$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3131362e3139332e3137322e302f32322d3232203d3e203535363939.roa File: 3131362e3139332e3137322e302f32322d3232203d3e203535363939.roa (raw, json) Hash identifier: Z0HkArdqIMJrBesbtTWXeTOTwVWpOh3aH8V39csunso= Subject key identifier: 3A:13:5D:52:29:36:15:49:23:97:1E:FC:13:63:9D:2E:0B:60:16:C8 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 212FEF3E879937771535CD20998C20F0B14B7DBF Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3131362e3139332e3137322e302f32322d3232203d3e203535363939.roa Signing time: Mon 02 Jun 2025 02:03:07 +0000 ROA not before: Mon 02 Jun 2025 01:58:07 +0000 ROA not after: Mon 01 Jun 2026 02:03:07 +0000 asID: 55699 IP address blocks: 116.193.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 00:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:2f:ef:3e:87:99:37:77:15:35:cd:20:99:8c:20:f0:b1:4b:7d:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jun 2 01:58:07 2025 GMT Not After : Jun 1 02:03:07 2026 GMT Subject: CN=3A135D522936154923971EFC13639D2E0B6016C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7f:1e:a2:43:6a:30:cb:b3:54:3f:55:20:3b: 65:8d:c2:53:4a:a8:79:c3:0d:82:a0:99:ff:10:c1: a7:05:37:94:7c:a5:29:e0:8d:8c:f6:c9:32:11:21: fb:b0:fd:34:eb:2d:97:49:92:c8:e4:a0:49:e1:8b: 05:d9:a9:03:75:fb:25:7d:a4:d2:35:4c:ed:31:32: 36:9b:45:22:31:0d:fd:05:82:55:8c:db:80:19:a2: 76:80:cb:c7:ef:a0:9b:0a:b8:73:8b:88:d5:6c:21: ca:67:64:61:25:ba:b2:e1:50:c8:8f:84:40:5e:16: 70:a4:3a:95:8b:e1:cd:b9:eb:0f:19:b5:2a:f9:48: e7:52:97:9e:30:52:95:bb:84:e3:8a:6c:97:4f:2b: 66:40:e1:ca:0b:8b:d9:6a:84:58:1f:e9:0f:00:91: 36:e5:37:53:c8:97:cc:0e:41:81:f8:e5:d3:6c:ad: 4b:b1:c7:ad:72:63:58:4e:46:4c:b2:33:cc:76:b9: 83:24:c4:d4:41:d3:99:8f:69:b3:b7:c5:d5:ce:57: 9c:0b:ce:c0:11:03:11:66:e0:e6:1e:26:cc:0e:d1: db:bf:6c:49:d5:0c:e8:ea:55:19:db:59:b5:e2:6a: bc:0e:5a:54:75:53:4e:eb:70:c3:ba:59:e0:07:04: 8c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:13:5D:52:29:36:15:49:23:97:1E:FC:13:63:9D:2E:0B:60:16:C8 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3131362e3139332e3137322e302f32322d3232203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.193.172.0/22 Signature Algorithm: sha256WithRSAEncryption 65:ec:5a:0d:aa:e2:dc:01:d8:2b:6c:d0:12:f4:80:5f:4d:84: d2:cf:3f:39:95:d0:9b:36:82:5f:7e:96:c9:7d:f0:16:bf:1f: 6d:14:bb:89:59:cd:e7:e0:e3:f4:f9:f4:fb:ee:8b:30:31:74: b2:95:ba:98:e9:a1:13:73:74:95:93:9c:d0:95:f9:ad:bd:a9: 56:a0:d5:f7:89:b4:d7:1d:e6:89:de:d8:e0:3f:eb:13:cd:ce: b6:c8:a8:52:de:30:0a:e5:1a:9b:5c:34:e1:20:b0:2a:42:28: c6:ce:45:ae:21:b0:6d:4d:bf:e2:a3:4b:71:c6:a4:e9:b2:81: fd:06:72:da:f8:1c:8b:82:cb:05:3e:50:76:1e:f5:b9:90:73: e4:1b:70:2f:11:30:fa:cf:a9:91:86:ce:db:7d:fb:d8:54:64: 77:05:34:d4:c5:54:c8:f9:07:80:60:db:a2:e7:c7:a4:7b:4d: f8:5d:63:08:48:0b:c4:52:3f:7a:a6:c3:c6:50:c2:ca:8c:13: 70:06:18:cd:de:3b:7f:a6:21:9f:68:6f:15:d5:b5:ed:d0:50: 9a:93:9c:37:7d:91:db:d4:a8:4f:d8:15:a3:7e:34:f9:2f:47: f4:7c:9b:74:9a:7b:b8:98:32:16:30:03:08:3d:c3:57:75:11: ff:1f:88:b9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIS/vPoeZN3cVNc0gmYwg8LFLfb8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yNTA2MDIwMTU4MDdaFw0yNjA2MDEwMjAzMDdaMDMxMTAvBgNV BAMTKDNBMTM1RDUyMjkzNjE1NDkyMzk3MUVGQzEzNjM5RDJFMEI2MDE2QzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8fx6iQ2owy7NUP1UgO2WNwlNK qHnDDYKgmf8QwacFN5R8pSngjYz2yTIRIfuw/TTrLZdJksjkoEnhiwXZqQN1+yV9 pNI1TO0xMjabRSIxDf0FglWM24AZonaAy8fvoJsKuHOLiNVsIcpnZGElurLhUMiP hEBeFnCkOpWL4c256w8ZtSr5SOdSl54wUpW7hOOKbJdPK2ZA4coLi9lqhFgf6Q8A kTblN1PIl8wOQYH45dNsrUuxx61yY1hORkyyM8x2uYMkxNRB05mPabO3xdXOV5wL zsARAxFm4OYeJswO0du/bEnVDOjqVRnbWbXiarwOWlR1U07rcMO6WeAHBIy9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOhNdUik2FUkjlx78E2OdLgtgFsgwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMxMzEzNjJlMzEzOTMzMmUzMTM3MzIyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzNTM1MzYzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCdMGsMA0GCSqG SIb3DQEBCwUAA4IBAQBl7FoNquLcAdgrbNAS9IBfTYTSzz85ldCbNoJffpbJffAW vx9tFLuJWc3n4OP0+fT77oswMXSylbqY6aETc3SVk5zQlfmtvalWoNX3ibTXHeaJ 3tjgP+sTzc62yKhS3jAK5RqbXDThILAqQijGzkWuIbBtTb/io0txxqTpsoH9BnLa +ByLgssFPlB2HvW5kHPkG3AvETD6z6mRhs7bffvYVGR3BTTUxVTI+QeAYNui58ek e034XWMISAvEUj96psPGUMLKjBNwBhjN3jt/piGfaG8V1bXt0FCak5w3fZHb1KhP 2BWjfjT5L0f0fJt0mnu4mDIWMAMIPcNXdRH/H4i5 -----END CERTIFICATE-----Generated at Fri Jun 6 16:56:20 2025 by rpki-client