$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34362e302f32342d3234203d3e203338353234.roa File: 3131392e322e34362e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: CeIJb45PIO4gsLdNlRrSq24DWXD/y5ho+vPwThXN9qg= Subject key identifier: 42:D7:8D:7D:FB:E1:0F:E6:6F:7F:C3:A3:41:4F:35:25:AA:17:2F:8A Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 460972B3E0F4C681D7F4A430D2190465CD55A457 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34362e302f32342d3234203d3e203338353234.roa Signing time: Mon 02 Jun 2025 02:02:47 +0000 ROA not before: Mon 02 Jun 2025 01:57:47 +0000 ROA not after: Mon 01 Jun 2026 02:02:47 +0000 asID: 38524 IP address blocks: 119.2.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:09:72:b3:e0:f4:c6:81:d7:f4:a4:30:d2:19:04:65:cd:55:a4:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 2 01:57:47 2025 GMT Not After : Jun 1 02:02:47 2026 GMT Subject: CN=42D78D7DFBE10FE66F7FC3A3414F3525AA172F8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b7:b5:d9:eb:c9:ce:b0:80:94:e4:79:46:7f: fd:d2:14:f1:5b:ee:89:b0:c1:fd:64:63:6d:78:f1: da:48:8a:22:66:48:88:88:33:37:bd:da:20:ac:78: 24:f2:e2:b0:2b:46:6a:58:ec:ba:b3:c3:ca:09:39: 46:1d:37:67:5e:36:b3:3b:5c:36:d4:17:fa:5d:03: 42:3b:d1:bd:0d:ef:56:fb:46:94:b5:5f:80:68:2a: a6:8b:05:29:79:39:49:d9:55:ce:a3:0f:06:53:3e: 09:c7:9c:5c:da:38:1e:9c:a2:67:a9:4c:09:99:60: 97:81:e8:59:87:1d:25:2b:b3:2b:eb:15:51:90:f7: 84:d1:11:15:f7:a5:47:27:87:57:80:d0:7f:1d:3c: 26:45:ba:49:b1:03:94:87:39:c1:99:f3:90:9c:11: ad:c9:dc:ee:b5:5c:08:83:39:1d:57:3b:7c:dc:f7: ec:4f:78:6f:0a:26:db:dd:42:36:54:14:d9:ac:b7: f5:56:3d:55:e7:54:19:f2:ea:19:94:2a:37:49:10: 90:07:e4:ca:01:87:5f:47:a8:89:ab:59:7a:57:1d: 54:dc:07:fa:54:26:85:d7:ec:c8:17:54:56:31:ea: e2:64:9a:9a:28:d8:0a:5e:62:f7:de:cc:e1:47:b5: 6f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:D7:8D:7D:FB:E1:0F:E6:6F:7F:C3:A3:41:4F:35:25:AA:17:2F:8A X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34362e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.46.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:4c:ab:61:86:d2:cd:8a:8c:d2:85:ed:41:99:61:c8:c7:3b: 31:c3:a3:33:e2:c6:6e:8d:3d:6b:b5:a0:19:0b:b3:c3:ee:c1: 54:82:f4:e8:81:8f:3e:85:e0:6c:f0:92:7c:fe:d6:db:5a:58: b9:7b:ce:ca:f6:c8:27:54:d6:fc:b5:65:83:6a:5b:b0:ca:c4: 3c:7f:b6:8c:32:28:dd:fe:a8:a7:8c:84:99:f2:02:13:6b:74: d2:8b:62:f8:fd:00:13:fb:98:46:2a:14:fe:fe:0c:5c:e3:2d: 0a:47:30:5a:d2:d0:92:a3:ae:8c:65:53:4c:14:a0:16:c9:bc: 86:70:aa:fc:44:99:ae:fb:49:18:cc:a7:9b:4f:3e:77:a8:8d: 02:23:52:e0:8d:26:7a:31:83:35:49:1a:54:ce:bf:6e:84:ee: c8:5e:3e:67:9f:4b:ec:c5:47:52:93:b8:eb:f7:96:23:fd:7c: db:87:ff:cd:a6:a7:46:a3:23:ba:62:3d:22:93:f6:30:1f:53: 23:7c:22:8f:5b:3e:4c:f1:9a:2b:e5:4a:f3:32:f6:52:f5:3c: d9:e8:c6:b2:67:a2:91:2f:79:68:eb:d9:7a:22:ee:f5:e4:5a: ac:59:9e:68:7f:71:4b:fa:41:3b:81:29:c5:0d:7f:16:56:b5: 32:ed:95:cb -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIURglys+D0xoHX9KQw0hkEZc1VpFcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MDIwMTU3NDdaFw0yNjA2MDEwMjAyNDdaMDMxMTAvBgNV BAMTKDQyRDc4RDdERkJFMTBGRTY2RjdGQzNBMzQxNEYzNTI1QUExNzJGOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZt7XZ68nOsICU5HlGf/3SFPFb 7omwwf1kY2148dpIiiJmSIiIMze92iCseCTy4rArRmpY7Lqzw8oJOUYdN2deNrM7 XDbUF/pdA0I70b0N71b7RpS1X4BoKqaLBSl5OUnZVc6jDwZTPgnHnFzaOB6comep TAmZYJeB6FmHHSUrsyvrFVGQ94TRERX3pUcnh1eA0H8dPCZFukmxA5SHOcGZ85Cc Ea3J3O61XAiDOR1XO3zc9+xPeG8KJtvdQjZUFNmst/VWPVXnVBny6hmUKjdJEJAH 5MoBh19HqImrWXpXHVTcB/pUJoXX7MgXVFYx6uJkmpoo2ApeYvfezOFHtW+FAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUQteNffvhD+Zvf8OjQU81JaoXL4owHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzNjJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3Ai4wDQYJKoZIhvcNAQEL BQADggEBAAxMq2GG0s2KjNKF7UGZYcjHOzHDozPixm6NPWu1oBkLs8PuwVSC9OiB jz6F4Gzwknz+1ttaWLl7zsr2yCdU1vy1ZYNqW7DKxDx/towyKN3+qKeMhJnyAhNr dNKLYvj9ABP7mEYqFP7+DFzjLQpHMFrS0JKjroxlU0wUoBbJvIZwqvxEma77SRjM p5tPPneojQIjUuCNJnoxgzVJGlTOv26E7shePmefS+zFR1KTuOv3liP9fNuH/82m p0ajI7piPSKT9jAfUyN8Io9bPkzxmivlSvMy9lL1PNnoxrJnopEveWjr2Xoi7vXk WqxZnmh/cUv6QTuBKcUNfxZWtTLtlcs= -----END CERTIFICATE-----Generated at Sat Jun 7 09:23:01 2025 by rpki-client