$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34332e302f32342d3234203d3e203338353234.roa File: 3131392e322e34332e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: OTIXPa2T16uoMP7MuZ/jJlXgb4n0hJkRQXWeNUk7E/c= Subject key identifier: DE:90:FC:FA:29:A9:3A:DF:65:AD:2A:AC:E6:8D:46:09:FD:2A:16:43 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 4A5A4640483A60AAA86BBD321AC584F8986A0D37 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34332e302f32342d3234203d3e203338353234.roa Signing time: Mon 02 Jun 2025 02:02:44 +0000 ROA not before: Mon 02 Jun 2025 01:57:44 +0000 ROA not after: Mon 01 Jun 2026 02:02:44 +0000 asID: 38524 IP address blocks: 119.2.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:5a:46:40:48:3a:60:aa:a8:6b:bd:32:1a:c5:84:f8:98:6a:0d:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 2 01:57:44 2025 GMT Not After : Jun 1 02:02:44 2026 GMT Subject: CN=DE90FCFA29A93ADF65AD2AACE68D4609FD2A1643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f2:fb:78:66:8f:bc:e8:67:e2:d4:ec:b9:82: 0e:4f:8f:71:0d:08:b0:c2:d8:47:22:67:dd:4f:fe: 01:b8:1c:38:c8:16:a1:c4:20:51:a6:10:37:87:fa: 4e:ac:20:48:72:54:2f:ca:87:be:8b:3c:75:2c:25: c0:a0:c5:de:7a:a0:e3:0e:b2:ed:13:bf:86:fe:95: 60:8f:a8:cf:c3:c2:cb:bc:7c:1c:cd:1a:b7:02:33: e3:f0:bf:8d:02:9f:54:f4:aa:3d:5e:ac:d7:47:d5: 4f:ad:56:5d:df:44:a4:97:9d:bb:e2:77:7a:b2:88: e8:73:da:26:89:d6:6a:ab:0c:8f:af:11:a3:4c:85: 4e:c9:76:7c:95:c2:d0:46:c7:d6:cd:2c:ef:86:4f: b0:52:7a:d8:1d:30:aa:b0:88:e8:43:4c:c8:77:19: 81:fd:10:c4:6c:c6:a7:09:8b:a9:3a:56:db:83:1f: 26:bc:77:61:0e:b2:ce:4e:33:f9:16:49:14:cc:41: 3f:ab:23:27:97:37:01:e6:4f:93:ff:07:d5:21:cd: fb:72:b6:3f:aa:98:6a:64:67:ec:a6:1c:8f:d7:3a: 5a:22:3e:d3:97:c9:c0:59:ae:64:bd:19:1d:f5:b2: 50:6c:8f:ae:e6:f4:b9:08:2a:eb:ba:4b:55:98:ae: 8f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:90:FC:FA:29:A9:3A:DF:65:AD:2A:AC:E6:8D:46:09:FD:2A:16:43 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34332e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.43.0/24 Signature Algorithm: sha256WithRSAEncryption 03:39:24:2c:f9:46:a3:cb:a3:ef:80:d5:15:18:06:17:a3:e9: b2:74:00:6b:b3:77:b1:2d:9b:ca:fd:a5:64:c9:22:ed:ba:7a: 4e:f5:b1:a8:76:55:f7:d2:5b:d6:a5:b6:d9:d1:6a:41:fd:81: 00:7e:d0:70:05:9a:86:24:a1:37:12:d1:81:f6:e3:e9:f2:5e: 5a:25:9c:64:a5:20:f2:5e:19:48:c7:50:1f:7f:39:37:4b:8c: a8:49:a8:ae:93:89:25:66:05:c8:e9:b6:58:f7:ce:c5:85:4d: 7f:2e:92:49:df:86:41:3b:5d:7a:46:62:34:04:e0:a5:ee:3c: 39:34:39:f4:9b:40:55:ee:8f:ed:e4:77:fc:4d:2a:e0:88:e8: 2e:3a:eb:3f:91:45:b3:b4:99:c3:68:28:ff:3e:bc:e4:8b:f0: 30:48:15:01:a3:eb:c0:1a:28:ad:ac:12:5d:e0:35:41:af:34: 4b:2d:07:83:1c:fe:6b:89:19:fc:44:33:c3:4a:aa:26:a5:65: c2:f7:d0:17:9a:cd:41:8a:1a:51:68:fc:9e:f0:b7:45:c5:35: 75:5f:bc:43:ca:7e:b6:ee:e7:e3:93:ea:c6:5b:f8:83:ac:98: e1:d3:79:ef:3c:8a:b2:4f:6c:12:02:2e:5f:4d:f0:cb:11:da: 11:7f:9a:7f -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUSlpGQEg6YKqoa70yGsWE+JhqDTcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MDIwMTU3NDRaFw0yNjA2MDEwMjAyNDRaMDMxMTAvBgNV BAMTKERFOTBGQ0ZBMjlBOTNBREY2NUFEMkFBQ0U2OEQ0NjA5RkQyQTE2NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF8vt4Zo+86Gfi1Oy5gg5Pj3EN CLDC2EciZ91P/gG4HDjIFqHEIFGmEDeH+k6sIEhyVC/Kh76LPHUsJcCgxd56oOMO su0Tv4b+lWCPqM/Dwsu8fBzNGrcCM+Pwv40Cn1T0qj1erNdH1U+tVl3fRKSXnbvi d3qyiOhz2iaJ1mqrDI+vEaNMhU7JdnyVwtBGx9bNLO+GT7BSetgdMKqwiOhDTMh3 GYH9EMRsxqcJi6k6VtuDHya8d2EOss5OM/kWSRTMQT+rIyeXNwHmT5P/B9Uhzfty tj+qmGpkZ+ymHI/XOloiPtOXycBZrmS9GR31slBsj67m9LkIKuu6S1WYro+5AgMB AAGjggItMIICKTAdBgNVHQ4EFgQU3pD8+impOt9lrSqs5o1GCf0qFkMwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzMzJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3AiswDQYJKoZIhvcNAQEL BQADggEBAAM5JCz5RqPLo++A1RUYBhej6bJ0AGuzd7Etm8r9pWTJIu26ek71sah2 VffSW9alttnRakH9gQB+0HAFmoYkoTcS0YH24+nyXlolnGSlIPJeGUjHUB9/OTdL jKhJqK6TiSVmBcjptlj3zsWFTX8ukknfhkE7XXpGYjQE4KXuPDk0OfSbQFXuj+3k d/xNKuCI6C466z+RRbO0mcNoKP8+vOSL8DBIFQGj68AaKK2sEl3gNUGvNEstB4Mc /muJGfxEM8NKqialZcL30BeazUGKGlFo/J7wt0XFNXVfvEPKfrbu5+OT6sZb+IOs mOHTee88irJPbBICLl9N8MsR2hF/mn8= -----END CERTIFICATE-----Generated at Sat Jun 7 09:23:07 2025 by rpki-client