$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34322e302f32342d3234203d3e203338353234.roa File: 3131392e322e34322e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: jXfiDmQJzIrl4FDKOT2oabE9Sc71DRAGdheKidR/aTc= Subject key identifier: A8:F3:C7:35:36:45:AD:1F:27:93:26:8C:AA:A0:CF:7C:90:2D:8B:A1 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 216F73C360C5B17A2DECCA25C95B50EC338C465F Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34322e302f32342d3234203d3e203338353234.roa Signing time: Mon 02 Jun 2025 02:02:45 +0000 ROA not before: Mon 02 Jun 2025 01:57:45 +0000 ROA not after: Mon 01 Jun 2026 02:02:45 +0000 asID: 38524 IP address blocks: 119.2.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:6f:73:c3:60:c5:b1:7a:2d:ec:ca:25:c9:5b:50:ec:33:8c:46:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 2 01:57:45 2025 GMT Not After : Jun 1 02:02:45 2026 GMT Subject: CN=A8F3C7353645AD1F2793268CAAA0CF7C902D8BA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f6:b0:29:71:aa:25:df:c9:b6:76:10:e9:47: 60:39:c9:35:f4:ac:38:13:03:24:38:1b:e5:f2:99: 3c:63:7e:4f:f5:e8:c7:a3:00:1b:43:d2:56:43:77: 90:09:9c:5b:2e:4c:43:1a:01:67:71:40:6e:10:e0: 56:52:ad:9e:d8:c7:d4:33:3f:6a:44:20:51:32:03: 1c:b4:4e:ce:d8:6e:5e:e6:f3:28:89:e9:52:bd:b2: 2a:9f:c5:96:92:d9:1d:87:c9:42:43:cf:3c:64:ca: a8:f9:c2:4f:e8:fe:8f:24:c3:f5:00:53:bd:cd:a8: 02:2d:58:f2:89:b4:77:fa:9b:07:1d:04:bf:c3:98: f4:b3:50:3f:29:22:2a:77:0f:28:e2:87:53:46:19: 0d:ee:55:35:72:e0:13:10:c6:ac:39:88:d0:fd:bf: ba:ca:ee:aa:3e:1c:58:0c:a9:52:c4:d6:ff:b8:07: 97:7e:fc:2f:1c:05:d2:d1:81:9d:26:39:40:75:c5: 84:7e:7e:03:c6:47:2f:40:21:c5:0c:2e:1c:71:fe: 4d:7b:5f:a2:9d:44:9d:07:f3:c3:6d:5d:3b:ab:e3: 39:de:27:fe:22:f8:d3:68:48:12:82:1a:75:d8:e5: d8:e5:fb:42:c9:37:52:82:ff:6c:cd:d5:ad:bd:73: de:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:F3:C7:35:36:45:AD:1F:27:93:26:8C:AA:A0:CF:7C:90:2D:8B:A1 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34322e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.42.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:57:55:95:25:8e:4c:e3:b9:38:d6:8b:53:ab:ba:33:8e:84: 8c:79:07:49:61:f4:51:4a:b7:86:e9:05:14:fc:68:5c:c0:fc: 84:d8:c0:78:12:d1:92:5d:94:bf:8e:1e:bf:14:8a:62:c1:03: 27:8d:35:4e:24:4a:cf:5d:55:de:bb:85:3e:07:6a:8a:8b:14: 9b:50:77:9c:d6:c8:95:e8:c9:d8:e2:56:38:7b:f8:ab:04:42: e3:79:71:79:c6:a9:68:31:ba:1f:b5:b0:8c:dc:30:58:ec:d6: 31:69:c9:2e:c6:de:04:ec:8b:ad:81:7e:4d:19:53:e2:b7:c8: 98:96:e3:9d:91:a1:8c:d0:64:60:d7:29:c0:bf:38:a0:ec:c1: 01:36:74:df:39:a2:bb:0b:13:db:6a:f5:87:0c:74:f2:e6:17: 7d:5d:ba:b9:d6:d4:83:98:56:4c:c1:02:16:c6:21:58:2d:d0: 93:d8:c4:db:1b:77:13:8d:64:bc:cf:e2:b5:9c:d6:ae:83:6d: b9:7c:7c:c3:68:fa:99:11:2c:09:cf:4c:bd:da:04:70:96:21: 57:88:ab:ce:19:95:99:8c:a0:b2:c1:26:f1:4e:94:4a:86:75: 6a:48:35:03:d2:cf:87:e9:18:9f:9a:7d:c2:98:3d:47:af:ac: b4:da:30:54 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUIW9zw2DFsXot7MolyVtQ7DOMRl8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MDIwMTU3NDVaFw0yNjA2MDEwMjAyNDVaMDMxMTAvBgNV BAMTKEE4RjNDNzM1MzY0NUFEMUYyNzkzMjY4Q0FBQTBDRjdDOTAyRDhCQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC69rApcaol38m2dhDpR2A5yTX0 rDgTAyQ4G+XymTxjfk/16MejABtD0lZDd5AJnFsuTEMaAWdxQG4Q4FZSrZ7Yx9Qz P2pEIFEyAxy0Ts7Ybl7m8yiJ6VK9siqfxZaS2R2HyUJDzzxkyqj5wk/o/o8kw/UA U73NqAItWPKJtHf6mwcdBL/DmPSzUD8pIip3Dyjih1NGGQ3uVTVy4BMQxqw5iND9 v7rK7qo+HFgMqVLE1v+4B5d+/C8cBdLRgZ0mOUB1xYR+fgPGRy9AIcUMLhxx/k17 X6KdRJ0H88NtXTur4zneJ/4i+NNoSBKCGnXY5djl+0LJN1KC/2zN1a29c97JAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUqPPHNTZFrR8nkyaMqqDPfJAti6EwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzMjJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3AiowDQYJKoZIhvcNAQEL BQADggEBAFpXVZUljkzjuTjWi1OrujOOhIx5B0lh9FFKt4bpBRT8aFzA/ITYwHgS 0ZJdlL+OHr8UimLBAyeNNU4kSs9dVd67hT4HaoqLFJtQd5zWyJXoydjiVjh7+KsE QuN5cXnGqWgxuh+1sIzcMFjs1jFpyS7G3gTsi62Bfk0ZU+K3yJiW452RoYzQZGDX KcC/OKDswQE2dN85orsLE9tq9YcMdPLmF31durnW1IOYVkzBAhbGIVgt0JPYxNsb dxONZLzP4rWc1q6Dbbl8fMNo+pkRLAnPTL3aBHCWIVeIq84ZlZmMoLLBJvFOlEqG dWpINQPSz4fpGJ+afcKYPUevrLTaMFQ= -----END CERTIFICATE-----Generated at Sat Jun 7 09:26:07 2025 by rpki-client