$ rpki-client -vvf repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3136382e302f32312d3234203d3e203338353036.roa File: 3131372e3130332e3136382e302f32312d3234203d3e203338353036.roa (raw, json) Hash identifier: zHFuXcJsHRS8oU5g73vyR9ezkdJAc6jv+r1NZhBGTU4= Subject key identifier: FA:52:89:3B:12:33:35:45:6F:B1:9B:0A:D7:5F:6B:F0:56:B8:F9:32 Certificate issuer: /CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Certificate serial: 439C47EF2FBBA6B2E48D187CDCB0BA1576288299 Authority key identifier: 0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3136382e302f32312d3234203d3e203338353036.roa Signing time: Mon 02 Jun 2025 01:02:43 +0000 ROA not before: Mon 02 Jun 2025 00:57:43 +0000 ROA not after: Mon 01 Jun 2026 01:02:43 +0000 asID: 38506 IP address blocks: 117.103.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 10:15:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:9c:47:ef:2f:bb:a6:b2:e4:8d:18:7c:dc:b0:ba:15:76:28:82:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Validity Not Before: Jun 2 00:57:43 2025 GMT Not After : Jun 1 01:02:43 2026 GMT Subject: CN=FA52893B123335456FB19B0AD75F6BF056B8F932 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:94:0a:54:f7:62:a8:a8:d2:4a:ad:8f:64:15: 99:ba:b9:ab:54:86:80:d5:bf:a3:4c:71:5e:f3:62: 16:e3:aa:eb:e2:8e:0c:46:e5:69:b0:0a:22:66:62: 55:05:af:b1:bf:01:9f:b4:9c:23:db:e6:9d:20:98: 07:64:c3:ab:bc:4b:c3:88:5f:6e:f5:2f:d9:4e:dc: 32:80:74:6c:5d:f1:0e:98:f2:36:3c:83:46:b8:2d: b8:99:4b:88:06:74:4b:7f:fa:e5:d7:81:1d:33:24: 0e:b4:76:59:10:56:08:0d:23:8f:5d:fe:25:99:7c: a9:0b:07:bd:5d:d1:f2:d2:cc:08:56:81:3c:4f:28: d8:93:a8:44:6e:ff:25:30:2f:f5:a9:a7:b6:56:11: 7d:2c:37:4f:22:ad:05:f8:db:b8:f3:15:9a:c8:85: a2:1c:e4:86:0d:86:c4:79:95:3c:ce:e1:8d:a9:9f: 21:0f:b4:e7:72:fd:0e:89:75:b9:c3:dc:7c:3b:9e: d1:7f:fc:2c:e2:d8:bb:a2:d1:0b:09:f7:0f:35:17: ab:94:25:8a:53:40:53:8c:3b:9e:73:4a:76:a3:de: 77:64:e9:91:d1:e3:58:12:24:35:24:9b:7d:28:20: 23:4f:b5:26:64:9e:ea:2d:af:36:c1:73:19:73:de: 31:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:52:89:3B:12:33:35:45:6F:B1:9B:0A:D7:5F:6B:F0:56:B8:F9:32 X509v3 Authority Key Identifier: keyid:0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3136382e302f32312d3234203d3e203338353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.103.168.0/21 Signature Algorithm: sha256WithRSAEncryption 27:85:27:0a:67:79:3d:91:27:dc:dd:44:7b:2b:63:76:76:73: 