$ rpki-client -vvf repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3132312e3130312e3132382e302f32312d3234203d3e20313331373036.roa File: 3132312e3130312e3132382e302f32312d3234203d3e20313331373036.roa (raw, json) Hash identifier: LxNIC9GUMk4NDV//CAiwhidJ9aXKaAFBBW+ysgKoUy0= Subject key identifier: 19:04:41:F2:1F:28:3C:48:9B:30:05:86:79:19:AD:46:96:B0:25:EA Certificate issuer: /CN=8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72 Certificate serial: 67633733F6021FD343D2A98213A9D3A87192D0EE Authority key identifier: 8D:ED:AB:AD:21:AD:1A:6B:EF:27:E9:1F:CE:E3:04:65:56:3D:FE:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer Subject info access: rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3132312e3130312e3132382e302f32312d3234203d3e20313331373036.roa Signing time: Mon 02 Jun 2025 02:03:04 +0000 ROA not before: Mon 02 Jun 2025 01:58:04 +0000 ROA not after: Mon 01 Jun 2026 02:03:04 +0000 asID: 131706 IP address blocks: 121.101.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.crl rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:42:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:63:37:33:f6:02:1f:d3:43:d2:a9:82:13:a9:d3:a8:71:92:d0:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72 Validity Not Before: Jun 2 01:58:04 2025 GMT Not After : Jun 1 02:03:04 2026 GMT Subject: CN=190441F21F283C489B3005867919AD4696B025EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d9:b2:76:70:f8:9a:ae:3b:fc:65:2d:61:b0: 28:18:30:fd:69:54:fd:8c:bd:35:81:58:89:69:86: 74:48:cc:27:55:d4:fe:0f:94:6c:9c:4c:a4:2e:67: 8b:b0:77:cd:17:cc:e1:00:5a:99:45:73:0e:f8:f2: e6:d3:de:c4:29:a5:6c:4c:1c:9d:e5:3d:c2:54:3b: f1:4a:9d:6d:7e:f5:6d:b0:b6:ae:35:51:43:94:33: ae:68:a6:1e:81:23:c7:4f:42:a8:78:ca:40:76:86: 5b:4a:bd:98:55:f7:16:d5:7a:89:8f:61:c0:2d:e8: 65:9f:fb:70:29:23:ba:8d:0e:fe:f2:be:ea:56:c9: db:0d:6a:15:32:58:fc:42:d6:b4:e0:e1:c1:8d:32: 70:ec:82:af:7a:c5:75:84:03:ed:6f:ae:9c:c5:bc: 4e:49:47:ba:b2:c3:a0:b1:d5:74:22:35:f2:22:47: d9:50:3d:b1:70:12:c1:d7:f5:f2:ed:f7:f2:12:61: 4f:5e:dc:86:30:76:fb:a7:61:99:48:40:4f:34:8c: 2f:09:4f:37:41:83:55:ec:1a:8d:52:e4:cb:5c:3f: b7:ef:77:29:7b:73:40:8c:11:b2:6b:4d:52:a2:d4: bd:2b:73:a9:a7:7b:9a:fb:40:fd:44:58:21:d0:b8: aa:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:04:41:F2:1F:28:3C:48:9B:30:05:86:79:19:AD:46:96:B0:25:EA X509v3 Authority Key Identifier: keyid:8D:ED:AB:AD:21:AD:1A:6B:EF:27:E9:1F:CE:E3:04:65:56:3D:FE:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3132312e3130312e3132382e302f32312d3234203d3e20313331373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.128.0/21 