$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139312e302f32342d3234203d3e203338373835.roa File: 3132312e3130312e3139312e302f32342d3234203d3e203338373835.roa (raw, json) Hash identifier: EV9DFisiiygvSyZKF0tZ0Lxf1X12CCisGawptespLsI= Subject key identifier: A9:4C:E0:3F:C0:CE:6F:5C:10:CC:43:CD:8C:19:96:C9:44:D0:FD:C8 Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 65BDFECE671A150833BFB5A9CB9D0DB7210EE036 Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139312e302f32342d3234203d3e203338373835.roa Signing time: Thu 03 Apr 2025 05:00:02 +0000 ROA not before: Thu 03 Apr 2025 04:55:02 +0000 ROA not after: Thu 02 Apr 2026 05:00:02 +0000 asID: 38785 IP address blocks: 121.101.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 12:41:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:bd:fe:ce:67:1a:15:08:33:bf:b5:a9:cb:9d:0d:b7:21:0e:e0:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: Apr 3 04:55:02 2025 GMT Not After : Apr 2 05:00:02 2026 GMT Subject: CN=A94CE03FC0CE6F5C10CC43CD8C1996C944D0FDC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:78:4b:27:d1:be:4b:2e:d3:38:71:cd:62:45: 62:c5:c8:c8:63:ce:87:bb:68:e5:d0:64:83:30:30: cc:8e:4e:cf:7b:89:13:46:71:0e:86:b0:64:d5:83: fb:29:11:8d:96:da:39:56:67:14:f6:44:a0:96:6f: 35:a3:df:af:f2:91:3c:e4:07:89:ce:09:cf:c3:a7: 48:af:7c:3b:fd:d2:66:78:ab:82:b6:aa:fe:93:13: a5:49:2a:e7:97:7b:a2:74:7d:53:a3:39:63:10:a8: d8:6a:7b:a0:ae:c3:9f:27:dd:db:47:4d:85:c1:cf: 4b:d7:d4:d2:14:c3:d2:02:70:98:76:7d:a0:13:90: 2a:53:15:61:ac:be:38:25:c2:ce:f9:c7:ff:01:5a: c6:3e:3e:0f:36:51:49:4d:69:fc:f8:bd:a3:3d:ca: df:b0:ee:e8:94:57:ff:05:91:82:18:34:76:42:25: 91:f9:56:29:80:63:d8:14:7d:75:21:15:62:61:08: 8c:9f:91:90:76:cb:ee:91:01:c0:7b:b2:ac:3d:fa: f3:76:5c:84:b0:ee:af:57:e1:36:f3:62:db:45:16: 8f:7d:70:1a:d6:c3:f2:23:53:22:2b:58:e2:af:da: aa:b8:e7:87:0c:0f:00:dd:5a:40:73:a4:cd:61:ee: 2d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:4C:E0:3F:C0:CE:6F:5C:10:CC:43:CD:8C:19:96:C9:44:D0:FD:C8 X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139312e302f32342d3234203d3e203338373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.191.0/24 Signature Algorithm: sha256WithRSAEncryption 42:73:24:1d:d6:32:47:73:15:1f:56:a8:8e:5c:80:72:51:db: e6:14:fe:cd:53:c6:5f:36:f0:c0:66:46:bd:22:b7:0b:21:ee: fa:6b:de:0c:9f:93:e2:66:5a:4f:62:3d:bc:71:e5:d3:6b:65: 14:f6:0f:e8:ce:47:60:06:23:cc:a3:12:68:ba:52:7e:33:e0: e4:65:c3:32:d3:92:0b:e1:b9:5f:3b:79:c9:7a:db:7f:3f:ad: 55:4e:89:03:55:65:8d:c9:68:51:3e:33:41:aa:66:ef:f5:fc: f9:be:91:5e:aa:19:1b:7e:39:48:c1:93:1e:a9:5c:fe:5f:eb: e6:df:42:eb:fd:68:f0:39:22:0b:a5:bb:2b:fc:aa:e1:2d:91: 78:93:c9:e2:57:2a:72:f3:e2:ce:47:f6:43:82:7a:76:62:74: 66:d1:06:8e:53:51:7f:6e:a8:f2:16:a8:8d:c7:e6:8a:36:25: b6:0a:6e:b5:0d:80:96:1e:a2:7b:d1:09:ab:d6:71:54:3f:4f: 23:49:b6:ba:22:b6:ed:fd:fb:8b:6c:24:b3:1d:b3:35:8c:54: 77:c8:70:83:f3:6e:72:43:58:a1:22:67:bc:95:bf:69:5b:c7: 0a:86:2a:14:c3:f7:ce:98:09:74:64:ac:52:75:76:a3:10:e4: 82:00:94:1b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZb3+zmcaFQgzv7Wpy50NtyEO4DYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNTA0MDMwNDU1MDJaFw0yNjA0MDIwNTAwMDJaMDMxMTAvBgNV BAMTKEE5NENFMDNGQzBDRTZGNUMxMENDNDNDRDhDMTk5NkM5NDREMEZEQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjeEsn0b5LLtM4cc1iRWLFyMhj zoe7aOXQZIMwMMyOTs97iRNGcQ6GsGTVg/spEY2W2jlWZxT2RKCWbzWj36/ykTzk B4nOCc/Dp0ivfDv90mZ4q4K2qv6TE6VJKueXe6J0fVOjOWMQqNhqe6Cuw58n3dtH TYXBz0vX1NIUw9ICcJh2faATkCpTFWGsvjglws75x/8BWsY+Pg82UUlNafz4vaM9 yt+w7uiUV/8FkYIYNHZCJZH5VimAY9gUfXUhFWJhCIyfkZB2y+6RAcB7sqw9+vN2 XISw7q9X4TbzYttFFo99cBrWw/IjUyIrWOKv2qq454cMDwDdWkBzpM1h7i3RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqUzgP8DOb1wQzEPNjBmWyUTQ/cgwHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NzJkZmJlLTRjYTAtNGE0Ni04 MDM3LTQ5NjhlZDk3Y2FkYy8wLzMxMzIzMTJlMzEzMDMxMmUzMTM5MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeWW/MA0GCSqG SIb3DQEBCwUAA4IBAQBCcyQd1jJHcxUfVqiOXIByUdvmFP7NU8ZfNvDAZka9IrcL Ie76a94Mn5PiZlpPYj28ceXTa2UU9g/ozkdgBiPMoxJoulJ+M+DkZcMy05IL4blf O3nJett/P61VTokDVWWNyWhRPjNBqmbv9fz5vpFeqhkbfjlIwZMeqVz+X+vm30Lr /WjwOSILpbsr/KrhLZF4k8niVypy8+LOR/ZDgnp2YnRm0QaOU1F/bqjyFqiNx+aK NiW2Cm61DYCWHqJ70Qmr1nFUP08jSba6Irbt/fuLbCSzHbM1jFR3yHCD825yQ1ih Ime8lb9pW8cKhioUw/fOmAl0ZKxSdXajEOSCAJQb -----END CERTIFICATE-----Generated at Sun Apr 6 17:09:51 2025 by rpki-client