85:0c:38:08:92:7f:1f:ea:a2:4f:0d:4f:97:c9:70:89:f7:99: 75:71:40:f0:15:8c:a2:63:88:97:50:a8:68:57:ae:e0:3a:49: d1:af:0d:ca:c3:67:41:9c:42:bc:4e:a7:1e:af:83:c0:d4:d8: 74:89:77:43:db:82:2b:c0:23:cb:62:dd:1f:92:0e:2f:87:96: 61:fe:84:0d:61:9c:b5:73:93:f3:42:e9:8a:c9:f4:0b:15:9e: f8:67:32:e8:7c:f4:d4:23:d9:b0:ec:71:25:5e:42:1d:40:ff: f9:e9:d6:15:4c:f5:44:0e:69:23:35:37:df:69:22:a9:c5:0c: 7f:b8:fd:50:63:b0:c4:0f:23:a8:70:2c:12:5f:0f:04:40:9c: d5:0a:f1:25:a6:ea:09:cb:c1:68:0c:e1:94:1a:72:07:4e:7c: c3:72:67:75:20:1f:ea:8c:04:50:78:f6:b0:75:bb:d9:f7:55: 0a:c5:17:2b:7a:22:06:6d:ba:df:42:f0:42:4f:e6:32:5b:b3: 5c:04:a7:3b:e6:e0:e1:96:b4:c1:93:06:74:c5:32:46:da:84: d1:f7:3e:b4:c2:43:97:a6:6c:53:56:b9:2f:5d:d1:61:38:b4: 57:87:1c:c3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ5xH7y+7prLkjRh83LC6FXYogpkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1 MUJDMTdBMjAeFw0yNTA2MDIwMDU3NDNaFw0yNjA2MDEwMTAyNDNaMDMxMTAvBgNV BAMTKEZBNTI4OTNCMTIzMzM1NDU2RkIxOUIwQUQ3NUY2QkYwNTZCOEY5MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrlApU92KoqNJKrY9kFZm6uatU hoDVv6NMcV7zYhbjquvijgxG5WmwCiJmYlUFr7G/AZ+0nCPb5p0gmAdkw6u8S8OI X271L9lO3DKAdGxd8Q6Y8jY8g0a4LbiZS4gGdEt/+uXXgR0zJA60dlkQVggNI49d /iWZfKkLB71d0fLSzAhWgTxPKNiTqERu/yUwL/Wpp7ZWEX0sN08irQX427jzFZrI haIc5IYNhsR5lTzO4Y2pnyEPtOdy/Q6JdbnD3Hw7ntF//Czi2Lui0QsJ9w81F6uU JYpTQFOMO55zSnaj3ndk6ZHR41gSJDUkm30oICNPtSZknuotrzbBcxlz3jELAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+lKJOxIzNUVvsZsK119r8Fa4+TIwHwYDVR0j BBgwFoAUD9BE1hNIyI3c/8Tzwzv7xFG8F6IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjU0OGJhZC03ZmVkLTQxZmQtYjQyZS03ODAzNzJjNDUyNTUvMC8wRkQwNDRENjEz NDhDODhERENGRkM0RjNDMzNCRkJDNDUxQkMxN0EyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1MUJD MTdBMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNTQ4YmFkLTdmZWQtNDFmZC1i NDJlLTc4MDM3MmM0NTI1NS8wLzMxMzEzNzJlMzEzMDMzMmUzMTM2MzgyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMzM4MzUzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDdWeoMA0GCSqG SIb3DQEBCwUAA4IBAQAnhScKZ3k9kSfc3UR7K2N2dnOFDDgIkn8f6qJPDU+XyXCJ 95l1cUDwFYyiY4iXUKhoV67gOknRrw3Kw2dBnEK8Tqcer4PA1Nh0iXdD24IrwCPL Yt0fkg4vh5Zh/oQNYZy1c5PzQumKyfQLFZ74ZzLofPTUI9mw7HElXkIdQP/56dYV TPVEDmkjNTffaSKpxQx/uP1QY7DEDyOocCwSXw8EQJzVCvElpuoJy8FoDOGUGnIH TnzDcmd1IB/qjARQePawdbvZ91UKxRcreiIGbbrfQvBCT+YyW7NcBKc75uDhlrTB kwZ0xTJG2oTR9z60wkOXpmxTVrkvXdFhOLRXhxzD -----END CERTIFICATE-----Generated at Sat Jun 7 19:50:09 2025 by rpki-client