$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32342d3234203d3e203338353234.roa File: 3131392e322e34302e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: 6IWBqrbnFGv2VbSkbJU+dtj2fTBPOSSAMjl8jYhk4E8= Subject key identifier: 0D:F0:A7:1F:14:34:BC:7C:61:B3:3C:7C:5F:D7:05:B7:12:5A:DB:E7 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 51D9CC1642B702925A1F6BA4455A5BC5BBE72A69 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32342d3234203d3e203338353234.roa Signing time: Mon 02 Jun 2025 02:02:45 +0000 ROA not before: Mon 02 Jun 2025 01:57:45 +0000 ROA not after: Mon 01 Jun 2026 02:02:45 +0000 asID: 38524 IP address blocks: 119.2.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:d9:cc:16:42:b7:02:92:5a:1f:6b:a4:45:5a:5b:c5:bb:e7:2a:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 2 01:57:45 2025 GMT Not After : Jun 1 02:02:45 2026 GMT Subject: CN=0DF0A71F1434BC7C61B33C7C5FD705B7125ADBE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:16:37:88:1a:8a:1d:16:00:d8:f9:0c:9e:61: ad:4d:60:09:f4:bb:44:7e:61:71:8b:3d:5c:5b:d1: d5:47:e9:12:35:d7:65:9a:28:1a:74:4d:43:80:47: 24:d0:77:9a:fd:c8:13:63:89:c9:b6:56:cc:46:8e: 32:b2:2e:0d:cc:df:15:09:e6:39:f8:35:76:55:bd: 20:b8:e4:8a:7f:cd:b6:5c:e5:2f:22:9c:a3:f8:11: 11:a1:b4:9c:13:fc:17:b2:aa:65:33:ce:4b:50:a1: a1:8b:df:fc:66:20:c8:76:fd:80:37:db:8a:0f:13: 59:d3:59:be:33:bc:e0:73:f3:e1:bf:65:f4:24:c0: c5:d7:c4:a3:56:11:80:fb:45:db:36:99:dc:6f:dd: a6:53:71:e8:b7:f0:09:91:16:32:71:bd:63:27:75: 68:b7:d6:18:8d:9a:da:b9:c3:f4:12:44:3f:13:25: a5:e2:eb:2e:09:9a:39:1f:6f:ff:86:8f:c4:e8:eb: a3:26:5e:fc:c3:66:72:16:04:e5:87:64:b6:3f:e4: f5:ae:2a:ea:ee:ac:1f:94:0e:44:6b:f3:d1:e3:20: cc:fb:45:15:76:5c:9f:2a:09:6a:bf:94:fb:31:58: 13:6c:64:db:4a:f7:65:b9:7d:76:a4:48:79:ed:9f: 5c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F0:A7:1F:14:34:BC:7C:61:B3:3C:7C:5F:D7:05:B7:12:5A:DB:E7 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.40.0/24 Signature Algorithm: sha256WithRSAEncryption b0:7c:b2:24:ca:fb:9b:df:48:20:d5:df:5b:67:b3:28:16:59: 6b:7a:71:2a:f6:e2:b7:7f:6a:00:24:51:44:63:75:49:63:45: 15:b3:6e:20:e8:58:2a:97:4d:12:f0:d5:ab:83:9e:66:9e:1e: 66:25:3e:ca:1b:be:2b:9f:ca:5e:1d:12:ac:9e:3b:db:3b:a2: 4e:87:63:bc:4b:b7:5d:cf:0b:1b:27:fa:09:8a:19:9c:78:3e: 3e:30:7e:b6:0d:43:62:45:03:73:a3:c8:68:e5:54:73:61:ae: f5:e1:f5:88:08:fc:a1:6f:28:e5:1b:b7:81:0a:51:34:29:68: 8d:4c:b0:1e:f8:8a:3d:7a:bf:93:a4:b0:6d:b2:af:62:f6:86: 1b:3b:ab:07:ba:1e:61:0e:d0:25:00:be:e8:ce:b1:b4:c0:12: 23:82:e9:6b:47:90:7e:8e:ca:00:f4:90:96:4b:48:23:26:9c: 27:ad:fb:ad:19:ac:02:86:1e:ce:c1:c3:df:f2:0a:fc:ae:e2: 67:39:98:dd:8c:e6:0d:7c:c2:be:33:80:bd:16:a5:7d:cb:66: 71:83:0e:2c:f2:d3:27:d5:00:dd:36:2a:e7:b6:59:db:57:14: 7c:e3:0c:65:4a:54:ef:33:1c:a4:18:99:16:b3:dc:97:be:bd: 42:e3:e5:27 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUUdnMFkK3ApJaH2ukRVpbxbvnKmkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MDIwMTU3NDVaFw0yNjA2MDEwMjAyNDVaMDMxMTAvBgNV BAMTKDBERjBBNzFGMTQzNEJDN0M2MUIzM0M3QzVGRDcwNUI3MTI1QURCRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQFjeIGoodFgDY+QyeYa1NYAn0 u0R+YXGLPVxb0dVH6RI112WaKBp0TUOARyTQd5r9yBNjicm2VsxGjjKyLg3M3xUJ 5jn4NXZVvSC45Ip/zbZc5S8inKP4ERGhtJwT/BeyqmUzzktQoaGL3/xmIMh2/YA3 24oPE1nTWb4zvOBz8+G/ZfQkwMXXxKNWEYD7Rds2mdxv3aZTcei38AmRFjJxvWMn dWi31hiNmtq5w/QSRD8TJaXi6y4Jmjkfb/+Gj8To66MmXvzDZnIWBOWHZLY/5PWu KururB+UDkRr89HjIMz7RRV2XJ8qCWq/lPsxWBNsZNtK92W5fXakSHntn1zHAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUDfCnHxQ0vHxhszx8X9cFtxJa2+cwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzMDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3AigwDQYJKoZIhvcNAQEL BQADggEBALB8siTK+5vfSCDV31tnsygWWWt6cSr24rd/agAkUURjdUljRRWzbiDo WCqXTRLw1auDnmaeHmYlPsobviufyl4dEqyeO9s7ok6HY7xLt13PCxsn+gmKGZx4 Pj4wfrYNQ2JFA3OjyGjlVHNhrvXh9YgI/KFvKOUbt4EKUTQpaI1MsB74ij16v5Ok sG2yr2L2hhs7qwe6HmEO0CUAvujOsbTAEiOC6WtHkH6OygD0kJZLSCMmnCet+60Z rAKGHs7Bw9/yCvyu4mc5mN2M5g18wr4zgL0WpX3LZnGDDizy0yfVAN02Kue2WdtX FHzjDGVKVO8zHKQYmRaz3Je+vULj5Sc= -----END CERTIFICATE-----Generated at Sat Jun 7 09:23:02 2025 by rpki-client