$ rpki-client -vvf repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/3131332e32302e3133362e302f32312d3234203d3e203435373136.roa File: 3131332e32302e3133362e302f32312d3234203d3e203435373136.roa (raw, json) Hash identifier: ghYDscgkEkmdPz9NuYZxp4pY2E2dRL+ayWbivu6Gtd8= Subject key identifier: 14:8C:08:61:4A:DD:62:E3:4B:1F:F7:01:8A:52:BB:E1:D5:BE:51:5D Certificate issuer: /CN=37D7265DD2BAA67ECABEEC597D30727F574E8A01 Certificate serial: 5AFFCB3B97077305E4CE7D78A3B8669E4B2AE03B Authority key identifier: 37:D7:26:5D:D2:BA:A6:7E:CA:BE:EC:59:7D:30:72:7F:57:4E:8A:01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37D7265DD2BAA67ECABEEC597D30727F574E8A01.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/3131332e32302e3133362e302f32312d3234203d3e203435373136.roa Signing time: Mon 02 Jun 2025 01:02:47 +0000 ROA not before: Mon 02 Jun 2025 00:57:47 +0000 ROA not after: Mon 01 Jun 2026 01:02:47 +0000 asID: 45716 IP address blocks: 113.20.136.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/37D7265DD2BAA67ECABEEC597D30727F574E8A01.crl rsync://repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/37D7265DD2BAA67ECABEEC597D30727F574E8A01.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37D7265DD2BAA67ECABEEC597D30727F574E8A01.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:29:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:ff:cb:3b:97:07:73:05:e4:ce:7d:78:a3:b8:66:9e:4b:2a:e0:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37D7265DD2BAA67ECABEEC597D30727F574E8A01 Validity Not Before: Jun 2 00:57:47 2025 GMT Not After : Jun 1 01:02:47 2026 GMT Subject: CN=148C08614ADD62E34B1FF7018A52BBE1D5BE515D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d8:64:53:b0:4f:e8:fe:69:53:65:4a:67:45: 03:0e:dd:3c:4e:7f:91:df:cd:cb:22:10:54:71:5c: 68:2c:2e:92:64:ee:91:4b:f4:32:5c:43:f8:16:80: 6e:4d:e1:e7:fd:dc:c1:aa:d6:43:3c:a8:3e:2e:e8: be:bf:ad:4e:39:aa:14:1f:87:02:63:9c:1a:f8:90: 5c:d8:03:e4:2b:0c:47:c3:3d:fe:9f:78:bc:cd:7c: af:e6:b1:de:1b:76:65:2c:81:74:7a:f4:be:22:8e: a6:9d:fd:ad:dd:39:5a:79:9a:b1:ee:53:61:b0:4a: f5:9a:52:6a:0d:29:ca:f3:7f:c1:51:f6:32:92:24: 76:66:49:eb:03:82:f1:17:74:c3:99:9d:8a:09:b5: f0:b6:5a:3d:14:6b:d9:1a:a1:64:d5:c8:f0:23:1c: 5a:1c:dc:a9:0a:52:5c:a1:19:46:6b:91:05:d7:28: 92:f7:18:12:4f:06:4f:3a:1a:d0:9c:51:28:12:5e: 04:ec:de:cc:2a:59:fe:c8:81:a1:f1:05:63:19:0e: 86:01:8a:86:d0:b3:3e:14:ba:08:42:31:da:9b:a3: 81:99:76:2f:d7:ac:d9:4e:96:15:0e:d4:1f:f0:5d: a4:f1:14:e6:5f:2d:2c:3c:d4:7c:15:a8:c6:8f:45: 69:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:8C:08:61:4A:DD:62:E3:4B:1F:F7:01:8A:52:BB:E1:D5:BE:51:5D X509v3 Authority Key Identifier: keyid:37:D7:26:5D:D2:BA:A6:7E:CA:BE:EC:59:7D:30:72:7F:57:4E:8A:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/37D7265DD2BAA67ECABEEC597D30727F574E8A01.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37D7265DD2BAA67ECABEEC597D30727F574E8A01.