$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3132312e3130302e31362e302f32322d3234203d3e2039333431.roa File: 3132312e3130302e31362e302f32322d3234203d3e2039333431.roa (raw, json) Hash identifier: xnJyFw1tKqLPY7XxjPDPjB2UY/a6+HwshLu7v5yZK74= Subject key identifier: 5A:DE:3F:1D:76:5F:0C:CE:56:F1:39:5D:01:AD:E7:24:EC:3C:3E:44 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 775E0563961D05B3C9C2EE9455C2A901B7614590 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3132312e3130302e31362e302f32322d3234203d3e2039333431.roa Signing time: Tue 23 Apr 2024 04:00:01 +0000 ROA not before: Tue 23 Apr 2024 03:55:01 +0000 ROA not after: Tue 22 Apr 2025 04:00:01 +0000 asID: 9341 IP address blocks: 121.100.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Mar 2025 05:19:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:5e:05:63:96:1d:05:b3:c9:c2:ee:94:55:c2:a9:01:b7:61:45:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Apr 23 03:55:01 2024 GMT Not After : Apr 22 04:00:01 2025 GMT Subject: CN=5ADE3F1D765F0CCE56F1395D01ADE724EC3C3E44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c9:17:19:27:13:e7:95:11:9b:19:57:32:87: d0:5e:76:01:1d:23:6c:ea:4a:26:8d:6c:5a:0b:70: 3c:4b:4d:2d:56:71:f4:14:77:6a:b7:f7:3e:39:26: 88:14:01:12:9a:d0:54:94:26:20:89:08:e7:c7:0e: 2b:6f:66:70:c2:3a:6d:0b:a6:bb:54:71:96:fa:e2: 14:ec:5f:8d:20:f6:dc:b8:21:7d:a0:bd:7f:44:63: 40:0c:a4:5b:18:e7:03:58:e5:48:c0:04:87:f9:36: e1:c2:82:62:03:57:78:c6:68:83:83:a3:13:c5:e5: 35:fa:9b:93:85:14:10:af:85:b9:e5:51:68:56:84: 0d:15:6f:cf:6d:a7:16:ae:cb:82:b2:96:c3:56:6c: 86:06:c1:a0:3b:b2:71:63:cb:a4:5d:a4:82:fd:d1: 6f:d4:34:a0:e3:7d:38:1a:e3:4d:2c:cb:6a:3c:db: 2c:eb:a5:92:00:a8:bd:4a:fe:5b:f2:8d:63:71:bc: c0:0e:d5:43:55:83:b1:eb:f6:e8:8f:6b:52:57:fd: 69:fd:6f:52:8c:21:b9:f2:12:03:83:9b:16:18:07: d3:fa:7d:a7:82:76:fd:32:79:bd:1c:8e:b5:42:7a: f9:16:0e:3b:1c:78:68:b0:5a:be:66:4d:30:2c:de: 7f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:DE:3F:1D:76:5F:0C:CE:56:F1:39:5D:01:AD:E7:24:EC:3C:3E:44 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3132312e3130302e31362e302f32322d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.100.16.0/22 Signature Algorithm: sha256WithRSAEncryption 14:34:4c:96:5e:55:06:58:3f:d0:2e:ec:b6:94:fc:c6:17:09: 53:75:0b:82:c1:a8:53:fd:1a:af:c5:7d:48:16:5b:5b:ff:e6: 90:63:c0:11:f4:7a:18:5f:f3:08:8f:bb:24:70:ac:55:8b:24: 44:cb:1a:50:53:91:41:0b:8e:86:42:74:0a:67:41:70:bb:bf: 5d:a2:ce:d4:9d:b0:b9:d3:8e:87:3f:1c:83:04:6c:4b:42:61: bc:90:77:25:92:e3:df:f7:92:f9:e7:2b:fe:ad:b9:33:0d:70: 5c:46:eb:e9:6b:ad:d8:90:93:b7:01:2f:e7:3a:7d:15:f2:20: 29:3b:b7:2a:dd:00:38:59:b5:a5:b6:06:90:66:38:c9:e7:9b: c4:dc:65:e0:e2:09:56:98:e9:46:8b:14:46:b3:7e:d1:5a:11: 8c:c8:69:32:3c:0d:43:3b:2a:7f:08:63:66:f2:63:5f:3e:c8: 00:0f:07:b3:c8:24:95:d0:19:a4:3d:f1:50:f8:aa:c5:d9:ec: 58:45:a0:8b:3b:33:4e:5d:e3:ae:f9:70:02:14:07:43:e5:b0: 32:7e:8d:8d:90:4d:60:30:2e:3d:56:f4:39:a8:e0:53:a4:58: 4f:9d:f2:88:10:f4:35:a4:d5:7a:2d:0b:6e:54:1b:46:9b:7e: 2e:7f:ee:21 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUd14FY5YdBbPJwu6UVcKpAbdhRZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNDA0MjMwMzU1MDFaFw0yNTA0MjIwNDAwMDFaMDMxMTAvBgNV BAMTKDVBREUzRjFENzY1RjBDQ0U1NkYxMzk1RDAxQURFNzI0RUMzQzNFNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXyRcZJxPnlRGbGVcyh9BedgEd I2zqSiaNbFoLcDxLTS1WcfQUd2q39z45JogUARKa0FSUJiCJCOfHDitvZnDCOm0L prtUcZb64hTsX40g9ty4IX2gvX9EY0AMpFsY5wNY5UjABIf5NuHCgmIDV3jGaIOD oxPF5TX6m5OFFBCvhbnlUWhWhA0Vb89tpxauy4KylsNWbIYGwaA7snFjy6RdpIL9 0W/UNKDjfTga400sy2o82yzrpZIAqL1K/lvyjWNxvMAO1UNVg7Hr9uiPa1JX/Wn9 b1KMIbnyEgODmxYYB9P6faeCdv0yeb0cjrVCevkWDjsceGiwWr5mTTAs3n+RAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUWt4/HXZfDM5W8TldAa3nJOw8PkQwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMxMzIzMTJlMzEzMDMwMmUzMTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ5ZBAwDQYJKoZIhvcN AQELBQADggEBABQ0TJZeVQZYP9Au7LaU/MYXCVN1C4LBqFP9Gq/FfUgWW1v/5pBj wBH0ehhf8wiPuyRwrFWLJETLGlBTkUELjoZCdApnQXC7v12iztSdsLnTjoc/HIME bEtCYbyQdyWS49/3kvnnK/6tuTMNcFxG6+lrrdiQk7cBL+c6fRXyICk7tyrdADhZ taW2BpBmOMnnm8TcZeDiCVaY6UaLFEazftFaEYzIaTI8DUM7Kn8IY2byY18+yAAP B7PIJJXQGaQ98VD4qsXZ7FhFoIs7M05d4675cAIUB0PlsDJ+jY2QTWAwLj1W9Dmo 4FOkWE+d8ogQ9DWk1XotC25UG0abfi5/7iE= -----END CERTIFICATE-----Generated at Tue Mar 11 05:02:16 2025 by rpki-client