$ rpki-client -vvf repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3131362e39302e3137372e302f32342d3234203d3e20313337333136.roa File: 3131362e39302e3137372e302f32342d3234203d3e20313337333136.roa (raw, json) Hash identifier: CHDnURieaRDIOxiB0TuUF6NF1MEFz5AjRpVtSBvpARU= Subject key identifier: EC:0E:FB:91:37:0E:48:D6:8F:70:15:24:83:DF:9B:75:98:A7:4A:EC Certificate issuer: /CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Certificate serial: 0C9941BDB8456267EF1FA404AAB0C6282C8B926A Authority key identifier: 7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3131362e39302e3137372e302f32342d3234203d3e20313337333136.roa Signing time: Tue 13 May 2025 09:00:01 +0000 ROA not before: Tue 13 May 2025 08:55:01 +0000 ROA not after: Tue 12 May 2026 09:00:01 +0000 asID: 137316 IP address blocks: 116.90.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:99:41:bd:b8:45:62:67:ef:1f:a4:04:aa:b0:c6:28:2c:8b:92:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Validity Not Before: May 13 08:55:01 2025 GMT Not After : May 12 09:00:01 2026 GMT Subject: CN=EC0EFB91370E48D68F70152483DF9B7598A74AEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:3d:f5:ce:67:50:1a:0c:51:25:c2:56:cb:6d: 53:aa:e0:4f:6e:7f:d3:d0:d8:fd:a4:d1:07:d4:d9: 33:af:b4:9a:b7:24:50:c5:9f:5a:8e:72:e1:ea:bb: 7e:57:eb:5a:29:28:56:cb:ec:cf:35:75:9d:8a:00: b2:a2:2e:a5:93:c4:9f:7f:32:c7:da:b0:16:8d:bc: fd:8d:1e:56:6d:54:65:87:87:d2:8b:eb:cb:33:de: 91:0c:89:61:64:e7:a7:a7:6b:fc:cd:25:e2:60:4d: fc:d6:6f:32:56:cf:57:39:45:a9:a7:c1:be:4c:15: 5f:21:35:79:39:6c:1b:04:bf:97:0a:40:cd:69:09: 2b:44:16:5d:b8:2d:e0:c0:2f:e4:91:a2:47:4a:ec: 83:b5:e9:f7:76:dc:bb:06:7f:80:cc:3b:93:80:a9: cb:0f:23:12:56:f5:14:7c:94:4b:2e:ed:66:e8:43: 51:6e:99:32:f8:63:73:6f:ae:c8:40:94:fe:c2:13: 45:7e:db:90:bf:31:50:e0:a0:f6:9d:49:fc:a8:59: 4e:6c:68:88:4b:5e:f5:4b:b2:13:57:5e:37:f3:8a: 75:98:d0:c0:fd:51:cd:03:ce:b8:90:89:25:db:fa: 6d:16:8b:43:85:9d:f9:f0:ab:31:11:7c:05:07:0f: cf:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:0E:FB:91:37:0E:48:D6:8F:70:15:24:83:DF:9B:75:98:A7:4A:EC X509v3 Authority Key Identifier: keyid:7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3131362e39302e3137372e302f32342d3234203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.90.177.0/24 Signature Algorithm: sha256WithRSAEncryption 30:fa:1d:7d:e3:1c:aa:f5:5f:96:8b:3e:b5:4a:c6:21:37:5a: fd:c9:4e:43:62:09:13:a0:ce:1b:9e:fe:96:3d:57:66:e5:58: