$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235332e302f32342d3234203d3e203338353030.roa File: 3131362e36382e3235332e302f32342d3234203d3e203338353030.roa (raw, json) Hash identifier: hTvjuYJru8sBC5Vi4eVcg0T8y4PjzTgW+TTHVszhGGY= Subject key identifier: 40:43:FE:B1:58:DE:49:CA:09:18:96:2D:56:2F:66:E7:E8:32:A8:7D Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 1165CE9FFD2F68D7422FCD8A0FE6E6E20B137DBB Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235332e302f32342d3234203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:49 +0000 ROA not before: Mon 02 Jun 2025 01:58:49 +0000 ROA not after: Mon 01 Jun 2026 02:03:49 +0000 asID: 38500 IP address blocks: 116.68.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:65:ce:9f:fd:2f:68:d7:42:2f:cd:8a:0f:e6:e6:e2:0b:13:7d:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:49 2025 GMT Not After : Jun 1 02:03:49 2026 GMT Subject: CN=4043FEB158DE49CA0918962D562F66E7E832A87D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:80:0d:0c:3a:d7:59:4d:ce:57:e0:dd:ff:d3: 79:5c:86:36:67:44:fb:71:93:a6:37:60:bd:5d:a3: 97:01:02:8c:4d:36:0d:b3:3b:f6:41:34:27:e8:c4: 0c:a3:cf:ee:ab:5b:7b:6c:18:ec:65:3f:f2:b9:d1: 2d:f4:91:92:aa:9e:a9:2f:bb:11:24:38:dc:81:47: 71:7e:69:b0:73:f4:dd:28:62:e3:34:4f:66:91:f9: 82:61:78:be:7b:8a:40:a6:25:12:6c:38:2e:de:f1: 21:f9:0e:9c:ea:0e:75:59:f9:18:9e:95:b4:bc:21: ac:10:66:b3:d5:a9:20:66:39:4f:7b:4c:04:2f:c1: a5:13:a4:04:41:68:5e:be:92:97:95:a4:07:6e:1c: 95:5f:2b:9c:61:49:da:13:df:78:4e:9b:93:dc:cf: 47:7e:60:cd:41:85:07:87:fc:55:30:62:5d:22:78: d3:54:7d:45:7d:29:a6:d6:6b:70:85:d6:4a:af:5d: f0:7e:63:cb:02:08:3b:70:29:49:be:30:27:8f:bf: 33:70:d0:e6:22:88:ac:9f:20:d7:b4:ca:79:13:bc: 2b:6c:ec:20:35:12:95:9f:0c:f0:7e:9c:ad:8a:88: a8:51:a2:84:6e:64:1a:48:73:5e:f8:86:67:29:a3: cc:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:43:FE:B1:58:DE:49:CA:09:18:96:2D:56:2F:66:E7:E8:32:A8:7D X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235332e302f32342d3234203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.68.253.0/24 Signature Algorithm: sha256WithRSAEncryption 42:78:20:65:5d:fa:14:96:c4:ab:91:a9:63:46:ab:5a:f4:11: f1:a9:6b:73:e4:f5:60:89:92:24:81:64:92:90:33:47:1b:a9: eb:d3:9c:09:f0:b2:67:93:27:00:1b:ff:c5:d0:a5:1c:38:93: 0d:13:0e:03:33:e0:83:0e:4c:48:04:b3:85:10:4b:ca:d8:fc: 45:ec:09:2e:3f:56:7c:77:74:4f:3d:31:06:b8:2e:46:0a:01: 91:f0:58:36:89:fe:da:10:30:e7:e9:6b:17:1e:2c:e4:a0:f2: da:31:02:17:2b:30:a2:19:5a:ab:99:4a:6e:2b:7b:54:ad:ff: 1b:66:c6:b1:c0:f5:06:4e:67:0b:cc:c5:6c:b1:8e:0c:6b:5c: 23:12:2f:84:f1:50:51:f0:af:57:c1:e7:ed:57:c1:3e:06:9d: f7:f9:cf:6c:a6:ef:7f:ad:0b:51:2e:36:3c:32:bb:9e:90:58: 4d:ad:bd:e7:62:e9:10:34:95:9f:f6:b4:6f:15:00:51:3d:f1: 4a:b5:17:2f:82:76:d2:d9:c4:58:b1:8f:76:70:aa:0c:80:e4: dd:f4:f9:81:58:13:57:9e:73:11:2e:a8:17:b9:b0:29:22:a0: bd:8d:79:e3:92:0b:d7:95:0a:d6:e0:ef:05:83:ec:7e:87:36: 3c:17:f6:94 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEWXOn/0vaNdCL82KD+bm4gsTfbswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NDlaFw0yNjA2MDEwMjAzNDlaMDMxMTAvBgNV BAMTKDQwNDNGRUIxNThERTQ5Q0EwOTE4OTYyRDU2MkY2NkU3RTgzMkE4N0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrgA0MOtdZTc5X4N3/03lchjZn RPtxk6Y3YL1do5cBAoxNNg2zO/ZBNCfoxAyjz+6rW3tsGOxlP/K50S30kZKqnqkv uxEkONyBR3F+abBz9N0oYuM0T2aR+YJheL57ikCmJRJsOC7e8SH5DpzqDnVZ+Rie lbS8IawQZrPVqSBmOU97TAQvwaUTpARBaF6+kpeVpAduHJVfK5xhSdoT33hOm5Pc z0d+YM1BhQeH/FUwYl0ieNNUfUV9KabWa3CF1kqvXfB+Y8sCCDtwKUm+MCePvzNw 0OYiiKyfINe0ynkTvCts7CA1EpWfDPB+nK2KiKhRooRuZBpIc174hmcpo8yNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQEP+sVjeScoJGJYtVi9m5+gyqH0wHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMxMzEzNjJlMzYzODJlMzIzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHRE/TANBgkqhkiG 9w0BAQsFAAOCAQEAQnggZV36FJbEq5GpY0arWvQR8alrc+T1YImSJIFkkpAzRxup 69OcCfCyZ5MnABv/xdClHDiTDRMOAzPggw5MSASzhRBLytj8RewJLj9WfHd0Tz0x BrguRgoBkfBYNon+2hAw5+lrFx4s5KDy2jECFyswohlaq5lKbit7VK3/G2bGscD1 Bk5nC8zFbLGODGtcIxIvhPFQUfCvV8Hn7VfBPgad9/nPbKbvf60LUS42PDK7npBY Ta2952LpEDSVn/a0bxUAUT3xSrUXL4J20tnEWLGPdnCqDIDk3fT5gVgTV55zES6o F7mwKSKgvY1545IL15UK1uDvBYPsfoc2PBf2lA== -----END CERTIFICATE-----Generated at Sat Jun 7 23:20:04 2025 by rpki-client