$ rpki-client -vvf repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3131362e39302e3137362e302f32342d3234203d3e20313337333136.roa File: 3131362e39302e3137362e302f32342d3234203d3e20313337333136.roa (raw, json) Hash identifier: QsDjUTCsmgjzwLI6uHG2z78Sm4sz91zsZBK0fAisINo= Subject key identifier: 9D:A0:A2:C4:DB:88:27:F1:50:BA:BC:AE:43:32:7E:59:69:A1:02:D8 Certificate issuer: /CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Certificate serial: 4B29ED6F982E0700AFEED3119D5D8B753F32899B Authority key identifier: 7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3131362e39302e3137362e302f32342d3234203d3e20313337333136.roa Signing time: Tue 13 May 2025 09:00:01 +0000 ROA not before: Tue 13 May 2025 08:55:01 +0000 ROA not after: Tue 12 May 2026 09:00:01 +0000 asID: 137316 IP address blocks: 116.90.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:21:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:29:ed:6f:98:2e:07:00:af:ee:d3:11:9d:5d:8b:75:3f:32:89:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Validity Not Before: May 13 08:55:01 2025 GMT Not After : May 12 09:00:01 2026 GMT Subject: CN=9DA0A2C4DB8827F150BABCAE43327E5969A102D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:02:e9:d1:f0:68:bd:04:9a:71:f2:95:3b:a0: 07:8a:93:98:cb:c1:5d:54:8e:41:3c:2f:37:1e:9e: 4f:c9:eb:60:c2:b7:24:e3:7f:b1:3e:75:ce:13:51: 0a:33:a9:21:e1:8c:1d:40:7f:09:2e:24:65:2a:be: 1b:eb:89:0b:57:67:f9:6d:45:c3:05:28:82:c0:18: 72:04:6b:1f:a3:54:f0:a8:0e:c9:22:88:ec:1c:e8: a2:39:6f:36:e5:72:35:93:d6:eb:0a:56:51:8e:f2: 9a:0e:3c:bf:2d:75:13:f6:6b:e7:e0:48:92:15:ce: b2:6d:cc:ba:08:58:12:49:42:07:88:92:0d:97:b9: 85:c9:89:4a:bb:f2:50:8b:92:9b:15:9f:6d:9a:66: 9b:1e:0d:f5:89:1d:96:34:2a:cd:8b:c4:7d:f1:26: e4:0a:6e:bd:1c:73:d9:59:b7:7c:ec:9c:52:78:c4: 81:49:15:d8:d4:74:56:69:a0:6a:b2:50:71:9a:0f: 8d:c6:79:34:7b:d2:cb:fe:aa:6a:e1:5f:a7:f9:27: 30:9a:92:fd:37:96:43:46:60:c3:f7:87:9c:e3:6c: f3:57:28:78:63:4d:e9:f9:d0:63:e8:4f:70:49:a8: 53:4d:f4:b0:c6:ab:29:48:04:18:89:3f:8d:f1:29: 48:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:A0:A2:C4:DB:88:27:F1:50:BA:BC:AE:43:32:7E:59:69:A1:02:D8 X509v3 Authority Key Identifier: keyid:7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3131362e39302e3137362e302f32342d3234203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.90.176.0/24 Signature Algorithm: sha256WithRSAEncryption a8:8f:5f:d5:3a:e6:8b:87:04:ef:7d:cd:d0:cb:2a:c0:9f:2a: 