$ rpki-client -vvf repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130312e35302e302e302f32322d3234203d3e203535363838.roa File: 3130312e35302e302e302f32322d3234203d3e203535363838.roa (raw, json) Hash identifier: JE0sJw2Y30gQbCmAIhnjpinJa8eG7Fgewlr8Jax6ero= Subject key identifier: 7A:1E:84:83:C8:57:45:66:E2:E5:F5:A5:93:BD:BD:DE:16:A2:C7:2A Certificate issuer: /CN=ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353 Certificate serial: 607E9479A2ACCEC6A59DF3EF6B35FC65BD9D9FC2 Authority key identifier: AC:C3:D7:9A:B1:BE:F6:2B:C0:09:5B:6F:6A:C3:F3:44:6A:A9:03:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130312e35302e302e302f32322d3234203d3e203535363838.roa Signing time: Mon 02 Jun 2025 01:02:48 +0000 ROA not before: Mon 02 Jun 2025 00:57:48 +0000 ROA not after: Mon 01 Jun 2026 01:02:48 +0000 asID: 55688 IP address blocks: 101.50.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.crl rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:7e:94:79:a2:ac:ce:c6:a5:9d:f3:ef:6b:35:fc:65:bd:9d:9f:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353 Validity Not Before: Jun 2 00:57:48 2025 GMT Not After : Jun 1 01:02:48 2026 GMT Subject: CN=7A1E8483C8574566E2E5F5A593BDBDDE16A2C72A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:30:63:88:4b:65:24:49:eb:1c:1a:e9:38:b3: dd:05:17:10:8f:db:0d:e7:4f:86:95:0e:34:b5:a1: f7:f9:d9:92:b5:04:86:ce:21:d1:96:51:ff:d6:1a: 5c:ad:19:3c:ea:6a:87:16:0d:39:f1:fa:f0:c8:bd: a7:8f:53:5d:c0:78:dd:22:c3:03:f7:62:9b:7a:89: 7b:03:9e:3a:0a:48:10:80:61:58:95:84:b0:16:42: ae:e0:da:16:fb:ac:ee:8d:b3:9c:36:b8:df:e7:14: 3a:b0:30:05:6c:f1:aa:43:c8:aa:2b:ab:0e:b1:15: b3:a0:7a:4d:40:40:82:17:d9:2d:00:66:f6:af:08: c7:06:79:e8:be:a5:3d:59:ef:ac:89:3d:e4:a0:8e: 25:6e:42:40:d2:aa:c5:46:9a:77:22:76:57:61:25: 84:cc:47:2b:a3:83:c4:15:42:ec:73:4f:00:01:3e: f3:40:94:33:7d:fa:c6:26:e1:fa:a1:b5:80:60:f0: 7f:b8:a9:fa:2c:08:0e:ee:12:42:a2:d5:77:27:e2: 47:d9:f8:a7:cd:49:69:d0:37:be:5b:e6:84:bc:10: 88:ff:44:26:15:20:4b:41:43:36:f5:16:3a:b1:e3: 10:b1:4a:a4:26:ab:09:02:6a:fd:97:2b:c3:9a:83: 6d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:1E:84:83:C8:57:45:66:E2:E5:F5:A5:93:BD:BD:DE:16:A2:C7:2A X509v3 Authority Key Identifier: keyid:AC:C3:D7:9A:B1:BE:F6:2B:C0:09:5B:6F:6A:C3:F3:44:6A:A9:03:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130312e35302e302e302f32322d3234203d3e203535363838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.50.0.0/22 Signature Algorithm: sha256WithRSAEncryption ab:17:02:b0:b2:54:08:56:a3:19:66:ab:9d:43:e2:30:71:e6: 