$ rpki-client -vvf repo-rpki.idnic.net/repo/99e3b1d8-bf19-46e3-b609-0d160988dac8/0/3131392e3233352e3234382e302f32312d3234203d3e203435313436.roa File: 3131392e3233352e3234382e302f32312d3234203d3e203435313436.roa (raw, json) Hash identifier: Gj57tszoKsJPmI3zlTc36/bgp48+5kiHS2p+sUe73DE= Subject key identifier: 7E:EB:6D:F3:1D:44:5D:CB:9A:CA:06:F0:47:29:61:C1:0A:C8:E1:18 Certificate issuer: /CN=8B266458C7DEFCF6926DCDF453C84A1D42E8D989 Certificate serial: 4AD8322661CF949A4B0107E48677BB324915E3E6 Authority key identifier: 8B:26:64:58:C7:DE:FC:F6:92:6D:CD:F4:53:C8:4A:1D:42:E8:D9:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B266458C7DEFCF6926DCDF453C84A1D42E8D989.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99e3b1d8-bf19-46e3-b609-0d160988dac8/0/3131392e3233352e3234382e302f32312d3234203d3e203435313436.roa Signing time: Mon 02 Jun 2025 01:02:54 +0000 ROA not before: Mon 02 Jun 2025 00:57:54 +0000 ROA not after: Mon 01 Jun 2026 01:02:54 +0000 asID: 45146 IP address blocks: 119.235.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99e3b1d8-bf19-46e3-b609-0d160988dac8/0/8B266458C7DEFCF6926DCDF453C84A1D42E8D989.crl rsync://repo-rpki.idnic.net/repo/99e3b1d8-bf19-46e3-b609-0d160988dac8/0/8B266458C7DEFCF6926DCDF453C84A1D42E8D989.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B266458C7DEFCF6926DCDF453C84A1D42E8D989.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:47:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:d8:32:26:61:cf:94:9a:4b:01:07:e4:86:77:bb:32:49:15:e3:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B266458C7DEFCF6926DCDF453C84A1D42E8D989 Validity Not Before: Jun 2 00:57:54 2025 GMT Not After : Jun 1 01:02:54 2026 GMT Subject: CN=7EEB6DF31D445DCB9ACA06F0472961C10AC8E118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e6:8f:d2:90:30:64:85:c8:08:71:e8:64:cb: 66:79:9c:76:aa:72:a5:46:82:cd:46:ce:8e:49:a2: 01:e9:fa:99:6c:94:0d:71:70:55:7e:ca:f0:9c:a9: 3e:d7:16:69:27:c9:a3:97:be:dd:3d:f4:3f:91:97: 45:48:9c:7d:c9:ec:1c:84:4e:c1:41:0f:05:b9:59: 26:b9:cf:b9:ed:4f:5c:61:8e:a7:8c:84:f1:ba:b9: 56:1a:34:8d:d0:b2:64:46:42:b0:56:fe:74:fd:86: f1:8a:2e:f4:0b:2a:01:a5:d1:c8:f4:37:3c:d2:d8: 5c:7a:24:86:4e:57:4e:61:2c:4c:8f:55:ab:18:49: 27:24:f9:ae:57:20:2f:a4:b4:f2:a6:8d:2e:8f:b4: 15:f6:e4:c7:dd:44:16:e0:99:bb:f6:19:84:2d:60: 7f:51:7c:3c:e0:87:bc:64:78:4b:a1:82:a4:b5:2e: 4a:20:85:cf:1a:58:95:53:6a:dd:7d:15:47:89:4e: 77:98:11:c9:0a:da:86:aa:a2:fb:57:39:a9:62:2d: e3:c2:eb:34:be:a8:4f:34:93:d9:9c:7f:7a:94:15: cc:f9:27:67:a8:dd:c0:51:57:5a:b9:7e:f0:87:fb: 9a:dd:e6:0c:81:bd:ce:85:ac:7b:4a:04:d2:4d:e0: 27:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:EB:6D:F3:1D:44:5D:CB:9A:CA:06:F0:47:29:61:C1:0A:C8:E1:18 X509v3 Authority Key Identifier: keyid:8B:26:64:58:C7:DE:FC:F6:92:6D:CD:F4:53:C8:4A:1D:42:E8:D9:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99e3b1d8-bf19-46e3-b609-0d160988dac8/0/8B266458C7DEFCF6926DCDF453C84A1D42E8D989.