$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131312e36382e32342e302f32312d3234203d3e203535363636.roa File: 3131312e36382e32342e302f32312d3234203d3e203535363636.roa (raw, json) Hash identifier: g2oV0iGk+oSLBEAQ3+fcNmyGfdkZlXFUuvI/IByWsRg= Subject key identifier: FC:AC:4C:65:E3:BF:AF:F3:13:80:F5:D6:49:25:DC:FD:51:AA:18:32 Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 07BD98B80E4503AEB5207507B7F7132B33CCC0E6 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131312e36382e32342e302f32312d3234203d3e203535363636.roa Signing time: Mon 02 Jun 2025 02:05:08 +0000 ROA not before: Mon 02 Jun 2025 02:00:08 +0000 ROA not after: Mon 01 Jun 2026 02:05:08 +0000 asID: 55666 IP address blocks: 111.68.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:bd:98:b8:0e:45:03:ae:b5:20:75:07:b7:f7:13:2b:33:cc:c0:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jun 2 02:00:08 2025 GMT Not After : Jun 1 02:05:08 2026 GMT Subject: CN=FCAC4C65E3BFAFF31380F5D64925DCFD51AA1832 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:78:02:60:72:5a:16:de:d7:55:59:04:26:63: ce:cb:11:33:2b:12:4b:84:cc:e5:8f:5d:48:42:25: db:0e:05:d2:b4:6a:df:af:9d:99:61:3c:bc:fe:29: 3d:7d:ab:b6:d6:57:dd:68:ac:36:6a:b5:63:88:02: f5:2c:47:3e:5a:75:d4:2b:45:dd:84:b7:66:4f:ec: cf:cf:9c:14:06:16:f6:92:b7:8c:fc:11:fe:66:a8: 57:d6:04:03:e7:b6:84:56:27:13:19:73:6f:9f:2b: dd:89:95:89:a7:12:b5:b5:c3:c5:b6:12:1f:e7:79: 3c:ed:2a:a4:6e:b1:c8:07:d7:89:6c:f6:1c:ea:b5: b3:bd:79:eb:8c:d9:db:e4:60:db:03:16:1a:c8:52: a7:4d:32:45:2d:37:cd:95:e1:51:9a:9c:98:4d:05: 07:6a:51:ff:84:49:4b:39:53:3d:e0:cd:4f:7c:10: fc:56:14:c5:d9:e1:a3:75:0c:e4:e0:32:17:4d:67: 78:a8:be:52:3a:a4:00:4c:9e:57:82:7d:3f:b1:30: 0f:cf:8f:b0:b5:2e:35:39:8d:c6:31:7a:51:89:c9: 63:55:f2:9d:41:dc:3f:c5:dd:ba:c3:b3:71:f4:56: 11:2e:c6:c3:19:8b:59:5c:f7:14:86:c8:ae:2e:00: 33:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:AC:4C:65:E3:BF:AF:F3:13:80:F5:D6:49:25:DC:FD:51:AA:18:32 X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131312e36382e32342e302f32312d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.68.24.0/21 Signature Algorithm: sha256WithRSAEncryption 76:60:65:0f:c5:45:82:46:89:37:63:9c:b9:fa:e4:08:fc:9c: f2:a3:12:01:a8:a0:83:7a:65:e6:31:80:70:6c:68:18:cc:e2: 1d:e2:91:ab:ee:da:1c:2a:da:61:c0:24:60:da:8b:2d:03:aa: ae:0f:f8:84:7b:47:17:07:af:d8:50:cb:84:a1:57:c6:e9:af: c5:e7:3d:7c:85:bf:1d:e9:20:29:61:d1:fb:07:d1:4e:b2:50: e8:49:61:cc:39:a6:6e:e9:2a:3f:80:18:69:18:98:11:0a:f1: 80:91:b4:7c:4d:43:07:65:c8:3b:35:70:42:f1:87:e7:d4:0a: 3e:03:19:23:ec:54:40:be:5c:b0:fb:8e:b4:9b:76:ef:05:76: e1:5d:51:c0:7e:00:7d:c4:cd:e8:05:00:e1:ee:49:3c:21:f7: 5f:84:be:7a:16:78:c9:3c:b3:60:da:7c:50:09:df:28:88:46: fd:92:aa:9a:3a:48:7e:d9:e3:80:9c:2d:c1:77:51:d5:9d:2a: 18:81:2a:aa:56:ee:fe:a1:3a:75:b4:9b:80:9c:de:5a:6a:da: 6a:a5:10:14:13:9d:f9:d2:5b:61:2d:b0:67:3f:04:26:b5:8c: 5b:58:5d:8c:50:f5:d5:71:4a:96:23:0b:73:31:80:2f:16:b2: 29:34:7b:2e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUB72YuA5FA661IHUHt/cTKzPMwOYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNTA2MDIwMjAwMDhaFw0yNjA2MDEwMjA1MDhaMDMxMTAvBgNV BAMTKEZDQUM0QzY1RTNCRkFGRjMxMzgwRjVENjQ5MjVEQ0ZENTFBQTE4MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAeAJgcloW3tdVWQQmY87LETMr EkuEzOWPXUhCJdsOBdK0at+vnZlhPLz+KT19q7bWV91orDZqtWOIAvUsRz5addQr Rd2Et2ZP7M/PnBQGFvaSt4z8Ef5mqFfWBAPntoRWJxMZc2+fK92JlYmnErW1w8W2 Eh/neTztKqRuscgH14ls9hzqtbO9eeuM2dvkYNsDFhrIUqdNMkUtN82V4VGanJhN BQdqUf+ESUs5Uz3gzU98EPxWFMXZ4aN1DOTgMhdNZ3iovlI6pABMnleCfT+xMA/P j7C1LjU5jcYxelGJyWNV8p1B3D/F3brDs3H0VhEuxsMZi1lc9xSGyK4uADNlAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU/KxMZeO/r/MTgPXWSSXc/VGqGDIwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzEzMTJlMzYzODJlMzIzNDJlMzAyZjMyMzEy ZDMyMzQyMDNkM2UyMDM1MzUzNjM2MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANvRBgwDQYJKoZIhvcN AQELBQADggEBAHZgZQ/FRYJGiTdjnLn65Aj8nPKjEgGooIN6ZeYxgHBsaBjM4h3i kavu2hwq2mHAJGDaiy0Dqq4P+IR7RxcHr9hQy4ShV8bpr8XnPXyFvx3pIClh0fsH 0U6yUOhJYcw5pm7pKj+AGGkYmBEK8YCRtHxNQwdlyDs1cELxh+fUCj4DGSPsVEC+ XLD7jrSbdu8FduFdUcB+AH3EzegFAOHuSTwh91+EvnoWeMk8s2DafFAJ3yiIRv2S qpo6SH7Z44CcLcF3UdWdKhiBKqpW7v6hOnW0m4Cc3lpq2mqlEBQTnfnSW2EtsGc/ BCa1jFtYXYxQ9dVxSpYjC3MxgC8Wsik0ey4= -----END CERTIFICATE-----Generated at Sun Jun 8 11:34:14 2025 by rpki-client