$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34352e302f32342d3234203d3e203338353234.roa File: 3131392e322e34352e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: WAact7AtaUqkKb420POGJgAAGUtd4M/Hmjz+1trokpA= Subject key identifier: CC:ED:A9:DB:07:19:F5:A9:F8:B0:59:20:70:0B:AC:CC:3B:85:FE:32 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 4FC18BD96ECA47C23D0DB3832F5A4C7005CFA1C1 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34352e302f32342d3234203d3e203338353234.roa Signing time: Mon 02 Jun 2025 02:02:45 +0000 ROA not before: Mon 02 Jun 2025 01:57:45 +0000 ROA not after: Mon 01 Jun 2026 02:02:45 +0000 asID: 38524 IP address blocks: 119.2.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:c1:8b:d9:6e:ca:47:c2:3d:0d:b3:83:2f:5a:4c:70:05:cf:a1:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 2 01:57:45 2025 GMT Not After : Jun 1 02:02:45 2026 GMT Subject: CN=CCEDA9DB0719F5A9F8B05920700BACCC3B85FE32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:71:12:ce:b4:35:39:a9:c0:40:f4:b7:c0:ba: 3d:4a:0f:d0:42:19:51:e6:c6:4a:d2:44:cc:16:ce: 30:08:f9:56:e9:07:29:b7:0d:67:00:23:98:e0:e2: 39:5d:1e:17:5f:bc:b3:6f:e8:36:a2:3a:f3:00:20: c3:f0:cf:56:d2:9b:0e:fa:9c:d5:f3:dc:08:5d:31: 9e:32:d5:02:f2:2d:e6:ff:b5:3b:00:80:f3:56:11: 60:37:cd:66:3c:9c:28:2a:a1:7c:40:2d:53:f4:69: b2:1d:d2:b0:fd:82:7a:36:0f:c7:7a:fc:c1:05:a5: c1:a4:8d:a7:be:00:01:c4:21:6d:a5:3e:1d:03:15: 52:6d:28:e6:a2:00:20:17:c0:2d:26:0e:10:1b:b8: 70:89:96:30:16:7a:48:11:4f:cf:4a:6e:26:70:25: 8a:6b:03:aa:0b:52:91:43:ef:7e:47:96:3c:dc:1e: 83:cd:be:24:a8:d8:61:0d:ac:21:c6:c6:d0:c8:ea: 6f:30:7b:55:72:3c:f2:01:28:38:ed:9b:ac:b7:69: c7:c9:db:9d:b3:a5:3a:82:9d:6e:76:dd:c6:9b:e4: 28:93:31:06:35:0a:f8:20:e9:79:c8:ac:db:0a:10: 95:ae:07:3e:86:cc:f1:1d:80:10:65:52:d9:cf:15: 88:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:ED:A9:DB:07:19:F5:A9:F8:B0:59:20:70:0B:AC:CC:3B:85:FE:32 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34352e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.45.0/24 Signature Algorithm: sha256WithRSAEncryption 29:df:7f:82:ec:be:c4:f5:7c:c6:51:ea:90:95:19:3f:d1:a0: bb:e7:ea:ff:f4:01:89:61:d8:b4:01:5a:8b:f3:f4:2b:eb:74: a7:75:93:a5:9f:d3:62:37:79:0c:74:9b:c1:b2:a0:f3:96:ff: 4b:98:49:0c:2c:6e:d3:08:27:c8:42:60:5a:83:88:2e:92:f7: bb:43:a1:d9:b6:2c:48:b6:07:ca:05:a6:d3:9a:ba:db:06:ee: e3:0a:c8:55:36:9d:39:6b:e5:ac:64:27:7a:6b:45:4c:db:63: 9a:26:97:ed:03:36:db:cc:21:42:33:6c:c8:e3:aa:df:af:16: ce:f9:52:a7:a8:1e:dd:0e:9c:c6:fb:72:e5:da:1d:cd:20:f7: 68:f2:1e:e2:55:4e:71:44:ba:71:74:da:09:b9:b2:f9:94:f7: 33:75:88:a5:07:f2:f7:5e:d5:59:d0:7f:ba:e3:21:89:77:49: 03:68:ea:60:af:08:0a:9a:12:fc:1d:b7:98:ca:f8:f6:ec:cf: cf:36:83:b7:35:a3:42:87:dd:5c:d7:ef:7a:0c:6a:f9:76:51: 74:14:b5:60:7f:44:00:2a:0c:ae:b7:85:20:77:2c:ef:e7:8b: 5a:8b:ba:bb:99:fa:2e:ca:07:53:cf:40:45:72:b4:97:8f:c9: 5d:ca:da:10 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUT8GL2W7KR8I9DbODL1pMcAXPocEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MDIwMTU3NDVaFw0yNjA2MDEwMjAyNDVaMDMxMTAvBgNV BAMTKENDRURBOURCMDcxOUY1QTlGOEIwNTkyMDcwMEJBQ0NDM0I4NUZFMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmcRLOtDU5qcBA9LfAuj1KD9BC GVHmxkrSRMwWzjAI+VbpBym3DWcAI5jg4jldHhdfvLNv6DaiOvMAIMPwz1bSmw76 nNXz3AhdMZ4y1QLyLeb/tTsAgPNWEWA3zWY8nCgqoXxALVP0abId0rD9gno2D8d6 /MEFpcGkjae+AAHEIW2lPh0DFVJtKOaiACAXwC0mDhAbuHCJljAWekgRT89KbiZw JYprA6oLUpFD735HljzcHoPNviSo2GENrCHGxtDI6m8we1VyPPIBKDjtm6y3acfJ 252zpTqCnW523cab5CiTMQY1Cvgg6XnIrNsKEJWuBz6GzPEdgBBlUtnPFYg9AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUzO2p2wcZ9an4sFkgcAuszDuF/jIwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzNTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3Ai0wDQYJKoZIhvcNAQEL BQADggEBACnff4LsvsT1fMZR6pCVGT/RoLvn6v/0AYlh2LQBWovz9CvrdKd1k6Wf 02I3eQx0m8GyoPOW/0uYSQwsbtMIJ8hCYFqDiC6S97tDodm2LEi2B8oFptOautsG 7uMKyFU2nTlr5axkJ3prRUzbY5oml+0DNtvMIUIzbMjjqt+vFs75UqeoHt0OnMb7 cuXaHc0g92jyHuJVTnFEunF02gm5svmU9zN1iKUH8vde1VnQf7rjIYl3SQNo6mCv CAqaEvwdt5jK+Pbsz882g7c1o0KH3VzX73oMavl2UXQUtWB/RAAqDK63hSB3LO/n i1qLuruZ+i7KB1PPQEVytJePyV3K2hA= -----END CERTIFICATE-----Generated at Sat Jun 7 09:24:56 2025 by rpki-client