$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa File: 3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa (raw, json) Hash identifier: ldyK2huQ95pUCINHnT0U5z7ALHHC4dFAFsmJktUnRJw= Subject key identifier: FD:7E:79:73:A1:5D:9E:0F:B7:10:21:EA:63:15:A9:CE:07:E5:24:E4 Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 18F8125977B4C66FFD8B8F05AD87BD191B74CBB6 Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa Signing time: Thu 03 Apr 2025 05:00:02 +0000 ROA not before: Thu 03 Apr 2025 04:55:02 +0000 ROA not after: Thu 02 Apr 2026 05:00:02 +0000 asID: 38785 IP address blocks: 121.101.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 12:41:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:f8:12:59:77:b4:c6:6f:fd:8b:8f:05:ad:87:bd:19:1b:74:cb:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: Apr 3 04:55:02 2025 GMT Not After : Apr 2 05:00:02 2026 GMT Subject: CN=FD7E7973A15D9E0FB71021EA6315A9CE07E524E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:66:cf:ae:47:7a:35:52:1e:b9:bf:49:31:3c: c1:d1:41:9b:78:58:d6:09:cc:b1:9e:05:0b:ca:b3: 39:b4:69:a1:9a:ff:1c:1f:8e:28:4a:0d:9a:fe:21: 42:95:04:8d:8c:b1:80:f8:6d:32:58:bc:2d:b4:93: 70:f7:17:da:17:87:18:8c:04:df:f1:81:cc:21:e0: a4:9e:d6:06:4b:cd:b3:db:55:df:a9:5a:de:3a:9f: f7:56:ca:69:01:97:a6:a9:63:57:ba:a4:50:09:41: 13:89:30:3a:fa:2e:a0:ee:c6:56:18:24:8c:93:28: 9e:31:bb:9a:af:bb:24:bc:49:75:ba:95:77:f8:13: ed:03:02:4b:86:fb:48:1b:86:12:98:26:65:4d:42: 5f:af:de:df:ef:10:8f:9d:0c:a9:80:dd:4f:29:d0: 49:b4:44:67:19:8e:3f:3c:c1:d6:cc:18:b2:b7:9a: 93:a1:16:23:11:cc:df:fa:62:7e:3e:79:95:73:ad: 8a:e8:59:5e:96:2f:b6:e7:c4:eb:96:1f:7f:ed:06: 86:c9:17:85:3b:dd:36:7a:87:48:f3:e6:da:03:2e: 54:b3:f3:16:ea:29:e6:b2:b3:9e:4c:8a:c2:6f:f6: ce:68:27:82:10:ec:f4:ec:8b:13:d7:6c:62:51:b6: a2:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:7E:79:73:A1:5D:9E:0F:B7:10:21:EA:63:15:A9:CE:07:E5:24:E4 X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.186.0/24 Signature Algorithm: sha256WithRSAEncryption 99:14:54:f8:88:75:ed:06:31:8c:97:7b:96:17:94:14:0b:d5: 61:b9:af:b8:19:2c:d8:61:93:b2:1e:0d:a7:7d:2e:09:0e:39: b3:2c:b3:8b:00:1f:00:38:ef:87:d6:ed:29:23:ae:0d:14:97: b9:59:40:ce:c2:17:c9:e3:d0:94:9d:cd:92:c7:7e:e7:4b:fb: 24:69:b8:66:d1:10:aa:91:74:08:9d:87:b7:65:16:8d:6c:53: 83:b1:08:fa:e1:5d:3d:a0:b9:77:d2:cc:89:ff:c0:c6:73:6e: b4:ef:d5:6b:8e:82:91:23:cb:45:cf:7e:47:e0:a4:5c:f5:55: 21:e4:02:a7:5d:c9:75:8d:95:94:0f:84:7f:ea:c2:3b:8c:79: 2e:60:47:cd:60:6d:86:bf:8d:62:02:0c:d2:50:21:03:a0:29: 70:77:59:c9:ce:6f:b6:f4:61:48:49:e3:70:1f:72:ea:8a:86: 18:1d:41:3a:4f:b4:be:ac:eb:63:85:b2:b8:36:4c:72:36:75: 74:06:47:79:10:8a:8f:ca:58:ce:a4:41:5a:73:79:9a:ec:88: 18:a3:72:45:87:68:98:02:1d:0d:72:b1:78:4d:65:52:aa:8d: e6:4a:b3:db:62:6d:77:bd:11:57:20:4d:d8:fd:81:e8:9f:c7: 91:42:d3:9a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGPgSWXe0xm/9i48FrYe9GRt0y7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNTA0MDMwNDU1MDJaFw0yNjA0MDIwNTAwMDJaMDMxMTAvBgNV BAMTKEZEN0U3OTczQTE1RDlFMEZCNzEwMjFFQTYzMTVBOUNFMDdFNTI0RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3Zs+uR3o1Uh65v0kxPMHRQZt4 WNYJzLGeBQvKszm0aaGa/xwfjihKDZr+IUKVBI2MsYD4bTJYvC20k3D3F9oXhxiM BN/xgcwh4KSe1gZLzbPbVd+pWt46n/dWymkBl6apY1e6pFAJQROJMDr6LqDuxlYY JIyTKJ4xu5qvuyS8SXW6lXf4E+0DAkuG+0gbhhKYJmVNQl+v3t/vEI+dDKmA3U8p 0Em0RGcZjj88wdbMGLK3mpOhFiMRzN/6Yn4+eZVzrYroWV6WL7bnxOuWH3/tBobJ F4U73TZ6h0jz5toDLlSz8xbqKeays55MisJv9s5oJ4IQ7PTsixPXbGJRtqKlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/X55c6Fdng+3ECHqYxWpzgflJOQwHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NzJkZmJlLTRjYTAtNGE0Ni04 MDM3LTQ5NjhlZDk3Y2FkYy8wLzMxMzIzMTJlMzEzMDMxMmUzMTM4MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeWW6MA0GCSqG SIb3DQEBCwUAA4IBAQCZFFT4iHXtBjGMl3uWF5QUC9Vhua+4GSzYYZOyHg2nfS4J DjmzLLOLAB8AOO+H1u0pI64NFJe5WUDOwhfJ49CUnc2Sx37nS/skabhm0RCqkXQI nYe3ZRaNbFODsQj64V09oLl30syJ/8DGc26079VrjoKRI8tFz35H4KRc9VUh5AKn Xcl1jZWUD4R/6sI7jHkuYEfNYG2Gv41iAgzSUCEDoClwd1nJzm+29GFISeNwH3Lq ioYYHUE6T7S+rOtjhbK4NkxyNnV0Bkd5EIqPyljOpEFac3ma7IgYo3JFh2iYAh0N crF4TWVSqo3mSrPbYm13vRFXIE3Y/YHon8eRQtOa -----END CERTIFICATE-----Generated at Sun Apr 6 17:11:43 2025 by rpki-client