e2:bc:cb:5e:a3:82:6e:63:1d:eb:b8:db:8a:ea:78:c9:5e:84: 15:19:7b:89:c3:30:23:e5:2c:7c:e0:68:18:05:27:2f:27:86: e7:f7:72:6c:c2:fb:da:48:4b:f7:67:d5:d9:76:4f:bc:bb:28: 75:d4:a4:96:b8:ee:39:c7:b2:00:72:35:cd:6f:b0:99:a6:f4: 49:89:bb:f5:af:51:b2:31:54:0a:80:34:0c:bb:09:8e:f5:fd: 22:f0:62:c7:0f:c9:f3:0d:d3:11:cd:06:f7:95:9b:cc:67:d9: 21:be:11:59:2d:03:20:4e:26:d7:12:24:06:54:03:39:be:c0: 28:da:21:40:ad:c7:12:30:ed:0f:5a:3e:bf:b2:9a:90:07:cd: 02:8f:05:81:9e:b6:c3:cb:37:8f:98:67:ba:76:ad:0a:83:59: 41:83:2d:e7:eb:d2:3e:52:37:d1:a3:7e:6a:27:b0:37:80:6c: 04:f0:55:5a:6e:7f:dd:64:c3:07:3d:63:c1:13:0f:61:52:81: 88:3b:3d:00:6d:06:df:25:63:37:94:01:8a:0a:54:75:c5:2a: 70:a8:84:da -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDJlBvbhFYmfvH6QEqrDGKCyLkmowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZB NUEwNjY2RDAeFw0yNTA1MTMwODU1MDFaFw0yNjA1MTIwOTAwMDFaMDMxMTAvBgNV BAMTKEVDMEVGQjkxMzcwRTQ4RDY4RjcwMTUyNDgzREY5Qjc1OThBNzRBRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5PfXOZ1AaDFElwlbLbVOq4E9u f9PQ2P2k0QfU2TOvtJq3JFDFn1qOcuHqu35X61opKFbL7M81dZ2KALKiLqWTxJ9/ MsfasBaNvP2NHlZtVGWHh9KL68sz3pEMiWFk56ena/zNJeJgTfzWbzJWz1c5Ramn wb5MFV8hNXk5bBsEv5cKQM1pCStEFl24LeDAL+SRokdK7IO16fd23LsGf4DMO5OA qcsPIxJW9RR8lEsu7WboQ1FumTL4Y3NvrshAlP7CE0V+25C/MVDgoPadSfyoWU5s aIhLXvVLshNXXjfzinWY0MD9Uc0DzriQiSXb+m0Wi0OFnfnwqzERfAUHD89bAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7A77kTcOSNaPcBUkg9+bdZinSuwwHwYDVR0j BBgwFoAUezWDSkcEx+2F1iIS/GLEb6WgZm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 Y2M0NjJhNS04Zjc0LTQyYWYtODgzYi01ZTg5ZWU1ZjJkZjMvMC83QjM1ODM0QTQ3 MDRDN0VEODVENjIyMTJGQzYyQzQ2RkE1QTA2NjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZBNUEw NjY2RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjYzQ2MmE1LThmNzQtNDJhZi04 ODNiLTVlODllZTVmMmRmMy8wLzMxMzEzNjJlMzkzMDJlMzEzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM3MzMzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdFqxMA0GCSqG SIb3DQEBCwUAA4IBAQAw+h194xyq9V+Wiz61SsYhN1r9yU5DYgkToM4bnv6WPVdm 5VjivMteo4JuYx3ruNuK6njJXoQVGXuJwzAj5Sx84GgYBScvJ4bn93JswvvaSEv3 Z9XZdk+8uyh11KSWuO45x7IAcjXNb7CZpvRJibv1r1GyMVQKgDQMuwmO9f0i8GLH D8nzDdMRzQb3lZvMZ9khvhFZLQMgTibXEiQGVAM5vsAo2iFArccSMO0PWj6/spqQ B80CjwWBnrbDyzePmGe6dq0Kg1lBgy3n69I+UjfRo35qJ7A3gGwE8FVabn/dZMMH PWPBEw9hUoGIOz0AbQbfJWM3lAGKClR1xSpwqITa -----END CERTIFICATE-----Generated at Sun Jun 8 20:27:35 2025 by rpki-client