$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138352e302f32342d3234203d3e203338373835.roa File: 3132312e3130312e3138352e302f32342d3234203d3e203338373835.roa (raw, json) Hash identifier: azmIwktH3vpajsF8gQt8znOMbH0C7Vn9MDVUjZva6CY= Subject key identifier: FE:67:21:DB:1C:79:44:FE:C2:AD:E7:D2:BB:0A:37:D4:5F:E7:53:D5 Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 6269AC2FD13ACCE86CF51B72E1317F845A6C74B9 Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138352e302f32342d3234203d3e203338373835.roa Signing time: Thu 03 Apr 2025 05:00:03 +0000 ROA not before: Thu 03 Apr 2025 04:55:03 +0000 ROA not after: Thu 02 Apr 2026 05:00:03 +0000 asID: 38785 IP address blocks: 121.101.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 12:41:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:69:ac:2f:d1:3a:cc:e8:6c:f5:1b:72:e1:31:7f:84:5a:6c:74:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: Apr 3 04:55:03 2025 GMT Not After : Apr 2 05:00:03 2026 GMT Subject: CN=FE6721DB1C7944FEC2ADE7D2BB0A37D45FE753D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:b7:b9:f6:f1:53:8e:4d:30:6c:cb:36:4b:fd: 68:a5:2c:a7:44:7b:09:37:3e:9f:c4:ee:7d:c9:4e: fb:61:33:f7:1b:db:de:19:ca:7f:74:e3:fc:a4:51: a5:69:7a:06:86:f1:98:e4:c8:66:f9:1d:c0:c6:e1: 67:cf:82:6d:ba:bd:37:22:4d:15:cb:fc:65:63:1a: c1:d8:a7:d9:e5:66:43:55:7f:50:b5:58:88:4b:20: 46:c0:6e:9c:cd:c8:50:2d:b9:fd:54:92:2c:de:6c: b1:cd:1c:66:a3:22:57:13:86:f1:bc:2b:57:b4:93: a1:bf:f5:73:16:6f:50:5d:1c:cd:e9:46:32:9e:f4: e6:3c:ba:0c:e3:06:bd:88:fa:62:8d:8e:ec:5f:8e: eb:85:1a:09:84:ca:fe:02:16:19:a2:57:a8:2a:7e: c8:d0:ae:57:75:75:f2:27:89:0d:80:d9:5e:e7:88: 61:12:d6:f0:35:4d:e8:8e:36:a4:ab:b8:1a:3f:7c: bc:d4:34:2d:df:51:10:ac:37:70:ef:e6:86:8a:53: 5e:de:d5:c6:d5:70:fc:72:12:22:c0:49:bf:2e:3c: 55:bb:34:04:24:d7:9c:4c:d9:fd:03:b7:70:9c:54: a0:e9:c1:1d:7a:da:f2:5e:62:66:34:1d:f3:a9:dd: 18:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:67:21:DB:1C:79:44:FE:C2:AD:E7:D2:BB:0A:37:D4:5F:E7:53:D5 X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138352e302f32342d3234203d3e203338373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.185.0/24 Signature Algorithm: sha256WithRSAEncryption 62:4a:93:d1:b5:ad:70:9c:9d:13:37:71:36:ed:9b:f3:cd:2b: 08:e5:58:32:f9:c1:9a:9e:91:db:4b:58:86:2b:47:4a:17:6f: f4:23:54:20:1a:da:38:1c:3f:6a:e4:13:50:6c:b6:aa:98:e8: bf:1f:ea:1a:77:db:ce:0f:2b:d9:05:8f:f9:f0:f5:b8:0e:06: cc:0b:15:b8:51:38:b9:5e:42:e5:f6:c0:48:9a:13:a8:cb:cb: 5d:6f:bd:6f:cc:cc:d2:ce:c7:7b:d9:17:24:de:8a:f8:eb:90: 8b:25:cf:66:06:70:89:cd:bd:2c:d2:d2:c7:d9:2c:1b:4e:28: f7:f2:40:60:9f:0d:3a:7c:18:0a:f3:ab:26:b6:91:58:f9:ad: dc:f5:f1:0a:0f:40:ab:48:83:8c:79:31:4a:fa:ef:c9:3f:28: ce:54:dc:cb:7a:8e:56:31:ad:61:92:dd:f4:f2:a4:c1:3d:9e: 31:27:a8:74:1b:9f:6f:c2:34:03:dc:19:6b:49:72:40:e5:a9: 2b:33:7d:7d:db:55:a2:77:9b:2e:bc:fd:11:38:24:d0:d0:69: 16:9a:73:dc:d2:5f:3b:99:2b:b5:bd:a5:96:3d:fb:0b:7e:36: 92:11:f1:96:63:b4:a1:d5:73:15:84:84:fb:4b:33:ff:39:79: 0f:24:58:a7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYmmsL9E6zOhs9Rty4TF/hFpsdLkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNTA0MDMwNDU1MDNaFw0yNjA0MDIwNTAwMDNaMDMxMTAvBgNV BAMTKEZFNjcyMURCMUM3OTQ0RkVDMkFERTdEMkJCMEEzN0Q0NUZFNzUzRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxt7n28VOOTTBsyzZL/WilLKdE ewk3Pp/E7n3JTvthM/cb294Zyn904/ykUaVpegaG8ZjkyGb5HcDG4WfPgm26vTci TRXL/GVjGsHYp9nlZkNVf1C1WIhLIEbAbpzNyFAtuf1UkizebLHNHGajIlcThvG8 K1e0k6G/9XMWb1BdHM3pRjKe9OY8ugzjBr2I+mKNjuxfjuuFGgmEyv4CFhmiV6gq fsjQrld1dfIniQ2A2V7niGES1vA1TeiONqSruBo/fLzUNC3fURCsN3Dv5oaKU17e 1cbVcPxyEiLASb8uPFW7NAQk15xM2f0Dt3CcVKDpwR162vJeYmY0HfOp3RhlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/mch2xx5RP7CrefSuwo31F/nU9UwHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NzJkZmJlLTRjYTAtNGE0Ni04 MDM3LTQ5NjhlZDk3Y2FkYy8wLzMxMzIzMTJlMzEzMDMxMmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeWW5MA0GCSqG SIb3DQEBCwUAA4IBAQBiSpPRta1wnJ0TN3E27ZvzzSsI5Vgy+cGanpHbS1iGK0dK F2/0I1QgGto4HD9q5BNQbLaqmOi/H+oad9vODyvZBY/58PW4DgbMCxW4UTi5XkLl 9sBImhOoy8tdb71vzMzSzsd72Rck3or465CLJc9mBnCJzb0s0tLH2SwbTij38kBg nw06fBgK86smtpFY+a3c9fEKD0CrSIOMeTFK+u/JPyjOVNzLeo5WMa1hkt308qTB PZ4xJ6h0G59vwjQD3BlrSXJA5akrM31921Wid5suvP0ROCTQ0GkWmnPc0l87mSu1 vaWWPfsLfjaSEfGWY7Sh1XMVhIT7SzP/OXkPJFin -----END CERTIFICATE-----Generated at Sun Apr 6 20:47:03 2025 by rpki-client