$ rpki-client -vvf repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/3130312e302e342e302f32322d3234203d3e203535363730.roa File: 3130312e302e342e302f32322d3234203d3e203535363730.roa (raw, json) Hash identifier: 7ECSmeZAaiWw7xemuyw220yGHio1fDg8eukqs4CuhkU= Subject key identifier: 94:59:6A:A7:0C:32:A4:AE:4B:6C:CB:B1:40:3C:9E:E7:A3:13:0E:44 Certificate issuer: /CN=6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E Certificate serial: 47E3AE54801253567F9F504D3494B4C9CE39C197 Authority key identifier: 69:67:01:2E:FC:A4:36:98:E8:E1:B7:24:B9:1D:FC:5E:FE:3E:7C:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/3130312e302e342e302f32322d3234203d3e203535363730.roa Signing time: Tue 20 May 2025 03:00:38 +0000 ROA not before: Tue 20 May 2025 02:55:38 +0000 ROA not after: Tue 19 May 2026 03:00:38 +0000 asID: 55670 IP address blocks: 101.0.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.crl rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:03:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:e3:ae:54:80:12:53:56:7f:9f:50:4d:34:94:b4:c9:ce:39:c1:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E Validity Not Before: May 20 02:55:38 2025 GMT Not After : May 19 03:00:38 2026 GMT Subject: CN=94596AA70C32A4AE4B6CCBB1403C9EE7A3130E44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:10:53:95:83:6b:3c:14:a4:48:9d:6f:b9:77: 8d:65:a6:a9:49:09:c0:47:8e:bd:ac:5f:25:e9:47: cc:9f:79:05:93:3f:53:22:3b:ab:d0:af:d3:e0:d6: d4:9c:23:aa:ef:d8:3c:22:9e:5e:7e:1c:69:4b:41: 0e:d2:58:01:4f:5e:e6:3f:0f:b4:15:00:8d:8c:8e: 9a:4b:6c:fd:27:b4:32:b9:5b:60:b8:f3:b5:50:e8: 12:bb:77:fd:e5:46:70:b8:60:7c:00:ef:c2:44:25: 65:8e:ba:62:9a:96:ab:6a:0f:f9:85:87:4e:68:2e: d8:6b:fc:53:dc:dc:bc:3e:db:dc:bd:68:1d:93:bf: a4:ed:b2:a3:a7:d5:12:f8:3d:e4:42:23:8a:b6:e7: 91:62:ff:c1:e9:23:34:30:d2:de:34:bf:e8:55:25: b4:3f:bd:27:a9:1b:40:e7:9b:28:f4:38:f8:b0:ee: 42:f2:df:ae:1b:2e:17:b4:86:d7:b5:4a:45:d3:0a: bf:49:66:1f:48:d5:29:90:40:e6:d0:85:ab:d1:08: 53:cf:af:7a:d3:e3:a2:0e:c7:36:3b:37:53:f2:f3: 76:70:e1:bc:15:49:ce:21:03:ef:69:96:8d:68:55: 59:bb:f7:db:43:a1:6e:7a:40:e8:7e:2a:ef:c5:c6: 26:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:59:6A:A7:0C:32:A4:AE:4B:6C:CB:B1:40:3C:9E:E7:A3:13:0E:44 X509v3 Authority Key Identifier: keyid:69:67:01:2E:FC:A4:36:98:E8:E1:B7:24:B9:1D:FC:5E:FE:3E:7C:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/3130312e302e342e302f32322d3234203d3e203535363730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.0.4.0/22 Signature Algorithm: sha256WithRSAEncryption 