$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131392e322e34382e302f32332d3234203d3e20313439373436.roa File: 3131392e322e34382e302f32332d3234203d3e20313439373436.roa (raw, json) Hash identifier: J/qEk8PLS2L818NmmW0MNEe+BNloyc7SI+CudCB88po= Subject key identifier: 8A:E9:2A:65:B3:23:D8:8D:ED:52:1A:BC:B6:B6:FA:9B:49:E1:32:2A Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 519750E3682B659F0BC378D9CE49AC69CD949AD5 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131392e322e34382e302f32332d3234203d3e20313439373436.roa Signing time: Sat 21 Dec 2024 18:00:47 +0000 ROA not before: Sat 21 Dec 2024 17:55:47 +0000 ROA not after: Sat 20 Dec 2025 18:00:47 +0000 asID: 149746 IP address blocks: 119.2.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 13:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:97:50:e3:68:2b:65:9f:0b:c3:78:d9:ce:49:ac:69:cd:94:9a:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Dec 21 17:55:47 2024 GMT Not After : Dec 20 18:00:47 2025 GMT Subject: CN=8AE92A65B323D88DED521ABCB6B6FA9B49E1322A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4c:5e:af:e5:6c:83:38:c2:53:d3:9d:d5:1e: 78:bb:2e:cf:12:8e:f4:32:2b:f8:40:d0:6b:0e:d2: 55:a3:d0:9b:b1:46:5e:8e:0e:dc:52:2d:2f:71:fc: 26:58:ff:14:59:52:f1:25:93:34:ed:c5:7f:d0:67: a3:e7:e5:ce:f3:9e:a3:a1:9f:c9:b0:1a:a8:d3:bc: 74:f9:b5:ef:d4:12:53:1a:a0:f7:0d:c4:77:01:97: dd:db:d5:76:cf:1f:5d:59:43:34:ac:98:c9:1d:c9: fc:c0:7e:d6:69:b3:26:72:43:0a:11:81:68:4c:3c: 02:c7:b5:47:41:fc:1f:c7:e6:5c:ff:f1:81:2f:1f: ef:0b:d9:9f:3f:3e:50:4a:ec:9e:59:d0:90:e6:81: 72:63:6d:c1:d6:7f:6b:8f:e2:94:ae:ee:a6:5b:03: 93:16:a8:cb:3c:35:c8:86:4e:34:6e:3b:83:6f:8f: ba:a4:ab:da:4b:26:8c:72:6a:7a:8a:9c:c5:f8:98: 83:6d:96:10:24:01:48:89:69:43:59:2a:f1:9a:5a: 21:1a:8e:c9:d9:ca:90:3d:cf:73:06:3e:68:fa:f2: 5c:98:ca:5e:d1:84:b7:af:05:cf:87:e1:32:95:1b: 53:94:8b:93:a0:53:bf:18:b9:13:f9:ce:65:e2:41: 29:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:E9:2A:65:B3:23:D8:8D:ED:52:1A:BC:B6:B6:FA:9B:49:E1:32:2A X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131392e322e34382e302f32332d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.48.0/23 Signature Algorithm: sha256WithRSAEncryption 68:05:6d:97:a3:bd:47:b2:76:c9:cd:13:0d:f2:a1:57:88:c9: af:5c:ec:56:f2:ae:98:31:e9:7a:d6:7d:95:fa:89:28:6e:44: 8d:50:7d:75:59:07:e4:6a:4e:dc:76:66:92:a5:4f:6e:77:5b: 1b:64:cc:9f:48:58:8e:8d:04:61:e9:be:68:98:13:50:55:67: d3:ab:29:fc:e9:6d:ca:da:a8:f3:43:a8:21:0a:99:4b:a3:5c: 57:89:e0:11:fb:e7:49:18:46:24:ea:40:d3:2f:f8:00:38:a6: 40:7e:88:e2:cd:5b:48:86:a8:39:21:e6:d1:c7:2c:cb:77:ca: f6:ce:66:72:15:d1:40:84:20:ed:f5:89:35:36:e8:79:47:eb: ce:dc:89:f1:a7:db:fb:9d:0e:11:eb:0e:ef:4b:11:0a:01:34: 0a:85:3e:59:29:31:d6:9a:5a:d0:c2:12:7f:3f:ad:c2:90:55: 5f:4a:af:68:75:48:61:2b:56:8a:69:eb:2f:99:b4:34:0f:c7: fb:cf:f9:99:ff:9c:81:dc:42:b7:77:3a:80:b9:33:94:38:de: e2:fd:6c:76:38:fb:67:74:0f:7a:dc:aa:69:45:5e:91:b8:90: 16:14:73:84:e8:cd:6b:6f:04:67:d9:3a:e6:dd:63:9e:d9:f2: e5:f9:7f:9d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUZdQ42grZZ8Lw3jZzkmsac2UmtUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNDEyMjExNzU1NDdaFw0yNTEyMjAxODAwNDdaMDMxMTAvBgNV BAMTKDhBRTkyQTY1QjMyM0Q4OERFRDUyMUFCQ0I2QjZGQTlCNDlFMTMyMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkTF6v5WyDOMJT053VHni7Ls8S jvQyK/hA0GsO0lWj0JuxRl6ODtxSLS9x/CZY/xRZUvElkzTtxX/QZ6Pn5c7znqOh n8mwGqjTvHT5te/UElMaoPcNxHcBl93b1XbPH11ZQzSsmMkdyfzAftZpsyZyQwoR gWhMPALHtUdB/B/H5lz/8YEvH+8L2Z8/PlBK7J5Z0JDmgXJjbcHWf2uP4pSu7qZb A5MWqMs8NciGTjRuO4Nvj7qkq9pLJoxyanqKnMX4mINtlhAkAUiJaUNZKvGaWiEa jsnZypA9z3MGPmj68lyYyl7RhLevBc+H4TKVG1OUi5OgU78YuRP5zmXiQSlRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUiukqZbMj2I3tUhq8trb6m0nhMiowHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzEzOTJlMzIyZTM0MzgyZTMwMmYzMjMzMmQz MjM0MjAzZDNlMjAzMTM0MzkzNzM0MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF3AjAwDQYJKoZIhvcN AQELBQADggEBAGgFbZejvUeydsnNEw3yoVeIya9c7Fbyrpgx6XrWfZX6iShuRI1Q fXVZB+RqTtx2ZpKlT253WxtkzJ9IWI6NBGHpvmiYE1BVZ9OrKfzpbcraqPNDqCEK mUujXFeJ4BH750kYRiTqQNMv+AA4pkB+iOLNW0iGqDkh5tHHLMt3yvbOZnIV0UCE IO31iTU26HlH687cifGn2/udDhHrDu9LEQoBNAqFPlkpMdaaWtDCEn8/rcKQVV9K r2h1SGErVopp6y+ZtDQPx/vP+Zn/nIHcQrd3OoC5M5Q43uL9bHY4+2d0D3rcqmlF XpG4kBYUc4TozWtvBGfZOubdY57Z8uX5f50= -----END CERTIFICATE-----Generated at Sun Apr 6 11:01:24 2025 by rpki-client