$ rpki-client -vvf repo-rpki.idnic.net/repo/a1ee3765-0abb-4ba3-a00d-cbcec8399928/0/3231302e38372e3131332e302f32342d3234203d3e20313532303533.roa File: 3231302e38372e3131332e302f32342d3234203d3e20313532303533.roa (raw, json) Hash identifier: M/ahzHC3ODRI/WG3tVFzAKjzCsCePhBkrqbTyrlIMdA= Subject key identifier: 28:FE:DB:A3:EE:67:6E:87:B9:7F:F4:AA:00:31:C1:F3:C5:C5:F8:51 Certificate issuer: /CN=52C34A755DF981FDF13789624A2BE028AB5B5DAE Certificate serial: 3D8F11F333E66BD775E96F2D72AD5487F8C7E678 Authority key identifier: 52:C3:4A:75:5D:F9:81:FD:F1:37:89:62:4A:2B:E0:28:AB:5B:5D:AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52C34A755DF981FDF13789624A2BE028AB5B5DAE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1ee3765-0abb-4ba3-a00d-cbcec8399928/0/3231302e38372e3131332e302f32342d3234203d3e20313532303533.roa Signing time: Fri 07 Feb 2025 10:00:02 +0000 ROA not before: Fri 07 Feb 2025 09:55:02 +0000 ROA not after: Fri 06 Feb 2026 10:00:02 +0000 asID: 152053 IP address blocks: 210.87.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1ee3765-0abb-4ba3-a00d-cbcec8399928/0/52C34A755DF981FDF13789624A2BE028AB5B5DAE.crl rsync://repo-rpki.idnic.net/repo/a1ee3765-0abb-4ba3-a00d-cbcec8399928/0/52C34A755DF981FDF13789624A2BE028AB5B5DAE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52C34A755DF981FDF13789624A2BE028AB5B5DAE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 23:32:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:8f:11:f3:33:e6:6b:d7:75:e9:6f:2d:72:ad:54:87:f8:c7:e6:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52C34A755DF981FDF13789624A2BE028AB5B5DAE Validity Not Before: Feb 7 09:55:02 2025 GMT Not After : Feb 6 10:00:02 2026 GMT Subject: CN=28FEDBA3EE676E87B97FF4AA0031C1F3C5C5F851 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:db:45:f9:71:cc:4c:d0:45:7a:37:04:54:bd: 4c:2e:d0:38:36:3e:64:40:52:ed:9c:a6:31:e0:20: bd:11:07:88:13:05:84:13:f0:ee:3b:2a:b4:71:b2: 7b:43:81:e5:6c:73:b9:6d:dc:0d:0c:57:04:a2:09: 0f:b6:2e:b2:42:9e:43:36:6d:fa:e1:39:69:fa:35: dd:1b:a9:44:e2:4d:6f:b6:7d:e3:3d:c0:4d:9f:95: 7d:6d:b6:f1:e5:c2:8c:23:3e:b5:c1:f6:6b:60:3c: c2:1a:18:e3:dc:fa:a6:f7:a7:1d:98:b2:6b:fe:ad: da:d4:dd:c8:5f:9d:72:c0:23:46:df:23:67:d8:1c: f1:79:fc:87:30:3e:7b:6e:d3:46:61:97:74:35:94: f4:04:04:fe:74:44:45:50:80:80:50:50:2f:20:40: d8:97:e8:38:73:a1:dd:96:d4:09:8f:fd:c1:70:9d: fe:de:fa:50:52:9e:30:09:ae:4c:80:2d:d7:aa:eb: 4a:c0:69:f7:4b:61:7f:81:6c:4f:16:a1:91:c7:d2: 00:2a:9d:21:c7:ee:08:69:f6:a4:c4:dd:13:a4:24: 52:bc:22:81:a7:d3:a9:14:b6:99:f9:e8:31:51:5a: 5d:27:b8:88:bc:e4:30:45:f6:da:fc:cd:d8:36:2c: 11:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:FE:DB:A3:EE:67:6E:87:B9:7F:F4:AA:00:31:C1:F3:C5:C5:F8:51 X509v3 Authority Key Identifier: