$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3131372e37342e3132302e302f32342d3234203d3e203338353135.roa File: 3131372e37342e3132302e302f32342d3234203d3e203338353135.roa (raw, json) Hash identifier: 89A2hU4ZNeLlTQWFk//hToBFYmlDJWFVlljqu9huGYU= Subject key identifier: 81:2A:A2:B2:84:4E:B9:35:B6:FB:02:2E:98:72:C3:FF:94:DA:25:B1 Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Certificate serial: 57582DA27E27FC8BD369B91692132628E706BF9B Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3131372e37342e3132302e302f32342d3234203d3e203338353135.roa Signing time: Mon 02 Jun 2025 01:03:17 +0000 ROA not before: Mon 02 Jun 2025 00:58:17 +0000 ROA not after: Mon 01 Jun 2026 01:03:17 +0000 asID: 38515 IP address blocks: 117.74.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:03:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:58:2d:a2:7e:27:fc:8b:d3:69:b9:16:92:13:26:28:e7:06:bf:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Validity Not Before: Jun 2 00:58:17 2025 GMT Not After : Jun 1 01:03:17 2026 GMT Subject: CN=812AA2B2844EB935B6FB022E9872C3FF94DA25B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2e:70:90:2e:c5:0d:01:4a:de:8c:00:c5:c2: db:4b:37:c4:3f:1e:04:7b:f9:8c:6b:ca:94:5c:1b: a3:c6:2e:4d:26:64:1b:8f:ac:a4:de:3e:2d:60:13: 22:db:2e:1f:56:81:6b:d4:3f:63:fd:be:76:5e:6c: 74:66:a1:f5:21:81:e8:40:dd:3c:7c:5a:78:65:11: 24:da:8e:34:45:79:d5:d0:a7:6d:70:21:1f:1c:48: cb:97:9e:f9:c5:48:29:2e:6a:77:26:b8:a7:c0:98: 44:e3:3b:ec:5b:2e:63:5b:e6:da:db:5c:8f:54:d7: 6e:12:18:53:8e:b1:bb:c5:24:c3:56:3d:33:ae:38: d1:9a:5c:cc:ad:45:c1:2a:32:82:20:0a:43:55:08: d1:31:04:25:d2:ea:db:53:7c:4e:dc:04:42:11:b4: 35:05:b2:6e:b0:53:a7:67:fa:fd:42:fc:9c:bb:8a: 32:c4:5a:b0:0b:d0:aa:26:70:23:15:01:f4:7d:aa: a1:1f:4a:35:88:18:ab:5e:7c:2b:07:43:0c:d9:4b: 25:8b:4a:f5:fb:c0:c7:50:a0:d3:8b:b5:1f:18:8f: 6f:33:b3:ed:e9:22:89:95:9c:3c:67:c7:fd:25:5b: 7a:9c:2b:21:69:2a:d2:1a:00:4c:f6:22:7b:21:4a: c0:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:2A:A2:B2:84:4E:B9:35:B6:FB:02:2E:98:72:C3:FF:94:DA:25:B1 X509v3 Authority Key Identifier: keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3131372e37342e3132302e302f32342d3234203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.74.120.0/24 Signature Algorithm: sha256WithRSAEncryption b4:4a:8b:ec:d5:45:88:f8:89:ae:76:d1:0d:97:8c:cf:fb:8b: 07:b2:60:42:38:9e:be:d8:d2:e7:9b:9e:f2:b5:6f:11:d0:40: 3a:6e:ea:51:0d:f6:ec:3a:d3:a4:05:38:e2:93:2d:3c:e4:58: 87:86:cd:1f:46:22:bd:98:d1:64:0f:67:36:04:a2:0b:50:c9: 82:d0:de:e8:0c:95:65:27:49:54:56:f9:6d:57:68:62:29:ff: cd:a7:0b:46:58:ff:ca:d0:ff:71:ee:60:59:15:83:e1:ae:db: 71:0c:b7:e5:5f:27:cd:59:cb:c6:1a:bc:50:1c:53:aa:34:fe: 92:42:43:36:a5:74:1c:63:76:a4:65:d5:ab:91:45:7f:14:9d: 1d:5a:d1:d8:b7:a6:d4:8c:81:14:b8:8e:22:83:cd:6d:82:db: 4c:1c:e2:14:c4:d4:ce:cc:f0:8a:80:21:86:c6:49:fe:09:50: 2d:f5:12:63:bc:7c:2d:69:87:d8:b9:97:f7:da:d0:8a:f4:88: 86:a3:79:ee:ba:cf:57:24:55:70:b1:e8:4b:21:b5:55:48:33: 66:8a:c5:7f:79:30:d4:c0:2a:85:ca:e1:e4:fb:8a:19:89:72: a5:d4:37:03:de:28:48:08:0b:f2:d9:e2:57:53:42:3a:ad:5c: 2c:65:80:2c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUV1gton4n/IvTabkWkhMmKOcGv5swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEy RERGRDhGMzAeFw0yNTA2MDIwMDU4MTdaFw0yNjA2MDEwMTAzMTdaMDMxMTAvBgNV BAMTKDgxMkFBMkIyODQ0RUI5MzVCNkZCMDIyRTk4NzJDM0ZGOTREQTI1QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjLnCQLsUNAUrejADFwttLN8Q/ HgR7+YxrypRcG6PGLk0mZBuPrKTePi1gEyLbLh9WgWvUP2P9vnZebHRmofUhgehA 3Tx8WnhlESTajjRFedXQp21wIR8cSMuXnvnFSCkuancmuKfAmETjO+xbLmNb5trb XI9U124SGFOOsbvFJMNWPTOuONGaXMytRcEqMoIgCkNVCNExBCXS6ttTfE7cBEIR tDUFsm6wU6dn+v1C/Jy7ijLEWrAL0KomcCMVAfR9qqEfSjWIGKtefCsHQwzZSyWL SvX7wMdQoNOLtR8Yj28zs+3pIomVnDxnx/0lW3qcKyFpKtIaAEz2InshSsBXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgSqisoROuTW2+wIumHLD/5TaJbEwHwYDVR0j BBgwFoAUk12y1EiPriwR4b873yDYKi3f2PMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YzRjNjRhOS0zNTM3LTRiYzctODYxMy04ZTk4MTYyOWU0Y2EvMC85MzVEQjJENDQ4 OEZBRTJDMTFFMUJGM0JERjIwRDgyQTJEREZEOEYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEyRERG RDhGMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNGM2NGE5LTM1MzctNGJjNy04 NjEzLThlOTgxNjI5ZTRjYS8wLzMxMzEzNzJlMzczNDJlMzEzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVKeDANBgkqhkiG 9w0BAQsFAAOCAQEAtEqL7NVFiPiJrnbRDZeMz/uLB7JgQjievtjS55ue8rVvEdBA Om7qUQ327DrTpAU44pMtPORYh4bNH0YivZjRZA9nNgSiC1DJgtDe6AyVZSdJVFb5 bVdoYin/zacLRlj/ytD/ce5gWRWD4a7bcQy35V8nzVnLxhq8UBxTqjT+kkJDNqV0 HGN2pGXVq5FFfxSdHVrR2Lem1IyBFLiOIoPNbYLbTBziFMTUzszwioAhhsZJ/glQ LfUSY7x8LWmH2LmX99rQivSIhqN57rrPVyRVcLHoSyG1VUgzZorFf3kw1MAqhcrh 5PuKGYlypdQ3A94oSAgL8tniV1NCOq1cLGWALA== -----END CERTIFICATE-----Generated at Sun Jun 8 09:15:57 2025 by rpki-client