$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3132312e3130302e32322e302f32332d3233203d3e2039333431.roa File: 3132312e3130302e32322e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: lrhI+2ieBA4h4etYNTNhXi53dxAWz6djNkmsivkT1Bo= Subject key identifier: 2E:A7:E6:B5:5B:00:3C:E5:12:AC:52:40:13:97:BF:42:82:97:6F:80 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 649A9938C1308C69070D5228DD5684EF2A20D4E1 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3132312e3130302e32322e302f32332d3233203d3e2039333431.roa Signing time: Tue 06 May 2025 05:02:52 +0000 ROA not before: Tue 06 May 2025 04:57:52 +0000 ROA not after: Tue 05 May 2026 05:02:52 +0000 asID: 9341 IP address blocks: 121.100.22.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 19:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:9a:99:38:c1:30:8c:69:07:0d:52:28:dd:56:84:ef:2a:20:d4:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: May 6 04:57:52 2025 GMT Not After : May 5 05:02:52 2026 GMT Subject: CN=2EA7E6B55B003CE512AC52401397BF4282976F80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:98:6d:14:c4:ea:d0:b9:78:bf:2a:6c:c9:5b: 5f:be:63:c7:6e:e9:03:f4:53:72:6a:96:7a:e4:bf: e1:0c:40:57:36:df:55:22:ce:e3:42:8d:7a:a9:4f: d3:0f:7f:d1:dd:79:79:c2:44:75:54:37:a0:17:27: 8a:f6:62:64:28:29:36:d2:07:d9:79:79:f4:55:ca: 8d:c8:d4:7e:87:48:c1:b0:25:31:33:67:29:16:bf: 97:89:2c:79:95:73:59:6c:a8:c9:68:c0:af:0d:97: bc:79:f4:0c:b8:11:c6:15:df:9a:51:ac:a1:d1:e2: be:87:5a:f7:e0:8c:05:25:aa:96:f8:af:25:2a:57: f2:ac:7c:44:9b:13:19:23:8d:7c:aa:bd:26:98:77: 4d:46:a1:97:cd:9c:8b:7d:cb:a7:57:85:10:17:6b: 60:cc:14:a6:43:6d:be:d6:13:04:e6:54:5d:a1:99: 50:00:dc:47:80:0e:53:98:36:31:31:1a:ef:00:a8: c5:14:c9:df:49:93:7a:6f:8b:64:e8:90:37:a1:22: 1c:0c:ea:9d:35:88:89:09:b3:c3:cb:7e:9a:bc:f1: d7:2d:ef:b5:69:cd:ab:7f:5b:66:dd:d4:d0:d4:20: 0d:da:e0:cf:ac:a6:0c:3d:e0:70:94:1d:74:52:36: 00:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:A7:E6:B5:5B:00:3C:E5:12:AC:52:40:13:97:BF:42:82:97:6F:80 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3132312e3130302e32322e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.100.22.0/23 Signature Algorithm: sha256WithRSAEncryption 96:50:ac:59:f4:3e:78:4c:f4:bd:5d:f5:7d:26:9f:34:da:4e: 99:02:7f:64:12:d2:7d:2e:5d:28:24:10:d7:4e:e8:6b:da:17: b5:06:7e:4b:b3:eb:b7:99:20:33:c5:bd:a3:46:3d:f9:9e:f1: 15:bd:27:b1:ad:93:bf:bf:29:2d:5c:37:23:6e:a9:8d:5c:7a: cf:1b:8c:36:bb:9c:47:da:e0:70:e8:bd:ef:b7:35:ef:a0:04: 51:56:44:ba:55:b4:e3:fc:1c:c8:b3:a3:11:b7:51:3a:dd:c4: ac:0d:a6:4e:43:fa:5b:0c:b0:c6:14:68:2d:6e:84:3d:40:7e: 40:f2:ba:a9:2d:0e:90:2d:fb:37:e3:aa:bf:7a:97:da:f1:02: f1:d7:9f:ac:ec:e5:c8:cb:6f:91:a7:18:f1:dc:35:22:b9:75: 6e:b8:cf:e6:a3:63:2c:d9:a6:d1:c9:01:4f:11:d5:75:49:5c: f9:65:51:91:02:e4:fa:29:13:fb:27:c6:6d:bf:87:df:f1:01: a4:36:4f:8d:bc:29:ca:55:15:4c:e3:47:1d:9f:4f:60:ee:ec: 26:5e:21:1d:ca:7d:30:80:a0:fd:09:8e:81:ce:46:2e:b5:4f: 46:ce:71:da:e8:4b:46:a8:01:a3:0b:ae:0d:f1:8a:ab:92:1b: 28:9b:12:2d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUZJqZOMEwjGkHDVIo3VaE7yog1OEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNTA1MDYwNDU3NTJaFw0yNjA1MDUwNTAyNTJaMDMxMTAvBgNV BAMTKDJFQTdFNkI1NUIwMDNDRTUxMkFDNTI0MDEzOTdCRjQyODI5NzZGODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/mG0UxOrQuXi/KmzJW1++Y8du 6QP0U3Jqlnrkv+EMQFc231UizuNCjXqpT9MPf9HdeXnCRHVUN6AXJ4r2YmQoKTbS B9l5efRVyo3I1H6HSMGwJTEzZykWv5eJLHmVc1lsqMlowK8Nl7x59Ay4EcYV35pR rKHR4r6HWvfgjAUlqpb4ryUqV/KsfESbExkjjXyqvSaYd01GoZfNnIt9y6dXhRAX a2DMFKZDbb7WEwTmVF2hmVAA3EeADlOYNjExGu8AqMUUyd9Jk3pvi2TokDehIhwM 6p01iIkJs8PLfpq88dct77Vpzat/W2bd1NDUIA3a4M+spgw94HCUHXRSNgA1AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQULqfmtVsAPOUSrFJAE5e/QoKXb4AwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMxMzIzMTJlMzEzMDMwMmUzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF5ZBYwDQYJKoZIhvcN AQELBQADggEBAJZQrFn0PnhM9L1d9X0mnzTaTpkCf2QS0n0uXSgkENdO6GvaF7UG fkuz67eZIDPFvaNGPfme8RW9J7Gtk7+/KS1cNyNuqY1ces8bjDa7nEfa4HDove+3 Ne+gBFFWRLpVtOP8HMizoxG3UTrdxKwNpk5D+lsMsMYUaC1uhD1AfkDyuqktDpAt +zfjqr96l9rxAvHXn6zs5cjLb5GnGPHcNSK5dW64z+ajYyzZptHJAU8R1XVJXPll UZEC5PopE/snxm2/h9/xAaQ2T428KcpVFUzjRx2fT2Du7CZeIR3KfTCAoP0JjoHO Ri61T0bOcdroS0aoAaMLrg3xiquSGyibEi0= -----END CERTIFICATE-----Generated at Wed Oct 29 21:18:38 2025 by rpki-client