$ rpki-client -vvf repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/36312e31342e3234382e302f32332d3233203d3e203633353031.roa File: 36312e31342e3234382e302f32332d3233203d3e203633353031.roa (raw, json) Hash identifier: 8Ic/4fgaL4he+8YIPf+e8lFQ10UurrN6RokKwkpyH5g= Subject key identifier: 4D:8A:76:B9:21:6B:41:F7:61:34:C3:26:4C:38:35:91:7B:28:1F:96 Certificate issuer: /CN=455696A81F434F9A36D66F455F4B3C43855A18E1 Certificate serial: 365155F3F3D6FAD00E2362DBB71CDD59F9EB87E2 Authority key identifier: 45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/36312e31342e3234382e302f32332d3233203d3e203633353031.roa Signing time: Sun 25 May 2025 19:00:01 +0000 ROA not before: Sun 25 May 2025 18:55:01 +0000 ROA not after: Sun 24 May 2026 19:00:01 +0000 asID: 63501 IP address blocks: 61.14.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.crl rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 10:41:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:51:55:f3:f3:d6:fa:d0:0e:23:62:db:b7:1c:dd:59:f9:eb:87:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=455696A81F434F9A36D66F455F4B3C43855A18E1 Validity Not Before: May 25 18:55:01 2025 GMT Not After : May 24 19:00:01 2026 GMT Subject: CN=4D8A76B9216B41F76134C3264C3835917B281F96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:54:f2:cd:13:b4:ff:ad:8e:2e:6b:02:29:fb: 43:80:df:c3:9f:11:a2:bf:9d:79:d1:65:23:1d:16: 60:0c:e3:2c:63:86:52:bb:5e:4c:36:17:dc:67:f3: d2:50:cc:42:d0:52:fd:c9:39:cd:5a:95:e4:19:cc: 63:ce:1a:ed:d0:34:11:a1:33:11:82:a7:3d:14:bc: 60:8e:3d:b8:82:d6:b2:68:46:75:ef:c7:a4:ab:a8: 1d:5c:e7:27:79:42:fb:bb:dd:4f:ff:6c:33:ad:f6: c9:e3:22:3e:5c:4c:f7:79:33:3b:ab:01:ac:c5:9c: d4:b1:eb:ae:fc:af:21:01:48:7b:57:fa:01:ef:15: 97:e9:94:bb:03:0d:96:1d:4d:67:77:46:a9:62:c0: cb:eb:82:75:16:eb:c9:d0:c5:6c:b9:65:cc:32:7b: d7:9c:2d:61:7e:f6:a6:78:8c:2c:40:1c:ef:31:f7: 11:8e:29:26:fc:b8:03:b1:32:09:c7:19:f9:53:6b: 71:3d:c9:12:4e:dd:bf:98:b2:f0:4e:83:e0:f0:4e: 74:26:05:6e:56:f6:a3:d3:4d:92:c5:38:77:83:ce: 0b:27:40:9d:47:de:d8:65:fd:b3:6f:cf:f0:19:59: f0:de:6c:03:ee:ba:b3:3e:ba:be:89:f1:81:58:f9: 7a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:8A:76:B9:21:6B:41:F7:61:34:C3:26:4C:38:35:91:7B:28:1F:96 X509v3 Authority Key Identifier: keyid:45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/36312e31342e3234382e302f32332d3233203d3e203633353031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.14.248.0/23 Signature Algorithm: sha256WithRSAEncryption d5:33:fe:cc:57:fa:8a:89:be:d1:d9:76:63:4b:e5:4d:db:13: 