$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3131392e3233352e31362e302f32302d3234203d3e203234353332.roa File: 3131392e3233352e31362e302f32302d3234203d3e203234353332.roa (raw, json) Hash identifier: B78QMc7X1AynG/67CvGHE09qoTlYPrnz5pImIeutRLM= Subject key identifier: 2C:29:0F:C1:E5:72:AF:94:71:79:E7:AB:38:1E:A2:33:CB:1E:46:D4 Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 375EA6C368504333745D5BB86ABA31B483FA0C40 Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3131392e3233352e31362e302f32302d3234203d3e203234353332.roa Signing time: Mon 02 Jun 2025 02:04:45 +0000 ROA not before: Mon 02 Jun 2025 01:59:45 +0000 ROA not after: Mon 01 Jun 2026 02:04:45 +0000 asID: 24532 IP address blocks: 119.235.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:39:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:5e:a6:c3:68:50:43:33:74:5d:5b:b8:6a:ba:31:b4:83:fa:0c:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Jun 2 01:59:45 2025 GMT Not After : Jun 1 02:04:45 2026 GMT Subject: CN=2C290FC1E572AF947179E7AB381EA233CB1E46D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:48:14:08:43:c8:fa:c1:4f:e8:7d:8c:02:00: 4e:61:6e:87:91:e0:82:3e:06:df:2e:9c:f8:1b:02: a6:37:41:55:74:ba:23:cd:ba:ff:9d:0b:be:29:97: ad:7b:b6:cc:c4:15:00:8b:0e:96:05:a9:09:8a:ae: 8a:1a:9e:4e:b0:5e:d8:d3:44:65:a5:54:97:bb:c8: 42:78:f5:e1:ca:0c:45:71:c5:20:44:64:08:f0:2e: 14:39:d4:17:c2:46:d7:9e:9b:a5:34:84:ec:e0:15: d9:ab:e6:76:71:e1:0f:a5:2c:bd:0d:6f:56:f2:cd: e3:a9:92:8b:fd:a8:0e:a6:d9:f2:7c:0e:67:df:1c: 28:a2:00:98:94:63:ca:80:2f:c9:72:a2:cb:be:13: 51:70:e4:dc:de:1d:d8:1d:a3:84:6f:58:3f:45:89: 87:03:6a:e2:02:5f:26:e9:9e:56:55:18:66:98:f2: 1b:54:5a:cb:de:e8:b7:95:d5:1c:19:5f:a7:03:7c: 72:1b:a3:8d:fa:c2:9e:3d:62:ca:d0:45:31:fe:a8: 92:ba:0f:7c:9f:2c:d0:0b:8f:98:78:cf:62:47:17: aa:3c:b6:e6:42:88:c8:4c:6e:32:a6:ef:b0:63:d8: 72:7d:4a:2c:30:90:33:b9:2b:e0:6e:3b:ec:2b:70: e0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:29:0F:C1:E5:72:AF:94:71:79:E7:AB:38:1E:A2:33:CB:1E:46:D4 X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3131392e3233352e31362e302f32302d3234203d3e203234353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.235.16.0/20 Signature Algorithm: sha256WithRSAEncryption 3f:b4:ef:6e:1a:4d:f6:53:01:ef:fb:43:2d:86:42:0a:b9:59: 38:bc:08:91:d5:be:2c:8c:89:41:a9:64:7d:93:74:be:a9:e3: 89:99:7e:b8:80:f2:be:b0:d4:39:68:f5:d9:87:db:44:af:da: 42:88:36:e3:ae:f3:45:e7:57:59:60:5d:3f:53:35:71:f5:53: 08:f6:2c:6c:52:3e:e8:85:6e:ba:bf:ca:b8:18:3f:ca:5a:47: 4f:eb:34:83:a8:90:7f:59:45:f5:e3:29:7f:41:04:a1:f4:a2: c4:41:d0:f1:36:32:a6:5d:ae:e0:93:af:27:ac:23:bf:c4:e5: 7b:27:53:a5:67:7d:46:ef:52:1b:2d:41:84:be:cc:0a:ec:c2: ad:dc:be:62:cb:95:c6:e5:a9:95:94:ea:24:05:3a:ae:78:0a: fd:74:8f:6a:c6:fe:d7:c2:80:08:96:df:24:0c:47:87:80:be: 23:95:b4:11:6f:4c:e3:9f:9a:ef:71:0e:66:19:52:41:bc:8a: 6a:0b:99:8a:2c:c3:d9:ac:24:37:ba:89:d3:af:d8:68:4f:4a: 9a:98:c3:b5:4f:db:07:33:69:eb:1c:92:93:61:34:98:25:3a: 50:c9:37:46:fe:54:b6:7e:b0:c2:b4:6a:92:5c:f3:9c:c8:6a: 90:a6:6f:ab -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUN16mw2hQQzN0XVu4aroxtIP6DEAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yNTA2MDIwMTU5NDVaFw0yNjA2MDEwMjA0NDVaMDMxMTAvBgNV BAMTKDJDMjkwRkMxRTU3MkFGOTQ3MTc5RTdBQjM4MUVBMjMzQ0IxRTQ2RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkSBQIQ8j6wU/ofYwCAE5hboeR 4II+Bt8unPgbAqY3QVV0uiPNuv+dC74pl617tszEFQCLDpYFqQmKrooank6wXtjT RGWlVJe7yEJ49eHKDEVxxSBEZAjwLhQ51BfCRteem6U0hOzgFdmr5nZx4Q+lLL0N b1byzeOpkov9qA6m2fJ8DmffHCiiAJiUY8qAL8lyosu+E1Fw5NzeHdgdo4RvWD9F iYcDauICXybpnlZVGGaY8htUWsve6LeV1RwZX6cDfHIbo436wp49YsrQRTH+qJK6 D3yfLNALj5h4z2JHF6o8tuZCiMhMbjKm77Bj2HJ9SiwwkDO5K+BuO+wrcOBtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULCkPweVyr5RxeeerOB6iM8seRtQwHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0M2UyZTY3LWExNzEtNGQ5ZS1h OTM1LTQwNjkwMmIxZTEzYi8wLzMxMzEzOTJlMzIzMzM1MmUzMTM2MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHfrEDANBgkqhkiG 9w0BAQsFAAOCAQEAP7TvbhpN9lMB7/tDLYZCCrlZOLwIkdW+LIyJQalkfZN0vqnj iZl+uIDyvrDUOWj12YfbRK/aQog2467zRedXWWBdP1M1cfVTCPYsbFI+6IVuur/K uBg/ylpHT+s0g6iQf1lF9eMpf0EEofSixEHQ8TYypl2u4JOvJ6wjv8TleydTpWd9 Ru9SGy1BhL7MCuzCrdy+YsuVxuWplZTqJAU6rngK/XSPasb+18KACJbfJAxHh4C+ I5W0EW9M45+a73EOZhlSQbyKaguZiizD2awkN7qJ06/YaE9KmpjDtU/bBzNp6xyS k2E0mCU6UMk3Rv5Utn6wwrRqklzznMhqkKZvqw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:27:33 2025 by rpki-client