$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136332e302f32342d3234203d3e203536323436.roa File: 3131362e36382e3136332e302f32342d3234203d3e203536323436.roa (raw, json) Hash identifier: QgVLd7vZyQPCABQtlJeuHhNfEsKWs5vSFgJ8efweQbY= Subject key identifier: A6:FE:30:3B:DA:5B:1D:D6:81:4E:B9:34:68:C4:38:01:D8:9B:DC:B9 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 137165149B985A907DF7069FE47776A7B3D98E3A Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136332e302f32342d3234203d3e203536323436.roa Signing time: Mon 02 Jun 2025 01:03:09 +0000 ROA not before: Mon 02 Jun 2025 00:58:09 +0000 ROA not after: Mon 01 Jun 2026 01:03:09 +0000 asID: 56246 IP address blocks: 116.68.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:71:65:14:9b:98:5a:90:7d:f7:06:9f:e4:77:76:a7:b3:d9:8e:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jun 2 00:58:09 2025 GMT Not After : Jun 1 01:03:09 2026 GMT Subject: CN=A6FE303BDA5B1DD6814EB93468C43801D89BDCB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:95:47:db:08:4d:2d:ed:08:e6:8e:bd:41:da: 93:2d:fb:1d:82:db:d0:3b:cb:af:63:1c:46:aa:86: 64:d0:e2:ca:bd:7f:a8:e4:63:01:15:cf:58:9d:dd: 77:bd:89:32:ed:52:cf:70:ba:4f:e6:a5:9c:92:19: 0a:9e:19:b7:5a:4c:10:65:68:6c:fd:a6:79:a5:7c: d2:4e:53:7b:ce:7d:45:58:5f:da:60:ea:06:8b:74: 0e:87:79:44:49:bf:b4:40:fa:e1:9d:96:3d:2a:ad: fb:e3:d4:e4:29:71:b2:28:f6:88:94:b6:cc:ac:bf: 26:9e:7f:ce:ba:b4:63:cc:82:de:02:bb:d5:ea:46: 56:b9:df:1b:3d:c8:7b:ab:27:4f:d8:ff:82:9e:40: 15:41:c0:9e:cc:76:b0:f3:71:04:14:76:03:63:7e: 5f:b2:82:73:80:29:d0:c9:41:fd:1c:1e:5c:2d:24: 2a:21:e2:9d:87:97:c2:a0:db:f1:bf:6e:a2:16:6a: 1f:04:e9:5d:78:4a:b5:0d:0b:32:1d:87:54:5e:95: d1:26:2b:dd:90:14:be:e0:bd:33:48:46:0c:29:2e: 88:e9:99:f4:f5:fd:8a:65:45:60:86:c9:be:fc:95: bb:0c:1f:ab:86:d2:9c:15:ff:d8:53:5a:87:ed:0b: d5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:FE:30:3B:DA:5B:1D:D6:81:4E:B9:34:68:C4:38:01:D8:9B:DC:B9 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136332e302f32342d3234203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.68.163.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:3c:38:23:57:2e:32:9f:eb:f9:0c:ed:83:dd:07:2e:39:5e: ed:5c:7f:1b:26:5b:31:5c:00:08:31:38:ee:f1:33:ab:ff:35: 4d:64:49:8a:7a:a9:8a:7e:ad:6c:8b:21:8c:df:f3:ca:9a:98: 41:a4:89:b4:80:18:c9:79:f1:48:b6:58:02:93:49:d5:6b:0b: d0:59:be:90:b7:ac:07:7f:0c:1e:6f:f4:69:54:f5:67:dc:01: 4f:43:73:45:68:85:45:37:99:22:4b:8a:9a:27:60:3d:74:76: 26:32:fd:63:3b:2b:b6:45:9b:f8:7e:b0:d3:8e:87:cb:e7:42: bb:1c:93:94:0b:6b:4b:e7:71:1a:d4:d4:3e:c2:a0:2a:cb:89: 48:25:d5:a4:0a:f1:67:47:ea:7b:a5:5d:73:af:68:d4:2b:5c: 97:6a:d5:b7:46:f9:cb:e7:08:a1:ac:1b:0d:3b:d8:fb:8e:c2: a0:9c:1b:37:df:d4:84:ca:ed:94:32:52:68:fb:d4:75:ef:aa: f3:ce:c0:54:0c:b9:06:36:31:f7:7d:14:69:ea:2e:cc:54:b9: 8f:ab:ed:36:6c:ec:0b:bf:07:0d:a3:26:83:95:b7:08:5e:f0: 29:77:e7:71:90:e9:05:73:2e:91:5d:50:5c:d7:3e:0c:05:14: 31:00:c5:fe -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUE3FlFJuYWpB99waf5Hd2p7PZjjowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTA2MDIwMDU4MDlaFw0yNjA2MDEwMTAzMDlaMDMxMTAvBgNV BAMTKEE2RkUzMDNCREE1QjFERDY4MTRFQjkzNDY4QzQzODAxRDg5QkRDQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzlUfbCE0t7Qjmjr1B2pMt+x2C 29A7y69jHEaqhmTQ4sq9f6jkYwEVz1id3Xe9iTLtUs9wuk/mpZySGQqeGbdaTBBl aGz9pnmlfNJOU3vOfUVYX9pg6gaLdA6HeURJv7RA+uGdlj0qrfvj1OQpcbIo9oiU tsysvyaef866tGPMgt4Cu9XqRla53xs9yHurJ0/Y/4KeQBVBwJ7MdrDzcQQUdgNj fl+ygnOAKdDJQf0cHlwtJCoh4p2Hl8Kg2/G/bqIWah8E6V14SrUNCzIdh1ReldEm K92QFL7gvTNIRgwpLojpmfT1/YplRWCGyb78lbsMH6uG0pwV/9hTWoftC9UHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpv4wO9pbHdaBTrk0aMQ4Adib3LkwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzEzNjJlMzYzODJlMzEzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHREozANBgkqhkiG 9w0BAQsFAAOCAQEAWjw4I1cuMp/r+Qztg90HLjle7Vx/GyZbMVwACDE47vEzq/81 TWRJinqpin6tbIshjN/zypqYQaSJtIAYyXnxSLZYApNJ1WsL0Fm+kLesB38MHm/0 aVT1Z9wBT0NzRWiFRTeZIkuKmidgPXR2JjL9YzsrtkWb+H6w046Hy+dCuxyTlAtr S+dxGtTUPsKgKsuJSCXVpArxZ0fqe6Vdc69o1Ctcl2rVt0b5y+cIoawbDTvY+47C oJwbN9/UhMrtlDJSaPvUde+q887AVAy5BjYx930UaeouzFS5j6vtNmzsC78HDaMm g5W3CF7wKXfncZDpBXMukV1QXNc+DAUUMQDF/g== -----END CERTIFICATE-----Generated at Tue Nov 4 16:59:36 2025 by rpki-client