$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136392e302f32342d3234203d3e203536323436.roa File: 3131362e36382e3136392e302f32342d3234203d3e203536323436.roa (raw, json) Hash identifier: 5XcD6/D1ogsYFzke/3//BZjXafPrs/cIYlSvUHxL9Go= Subject key identifier: CD:31:74:08:88:D8:15:B2:ED:70:F5:CA:AF:26:12:14:1F:4A:5D:71 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 52DD923C9D987BE3A34783A12AF1D404BA70A212 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136392e302f32342d3234203d3e203536323436.roa Signing time: Mon 02 Jun 2025 01:03:10 +0000 ROA not before: Mon 02 Jun 2025 00:58:10 +0000 ROA not after: Mon 01 Jun 2026 01:03:10 +0000 asID: 56246 IP address blocks: 116.68.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 07:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:dd:92:3c:9d:98:7b:e3:a3:47:83:a1:2a:f1:d4:04:ba:70:a2:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jun 2 00:58:10 2025 GMT Not After : Jun 1 01:03:10 2026 GMT Subject: CN=CD31740888D815B2ED70F5CAAF2612141F4A5D71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:b9:28:76:01:4a:33:08:5d:4c:08:80:34:c7: 06:db:00:86:8a:e4:13:86:ba:d9:26:12:e3:07:eb: 5f:5f:f1:e3:31:80:1a:b8:87:b6:7c:99:b2:aa:95: b4:60:e3:bb:4b:d9:d1:00:03:98:38:87:ff:6a:79: d6:27:5d:19:ff:fc:b8:80:d2:bd:13:27:19:7c:f9: d5:dc:83:35:df:0a:aa:7e:54:c8:14:60:f9:b2:d1: e1:fb:93:45:97:b8:cd:b8:90:66:c8:0e:54:68:bd: c4:05:17:27:4c:7d:de:c2:73:ba:81:c6:0f:d3:0b: 93:d1:85:65:1a:52:c9:2c:d5:27:33:d9:a2:54:cb: 8f:91:82:5d:2b:61:6a:88:77:7e:b3:49:b2:af:13: 8d:34:63:44:09:2b:bd:ff:bc:f7:92:a4:cc:76:a0: 2b:40:3d:23:17:43:9c:f0:8e:f0:42:6b:81:47:f7: 25:fb:52:67:bb:12:c7:43:f0:a7:6e:a8:c3:b1:4a: 4e:8b:53:3c:db:46:81:39:9f:da:58:ad:5b:23:32: 11:27:07:23:64:3e:19:60:87:75:f5:5a:49:fd:07: 3f:94:4b:f3:5e:7f:22:92:49:06:55:de:15:1d:2e: 31:86:27:15:13:31:db:35:67:52:01:fa:c5:a8:b1: 28:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:31:74:08:88:D8:15:B2:ED:70:F5:CA:AF:26:12:14:1F:4A:5D:71 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136392e302f32342d3234203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.68.169.0/24 Signature Algorithm: sha256WithRSAEncryption 48:e9:53:35:e0:33:9d:6b:61:07:aa:fd:bb:79:36:1b:7f:17: e1:14:7d:62:4e:bd:99:f2:4b:8f:18:2d:78:62:c7:48:08:58: 39:3a:69:1e:45:27:01:3c:e0:cb:4b:3b:8b:68:41:31:6f:0b: a2:69:19:a3:a4:5b:bd:ec:bb:34:e8:33:6d:3d:ba:a3:ec:34: 87:4b:6a:5a:70:a5:63:da:87:94:43:8c:eb:d4:5b:e3:e3:18: ff:5e:25:15:56:0e:8f:c0:6d:ce:63:ec:e5:e0:c2:24:71:75: 7e:48:2d:75:dc:f0:f8:19:d0:d2:c7:53:28:a2:a4:83:fb:54: 0d:89:4f:d8:06:41:77:0d:0c:91:56:34:fa:63:1a:ac:bd:bb: 41:91:cd:b9:e0:ba:76:e0:fe:53:db:67:9c:66:b2:c2:cf:27: 1f:97:b8:f7:b2:d5:bf:1f:d2:a7:f8:13:29:6e:01:8e:71:4d: d4:a1:84:23:49:13:1a:e5:f2:7d:bd:45:4f:24:b2:b3:28:1e: 36:4b:ca:84:cd:6c:03:36:50:fb:f6:ba:90:b9:5f:51:28:79: ce:12:28:33:2f:b2:20:54:26:4c:53:cd:4e:40:18:89:72:e9: f6:75:0b:9d:ad:40:87:ad:c5:b5:ae:d6:ff:3d:3b:58:db:fa: 66:79:76:c2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUt2SPJ2Ye+OjR4OhKvHUBLpwohIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTA2MDIwMDU4MTBaFw0yNjA2MDEwMTAzMTBaMDMxMTAvBgNV BAMTKENEMzE3NDA4ODhEODE1QjJFRDcwRjVDQUFGMjYxMjE0MUY0QTVENzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6uSh2AUozCF1MCIA0xwbbAIaK 5BOGutkmEuMH619f8eMxgBq4h7Z8mbKqlbRg47tL2dEAA5g4h/9qedYnXRn//LiA 0r0TJxl8+dXcgzXfCqp+VMgUYPmy0eH7k0WXuM24kGbIDlRovcQFFydMfd7Cc7qB xg/TC5PRhWUaUsks1Scz2aJUy4+Rgl0rYWqId36zSbKvE400Y0QJK73/vPeSpMx2 oCtAPSMXQ5zwjvBCa4FH9yX7Ume7EsdD8KduqMOxSk6LUzzbRoE5n9pYrVsjMhEn ByNkPhlgh3X1Wkn9Bz+US/NefyKSSQZV3hUdLjGGJxUTMds1Z1IB+sWosShFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzTF0CIjYFbLtcPXKryYSFB9KXXEwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzEzNjJlMzYzODJlMzEzNjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHREqTANBgkqhkiG 9w0BAQsFAAOCAQEASOlTNeAznWthB6r9u3k2G38X4RR9Yk69mfJLjxgteGLHSAhY OTppHkUnATzgy0s7i2hBMW8LomkZo6Rbvey7NOgzbT26o+w0h0tqWnClY9qHlEOM 69Rb4+MY/14lFVYOj8BtzmPs5eDCJHF1fkgtddzw+BnQ0sdTKKKkg/tUDYlP2AZB dw0MkVY0+mMarL27QZHNueC6duD+U9tnnGayws8nH5e497LVvx/Sp/gTKW4BjnFN 1KGEI0kTGuXyfb1FTySysygeNkvKhM1sAzZQ+/a6kLlfUSh5zhIoMy+yIFQmTFPN TkAYiXLp9nULna1Ah63Fta7W/z07WNv6Znl2wg== -----END CERTIFICATE-----Generated at Fri Jun 6 16:48:31 2025 by rpki-client