7a:23:1a:6d:85:39:ca:dd:6d:31:b2:44:a7:0f:45:4c:d3:d4: 62:a5:1c:c4:b7:6d:de:f5:27:73:5f:d8:13:fe:cd:63:80:0b: 36:e5:10:0f:73:28:7d:de:2f:e9:cf:26:12:e9:a2:ad:10:5f: 69:bb:51:01:f6:ec:59:cb:f0:e5:fe:f3:da:88:25:a3:2e:ca: 19:5d:d5:ce:55:7b:55:3a:81:e7:08:3f:77:a5:ba:63:e9:f3: dd:9d:1d:c4:e8:e2:77:86:bd:77:37:90:02:11:57:3e:99:66: 87:27:72:d8:cf:f7:f3:f0:a0:29:fb:f5:8a:f3:e0:4e:2e:a2: 2f:62:48:24:39:08:09:05:40:2b:3d:ef:1b:bc:69:da:09:78: 55:f5:b8:20:9f:1d:3c:82:4a:91:d8:0a:40:4e:b7:b3:6c:9e: da:56:22:3e:74:5f:84:71:e9:8d:68:a9:1d:64:6a:95:e0:3f: 66:10:ae:b1:b5:d5:be:6f:38:a7:06:1b:c9:24:d2:c8:50:5f: 73:ae:04:c0:e1:93:90:80:77:04:14:ec:5d:bf:3d:58:c1:76: fd:6f:e9:d6:bd:13:ca:90:7f:81:41:e8:49:0d:f5:b8:c2:d0: 73:8f:82:d1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSyntb5guBwCv7tMRnV2LdT8yiZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZB NUEwNjY2RDAeFw0yNTA1MTMwODU1MDFaFw0yNjA1MTIwOTAwMDFaMDMxMTAvBgNV BAMTKDlEQTBBMkM0REI4ODI3RjE1MEJBQkNBRTQzMzI3RTU5NjlBMTAyRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AunR8Gi9BJpx8pU7oAeKk5jL wV1UjkE8Lzcenk/J62DCtyTjf7E+dc4TUQozqSHhjB1AfwkuJGUqvhvriQtXZ/lt RcMFKILAGHIEax+jVPCoDskiiOwc6KI5bzblcjWT1usKVlGO8poOPL8tdRP2a+fg SJIVzrJtzLoIWBJJQgeIkg2XuYXJiUq78lCLkpsVn22aZpseDfWJHZY0Ks2LxH3x JuQKbr0cc9lZt3zsnFJ4xIFJFdjUdFZpoGqyUHGaD43GeTR70sv+qmrhX6f5JzCa kv03lkNGYMP3h5zjbPNXKHhjTen50GPoT3BJqFNN9LDGqylIBBiJP43xKUgVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnaCixNuIJ/FQuryuQzJ+WWmhAtgwHwYDVR0j BBgwFoAUezWDSkcEx+2F1iIS/GLEb6WgZm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 Y2M0NjJhNS04Zjc0LTQyYWYtODgzYi01ZTg5ZWU1ZjJkZjMvMC83QjM1ODM0QTQ3 MDRDN0VEODVENjIyMTJGQzYyQzQ2RkE1QTA2NjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZBNUEw NjY2RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjYzQ2MmE1LThmNzQtNDJhZi04 ODNiLTVlODllZTVmMmRmMy8wLzMxMzEzNjJlMzkzMDJlMzEzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM3MzMzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdFqwMA0GCSqG SIb3DQEBCwUAA4IBAQCoj1/VOuaLhwTvfc3QyyrAnyp6IxpthTnK3W0xskSnD0VM 09RipRzEt23e9SdzX9gT/s1jgAs25RAPcyh93i/pzyYS6aKtEF9pu1EB9uxZy/Dl /vPaiCWjLsoZXdXOVXtVOoHnCD93pbpj6fPdnR3E6OJ3hr13N5ACEVc+mWaHJ3LY z/fz8KAp+/WK8+BOLqIvYkgkOQgJBUArPe8bvGnaCXhV9bggnx08gkqR2ApATrez bJ7aViI+dF+EcemNaKkdZGqV4D9mEK6xtdW+bzinBhvJJNLIUF9zrgTA4ZOQgHcE FOxdvz1YwXb9b+nWvRPKkH+BQehJDfW4wtBzj4LR -----END CERTIFICATE-----Generated at Sat Jun 7 06:07:17 2025 by rpki-client