4f:dd:b1:e4:51: ee:ba:f3:3b:1d:f0:ea:81:d1:7d:87:5b:ce:d7:83: 85:eb:5c:f8:cc:20:35:0b:b6:77:97:36:3e:f5:52: a0:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:63:A8:46:B6:2B:69:C2:48:C0:68:B0:CA:16:7C:E4:84:24:86:F2 X509v3 Authority Key Identifier: keyid:49:8B:46:B7:89:36:1D:2A:AA:4E:5C:F9:B2:A8:1E:22:39:25:A8:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/498B46B789361D2AAA4E5CF9B2A81E223925A89F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/498B46B789361D2AAA4E5CF9B2A81E223925A89F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/3131372e35332e3134342e302f32322d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.53.144.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:44:f1:80:42:d9:95:8b:59:0b:27:45:6a:bd:48:6e:a2:b9: 27:42:62:0a:d0:94:d1:ea:b2:d2:43:b6:df:8a:7f:cc:82:f9: 2b:2a:d9:b6:d2:03:4b:62:0e:dc:18:f3:59:0d:17:b5:46:96: 48:45:51:e3:7f:92:55:bb:c1:13:9c:eb:b3:88:26:c0:e7:11: 66:1f:82:11:59:9e:d4:32:bb:5f:aa:a8:cd:fa:7e:f3:55:84: f4:35:a4:bc:cc:83:84:cc:cb:4e:ba:da:f9:f1:29:57:2d:6e: fc:10:60:87:0c:2c:4c:fb:fa:d0:5e:d9:23:43:8a:75:61:e5: 86:ae:f9:10:77:ef:8c:e7:2d:be:42:42:4b:43:8e:b1:6e:0c: 72:4c:4a:3e:bf:72:cc:bc:cd:8e:28:86:03:70:6e:78:d8:42: dd:5a:85:4c:1a:bf:1b:34:6a:77:10:ad:ee:a3:58:df:7d:a3: d8:c1:71:28:8b:0d:43:99:13:eb:36:eb:b6:85:ab:a2:be:d5: 3f:de:2a:f6:34:1d:f1:51:20:ef:f3:4c:ff:d4:ef:4b:4a:39: 43:0d:40:f8:46:a8:01:c3:98:b9:0f:61:1c:5d:97:a2:75:eb: c4:90:3c:2e:53:c7:3a:4d:6f:b3:ff:a6:e0:11:31:57:38:39: 47:65:8f:44 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNrtvORZJBKQlU1O/ZsoZX2nUnGkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDk4QjQ2Qjc4OTM2MUQyQUFBNEU1Q0Y5QjJBODFFMjIz OTI1QTg5RjAeFw0yNTA2MDIwMTU5MTJaFw0yNjA2MDEwMjA0MTJaMDMxMTAvBgNV BAMTKDBENjNBODQ2QjYyQjY5QzI0OEMwNjhCMENBMTY3Q0U0ODQyNDg2RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTasEVa9W8/awFwyoRAMXJ8Gql 5lnC0OVzD3qtkY3guAYC0KzX0X+0dubeKY1eYJ+C5qAU6w7XufezHNxtTV3urhnM YP57OqxXMxuZDoQmyve8wmQwMcnET8AHYUi7spu2ywfOORaRuC0CRhM54Y1l2rgG K4wATx287Ek9xiiEjKW2oHrSu2M58iM9jZ3dtD8TvNbs2XMqIUmgmcuzga9+WI7d mJxWekZ3eKPDR+S8FWxbRK/sPJ4WTiu/h/rn6BOBP3Ai4w9hnW3lgdYMjEBsfr8X 5ms0t+MofpxP3bHkUe668zsd8OqB0X2HW87Xg4XrXPjMIDULtneXNj71UqD1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDWOoRrYracJIwGiwyhZ85IQkhvIwHwYDVR0j BBgwFoAUSYtGt4k2HSqqTlz5sqgeIjklqJ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTkxNjZhMS0xOGNkLTQ0ZDMtYTZlMC0yZWY4MmY3NjBkMjgvMC80OThCNDZCNzg5 MzYxRDJBQUE0RTVDRjlCMkE4MUUyMjM5MjVBODlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDk4QjQ2Qjc4OTM2MUQyQUFBNEU1Q0Y5QjJBODFFMjIzOTI1 QTg5Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxOTE2NmExLTE4Y2QtNDRkMy1h NmUwLTJlZjgyZjc2MGQyOC8wLzMxMzEzNzJlMzUzMzJlMzEzNDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnU1kDANBgkqhkiG 9w0BAQsFAAOCAQEAGkTxgELZlYtZCydFar1IbqK5J0JiCtCU0eqy0kO234p/zIL5 KyrZttIDS2IO3BjzWQ0XtUaWSEVR43+SVbvBE5zrs4gmwOcRZh+CEVme1DK7X6qo zfp+81WE9DWkvMyDhMzLTrra+fEpVy1u/BBghwwsTPv60F7ZI0OKdWHlhq75EHfv jOctvkJCS0OOsW4MckxKPr9yzLzNjiiGA3BueNhC3VqFTBq/GzRqdxCt7qNY332j 2MFxKIsNQ5kT6zbrtoWror7VP94q9jQd8VEg7/NM/9TvS0o5Qw1A+EaoAcOYuQ9h HF2XonXrxJA8LlPHOk1vs/+m4BExVzg5R2WPRA== -----END CERTIFICATE-----Generated at Thu Jun 5 18:46:42 2025 by rpki-client