$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32312d3231203d3e203338353234.roa File: 3131392e322e34302e302f32312d3231203d3e203338353234.roa (raw, json) Hash identifier: 11eUnnhPudsVdedj0KoE/yOk1FVIukJsv3UJ+ROwxIo= Subject key identifier: 41:31:03:68:96:46:DB:1A:FE:F1:37:F1:54:83:77:92:91:B2:0D:02 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 3D545141FC82A844DAA98B28EF3BBCA0B6B2A58D Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32312d3231203d3e203338353234.roa Signing time: Mon 02 Jun 2025 02:02:44 +0000 ROA not before: Mon 02 Jun 2025 01:57:44 +0000 ROA not after: Mon 01 Jun 2026 02:02:44 +0000 asID: 38524 IP address blocks: 119.2.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:54:51:41:fc:82:a8:44:da:a9:8b:28:ef:3b:bc:a0:b6:b2:a5:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 2 01:57:44 2025 GMT Not After : Jun 1 02:02:44 2026 GMT Subject: CN=413103689646DB1AFEF137F15483779291B20D02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9d:a9:0b:8d:85:a4:86:12:cb:77:e5:09:06: a1:5e:5f:bc:1a:f9:0c:0b:6f:f9:9b:69:88:48:c2: b1:56:6d:02:fa:2d:a0:3e:3a:00:55:a5:b4:6c:50: 24:a6:b9:9d:d6:cc:d8:b7:a8:da:b6:77:f3:24:e5: f8:40:73:48:fe:04:f2:95:e3:4e:c2:42:ee:e9:57: 05:a8:f2:5f:21:13:b3:6f:f3:22:39:48:4b:02:9a: 24:fa:79:b3:49:77:f7:5e:4c:77:09:8d:95:81:eb: b5:80:70:ba:3f:d3:00:bd:b1:70:da:dd:79:6a:02: 10:e2:dd:dc:1a:a0:d3:11:d3:6e:c9:9f:6a:8e:bd: 34:28:60:3c:0e:d4:c0:fe:a0:cb:f2:ee:17:07:b6: 76:43:6c:82:9f:f2:e0:37:83:f7:ea:3e:9d:ae:c3: e7:91:e7:f2:7a:3f:c7:54:04:29:18:c4:ab:bd:66: 8f:9b:b0:da:66:45:b7:0c:4d:1a:ed:9e:10:28:70: 9a:fa:95:3f:b9:d0:d5:c3:50:4e:c7:25:6d:40:be: 4b:57:a3:1c:ea:33:15:51:d4:d4:8e:68:cb:53:87: 23:79:eb:6b:da:4f:5a:88:47:83:42:c6:70:ee:c3: df:37:7e:dd:5b:3c:1b:55:c7:1d:7e:b3:71:b9:db: f9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:31:03:68:96:46:DB:1A:FE:F1:37:F1:54:83:77:92:91:B2:0D:02 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32312d3231203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.40.0/21 Signature Algorithm: sha256WithRSAEncryption 08:2f:cf:fe:f5:59:3b:47:1e:06:0c:4a:43:99:2d:68:19:2b: 20:4a:8d:52:4e:51:8b:c1:99:6e:93:65:0f:65:4a:4f:4d:a7: 22:82:47:d2:93:0a:d2:54:23:8f:43:f6:ff:b2:55:d0:66:92: 3b:b7:9d:11:ee:c7:4b:b4:ac:d1:e0:0c:bb:76:95:41:49:07: ca:34:7f:0a:3f:da:5c:72:39:97:86:a9:32:1c:f6:53:96:83: 04:d1:33:28:81:e3:da:93:6c:35:2a:b4:bd:72:b0:c2:7b:95: 03:8f:53:e0:1a:42:e3:89:07:c8:53:b3:e7:95:70:f4:a8:ee: 12:77:da:eb:e2:59:9b:1d:d7:88:29:59:4c:59:be:72:17:45: 25:0f:e7:e7:7f:3b:d8:5f:5d:7d:10:c7:d4:bf:2f:ce:cf:dd: d0:47:3e:46:ec:0a:e7:fd:85:41:80:27:fb:fe:05:f8:a0:ba: f1:a4:d5:16:75:a2:a7:91:93:df:f6:c6:9f:d3:18:59:ad:b7: 93:c5:7c:5d:96:7f:16:f5:c1:e4:e0:b1:5b:97:18:92:8d:86: 04:2a:e3:7e:51:74:95:8d:bd:2c:2f:d3:3e:0f:8d:bd:57:8f: fc:49:69:ca:43:33:58:b3:e7:ab:9e:a0:48:e6:aa:aa:92:fa: 7b:a8:fe:39 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUPVRRQfyCqETaqYso7zu8oLaypY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MDIwMTU3NDRaFw0yNjA2MDEwMjAyNDRaMDMxMTAvBgNV BAMTKDQxMzEwMzY4OTY0NkRCMUFGRUYxMzdGMTU0ODM3NzkyOTFCMjBEMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0nakLjYWkhhLLd+UJBqFeX7wa +QwLb/mbaYhIwrFWbQL6LaA+OgBVpbRsUCSmuZ3WzNi3qNq2d/Mk5fhAc0j+BPKV 407CQu7pVwWo8l8hE7Nv8yI5SEsCmiT6ebNJd/deTHcJjZWB67WAcLo/0wC9sXDa 3XlqAhDi3dwaoNMR027Jn2qOvTQoYDwO1MD+oMvy7hcHtnZDbIKf8uA3g/fqPp2u w+eR5/J6P8dUBCkYxKu9Zo+bsNpmRbcMTRrtnhAocJr6lT+50NXDUE7HJW1AvktX oxzqMxVR1NSOaMtThyN562vaT1qIR4NCxnDuw983ft1bPBtVxx1+s3G52/lVAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUQTEDaJZG2xr+8TfxVIN3kpGyDQIwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzMDJlMzAyZjMyMzEyZDMy MzEyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN3AigwDQYJKoZIhvcNAQEL BQADggEBAAgvz/71WTtHHgYMSkOZLWgZKyBKjVJOUYvBmW6TZQ9lSk9NpyKCR9KT CtJUI49D9v+yVdBmkju3nRHux0u0rNHgDLt2lUFJB8o0fwo/2lxyOZeGqTIc9lOW gwTRMyiB49qTbDUqtL1ysMJ7lQOPU+AaQuOJB8hTs+eVcPSo7hJ32uviWZsd14gp WUxZvnIXRSUP5+d/O9hfXX0Qx9S/L87P3dBHPkbsCuf9hUGAJ/v+BfiguvGk1RZ1 oqeRk9/2xp/TGFmtt5PFfF2Wfxb1weTgsVuXGJKNhgQq435RdJWNvSwv0z4Pjb1X j/xJacpDM1iz56ueoEjmqqqS+nuo/jk= -----END CERTIFICATE-----Generated at Sat Jun 7 09:19:18 2025 by rpki-client