Signature Algorithm: sha256WithRSAEncryption 89:88:dd:ea:2d:e2:24:92:4b:4b:53:fb:17:b4:14:bf:4b:74: 76:56:08:ee:b3:af:d7:fc:1b:39:20:71:f8:7e:d8:e1:1e:7b: bc:ef:2b:ea:3d:d8:e5:fb:b7:69:61:3b:5d:5f:94:26:73:11: 4b:e5:c9:16:23:85:6a:a3:ea:3a:6b:65:7c:8d:43:35:a5:65: b5:da:f2:18:d6:4f:c6:79:3c:60:c9:3c:b4:9b:91:c5:42:05: 22:e9:cd:bf:c6:7c:13:a0:66:b3:c9:3b:7a:24:b1:93:0f:38: 97:7d:53:2d:bc:16:f7:bf:16:1d:ca:ac:46:5c:81:85:56:06: 02:65:24:d9:56:f7:ce:5b:63:90:08:5d:6a:80:df:81:5e:90: ba:bf:25:82:da:ad:ea:bd:3f:cb:2c:b1:a5:e1:45:7d:3f:92: fd:ad:07:d6:25:cd:a9:8a:09:4a:a4:fe:68:ac:4e:94:6f:2a: a1:81:a2:20:cd:25:4d:52:09:1d:58:82:6d:42:1c:22:c7:4b: 85:81:7a:7c:f8:e7:52:4c:04:95:98:ee:3d:ee:2f:20:a4:93: 66:01:ce:51:ac:7c:39:bc:02:b9:11:ad:dc:89:c9:e6:00:86: e9:91:f3:e9:81:a4:78:b8:70:9c:a6:eb:d6:11:0a:23:52:47: d2:6e:b8:3a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZ2M3M/YCH9ND0qmCE6nTqHGS0O4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERFREFCQUQyMUFEMUE2QkVGMjdFOTFGQ0VFMzA0NjU1 NjNERkU3MjAeFw0yNTA2MDIwMTU4MDRaFw0yNjA2MDEwMjAzMDRaMDMxMTAvBgNV BAMTKDE5MDQ0MUYyMUYyODNDNDg5QjMwMDU4Njc5MTlBRDQ2OTZCMDI1RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA2bJ2cPiarjv8ZS1hsCgYMP1p VP2MvTWBWIlphnRIzCdV1P4PlGycTKQuZ4uwd80XzOEAWplFcw748ubT3sQppWxM HJ3lPcJUO/FKnW1+9W2wtq41UUOUM65oph6BI8dPQqh4ykB2hltKvZhV9xbVeomP YcAt6GWf+3ApI7qNDv7yvupWydsNahUyWPxC1rTg4cGNMnDsgq96xXWEA+1vrpzF vE5JR7qyw6Cx1XQiNfIiR9lQPbFwEsHX9fLt9/ISYU9e3IYwdvunYZlIQE80jC8J TzdBg1XsGo1S5MtcP7fvdyl7c0CMEbJrTVKi1L0rc6mne5r7QP1EWCHQuKrFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGQRB8h8oPEibMAWGeRmtRpawJeowHwYDVR0j BBgwFoAUje2rrSGtGmvvJ+kfzuMEZVY9/nIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjdhNmYzNC0xYjZlLTRlOTItYjJkMi0wYjkzMDFhNjY2YTUvMC84REVEQUJBRDIx QUQxQTZCRUYyN0U5MUZDRUUzMDQ2NTU2M0RGRTcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERFREFCQUQyMUFEMUE2QkVGMjdFOTFGQ0VFMzA0NjU1NjNE RkU3Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyN2E2ZjM0LTFiNmUtNGU5Mi1i MmQyLTBiOTMwMWE2NjZhNS8wLzMxMzIzMTJlMzEzMDMxMmUzMTMyMzgyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN5ZYAwDQYJ KoZIhvcNAQELBQADggEBAImI3eot4iSSS0tT+xe0FL9LdHZWCO6zr9f8Gzkgcfh+ 2OEee7zvK+o92OX7t2lhO11flCZzEUvlyRYjhWqj6jprZXyNQzWlZbXa8hjWT8Z5 PGDJPLSbkcVCBSLpzb/GfBOgZrPJO3oksZMPOJd9Uy28Fve/Fh3KrEZcgYVWBgJl JNlW985bY5AIXWqA34FekLq/JYLareq9P8sssaXhRX0/kv2tB9YlzamKCUqk/mis TpRvKqGBoiDNJU1SCR1Ygm1CHCLHS4WBenz451JMBJWY7j3uLyCkk2YBzlGsfDm8 ArkRrdyJyeYAhumR8+mBpHi4cJym69YRCiNSR9JuuDo= -----END CERTIFICATE-----Generated at Sun Jun 8 07:14:03 2025 by rpki-client