$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136382e302f32342d3234203d3e203536323436.roa File: 3131362e36382e3136382e302f32342d3234203d3e203536323436.roa (raw, json) Hash identifier: p+YkxdvmHYLgP7fPwcrkXMM5meOv9WweO5LtEstW+yw= Subject key identifier: BA:6C:44:6D:C0:D5:05:14:11:69:7C:13:79:8D:16:84:A8:02:E0:73 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 32D95449760C6C83FA2070F4472820191C2870BA Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136382e302f32342d3234203d3e203536323436.roa Signing time: Mon 02 Jun 2025 01:03:09 +0000 ROA not before: Mon 02 Jun 2025 00:58:09 +0000 ROA not after: Mon 01 Jun 2026 01:03:09 +0000 asID: 56246 IP address blocks: 116.68.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 07:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:d9:54:49:76:0c:6c:83:fa:20:70:f4:47:28:20:19:1c:28:70:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jun 2 00:58:09 2025 GMT Not After : Jun 1 01:03:09 2026 GMT Subject: CN=BA6C446DC0D5051411697C13798D1684A802E073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e8:e2:26:25:8d:07:62:24:17:85:f4:da:35: 19:a6:f7:b1:e5:c0:c0:26:9e:fa:ab:b9:4a:ba:9e: 3e:ca:78:53:02:26:73:6f:22:ca:01:57:b0:4b:bb: ad:78:1f:e7:03:84:b7:dc:22:ad:e1:de:5c:25:d9: ff:82:0a:38:08:69:06:4e:2c:e2:4d:22:c6:bd:95: c9:ff:b5:5a:53:38:f7:03:d4:cb:ff:25:5c:0d:40: 5c:f5:ba:72:88:a5:e6:be:f3:49:4e:ef:74:08:12: 0d:77:4d:44:6d:a6:12:49:18:56:3c:ad:c7:ab:6e: 06:6c:90:70:c9:40:ea:4d:1b:3f:bc:fb:56:2d:69: 2d:0c:c6:1f:b0:db:48:d0:f8:40:7a:80:8d:04:4a: 99:ec:7b:bc:fc:e0:fe:a0:d6:9a:8c:15:a7:bc:be: bb:c2:c1:73:25:dc:85:6d:9c:73:10:f3:dd:6d:dc: 71:91:80:34:01:c2:33:5c:aa:03:a1:c8:4e:38:41: 61:20:d5:ab:cc:be:66:94:5b:a3:38:e8:7c:33:08: a8:b4:e9:45:d7:c5:87:62:9c:98:af:4b:da:6e:e2: cb:19:71:cc:23:54:9d:4e:2e:58:34:4e:2b:52:21: 34:dd:cf:3f:0b:4e:a9:91:95:c4:50:4e:c1:6f:17: f7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:6C:44:6D:C0:D5:05:14:11:69:7C:13:79:8D:16:84:A8:02:E0:73 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136382e302f32342d3234203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.68.168.0/24 Signature Algorithm: sha256WithRSAEncryption 46:4b:5a:13:94:d9:bf:90:73:c3:ce:cd:09:0c:85:8e:f1:55: 26:d4:c3:77:83:9c:ca:7b:1b:68:32:1f:f8:fb:55:7a:f4:f3: 02:6f:e4:2d:78:9c:fb:cb:52:51:0d:3c:5c:1e:9e:09:14:60: ba:e3:0f:1a:89:bf:71:8d:4e:e1:c1:5c:96:ad:4b:aa:78:51: e2:9c:1f:57:be:f9:88:14:9a:eb:3d:03:28:37:52:1a:a0:8a: 95:0f:02:18:86:7b:0a:4b:bb:59:16:8d:a7:25:58:a2:2c:13: a9:12:44:16:6e:73:b8:60:22:44:5e:d5:34:ba:58:cf:b9:2d: ee:78:92:6a:99:9a:fd:a1:b3:3b:2b:c3:e3:f8:b7:82:17:b9: 47:84:0a:00:22:e7:f0:83:35:82:0e:18:1a:fb:59:68:e2:a8: 8c:43:89:d3:21:af:83:a9:2a:52:ae:5e:02:12:ee:0e:6e:e1: d8:d1:4b:88:e7:ff:e1:b0:14:2c:9d:1d:6d:11:ec:90:58:ba: 87:6c:c1:f9:bf:bf:a4:60:4c:5b:aa:b7:51:e4:06:f3:e6:54: 30:3e:10:6a:30:86:52:d1:c3:10:c8:af:2d:27:77:a7:0c:67: e1:63:b6:48:a4:01:ad:cd:dd:a1:1b:c8:c1:92:1a:19:77:f8: 0c:47:56:a3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMtlUSXYMbIP6IHD0RyggGRwocLowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTA2MDIwMDU4MDlaFw0yNjA2MDEwMTAzMDlaMDMxMTAvBgNV BAMTKEJBNkM0NDZEQzBENTA1MTQxMTY5N0MxMzc5OEQxNjg0QTgwMkUwNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt6OImJY0HYiQXhfTaNRmm97Hl wMAmnvqruUq6nj7KeFMCJnNvIsoBV7BLu614H+cDhLfcIq3h3lwl2f+CCjgIaQZO LOJNIsa9lcn/tVpTOPcD1Mv/JVwNQFz1unKIpea+80lO73QIEg13TURtphJJGFY8 rcerbgZskHDJQOpNGz+8+1YtaS0Mxh+w20jQ+EB6gI0ESpnse7z84P6g1pqMFae8 vrvCwXMl3IVtnHMQ891t3HGRgDQBwjNcqgOhyE44QWEg1avMvmaUW6M46HwzCKi0 6UXXxYdinJivS9pu4ssZccwjVJ1OLlg0TitSITTdzz8LTqmRlcRQTsFvF/cFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUumxEbcDVBRQRaXwTeY0WhKgC4HMwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzEzNjJlMzYzODJlMzEzNjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHREqDANBgkqhkiG 9w0BAQsFAAOCAQEARktaE5TZv5Bzw87NCQyFjvFVJtTDd4OcynsbaDIf+PtVevTz Am/kLXic+8tSUQ08XB6eCRRguuMPGom/cY1O4cFclq1LqnhR4pwfV775iBSa6z0D KDdSGqCKlQ8CGIZ7Cku7WRaNpyVYoiwTqRJEFm5zuGAiRF7VNLpYz7kt7niSapma /aGzOyvD4/i3ghe5R4QKACLn8IM1gg4YGvtZaOKojEOJ0yGvg6kqUq5eAhLuDm7h 2NFLiOf/4bAULJ0dbRHskFi6h2zB+b+/pGBMW6q3UeQG8+ZUMD4QajCGUtHDEMiv LSd3pwxn4WO2SKQBrc3doRvIwZIaGXf4DEdWow== -----END CERTIFICATE-----Generated at Fri Jun 6 16:48:37 2025 by rpki-client