keyid:52:C3:4A:75:5D:F9:81:FD:F1:37:89:62:4A:2B:E0:28:AB:5B:5D:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1ee3765-0abb-4ba3-a00d-cbcec8399928/0/52C34A755DF981FDF13789624A2BE028AB5B5DAE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52C34A755DF981FDF13789624A2BE028AB5B5DAE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1ee3765-0abb-4ba3-a00d-cbcec8399928/0/3231302e38372e3131332e302f32342d3234203d3e20313532303533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.87.113.0/24 Signature Algorithm: sha256WithRSAEncryption 30:9f:4d:6f:c5:a5:ec:33:67:ad:b0:00:58:94:e9:ff:3c:d3: 59:17:91:97:2a:ca:f9:de:ee:8d:5a:fa:35:d2:fc:c8:a0:60: 55:bb:05:97:0d:2d:08:0f:b4:3f:80:99:7c:48:4f:65:26:2c: 61:af:f1:12:78:ac:c2:4e:01:fe:6e:75:d7:93:aa:bc:d9:fe: fc:87:f8:42:ff:1e:d6:7c:64:0b:18:c7:16:b0:68:96:12:da: df:79:64:63:d3:37:42:26:3d:89:14:8f:61:18:67:a4:a6:0a: 32:80:2f:b6:50:c3:c8:7c:14:cf:e7:88:a5:c4:ad:d3:9d:d4: fb:28:de:75:48:f8:db:ad:fe:39:4d:1d:f8:d1:c6:8c:94:9d: c0:d2:89:dc:9f:7c:23:a4:38:02:eb:d7:32:c0:67:27:68:bf: 1c:88:e2:69:21:e1:e1:db:96:5e:c4:0d:da:51:d3:90:1c:ad: 54:c2:8a:2f:79:2a:5d:cc:d8:72:52:a2:41:e6:2f:03:a9:b7: 73:f0:52:6d:ab:a3:be:6c:79:4c:50:e7:53:a7:4b:a6:28:3c: 08:e3:9d:1b:b6:29:1f:7d:62:a4:9d:2d:43:5c:92:91:30:ef: ba:b7:db:09:76:a1:d3:8c:9a:ff:04:46:f4:f3:57:ab:6c:7f: 07:cb:c0:9c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPY8R8zPma9d16W8tcq1Uh/jH5ngwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJDMzRBNzU1REY5ODFGREYxMzc4OTYyNEEyQkUwMjhB QjVCNURBRTAeFw0yNTAyMDcwOTU1MDJaFw0yNjAyMDYxMDAwMDJaMDMxMTAvBgNV BAMTKDI4RkVEQkEzRUU2NzZFODdCOTdGRjRBQTAwMzFDMUYzQzVDNUY4NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR20X5ccxM0EV6NwRUvUwu0Dg2 PmRAUu2cpjHgIL0RB4gTBYQT8O47KrRxsntDgeVsc7lt3A0MVwSiCQ+2LrJCnkM2 bfrhOWn6Nd0bqUTiTW+2feM9wE2flX1ttvHlwowjPrXB9mtgPMIaGOPc+qb3px2Y smv+rdrU3chfnXLAI0bfI2fYHPF5/IcwPntu00Zhl3Q1lPQEBP50REVQgIBQUC8g QNiX6Dhzod2W1AmP/cFwnf7e+lBSnjAJrkyALdeq60rAafdLYX+BbE8WoZHH0gAq nSHH7ghp9qTE3ROkJFK8IoGn06kUtpn56DFRWl0nuIi85DBF9tr8zdg2LBE/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKP7bo+5nboe5f/SqADHB88XF+FEwHwYDVR0j BBgwFoAUUsNKdV35gf3xN4liSivgKKtbXa4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MWVlMzc2NS0wYWJiLTRiYTMtYTAwZC1jYmNlYzgzOTk5MjgvMC81MkMzNEE3NTVE Rjk4MUZERjEzNzg5NjI0QTJCRTAyOEFCNUI1REFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTJDMzRBNzU1REY5ODFGREYxMzc4OTYyNEEyQkUwMjhBQjVC NURBRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExZWUzNzY1LTBhYmItNGJhMy1h MDBkLWNiY2VjODM5OTkyOC8wLzMyMzEzMDJlMzgzNzJlMzEzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0ldxMA0GCSqG SIb3DQEBCwUAA4IBAQAwn01vxaXsM2etsABYlOn/PNNZF5GXKsr53u6NWvo10vzI oGBVuwWXDS0ID7Q/gJl8SE9lJixhr/ESeKzCTgH+bnXXk6q82f78h/hC/x7WfGQL GMcWsGiWEtrfeWRj0zdCJj2JFI9hGGekpgoygC+2UMPIfBTP54ilxK3TndT7KN51 SPjbrf45TR340caMlJ3A0oncn3wjpDgC69cywGcnaL8ciOJpIeHh25ZexA3aUdOQ HK1UwooveSpdzNhyUqJB5i8Dqbdz8FJtq6O+bHlMUOdTp0umKDwI450btikffWKk nS1DXJKRMO+6t9sJdqHTjJr/BEb081erbH8Hy8Cc -----END CERTIFICATE-----Generated at Sun Apr 6 13:59:17 2025 by rpki-client