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/3131332e32302e3133362e302f32312d3234203d3e203435373136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.20.136.0/21 Signature Algorithm: sha256WithRSAEncryption 89:50:23:68:a9:1e:18:8b:47:48:48:c5:47:e6:99:63:b8:65: 63:0d:d3:b1:70:bf:6e:ae:5e:9c:52:f1:6b:57:93:d0:01:88: 13:44:55:42:2b:26:63:a4:23:ca:95:39:91:8f:9b:fd:87:af: 8d:95:2f:b5:70:53:96:ac:bc:1a:fe:2e:c2:39:d5:25:8b:bb: 0a:e1:0b:42:c1:62:cd:b0:23:60:31:20:eb:58:98:e7:4f:91: 95:58:87:1b:71:0b:3f:b3:7e:75:c5:6e:aa:29:a8:3c:24:b3: 31:0e:7f:3c:12:52:03:f5:14:e7:3a:ca:1e:74:70:45:12:b7: 2c:ef:e1:1c:06:ee:3d:96:43:f2:79:62:cd:ea:03:40:7d:b0: 7c:02:af:e7:9d:d0:db:ba:74:c6:62:dd:5a:64:13:57:7c:33: 7d:b2:a0:ad:79:86:5c:cb:96:7c:c2:48:fe:bc:c2:3c:f2:c6: a4:fa:ec:0a:83:d9:80:34:ab:40:47:26:d6:6e:13:1b:e9:9d: bc:30:e6:05:83:32:a9:77:28:aa:6d:d4:86:d4:9d:a3:68:67: 8d:ab:fd:5f:19:12:06:0b:01:37:e1:41:26:03:04:82:13:c6: 43:04:4f:91:b2:8f:c1:65:6c:0e:be:b6:4b:48:e1:fc:89:2f: 00:c8:21:fc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWv/LO5cHcwXkzn14o7hmnksq4DswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzdENzI2NUREMkJBQTY3RUNBQkVFQzU5N0QzMDcyN0Y1 NzRFOEEwMTAeFw0yNTA2MDIwMDU3NDdaFw0yNjA2MDEwMTAyNDdaMDMxMTAvBgNV BAMTKDE0OEMwODYxNEFERDYyRTM0QjFGRjcwMThBNTJCQkUxRDVCRTUxNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq2GRTsE/o/mlTZUpnRQMO3TxO f5HfzcsiEFRxXGgsLpJk7pFL9DJcQ/gWgG5N4ef93MGq1kM8qD4u6L6/rU45qhQf hwJjnBr4kFzYA+QrDEfDPf6feLzNfK/msd4bdmUsgXR69L4ijqad/a3dOVp5mrHu U2GwSvWaUmoNKcrzf8FR9jKSJHZmSesDgvEXdMOZnYoJtfC2Wj0Ua9kaoWTVyPAj HFoc3KkKUlyhGUZrkQXXKJL3GBJPBk86GtCcUSgSXgTs3swqWf7IgaHxBWMZDoYB iobQsz4UughCMdqbo4GZdi/XrNlOlhUO1B/wXaTxFOZfLSw81HwVqMaPRWnZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFIwIYUrdYuNLH/cBilK74dW+UV0wHwYDVR0j BBgwFoAUN9cmXdK6pn7KvuxZfTByf1dOigEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWFmMDBlYy1kMDgzLTRhOWYtODIxZi03ZGExOGY4MTU0MTcvMC8zN0Q3MjY1REQy QkFBNjdFQ0FCRUVDNTk3RDMwNzI3RjU3NEU4QTAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzdENzI2NUREMkJBQTY3RUNBQkVFQzU5N0QzMDcyN0Y1NzRF OEEwMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5YWYwMGVjLWQwODMtNGE5Zi04 MjFmLTdkYTE4ZjgxNTQxNy8wLzMxMzEzMzJlMzIzMDJlMzEzMzM2MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzQzNTM3MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3EUiDANBgkqhkiG 9w0BAQsFAAOCAQEAiVAjaKkeGItHSEjFR+aZY7hlYw3TsXC/bq5enFLxa1eT0AGI E0RVQismY6QjypU5kY+b/YevjZUvtXBTlqy8Gv4uwjnVJYu7CuELQsFizbAjYDEg 61iY50+RlViHG3ELP7N+dcVuqimoPCSzMQ5/PBJSA/UU5zrKHnRwRRK3LO/hHAbu PZZD8nlizeoDQH2wfAKv553Q27p0xmLdWmQTV3wzfbKgrXmGXMuWfMJI/rzCPPLG pPrsCoPZgDSrQEcm1m4TG+mdvDDmBYMyqXcoqm3UhtSdo2hnjav9XxkSBgsBN+FB JgMEghPGQwRPkbKPwWVsDr62S0jh/IkvAMgh/A== -----END CERTIFICATE-----Generated at Sat Jun 7 09:20:45 2025 by rpki-client