39:59:c2:69:41:2c:18:cc:35:bb:a9:8b:9c:d5:24:69:43:cd: 5b:83:9b:2c:73:f2:82:e3:54:6f:11:7c:ad:a0:09:e7:3c:8c: cd:48:73:27:94:22:3d:1e:7d:2c:bd:73:fb:c9:6b:a1:0a:5f: 00:87:d7:f1:32:cb:94:9a:ab:3b:a7:a4:1f:6d:eb:d3:47:cb: 2d:e0:09:14:33:2f:0f:22:05:09:44:36:d0:b0:42:09:36:2c: c8:14:69:8d:c4:c0:73:1f:53:16:f7:8a:b7:c7:a6:ec:64:15: b8:41:12:5b:7d:6b:a4:8d:aa:9b:15:e7:ee:3a:f0:eb:60:25: 50:49:d2:09:59:dd:d4:a1:4d:ff:f4:c9:1b:ed:2e:64:48:a3: d0:48:59:38:4b:74:1c:ae:a8:33:41:bf:5a:68:8c:d4:a5:02: 32:a8:85:4c:a3:c3:18:a2:f1:4f:3b:f9:09:6a:6b:c3:b5:5e: de:c6:76:f7:33:70:0f:bc:d8:92:8d:a3:d1:b4:5a:3b:8d:4c: 95:c1:71:61:4e:20:da:21:1d:a5:6c:3f:cb:fc:81:e4:de:a5: 95:97:9b:36:99:43:a5:53:cd:51:6a:ec:fa:46:79:fe:53:a9: 5c:8c:54:71:a0:8d:f4:24:3c:83:b7:91:da:1e:b2:62:02:58: 77:13:18:63 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUR+OuVIASU1Z/n1BNNJS0yc45wZcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2NzAxMkVGQ0E0MzY5OEU4RTFCNzI0QjkxREZDNUVG RTNFN0MzRTAeFw0yNTA1MjAwMjU1MzhaFw0yNjA1MTkwMzAwMzhaMDMxMTAvBgNV BAMTKDk0NTk2QUE3MEMzMkE0QUU0QjZDQ0JCMTQwM0M5RUU3QTMxMzBFNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9EFOVg2s8FKRInW+5d41lpqlJ CcBHjr2sXyXpR8yfeQWTP1MiO6vQr9Pg1tScI6rv2Dwinl5+HGlLQQ7SWAFPXuY/ D7QVAI2MjppLbP0ntDK5W2C487VQ6BK7d/3lRnC4YHwA78JEJWWOumKalqtqD/mF h05oLthr/FPc3Lw+29y9aB2Tv6TtsqOn1RL4PeRCI4q255Fi/8HpIzQw0t40v+hV JbQ/vSepG0Dnmyj0OPiw7kLy364bLhe0hte1SkXTCr9JZh9I1SmQQObQhavRCFPP r3rT46IOxzY7N1Py83Zw4bwVSc4hA+9plo1oVVm799tDoW56QOh+Ku/FxiZpAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUlFlqpwwypK5LbMuxQDye56MTDkQwHwYDVR0j BBgwFoAUaWcBLvykNpjo4bckuR38Xv4+fD4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDZlYTdmYS05NGQyLTRkZGMtYThlNi01ZGM2MjZjMjkxZDQvMC82OTY3MDEyRUZD QTQzNjk4RThFMUI3MjRCOTFERkM1RUZFM0U3QzNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2NzAxMkVGQ0E0MzY5OEU4RTFCNzI0QjkxREZDNUVGRTNF N0MzRS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2Q2ZWE3ZmEtOTRkMi00ZGRjLWE4 ZTYtNWRjNjI2YzI5MWQ0LzAvMzEzMDMxMmUzMDJlMzQyZTMwMmYzMjMyMmQzMjM0 MjAzZDNlMjAzNTM1MzYzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZQAEMA0GCSqGSIb3DQEBCwUA A4IBAQA5WcJpQSwYzDW7qYuc1SRpQ81bg5ssc/KC41RvEXytoAnnPIzNSHMnlCI9 Hn0svXP7yWuhCl8Ah9fxMsuUmqs7p6QfbevTR8st4AkUMy8PIgUJRDbQsEIJNizI FGmNxMBzH1MW94q3x6bsZBW4QRJbfWukjaqbFefuOvDrYCVQSdIJWd3UoU3/9Mkb 7S5kSKPQSFk4S3QcrqgzQb9aaIzUpQIyqIVMo8MYovFPO/kJamvDtV7exnb3M3AP vNiSjaPRtFo7jUyVwXFhTiDaIR2lbD/L/IHk3qWVl5s2mUOlU81Rauz6Rnn+U6lc jFRxoI30JDyDt5HaHrJiAlh3Exhj -----END CERTIFICATE-----Generated at Sat Jun 7 20:32:19 2025 by rpki-client