$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131362e3235342e3131322e302f32312d3234203d3e203535363636.roa File: 3131362e3235342e3131322e302f32312d3234203d3e203535363636.roa (raw, json) Hash identifier: ne4Fd9z4GMtggr+H/mTwmUbV1S7/FJjgjsGd2sQh0+E= Subject key identifier: A5:8A:8A:36:87:3C:EF:FE:CC:11:91:B7:A7:53:34:0A:46:EF:35:EC Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 71BD7909935AF488EBFC32A09F72E10638FC2AAE Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131362e3235342e3131322e302f32312d3234203d3e203535363636.roa Signing time: Mon 02 Jun 2025 02:05:08 +0000 ROA not before: Mon 02 Jun 2025 02:00:08 +0000 ROA not after: Mon 01 Jun 2026 02:05:08 +0000 asID: 55666 IP address blocks: 116.254.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:bd:79:09:93:5a:f4:88:eb:fc:32:a0:9f:72:e1:06:38:fc:2a:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jun 2 02:00:08 2025 GMT Not After : Jun 1 02:05:08 2026 GMT Subject: CN=A58A8A36873CEFFECC1191B7A753340A46EF35EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:99:74:64:54:75:99:1a:d5:8a:d2:83:9c:6c: 56:9b:2c:02:b9:7e:08:54:55:a0:de:f5:92:35:96: 6c:b9:2b:c0:33:c5:3c:cd:d8:6b:72:5e:6a:f1:af: 8f:0f:eb:ff:52:14:73:2e:1a:f4:7c:74:1d:5e:e2: 55:6b:09:0b:d5:f6:33:01:4e:84:3b:b5:c5:16:19: 0b:67:7b:7c:47:ff:26:0a:19:fb:a5:da:e0:cf:c9: a6:89:a9:77:70:30:9f:aa:3d:ef:55:ad:c1:d1:07: bc:f6:55:96:ec:18:15:07:47:a3:4e:d2:a5:7a:ea: b2:80:28:dc:a2:f2:76:1a:0b:59:6b:7d:91:bd:4a: b3:e9:bc:89:ed:9c:2a:76:26:2b:4b:01:83:f0:60: 92:e0:b6:73:4c:96:e7:a3:ec:8f:c2:6d:09:d9:dd: c9:fa:6c:5c:fa:44:a9:8c:be:7d:16:8e:30:04:f0: cf:d5:2d:35:d2:b5:5f:2e:21:68:f8:c5:ac:da:34: 9c:d5:dc:a1:9d:57:e3:23:eb:67:6a:4a:31:1b:55: 18:b9:e3:c7:07:d3:7c:f9:7e:ad:e8:c9:85:23:17: dc:82:ab:24:83:f2:23:6a:64:e8:b9:14:29:3e:4c: 9d:c0:fa:51:b0:e2:33:3d:3d:6a:de:9c:df:e6:3e: c5:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:8A:8A:36:87:3C:EF:FE:CC:11:91:B7:A7:53:34:0A:46:EF:35:EC X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131362e3235342e3131322e302f32312d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.254.112.0/21 Signature Algorithm: sha256WithRSAEncryption b9:1e:f3:9c:d3:e0:e7:6e:a9:3e:3b:da:ae:56:e7:35:45:91: 29:24:86:16:eb:f0:d3:72:fd:f5:c7:58:fc:c6:57:42:69:37: 04:6b:4d:a9:36:2c:a9:27:01:7c:9f:5b:f8:ad:d3:df:9b:ac: b0:84:8e:cf:27:21:aa:45:d7:9a:54:4e:85:83:d1:6a:68:53: 2e:ed:f1:27:49:1e:eb:58:8f:f8:9c:76:33:07:ca:56:1a:7a: 09:81:15:aa:7c:e9:8a:54:b6:13:09:34:25:e8:88:92:99:e9: 13:3e:ed:11:f7:22:47:da:6c:a6:27:c9:71:a9:6c:99:ae:ea: bd:5a:77:19:0e:4f:5d:b6:35:fc:cf:7f:37:19:0e:8e:31:bb: 6e:86:b2:fe:32:de:f1:b3:4d:08:68:68:37:e8:75:96:cd:d1: b9:15:6d:02:bc:27:4a:2f:35:83:5d:ca:51:17:17:0f:21:24: 16:e5:39:ac:4a:03:09:a1:6f:ee:7d:b3:89:0d:d8:73:30:80: 36:1c:fa:ca:55:2b:75:6d:ac:93:de:2f:12:40:9b:15:b7:85: db:d8:5f:34:c2:03:ad:ce:fc:1a:89:89:b2:50:72:55:e2:26: b3:3f:4a:30:9a:e4:64:e2:25:04:3f:12:9c:31:36:7b:97:d1: fb:a8:7e:31 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcb15CZNa9Ijr/DKgn3LhBjj8Kq4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNTA2MDIwMjAwMDhaFw0yNjA2MDEwMjA1MDhaMDMxMTAvBgNV BAMTKEE1OEE4QTM2ODczQ0VGRkVDQzExOTFCN0E3NTMzNDBBNDZFRjM1RUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCumXRkVHWZGtWK0oOcbFabLAK5 fghUVaDe9ZI1lmy5K8AzxTzN2GtyXmrxr48P6/9SFHMuGvR8dB1e4lVrCQvV9jMB ToQ7tcUWGQtne3xH/yYKGful2uDPyaaJqXdwMJ+qPe9VrcHRB7z2VZbsGBUHR6NO 0qV66rKAKNyi8nYaC1lrfZG9SrPpvIntnCp2JitLAYPwYJLgtnNMluej7I/CbQnZ 3cn6bFz6RKmMvn0WjjAE8M/VLTXStV8uIWj4xazaNJzV3KGdV+Mj62dqSjEbVRi5 48cH03z5fq3oyYUjF9yCqySD8iNqZOi5FCk+TJ3A+lGw4jM9PWrenN/mPsXJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpYqKNoc87/7MEZG3p1M0CkbvNewwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzEzNjJlMzIzNTM0MmUzMTMxMzIyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzNTM1MzYzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDdP5wMA0GCSqG SIb3DQEBCwUAA4IBAQC5HvOc0+Dnbqk+O9quVuc1RZEpJIYW6/DTcv31x1j8xldC aTcEa02pNiypJwF8n1v4rdPfm6ywhI7PJyGqRdeaVE6Fg9FqaFMu7fEnSR7rWI/4 nHYzB8pWGnoJgRWqfOmKVLYTCTQl6IiSmekTPu0R9yJH2mymJ8lxqWyZruq9WncZ Dk9dtjX8z383GQ6OMbtuhrL+Mt7xs00IaGg36HWWzdG5FW0CvCdKLzWDXcpRFxcP ISQW5TmsSgMJoW/ufbOJDdhzMIA2HPrKVSt1bayT3i8SQJsVt4Xb2F80wgOtzvwa iYmyUHJV4iazP0owmuRk4iUEPxKcMTZ7l9H7qH4x -----END CERTIFICATE-----Generated at Sat Jun 7 12:32:49 2025 by rpki-client