$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131362e3235342e3131352e302f32342d3234203d3e20313439373436.roa File: 3131362e3235342e3131352e302f32342d3234203d3e20313439373436.roa (raw, json) Hash identifier: /nevEPzljzS1GPlEHXnOO2d6UHLxx+c29+SvhwCD4hA= Subject key identifier: D2:A1:9C:95:37:CF:C3:1D:1D:96:24:51:FD:5A:91:AB:73:43:45:2D Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 44D47195EA32C136743DC3358B632F3F2357E885 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131362e3235342e3131352e302f32342d3234203d3e20313439373436.roa Signing time: Sat 21 Dec 2024 18:00:46 +0000 ROA not before: Sat 21 Dec 2024 17:55:46 +0000 ROA not after: Sat 20 Dec 2025 18:00:46 +0000 asID: 149746 IP address blocks: 116.254.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 13:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:d4:71:95:ea:32:c1:36:74:3d:c3:35:8b:63:2f:3f:23:57:e8:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Dec 21 17:55:46 2024 GMT Not After : Dec 20 18:00:46 2025 GMT Subject: CN=D2A19C9537CFC31D1D962451FD5A91AB7343452D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:30:47:03:61:b4:1c:e1:22:0d:f5:cc:53:57: 3c:68:eb:aa:8a:28:32:28:2a:ad:ba:69:ba:41:a9: c5:b7:fd:4e:6a:2e:d6:56:95:57:dd:be:d9:57:7d: ea:41:d5:d2:0f:ff:b8:e3:14:0d:c5:6a:3e:38:7f: 73:5f:d3:fe:69:25:29:1c:e3:4c:21:90:96:42:cb: 5d:f2:1a:fc:0a:41:63:eb:61:24:04:b9:e9:73:9e: d5:f1:bb:12:6f:97:33:da:84:35:1c:9b:4b:64:48: 18:b7:2c:5f:0b:fb:d1:b3:52:88:c9:8e:da:69:6d: 79:7f:79:97:b9:69:30:54:f7:b3:bd:fc:c2:f6:b6: ca:be:bd:41:6a:e7:7f:b5:4b:ac:2d:d3:a6:c5:9f: 6d:1e:22:ae:c1:1a:31:84:16:74:32:89:b5:a5:a6: 22:7e:77:e2:69:d3:e6:06:86:35:4a:4e:34:07:ac: 58:39:6a:f2:35:23:ff:3a:fb:4c:34:7a:5d:67:c5: cb:be:f9:1c:2b:57:2f:47:be:23:7f:90:94:5e:75: f6:fc:8e:c8:21:6f:ca:d2:dc:f9:61:dc:55:44:16: e6:7d:f0:6c:63:ec:9c:d6:cd:3b:63:07:0a:5c:e9: 22:ab:0c:28:aa:fb:ef:95:05:a0:ce:e4:74:96:5f: a4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A1:9C:95:37:CF:C3:1D:1D:96:24:51:FD:5A:91:AB:73:43:45:2D X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131362e3235342e3131352e302f32342d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.254.115.0/24 Signature Algorithm: sha256WithRSAEncryption 22:2a:f3:9a:a7:52:19:54:19:49:8d:6f:1d:1a:9d:7b:ba:8d: a8:b0:34:d5:a6:45:5e:5f:db:68:fb:7d:6c:a1:2a:a7:a6:34: 2a:20:4c:7f:e7:e9:6d:42:01:4d:ca:fe:8b:66:d0:a5:f7:96: e3:ad:24:f7:e0:0f:9a:25:fe:d5:a0:ce:95:e5:da:74:3d:6c: 1d:ff:26:a1:7e:52:5b:50:e1:6e:c4:eb:22:12:3e:ab:cf:b7: 2c:33:ca:9b:67:d5:2b:97:f5:35:32:f8:9e:02:83:60:58:87: c3:a5:e7:a2:b5:19:16:2e:b4:54:3e:d1:9f:cc:ff:a2:51:e0: a0:82:51:ca:70:1c:2c:27:54:0f:5f:1c:43:c7:c6:49:65:9e: 59:8d:3c:3f:02:ca:9e:ec:c8:0c:fc:95:56:1f:98:73:a0:8f: e5:76:02:44:88:ad:62:73:b2:4c:ad:0c:d7:f1:1f:30:0d:93: 2b:6f:e8:a8:3c:e1:26:ad:a8:06:f2:2e:60:f6:23:28:cb:b2: 19:6a:a9:e9:e9:5a:9a:73:91:3c:e1:b8:94:ac:24:fb:8b:b7: 2a:78:db:2f:39:7f:61:d7:91:f9:6c:47:49:96:9c:77:08:39: 11:14:b5:69:12:b8:44:d0:88:e4:50:b6:cc:74:98:3e:5d:7f: d0:bd:4c:43 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURNRxleoywTZ0PcM1i2MvPyNX6IUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNDEyMjExNzU1NDZaFw0yNTEyMjAxODAwNDZaMDMxMTAvBgNV BAMTKEQyQTE5Qzk1MzdDRkMzMUQxRDk2MjQ1MUZENUE5MUFCNzM0MzQ1MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0MEcDYbQc4SIN9cxTVzxo66qK KDIoKq26abpBqcW3/U5qLtZWlVfdvtlXfepB1dIP/7jjFA3Faj44f3Nf0/5pJSkc 40whkJZCy13yGvwKQWPrYSQEuelzntXxuxJvlzPahDUcm0tkSBi3LF8L+9GzUojJ jtppbXl/eZe5aTBU97O9/ML2tsq+vUFq53+1S6wt06bFn20eIq7BGjGEFnQyibWl piJ+d+Jp0+YGhjVKTjQHrFg5avI1I/86+0w0el1nxcu++RwrVy9HviN/kJRedfb8 jsghb8rS3Plh3FVEFuZ98Gxj7JzWzTtjBwpc6SKrDCiq+++VBaDO5HSWX6RZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU0qGclTfPwx0dliRR/VqRq3NDRS0wHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzEzNjJlMzIzNTM0MmUzMTMxMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB0/nMwDQYJ KoZIhvcNAQELBQADggEBACIq85qnUhlUGUmNbx0anXu6jaiwNNWmRV5f22j7fWyh KqemNCogTH/n6W1CAU3K/otm0KX3luOtJPfgD5ol/tWgzpXl2nQ9bB3/JqF+UltQ 4W7E6yISPqvPtywzyptn1SuX9TUy+J4Cg2BYh8Ol56K1GRYutFQ+0Z/M/6JR4KCC UcpwHCwnVA9fHEPHxkllnlmNPD8Cyp7syAz8lVYfmHOgj+V2AkSIrWJzskytDNfx HzANkytv6Kg84SatqAbyLmD2IyjLshlqqenpWppzkTzhuJSsJPuLtyp42y85f2HX kflsR0mWnHcIOREUtWkSuETQiORQtsx0mD5df9C9TEM= -----END CERTIFICATE-----Generated at Sun Apr 6 15:00:52 2025 by rpki-client