08:4a:3c:b7:d8:47:d0:3f:79:b5:4d:97:9c:3b:65:13:1c:d4: 6e:c7:79:27:d5:f4:83:83:56:b0:de:f0:3b:17:88:60:20:8b: c3:9e:a1:78:c6:a1:56:c7:ad:25:cb:fe:46:73:d3:5a:b4:c8: 9c:e3:63:6e:fc:38:fd:69:2d:31:32:f8:cb:d1:3e:74:dd:47: 6c:d1:c0:77:b6:76:fc:e1:89:84:22:fc:b6:2b:00:28:ec:84: 75:aa:7d:78:f4:58:49:99:59:0e:d9:86:f8:b6:b1:69:f3:15: fa:aa:70:6c:cf:47:31:af:65:f9:fe:6d:1f:91:0e:43:7c:5c: 4b:7b:a1:b4:71:36:5b:51:5e:cc:34:c6:c8:49:ee:5a:34:d5: 2d:70:c9:af:41:6e:0d:9c:9c:61:50:f0:b2:08:76:c2:41:f8: 27:10:c7:c4:70:c3:3d:9d:f8:5a:a0:e4:b3:70:0c:0c:c3:4e: 63:05:2a:ac:4f:50:73:18:a5:33:28:f3:94:56:be:ac:ec:41: 8d:d1:5f:71:76:7c:c8:ca:f0:d8:2a:b7:8e:22:aa:9e:29:77: dc:28:dd:0f:61:60:70:db:85:b4:60:2a:09:ae:f2:7a:89:43: 1b:25:34:1d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUNlFV8/PW+tAOI2LbtxzdWfnrh+IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU1Njk2QTgxRjQzNEY5QTM2RDY2RjQ1NUY0QjNDNDM4 NTVBMThFMTAeFw0yNTA1MjUxODU1MDFaFw0yNjA1MjQxOTAwMDFaMDMxMTAvBgNV BAMTKDREOEE3NkI5MjE2QjQxRjc2MTM0QzMyNjRDMzgzNTkxN0IyODFGOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeVPLNE7T/rY4uawIp+0OA38Of EaK/nXnRZSMdFmAM4yxjhlK7Xkw2F9xn89JQzELQUv3JOc1aleQZzGPOGu3QNBGh MxGCpz0UvGCOPbiC1rJoRnXvx6SrqB1c5yd5Qvu73U//bDOt9snjIj5cTPd5Mzur AazFnNSx6678ryEBSHtX+gHvFZfplLsDDZYdTWd3RqliwMvrgnUW68nQxWy5Zcwy e9ecLWF+9qZ4jCxAHO8x9xGOKSb8uAOxMgnHGflTa3E9yRJO3b+YsvBOg+DwTnQm BW5W9qPTTZLFOHeDzgsnQJ1H3thl/bNvz/AZWfDebAPuurM+ur6J8YFY+XopAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUTYp2uSFrQfdhNMMmTDg1kXsoH5YwHwYDVR0j BBgwFoAURVaWqB9DT5o21m9FX0s8Q4VaGOEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZDkxOGIxNS1lNjNlLTRiMzgtYTA1Yy02NTBmYjQ5ZjA1OTQvMC80NTU2OTZBODFG NDM0RjlBMzZENjZGNDU1RjRCM0M0Mzg1NUExOEUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU1Njk2QTgxRjQzNEY5QTM2RDY2RjQ1NUY0QjNDNDM4NTVB MThFMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FkOTE4YjE1LWU2M2UtNGIzOC1h MDVjLTY1MGZiNDlmMDU5NC8wLzM2MzEyZTMxMzQyZTMyMzQzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM2MzMzNTMwMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAE9DvgwDQYJKoZIhvcN AQELBQADggEBANUz/sxX+oqJvtHZdmNL5U3bEwhKPLfYR9A/ebVNl5w7ZRMc1G7H eSfV9IODVrDe8DsXiGAgi8OeoXjGoVbHrSXL/kZz01q0yJzjY278OP1pLTEy+MvR PnTdR2zRwHe2dvzhiYQi/LYrACjshHWqfXj0WEmZWQ7Zhvi2sWnzFfqqcGzPRzGv Zfn+bR+RDkN8XEt7obRxNltRXsw0xshJ7lo01S1wya9Bbg2cnGFQ8LIIdsJB+CcQ x8Rwwz2d+Fqg5LNwDAzDTmMFKqxPUHMYpTMo85RWvqzsQY3RX3F2fMjK8Ngqt44i qp4pd9wo3Q9hYHDbhbRgKgmu8nqJQxslNB0= -----END CERTIFICATE-----Generated at Sat Jun 7 04:04:53 2025 by rpki-client