$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131392e322e34382e302f32312d3234203d3e203535363636.roa File: 3131392e322e34382e302f32312d3234203d3e203535363636.roa (raw, json) Hash identifier: 2Y6D9qyT24i+mrDmXDYxZ/h+kMGeojU/2MwD0/st0XM= Subject key identifier: 77:1F:72:99:3E:E6:7B:FF:48:86:EF:DA:42:7E:42:DD:A0:A4:3F:9D Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 29AA245EEB4C429DCBBD923BCAEF5ACA6A0F26E9 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131392e322e34382e302f32312d3234203d3e203535363636.roa Signing time: Mon 02 Jun 2025 02:05:09 +0000 ROA not before: Mon 02 Jun 2025 02:00:09 +0000 ROA not after: Mon 01 Jun 2026 02:05:09 +0000 asID: 55666 IP address blocks: 119.2.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:aa:24:5e:eb:4c:42:9d:cb:bd:92:3b:ca:ef:5a:ca:6a:0f:26:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jun 2 02:00:09 2025 GMT Not After : Jun 1 02:05:09 2026 GMT Subject: CN=771F72993EE67BFF4886EFDA427E42DDA0A43F9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f2:25:52:b9:b0:65:4b:36:82:d8:32:67:b8: f4:86:a1:7e:db:dc:a5:40:77:dc:34:9f:00:81:03: 41:43:28:82:de:85:11:c4:b0:82:8f:6c:63:90:f1: bf:5f:84:f1:30:6a:4b:bd:d2:09:72:1c:bc:dd:54: 4d:bc:bd:99:dc:38:a2:ab:3c:f3:af:14:bf:56:1e: b0:fd:96:d8:dd:0f:c5:b4:1b:5f:b0:09:b7:be:49: ac:18:d8:8b:2b:55:ef:98:f9:37:9d:d6:3e:96:53: d4:73:e2:41:44:3f:d7:0f:ed:cb:5d:29:c6:ee:b6: 31:1d:d7:00:82:19:89:b7:14:ae:7e:e1:52:3f:28: 6a:a4:1b:72:e0:a5:2f:da:25:14:a0:6b:2d:7d:12: 41:d3:cb:a2:23:19:ea:e5:ec:dd:37:e9:42:fc:eb: 0c:ad:fd:66:dd:2c:97:53:a8:4f:41:d6:b2:5c:1f: 56:34:75:5a:67:7c:03:30:14:42:a8:b9:3b:6c:98: 20:d2:09:c9:7d:8d:0e:65:7d:89:a8:71:c3:e2:b6: e8:58:8f:6e:e3:9a:e8:59:ef:94:76:fd:bc:96:0b: 0d:09:31:c8:4e:27:e5:70:90:b4:bc:02:50:a0:eb: fa:c3:f6:03:55:46:72:64:6a:e2:36:a2:1b:c1:c6: 97:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:1F:72:99:3E:E6:7B:FF:48:86:EF:DA:42:7E:42:DD:A0:A4:3F:9D X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131392e322e34382e302f32312d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.48.0/21 Signature Algorithm: sha256WithRSAEncryption 6e:53:e6:db:bd:60:3e:f3:f3:6d:44:5a:aa:b1:ff:d7:bc:34: 05:08:48:4e:9f:14:1a:ca:7b:2b:9f:cb:bc:ac:d9:00:cb:5b: b1:84:43:60:3b:07:e0:50:e2:7b:db:ac:41:35:8f:33:08:52: fe:c6:b6:3b:99:e1:95:79:68:bc:4b:ce:65:23:06:c6:f5:64: b3:f4:b3:6e:1d:88:a1:c9:15:30:0c:7b:c3:79:87:8f:f4:5b: 50:e7:8d:93:fe:9b:63:03:7f:3d:92:dd:df:a3:e7:e8:7d:c6: f2:45:69:9b:62:8e:57:b8:fe:1e:c3:da:51:eb:f2:54:b4:03: 50:3b:b8:e4:e9:17:17:ac:5d:fd:75:db:19:56:57:a9:33:0f: 37:8b:d9:1b:19:01:0b:e1:0d:ea:28:3e:33:50:b8:7b:47:54: cb:51:24:ee:90:bc:d4:db:d8:7c:ac:c0:c2:ab:f7:45:4e:c9: ad:97:60:91:22:4c:8c:75:24:9e:1f:c7:9a:e1:06:58:84:05: aa:35:cc:ca:28:0e:f0:8a:93:03:6d:0f:ce:46:31:74:74:18: 47:6f:37:87:76:a8:f7:41:6b:b5:54:8e:67:62:92:67:a2:8b: 60:a8:2c:50:f4:32:f9:c7:47:56:bf:c9:cd:b6:45:4b:69:80: c5:a0:9c:c0 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUKaokXutMQp3LvZI7yu9aymoPJukwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNTA2MDIwMjAwMDlaFw0yNjA2MDEwMjA1MDlaMDMxMTAvBgNV BAMTKDc3MUY3Mjk5M0VFNjdCRkY0ODg2RUZEQTQyN0U0MkREQTBBNDNGOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC88iVSubBlSzaC2DJnuPSGoX7b 3KVAd9w0nwCBA0FDKILehRHEsIKPbGOQ8b9fhPEwaku90glyHLzdVE28vZncOKKr PPOvFL9WHrD9ltjdD8W0G1+wCbe+SawY2IsrVe+Y+Ted1j6WU9Rz4kFEP9cP7ctd KcbutjEd1wCCGYm3FK5+4VI/KGqkG3LgpS/aJRSgay19EkHTy6IjGerl7N036UL8 6wyt/WbdLJdTqE9B1rJcH1Y0dVpnfAMwFEKouTtsmCDSCcl9jQ5lfYmoccPituhY j27jmuhZ75R2/byWCw0JMchOJ+VwkLS8AlCg6/rD9gNVRnJkauI2ohvBxpcXAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUdx9ymT7me/9Ihu/aQn5C3aCkP50wHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWVhN2ExMTUtYjhiOC00OTBiLTgz MjAtYzllNTlhMTAwM2RkLzAvMzEzMTM5MmUzMjJlMzQzODJlMzAyZjMyMzEyZDMy MzQyMDNkM2UyMDM1MzUzNjM2MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN3AjAwDQYJKoZIhvcNAQEL BQADggEBAG5T5tu9YD7z821EWqqx/9e8NAUISE6fFBrKeyufy7ys2QDLW7GEQ2A7 B+BQ4nvbrEE1jzMIUv7GtjuZ4ZV5aLxLzmUjBsb1ZLP0s24diKHJFTAMe8N5h4/0 W1DnjZP+m2MDfz2S3d+j5+h9xvJFaZtijle4/h7D2lHr8lS0A1A7uOTpFxesXf11 2xlWV6kzDzeL2RsZAQvhDeooPjNQuHtHVMtRJO6QvNTb2HyswMKr90VOya2XYJEi TIx1JJ4fx5rhBliEBao1zMooDvCKkwNtD85GMXR0GEdvN4d2qPdBa7VUjmdikmei i2CoLFD0MvnHR1a/yc22RUtpgMWgnMA= -----END CERTIFICATE-----Generated at Fri Jun 6 16:49:51 2025 by rpki-client