$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136362e302f32342d3234203d3e2039333431.roa File: 3131392e3235322e3136362e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: EU6oHGcPY13rP7zM15MrEk3huONal6rh4bx/lkyOao0= Subject key identifier: 36:57:4A:E0:DD:62:97:AB:C7:37:59:BE:47:2F:D3:AD:AB:78:A0:5E Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 502CA522BC6B3DCBC0EAC3545D11A6BBC0EA263A Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136362e302f32342d3234203d3e2039333431.roa Signing time: Sun 21 Apr 2024 06:00:02 +0000 ROA not before: Sun 21 Apr 2024 05:55:02 +0000 ROA not after: Sun 20 Apr 2025 06:00:02 +0000 asID: 9341 IP address blocks: 119.252.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Mar 2025 05:19:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:2c:a5:22:bc:6b:3d:cb:c0:ea:c3:54:5d:11:a6:bb:c0:ea:26:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Apr 21 05:55:02 2024 GMT Not After : Apr 20 06:00:02 2025 GMT Subject: CN=36574AE0DD6297ABC73759BE472FD3ADAB78A05E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:59:5b:92:d3:92:f2:0f:8a:6a:25:ab:66:d6: 87:fd:fe:3d:02:11:5e:a2:c6:56:b5:1f:e0:dc:87: 0e:cc:b3:fa:13:d8:ba:87:f8:c1:84:bc:e8:40:60: ae:d6:40:d3:96:e6:08:e7:3c:62:7c:43:54:f6:be: 07:d9:79:dc:fb:b9:d9:4a:9d:41:df:1f:65:75:22: f1:b1:80:bf:a1:f1:9c:36:88:13:b8:01:3f:b3:72: 40:23:8c:a3:1f:5e:b6:1d:d2:d4:6c:eb:4f:0e:63: 54:62:01:0e:7b:0f:8d:22:66:b5:b9:0b:cc:99:5d: f9:aa:d0:df:95:51:89:28:45:db:84:d2:b5:eb:aa: c2:04:63:2b:a0:79:25:06:0e:0e:60:59:21:ea:c5: 60:8d:1c:68:c6:d0:4d:6d:0c:21:0d:9a:b6:77:56: 1a:05:2d:b6:67:c2:ca:f7:30:a1:df:f8:5e:2c:e6: 43:ff:af:59:07:1a:fa:f2:f5:43:7c:c3:12:77:dc: ee:f8:35:11:67:7e:98:06:f0:5c:ec:45:0d:35:5d: 12:ed:85:13:4d:1c:60:bf:cf:aa:59:ff:f0:a5:d4: 39:78:20:4b:fd:0e:01:5c:9a:61:93:9b:f6:1e:e8: 32:0d:d2:df:96:c8:fe:6e:26:e9:62:5d:3e:01:a8: fd:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:57:4A:E0:DD:62:97:AB:C7:37:59:BE:47:2F:D3:AD:AB:78:A0:5E X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136362e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.252.166.0/24 Signature Algorithm: sha256WithRSAEncryption 68:38:28:64:d8:2d:d3:7c:24:ea:28:06:6c:f4:9a:a9:4d:44: de:6f:ca:f6:79:fb:19:89:94:bd:bf:d4:50:b0:89:04:cd:6a: ec:75:7e:29:5b:38:37:c6:db:58:3b:f6:22:fc:5c:34:9b:7e: 44:03:58:28:ea:11:12:02:23:6f:54:20:d5:45:0a:a7:b7:68: 8f:8c:88:b4:37:bd:f3:00:fc:e6:ff:f6:18:1b:ee:6e:75:8f: 60:85:4b:aa:89:96:8f:89:3b:52:ff:24:48:9a:d7:e0:ac:96: ff:1d:c8:ca:61:18:ed:15:0d:02:ae:f7:d6:fd:f4:ae:cd:de: 7b:d0:3c:5c:75:e6:f4:b9:5c:69:a6:1d:7a:18:64:f6:bc:49: ab:30:56:aa:3e:7d:83:aa:70:7e:a7:25:35:d8:39:47:e4:1e: f9:ad:2f:dc:57:b0:e8:b1:a6:d1:5a:f5:e0:12:a5:62:36:53: f7:50:c7:e4:90:43:e7:36:fb:cf:60:b8:f0:30:a2:39:8b:7b: 12:44:87:a0:09:7b:92:fe:db:c6:eb:9f:b4:bf:e3:87:58:af: 36:88:13:94:49:8e:44:a2:56:77:4b:ce:20:d6:d5:91:61:e3: ad:69:fa:d6:be:70:bb:17:0c:dc:e2:44:0c:bd:08:17:f1:c6: 4d:32:ff:46 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUCylIrxrPcvA6sNUXRGmu8DqJjowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNDA0MjEwNTU1MDJaFw0yNTA0MjAwNjAwMDJaMDMxMTAvBgNV BAMTKDM2NTc0QUUwREQ2Mjk3QUJDNzM3NTlCRTQ3MkZEM0FEQUI3OEEwNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcWVuS05LyD4pqJatm1of9/j0C EV6ixla1H+Dchw7Ms/oT2LqH+MGEvOhAYK7WQNOW5gjnPGJ8Q1T2vgfZedz7udlK nUHfH2V1IvGxgL+h8Zw2iBO4AT+zckAjjKMfXrYd0tRs608OY1RiAQ57D40iZrW5 C8yZXfmq0N+VUYkoRduE0rXrqsIEYyugeSUGDg5gWSHqxWCNHGjG0E1tDCENmrZ3 VhoFLbZnwsr3MKHf+F4s5kP/r1kHGvry9UN8wxJ33O74NRFnfpgG8FzsRQ01XRLt hRNNHGC/z6pZ//Cl1Dl4IEv9DgFcmmGTm/Ye6DIN0t+WyP5uJuliXT4BqP33AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNldK4N1il6vHN1m+Ry/Trat4oF4wHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMxMzEzOTJlMzIzNTMyMmUzMTM2MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHf8pjANBgkqhkiG 9w0BAQsFAAOCAQEAaDgoZNgt03wk6igGbPSaqU1E3m/K9nn7GYmUvb/UULCJBM1q 7HV+KVs4N8bbWDv2IvxcNJt+RANYKOoREgIjb1Qg1UUKp7doj4yItDe98wD85v/2 GBvubnWPYIVLqomWj4k7Uv8kSJrX4KyW/x3IymEY7RUNAq731v30rs3ee9A8XHXm 9LlcaaYdehhk9rxJqzBWqj59g6pwfqclNdg5R+Qe+a0v3Few6LGm0Vr14BKlYjZT 91DH5JBD5zb7z2C48DCiOYt7EkSHoAl7kv7bxuuftL/jh1ivNogTlEmORKJWd0vO INbVkWHjrWn61r5wuxcM3OJEDL0IF/HGTTL/Rg== -----END CERTIFICATE-----Generated at Tue Mar 11 05:03:46 2025 by rpki-client