$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34312e302f32342d3234203d3e203338353234.roa File: 3131392e322e34312e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: mMgmZKL6YYtb7OElR/TrnDAnFqAGblqoRUqW80kEUUw= Subject key identifier: D6:73:AA:F5:66:66:17:74:22:BB:F3:F4:00:B1:3F:6B:81:C2:A3:DE Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 47FBDC835BB95245D58C62FE28EA6570A552961A Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34312e302f32342d3234203d3e203338353234.roa Signing time: Mon 02 Jun 2025 02:02:46 +0000 ROA not before: Mon 02 Jun 2025 01:57:46 +0000 ROA not after: Mon 01 Jun 2026 02:02:46 +0000 asID: 38524 IP address blocks: 119.2.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:fb:dc:83:5b:b9:52:45:d5:8c:62:fe:28:ea:65:70:a5:52:96:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 2 01:57:46 2025 GMT Not After : Jun 1 02:02:46 2026 GMT Subject: CN=D673AAF56666177422BBF3F400B13F6B81C2A3DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:88:62:98:78:1c:98:ec:94:02:37:41:ae:9e: 88:8f:08:79:36:eb:e0:c1:d9:26:86:8f:5e:25:b6: 44:5d:24:5a:92:a5:68:d2:d9:4a:d5:10:60:d3:dc: df:53:fa:e1:16:70:6e:33:ab:d8:86:84:49:01:08: 4a:8a:b2:99:18:5d:ad:14:0a:f4:18:57:11:b9:00: 64:b4:39:fa:e2:fe:d6:56:eb:0c:c3:63:d2:f4:d9: 9c:6f:d4:b2:27:1d:24:ce:1c:16:2f:13:ae:fd:82: ce:c2:d1:1f:4b:a3:b1:0f:06:1d:db:e5:d6:02:3e: a4:6a:88:bc:7c:69:b7:b4:18:4c:1d:43:89:a7:39: 66:ad:87:9f:16:78:de:7c:92:74:6b:a8:1d:42:11: 1b:f0:2c:cf:c6:48:46:16:07:8b:92:31:48:f2:b0: 27:0c:b9:85:66:39:64:a2:d4:54:ff:ba:27:9a:1b: 3a:98:2d:83:0a:c8:d7:81:4d:94:e2:43:aa:46:39: 77:8c:86:2c:57:16:9a:30:c2:4b:9e:48:57:68:e8: 9f:6c:7b:b2:0f:5f:2b:e6:0b:ee:3a:b8:10:5e:4d: 05:b0:dc:32:9e:29:d4:9a:c9:10:b8:d3:68:77:6d: ef:dd:cb:cc:16:fd:a9:b6:a0:b6:a1:eb:62:23:a5: 26:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:73:AA:F5:66:66:17:74:22:BB:F3:F4:00:B1:3F:6B:81:C2:A3:DE X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34312e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.41.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:1b:66:d2:2a:15:6d:ce:cd:9b:40:95:f7:36:57:1b:30:67: ab:19:9c:78:fc:99:2a:e6:2a:04:39:a7:95:2b:45:60:c4:0c: 35:0e:6a:4d:47:d1:78:64:22:d5:b2:cd:13:be:5b:11:6e:4e: 64:ec:47:de:bf:72:7f:34:bb:16:c7:2f:05:83:83:10:a5:83: 41:e0:2e:32:09:8f:a3:85:08:6c:2b:ed:bb:23:25:c4:c8:0d: 6d:06:a9:91:5d:6f:b0:a9:89:7f:ed:22:22:71:72:66:83:44: d5:90:b1:91:1f:e2:6c:45:0c:41:13:32:5c:c5:2e:3c:8a:4f: 1a:31:26:a6:7f:69:5c:23:39:bf:46:cd:1d:8e:9a:70:3f:e8: 46:85:c5:63:f5:da:66:40:f2:69:4a:f0:ad:7c:e0:d6:96:1d: 85:a1:2f:ca:5f:a7:f2:3a:5a:db:39:9d:65:47:d3:bd:7e:a5: 41:54:fe:78:f2:62:19:b8:77:ff:3e:0f:f5:de:b5:02:b4:98: 0a:fc:1f:6c:74:bf:96:8a:82:80:97:e4:48:71:dd:cc:79:a9: 41:82:b9:c7:8e:6a:7e:b9:cf:b5:d0:49:dc:34:d4:bd:62:f1: c6:b8:92:83:2f:66:c9:f9:93:f5:8f:55:6d:a8:77:31:43:42: b1:d6:a3:0d -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUR/vcg1u5UkXVjGL+KOplcKVSlhowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MDIwMTU3NDZaFw0yNjA2MDEwMjAyNDZaMDMxMTAvBgNV BAMTKEQ2NzNBQUY1NjY2NjE3NzQyMkJCRjNGNDAwQjEzRjZCODFDMkEzREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpiGKYeByY7JQCN0GunoiPCHk2 6+DB2SaGj14ltkRdJFqSpWjS2UrVEGDT3N9T+uEWcG4zq9iGhEkBCEqKspkYXa0U CvQYVxG5AGS0Ofri/tZW6wzDY9L02Zxv1LInHSTOHBYvE679gs7C0R9Lo7EPBh3b 5dYCPqRqiLx8abe0GEwdQ4mnOWath58WeN58knRrqB1CERvwLM/GSEYWB4uSMUjy sCcMuYVmOWSi1FT/uieaGzqYLYMKyNeBTZTiQ6pGOXeMhixXFpowwkueSFdo6J9s e7IPXyvmC+46uBBeTQWw3DKeKdSayRC402h3be/dy8wW/am2oLah62IjpSbZAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU1nOq9WZmF3Qiu/P0ALE/a4HCo94wHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzMTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3AikwDQYJKoZIhvcNAQEL BQADggEBAH0bZtIqFW3OzZtAlfc2VxswZ6sZnHj8mSrmKgQ5p5UrRWDEDDUOak1H 0XhkItWyzRO+WxFuTmTsR96/cn80uxbHLwWDgxClg0HgLjIJj6OFCGwr7bsjJcTI DW0GqZFdb7CpiX/tIiJxcmaDRNWQsZEf4mxFDEETMlzFLjyKTxoxJqZ/aVwjOb9G zR2OmnA/6EaFxWP12mZA8mlK8K184NaWHYWhL8pfp/I6Wts5nWVH071+pUFU/njy Yhm4d/8+D/XetQK0mAr8H2x0v5aKgoCX5Ehx3cx5qUGCuceOan65z7XQSdw01L1i 8ca4koMvZsn5k/WPVW2odzFDQrHWow0= -----END CERTIFICATE-----Generated at Sat Jun 7 09:24:48 2025 by rpki-client