4d:80:a2:17:ce:2e:39:c4:dd:8a:fa:7c:11:5b:92:df:88:4d: 60:75:c5:88:16:01:fc:82:a6:88:51:9e:0a:d2:4b:2b:53:f2: a7:13:2a:01:38:1b:b7:65:5b:3d:b5:d8:84:9e:93:b3:6f:f5: 05:5e:9d:2c:8e:ad:9b:3b:10:3e:96:38:4b:a5:cb:e0:22:72: 19:39:07:a2:7e:72:7f:e3:4f:fb:ff:ad:5e:83:0c:4e:5d:86: 82:5f:b7:bf:fe:47:1c:f3:14:f4:0a:e0:66:80:39:7d:42:3d: 19:4a:54:01:26:58:f3:7c:ed:01:b4:83:4a:0c:d2:14:1c:6a: 57:65:f7:2a:ec:92:39:60:df:bf:4b:85:10:b7:2f:cb:dd:ca: 87:b3:0d:32:eb:88:38:e7:f3:3a:ac:c0:94:e7:34:b4:93:d2: 84:c0:70:06:59:f2:e5:c4:a7:32:84:08:f5:8f:0c:6f:be:ce: 7f:7c:13:5d:a9:d2:84:a5:a0:ba:49:54:25:33:30:83:aa:ad: 0d:ee:44:97:f3:56:31:18:02:fe:07:a7:b6:60:63:50:b5:92: 3a:aa:55:30:f6:d8:35:54:33:5e:60:06:1c:52:88:8f:7b:a9: c7:8d:e7:b0 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUYH6UeaKszsalnfPvazX8Zb2dn8IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUNDM0Q3OUFCMUJFRjYyQkMwMDk1QjZGNkFDM0YzNDQ2 QUE5MDM1MzAeFw0yNTA2MDIwMDU3NDhaFw0yNjA2MDEwMTAyNDhaMDMxMTAvBgNV BAMTKDdBMUU4NDgzQzg1NzQ1NjZFMkU1RjVBNTkzQkRCRERFMTZBMkM3MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4MGOIS2UkSescGuk4s90FFxCP 2w3nT4aVDjS1off52ZK1BIbOIdGWUf/WGlytGTzqaocWDTnx+vDIvaePU13AeN0i wwP3Ypt6iXsDnjoKSBCAYViVhLAWQq7g2hb7rO6Ns5w2uN/nFDqwMAVs8apDyKor qw6xFbOgek1AQIIX2S0AZvavCMcGeei+pT1Z76yJPeSgjiVuQkDSqsVGmncidldh JYTMRyujg8QVQuxzTwABPvNAlDN9+sYm4fqhtYBg8H+4qfosCA7uEkKi1Xcn4kfZ +KfNSWnQN75b5oS8EIj/RCYVIEtBQzb1Fjqx4xCxSqQmqwkCav2XK8Oag21pAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUeh6Eg8hXRWbi5fWlk7293haixyowHwYDVR0j BBgwFoAUrMPXmrG+9ivACVtvasPzRGqpA1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzU4YzgwZS1hMzI4LTRmOGMtYTAzZi05MWMzYzI2MjE0YTIvMC9BQ0MzRDc5QUIx QkVGNjJCQzAwOTVCNkY2QUMzRjM0NDZBQTkwMzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUNDM0Q3OUFCMUJFRjYyQkMwMDk1QjZGNkFDM0YzNDQ2QUE5 MDM1My5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTc1OGM4MGUtYTMyOC00ZjhjLWEw M2YtOTFjM2MyNjIxNGEyLzAvMzEzMDMxMmUzNTMwMmUzMDJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDM1MzUzNjM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJlMgAwDQYJKoZIhvcNAQEL BQADggEBAKsXArCyVAhWoxlmq51D4jBx5k2AohfOLjnE3Yr6fBFbkt+ITWB1xYgW AfyCpohRngrSSytT8qcTKgE4G7dlWz212ISek7Nv9QVenSyOrZs7ED6WOEuly+Ai chk5B6J+cn/jT/v/rV6DDE5dhoJft7/+RxzzFPQK4GaAOX1CPRlKVAEmWPN87QG0 g0oM0hQcaldl9yrskjlg379LhRC3L8vdyoezDTLriDjn8zqswJTnNLST0oTAcAZZ 8uXEpzKECPWPDG++zn98E12p0oSloLpJVCUzMIOqrQ3uRJfzVjEYAv4Hp7ZgY1C1 kjqqVTD22DVUM15gBhxSiI97qceN57A= -----END CERTIFICATE-----Generated at Thu Jun 5 18:12:14 2025 by rpki-client