$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136302e302f32342d3234203d3e203536323436.roa File: 3131362e36382e3136302e302f32342d3234203d3e203536323436.roa (raw, json) Hash identifier: bCvqyThRw+fbkrVz5UbEXNoH4oos2DSMs2C6jtk+QVk= Subject key identifier: 07:EB:43:28:57:52:DF:1E:96:BC:CD:A0:60:0A:5F:A3:EE:6D:44:19 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 7DECA806D515A0434BAC443957CCCE8094F2F569 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136302e302f32342d3234203d3e203536323436.roa Signing time: Mon 02 Jun 2025 01:03:08 +0000 ROA not before: Mon 02 Jun 2025 00:58:08 +0000 ROA not after: Mon 01 Jun 2026 01:03:08 +0000 asID: 56246 IP address blocks: 116.68.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 19:45:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:ec:a8:06:d5:15:a0:43:4b:ac:44:39:57:cc:ce:80:94:f2:f5:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jun 2 00:58:08 2025 GMT Not After : Jun 1 01:03:08 2026 GMT Subject: CN=07EB43285752DF1E96BCCDA0600A5FA3EE6D4419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4b:7b:4e:13:77:f0:e4:52:64:dd:e0:49:93: 7e:a0:3c:90:6e:96:88:7f:f0:46:9b:60:99:a5:13: f7:c1:57:73:35:d7:bf:92:46:8d:e6:a5:80:7e:2b: 8b:75:c8:60:6a:81:07:12:f4:40:ff:7a:57:b8:48: c3:90:dc:64:b7:c7:ce:a8:70:a8:21:99:04:2d:40: 13:55:7d:f6:b2:4c:b8:75:b9:5c:e0:fd:ff:fe:ef: 88:47:2b:5b:90:4f:df:c1:c1:8a:ca:47:4c:d2:7c: eb:c5:e4:f2:61:a6:4e:05:16:2d:93:2f:6d:c0:4a: a2:07:f1:55:0c:62:45:89:75:7f:2c:8a:2d:2a:fa: f0:0a:71:3b:45:30:5a:12:e9:95:ef:5f:10:c5:bb: 4f:4f:1b:33:45:37:7f:40:be:4c:6a:6b:1d:1b:fd: 59:af:96:6d:73:09:86:3f:0f:70:c3:58:4e:ef:19: 50:87:ab:9b:22:42:5b:5a:49:4d:18:5c:59:3b:cd: 96:b3:c3:2f:07:cf:df:09:cf:39:78:45:23:bc:39: b6:41:2c:b4:bb:c4:2c:04:ea:12:61:8a:c6:2c:a0: b1:96:80:3c:3c:47:53:53:ea:79:58:c8:47:2f:c2: 41:bd:35:30:52:33:68:35:6e:9d:2d:ca:86:5c:88: ad:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:EB:43:28:57:52:DF:1E:96:BC:CD:A0:60:0A:5F:A3:EE:6D:44:19 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136302e302f32342d3234203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.68.160.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:02:ee:c5:d4:27:e0:a8:b3:7b:ab:ae:f1:e7:13:41:b7:6e: 23:9b:a7:57:92:88:91:3b:ea:85:7b:4f:c3:8e:45:15:6d:5a: f1:97:de:93:9d:fd:ce:d7:ee:91:c6:a3:64:98:a5:b1:ac:5b: b3:40:51:f8:e4:eb:47:54:4d:e1:7d:3e:ae:c0:3f:37:22:4f: 5c:51:fb:23:06:12:8e:bc:2b:f3:07:de:ed:0b:ad:05:3f:1e: 3a:2b:f8:6f:23:1a:48:4d:38:a9:a5:2e:aa:55:72:d4:00:5a: a2:f5:d1:dc:91:ed:93:3d:92:7b:d1:c4:3a:80:ef:f0:4e:ed: 3b:70:25:7a:be:81:a1:5e:56:ab:62:4f:76:2a:e6:18:95:a9: 84:ed:ee:f3:dd:65:06:bb:52:7e:26:51:ab:c3:bd:44:08:e5: c6:67:f1:ce:9a:5b:cb:83:7d:a3:0d:73:b8:68:84:a9:58:6d: dd:e4:a3:50:85:5f:7a:99:a4:48:ef:3f:b8:ff:5e:11:f9:fa: f5:89:fd:eb:33:8b:1c:80:fc:44:a3:e2:a5:93:ad:ad:12:c1: a3:c7:59:be:d1:ea:6e:28:7d:c5:37:5f:56:4a:cf:17:eb:ce: 1c:42:64:73:7b:2b:b3:49:c7:2f:40:4b:50:fa:7f:7d:57:e8: ee:bd:4c:37 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfeyoBtUVoENLrEQ5V8zOgJTy9WkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTA2MDIwMDU4MDhaFw0yNjA2MDEwMTAzMDhaMDMxMTAvBgNV BAMTKDA3RUI0MzI4NTc1MkRGMUU5NkJDQ0RBMDYwMEE1RkEzRUU2RDQ0MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7S3tOE3fw5FJk3eBJk36gPJBu loh/8EabYJmlE/fBV3M117+SRo3mpYB+K4t1yGBqgQcS9ED/ele4SMOQ3GS3x86o cKghmQQtQBNVffayTLh1uVzg/f/+74hHK1uQT9/BwYrKR0zSfOvF5PJhpk4FFi2T L23ASqIH8VUMYkWJdX8sii0q+vAKcTtFMFoS6ZXvXxDFu09PGzNFN39Avkxqax0b /Vmvlm1zCYY/D3DDWE7vGVCHq5siQltaSU0YXFk7zZazwy8Hz98Jzzl4RSO8ObZB LLS7xCwE6hJhisYsoLGWgDw8R1NT6nlYyEcvwkG9NTBSM2g1bp0tyoZciK3BAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUB+tDKFdS3x6WvM2gYApfo+5tRBkwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzEzNjJlMzYzODJlMzEzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHREoDANBgkqhkiG 9w0BAQsFAAOCAQEAKgLuxdQn4Kize6uu8ecTQbduI5unV5KIkTvqhXtPw45FFW1a 8Zfek539ztfukcajZJilsaxbs0BR+OTrR1RN4X0+rsA/NyJPXFH7IwYSjrwr8wfe 7QutBT8eOiv4byMaSE04qaUuqlVy1ABaovXR3JHtkz2Se9HEOoDv8E7tO3Aler6B oV5Wq2JPdirmGJWphO3u891lBrtSfiZRq8O9RAjlxmfxzppby4N9ow1zuGiEqVht 3eSjUIVfepmkSO8/uP9eEfn69Yn96zOLHID8RKPipZOtrRLBo8dZvtHqbih9xTdf VkrPF+vOHEJkc3srs0nHL0BLUPp/fVfo7r1MNw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:47:55 2025 by rpki-client