$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131322e302f32302d3230203d3e203435313437.roa File: 3131392e3131302e3131322e302f32302d3230203d3e203435313437.roa (raw, json) Hash identifier: aR/gZGrYZ2XAekMiG1+wSNfcntc8JnRaR0NGaCIVaDU= Subject key identifier: CC:5C:84:67:E1:85:29:9B:BD:B2:88:2D:C3:FB:1C:34:86:52:AE:F5 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 211AA1797851E4BB672835EBDB610562F68E1BC5 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131322e302f32302d3230203d3e203435313437.roa Signing time: Wed 22 Jan 2025 06:00:00 +0000 ROA not before: Wed 22 Jan 2025 05:55:00 +0000 ROA not after: Wed 21 Jan 2026 06:00:00 +0000 asID: 45147 IP address blocks: 119.110.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 07:39:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:1a:a1:79:78:51:e4:bb:67:28:35:eb:db:61:05:62:f6:8e:1b:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Jan 22 05:55:00 2025 GMT Not After : Jan 21 06:00:00 2026 GMT Subject: CN=CC5C8467E185299BBDB2882DC3FB1C348652AEF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:14:42:26:6f:72:1b:64:36:8a:0b:6b:ab:3d: c4:8d:6d:15:42:41:df:a0:f7:29:95:38:92:4e:b9: e6:f6:fe:9d:14:d0:1b:d9:de:2e:36:d9:dc:ef:51: 4b:eb:7e:02:71:fb:7f:c1:e1:2a:9a:5c:50:7f:db: 09:e5:f5:ab:0f:46:23:9a:b8:44:90:4c:cb:82:8a: ad:eb:da:a3:da:12:6e:be:20:77:4a:75:d0:7f:02: 84:da:8f:a9:bc:76:5a:5d:b8:e1:b7:16:8a:70:51: 41:87:d2:0e:35:c5:5c:5f:46:20:e1:1c:c3:d1:1c: f7:81:dc:07:86:38:99:08:56:a0:c5:33:96:e8:39: 47:bf:6f:b2:0b:ea:b9:b7:22:c1:8a:06:ef:9c:0e: 0f:d4:b5:05:4b:d8:f0:80:b3:10:cb:89:2e:9c:05: ab:f7:a9:5d:e9:cd:ca:f5:15:af:f6:19:e8:fd:21: 75:52:36:a9:70:fe:19:42:54:0c:9d:9b:ee:f9:6a: 03:68:04:60:9e:90:52:75:d3:00:58:06:08:4d:29: e3:55:d3:b0:81:4e:40:cd:53:e2:b4:df:5c:94:03: 33:eb:9f:22:b1:4e:97:e9:23:72:a7:c0:e1:97:eb: bf:20:bd:e2:f9:ff:07:f7:63:56:e9:b5:21:9c:e0: ba:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:5C:84:67:E1:85:29:9B:BD:B2:88:2D:C3:FB:1C:34:86:52:AE:F5 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131322e302f32302d3230203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.112.0/20 Signature Algorithm: sha256WithRSAEncryption c8:45:ac:b9:d6:d0:07:a8:b7:d6:ae:56:36:f6:b8:75:a5:c3: 4a:d0:5d:2b:ec:f1:a3:40:bc:3c:de:36:97:24:8d:43:59:b3: 2d:32:a9:96:4f:07:65:48:1c:d5:11:dd:f9:ad:55:d6:4c:6a: ca:3b:69:de:9b:d8:e3:14:00:c6:64:c4:c1:6e:42:6a:fd:97: 8f:cc:5a:10:08:c8:cc:ca:75:25:3e:c9:76:63:d8:a6:df:cb: 1f:b2:a5:91:63:34:09:b2:16:fd:ab:28:42:3a:2c:77:70:12: 0e:12:9b:7d:4b:0d:b1:27:da:7b:e5:40:4f:07:97:df:ab:f2: 49:33:7f:36:26:13:51:d9:93:e1:f7:ea:72:86:1b:79:f7:8c: aa:21:8e:7a:98:1a:44:d7:b0:6f:2b:a9:64:a8:0c:8d:00:b3: e3:dc:8c:d0:17:d9:be:d5:41:0a:d4:5d:11:a6:e1:51:4d:b4: b0:7a:4b:a6:b1:58:70:e4:f8:15:1d:5f:d1:4c:a7:0e:9f:32: ed:5b:73:7f:8f:35:b9:90:61:68:48:b5:36:0c:71:c5:7f:2f: 95:db:71:83:8a:9b:77:db:6d:e6:40:34:68:b0:84:4e:10:65: 5d:71:d1:ac:c8:45:b5:9c:68:c0:5e:a6:ef:e0:c3:9b:9c:aa: 08:3c:f6:4f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIRqheXhR5LtnKDXr22EFYvaOG8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTAxMjIwNTU1MDBaFw0yNjAxMjEwNjAwMDBaMDMxMTAvBgNV BAMTKENDNUM4NDY3RTE4NTI5OUJCREIyODgyREMzRkIxQzM0ODY1MkFFRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNFEImb3IbZDaKC2urPcSNbRVC Qd+g9ymVOJJOueb2/p0U0BvZ3i422dzvUUvrfgJx+3/B4SqaXFB/2wnl9asPRiOa uESQTMuCiq3r2qPaEm6+IHdKddB/AoTaj6m8dlpduOG3FopwUUGH0g41xVxfRiDh HMPRHPeB3AeGOJkIVqDFM5boOUe/b7IL6rm3IsGKBu+cDg/UtQVL2PCAsxDLiS6c Bav3qV3pzcr1Fa/2Gej9IXVSNqlw/hlCVAydm+75agNoBGCekFJ10wBYBghNKeNV 07CBTkDNU+K031yUAzPrnyKxTpfpI3KnwOGX678gveL5/wf3Y1bptSGc4LrlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzFyEZ+GFKZu9sogtw/scNIZSrvUwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzIyZTMwMmYz MjMwMmQzMjMwMjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEd25wMA0GCSqG SIb3DQEBCwUAA4IBAQDIRay51tAHqLfWrlY29rh1pcNK0F0r7PGjQLw83jaXJI1D WbMtMqmWTwdlSBzVEd35rVXWTGrKO2nem9jjFADGZMTBbkJq/ZePzFoQCMjMynUl Psl2Y9im38sfsqWRYzQJshb9qyhCOix3cBIOEpt9Sw2xJ9p75UBPB5ffq/JJM382 JhNR2ZPh9+pyhht594yqIY56mBpE17BvK6lkqAyNALPj3IzQF9m+1UEK1F0RpuFR TbSwekumsVhw5PgVHV/RTKcOnzLtW3N/jzW5kGFoSLU2DHHFfy+V23GDipt3223m QDRosIROEGVdcdGsyEW1nGjAXqbv4MObnKoIPPZP -----END CERTIFICATE-----Generated at Sun Apr 6 17:52:54 2025 by rpki-client