$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34342e302f32342d3234203d3e203338353234.roa File: 3131392e322e34342e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: svsifx8v5UkbbDPE6Ze1hR7WfAIabrcBR00jjUfmd5Y= Subject key identifier: 34:0B:18:AD:D8:95:1E:7A:37:B3:E2:D6:1E:FB:78:39:FF:E5:42:CD Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 5868DE7ADDB7EFECB966784D232408697F18F8C7 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34342e302f32342d3234203d3e203338353234.roa Signing time: Mon 02 Jun 2025 02:02:44 +0000 ROA not before: Mon 02 Jun 2025 01:57:44 +0000 ROA not after: Mon 01 Jun 2026 02:02:44 +0000 asID: 38524 IP address blocks: 119.2.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:68:de:7a:dd:b7:ef:ec:b9:66:78:4d:23:24:08:69:7f:18:f8:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 2 01:57:44 2025 GMT Not After : Jun 1 02:02:44 2026 GMT Subject: CN=340B18ADD8951E7A37B3E2D61EFB7839FFE542CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7a:6e:3d:02:46:cb:5a:a6:73:9e:1b:a9:e4: e4:45:c2:c8:7f:bf:d4:75:1b:5d:44:85:de:ef:c8: 6b:d3:63:9c:2e:cd:65:48:64:c4:b3:29:e6:76:69: 59:ee:92:af:59:22:ac:c7:11:cc:b8:a9:c0:19:c5: 5f:44:c4:57:cd:75:68:29:bd:7c:e4:00:47:5b:7a: 20:4f:bf:36:82:4b:fb:73:2e:03:c2:ed:96:d7:25: 4e:43:ec:fa:94:ee:33:6b:82:c5:dc:e8:4b:26:80: 30:f6:5e:63:68:41:e8:70:f5:83:55:37:c7:27:28: 03:94:09:b2:b4:f5:42:ad:42:00:15:f6:7e:58:09: 2b:ba:31:b9:ad:09:cf:01:67:08:44:c2:cb:a7:d9: ae:37:50:21:0f:ea:4d:c8:7e:b1:7d:83:e0:1f:4e: 21:37:09:f4:1e:0a:7e:ee:c0:40:70:b1:c4:27:16: 61:b2:af:8f:c9:55:54:fc:7a:a6:52:b7:bb:f4:ae: cf:be:84:3c:b1:8d:c3:4a:a1:75:1d:4f:c2:a4:3d: 07:7f:c3:ec:e7:3f:2e:12:5e:f9:3c:3e:63:0e:14: 0c:6a:ae:14:f0:02:b4:a9:6a:cb:aa:c1:38:43:10: dd:2d:48:61:5b:63:54:ca:7b:c2:6f:db:b1:62:8d: 28:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:0B:18:AD:D8:95:1E:7A:37:B3:E2:D6:1E:FB:78:39:FF:E5:42:CD X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34342e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.44.0/24 Signature Algorithm: sha256WithRSAEncryption b4:34:2f:16:1e:fc:a4:ee:a9:03:1d:3c:a5:aa:39:64:a5:dd: e5:72:7e:0e:aa:b7:20:5a:d4:39:0d:2c:7f:fa:32:79:5e:3d: da:de:65:c2:b4:66:77:5b:ce:60:40:0e:c0:28:f3:bf:ee:2b: 94:0b:7a:ee:2d:8e:7d:92:85:4d:41:ab:8a:26:a1:6c:77:5f: bb:80:01:fc:cc:f1:3b:77:60:83:44:08:a1:b9:fb:7d:3a:6e: bd:cf:b5:d2:5a:36:e1:c2:69:9b:7f:e3:aa:4c:3d:30:ca:f4: 88:08:85:19:59:14:8e:f3:88:ff:91:18:f3:24:7c:88:f8:50: f8:66:2a:6d:05:f1:dd:d1:93:10:04:d8:e3:07:a2:50:46:18: 42:ad:59:27:46:db:c4:8e:af:6f:85:1c:ab:d9:43:c2:4e:d6: ca:13:61:d3:fd:2c:a3:58:1b:ec:97:b8:10:91:1a:26:93:6b: 3b:e4:59:dd:ef:73:ea:6b:08:38:77:fc:d5:13:cb:d8:ef:ef: b2:ad:e0:2b:4a:e0:c5:80:f0:22:05:c5:1a:0a:7e:5a:74:23: dc:87:e5:26:3a:73:f6:20:c7:49:83:e4:7d:9c:47:cf:dd:e0: a1:93:0d:e8:4c:2e:b6:a1:18:8f:3d:ac:6f:d5:3a:f9:fd:45: 88:35:90:11 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUWGjeet237+y5ZnhNIyQIaX8Y+McwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MDIwMTU3NDRaFw0yNjA2MDEwMjAyNDRaMDMxMTAvBgNV BAMTKDM0MEIxOEFERDg5NTFFN0EzN0IzRTJENjFFRkI3ODM5RkZFNTQyQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2em49AkbLWqZznhup5ORFwsh/ v9R1G11Ehd7vyGvTY5wuzWVIZMSzKeZ2aVnukq9ZIqzHEcy4qcAZxV9ExFfNdWgp vXzkAEdbeiBPvzaCS/tzLgPC7ZbXJU5D7PqU7jNrgsXc6EsmgDD2XmNoQehw9YNV N8cnKAOUCbK09UKtQgAV9n5YCSu6MbmtCc8BZwhEwsun2a43UCEP6k3IfrF9g+Af TiE3CfQeCn7uwEBwscQnFmGyr4/JVVT8eqZSt7v0rs++hDyxjcNKoXUdT8KkPQd/ w+znPy4SXvk8PmMOFAxqrhTwArSpasuqwThDEN0tSGFbY1TKe8Jv27FijSj/AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUNAsYrdiVHno3s+LWHvt4Of/lQs0wHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzNDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3AiwwDQYJKoZIhvcNAQEL BQADggEBALQ0LxYe/KTuqQMdPKWqOWSl3eVyfg6qtyBa1DkNLH/6MnlePdreZcK0 ZndbzmBADsAo87/uK5QLeu4tjn2ShU1Bq4omoWx3X7uAAfzM8Tt3YINECKG5+306 br3PtdJaNuHCaZt/46pMPTDK9IgIhRlZFI7ziP+RGPMkfIj4UPhmKm0F8d3RkxAE 2OMHolBGGEKtWSdG28SOr2+FHKvZQ8JO1soTYdP9LKNYG+yXuBCRGiaTazvkWd3v c+prCDh3/NUTy9jv77Kt4CtK4MWA8CIFxRoKflp0I9yH5SY6c/Ygx0mD5H2cR8/d 4KGTDehMLrahGI89rG/VOvn9RYg1kBE= -----END CERTIFICATE-----Generated at Sat Jun 7 09:20:48 2025 by rpki-client