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B266458C7DEFCF6926DCDF453C84A1D42E8D989.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99e3b1d8-bf19-46e3-b609-0d160988dac8/0/3131392e3233352e3234382e302f32312d3234203d3e203435313436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.235.248.0/21 Signature Algorithm: sha256WithRSAEncryption 87:fb:6b:48:4b:a6:c4:e2:6b:97:32:1f:b0:71:cd:f3:7e:2d: af:fa:28:25:d5:9c:f2:78:d6:82:15:b1:1e:f5:ab:9c:09:d2: b2:8c:96:a1:d0:59:a1:a2:fd:ff:c7:f4:7f:fe:36:2c:f8:8d: b7:5b:e8:94:d4:0a:8b:93:38:cd:e2:97:2d:81:04:00:c5:32: 31:10:3b:6f:d5:53:78:86:13:65:38:b0:ee:8b:88:d8:5b:62: c3:b4:71:c7:df:23:b8:86:b3:14:6e:b5:41:c0:40:a4:9b:ac: 77:07:70:6c:a0:6a:8e:28:0d:35:32:9b:73:2a:55:47:4f:d6: 9d:6c:a1:b5:62:b6:4a:96:52:3b:e6:33:36:90:22:03:c1:55: db:1b:b6:6f:2c:3a:51:7a:91:96:91:81:8a:68:fa:67:0a:07: 90:b2:7d:c3:43:fc:80:bb:ce:1f:2d:a3:9a:b9:f8:2b:82:63: 3d:7d:bb:65:33:a7:6a:e8:6f:d7:52:96:90:5b:36:fa:bd:55: fe:a7:c7:c2:65:46:2e:35:2d:39:8d:ca:a4:44:ab:e7:e2:21: 32:d3:06:e2:74:65:2b:64:a5:43:7b:e8:05:8d:1c:88:e8:8d: 2d:f3:72:73:cb:12:65:97:00:41:40:e8:50:36:9e:b3:5d:e1: 8d:6b:89:93 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUStgyJmHPlJpLAQfkhne7MkkV4+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEIyNjY0NThDN0RFRkNGNjkyNkRDREY0NTNDODRBMUQ0 MkU4RDk4OTAeFw0yNTA2MDIwMDU3NTRaFw0yNjA2MDEwMTAyNTRaMDMxMTAvBgNV BAMTKDdFRUI2REYzMUQ0NDVEQ0I5QUNBMDZGMDQ3Mjk2MUMxMEFDOEUxMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT5o/SkDBkhcgIcehky2Z5nHaq cqVGgs1Gzo5JogHp+plslA1xcFV+yvCcqT7XFmknyaOXvt099D+Rl0VInH3J7ByE TsFBDwW5WSa5z7ntT1xhjqeMhPG6uVYaNI3QsmRGQrBW/nT9hvGKLvQLKgGl0cj0 NzzS2Fx6JIZOV05hLEyPVasYSSck+a5XIC+ktPKmjS6PtBX25MfdRBbgmbv2GYQt YH9RfDzgh7xkeEuhgqS1Lkoghc8aWJVTat19FUeJTneYEckK2oaqovtXOaliLePC 6zS+qE80k9mcf3qUFcz5J2eo3cBRV1q5fvCH+5rd5gyBvc6FrHtKBNJN4CcXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfutt8x1EXcuaygbwRylhwQrI4RgwHwYDVR0j BBgwFoAUiyZkWMfe/PaSbc30U8hKHULo2YkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWUzYjFkOC1iZjE5LTQ2ZTMtYjYwOS0wZDE2MDk4OGRhYzgvMC84QjI2NjQ1OEM3 REVGQ0Y2OTI2RENERjQ1M0M4NEExRDQyRThEOTg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEIyNjY0NThDN0RFRkNGNjkyNkRDREY0NTNDODRBMUQ0MkU4 RDk4OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZTNiMWQ4LWJmMTktNDZlMy1i NjA5LTBkMTYwOTg4ZGFjOC8wLzMxMzEzOTJlMzIzMzM1MmUzMjM0MzgyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDd+v4MA0GCSqG SIb3DQEBCwUAA4IBAQCH+2tIS6bE4muXMh+wcc3zfi2v+igl1ZzyeNaCFbEe9auc CdKyjJah0Fmhov3/x/R//jYs+I23W+iU1AqLkzjN4pctgQQAxTIxEDtv1VN4hhNl OLDui4jYW2LDtHHH3yO4hrMUbrVBwECkm6x3B3BsoGqOKA01MptzKlVHT9adbKG1 YrZKllI75jM2kCIDwVXbG7ZvLDpRepGWkYGKaPpnCgeQsn3DQ/yAu84fLaOaufgr gmM9fbtlM6dq6G/XUpaQWzb6vVX+p8fCZUYuNS05jcqkRKvn4iEy0wbidGUrZKVD e+gFjRyI6I0t83JzyxJllwBBQOhQNp6zXeGNa4mT -----END CERTIFICATE-----Generated at Fri Jun 6 16:45:16 2025 by rpki-client