$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3132312e35322e3133362e302f32312d3231203d3e203535363939.roa File: 3132312e35322e3133362e302f32312d3231203d3e203535363939.roa (raw, json) Hash identifier: LXI9mNoX4MU73UV9+XQILK6lbIuNFPN8Km57asx93mE= Subject key identifier: 67:69:E6:C8:77:21:70:E1:34:FA:F0:66:27:FA:14:03:A7:A3:61:26 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 1BC9BB2732F1AB2F07E7784EB0057B1016206BF8 Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3132312e35322e3133362e302f32312d3231203d3e203535363939.roa Signing time: Mon 02 Jun 2025 02:03:06 +0000 ROA not before: Mon 02 Jun 2025 01:58:06 +0000 ROA not after: Mon 01 Jun 2026 02:03:06 +0000 asID: 55699 IP address blocks: 121.52.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:09:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:c9:bb:27:32:f1:ab:2f:07:e7:78:4e:b0:05:7b:10:16:20:6b:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jun 2 01:58:06 2025 GMT Not After : Jun 1 02:03:06 2026 GMT Subject: CN=6769E6C8772170E134FAF06627FA1403A7A36126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:56:88:d1:a2:80:29:ba:39:27:6b:2a:30:5c: 21:aa:95:38:75:9f:55:a9:f6:da:e6:94:93:c8:4a: cd:69:91:87:cc:59:12:9a:8e:71:ad:68:37:30:28: 1f:a2:5e:6c:61:8b:85:35:a7:10:89:22:91:c6:b8: ae:2d:fb:eb:c6:b4:b3:af:6f:e0:c0:f4:f8:e3:8f: 68:a0:b3:23:7f:52:d6:c4:09:63:85:37:79:db:70: 19:49:20:4a:c9:f4:cb:d2:e3:38:b4:64:38:c0:4c: cf:84:fe:fb:7b:f4:2c:a8:e9:67:6a:c9:d5:af:52: 2a:4e:31:95:80:94:74:90:37:34:84:f4:93:d3:28: b5:ee:48:0f:b9:b5:36:63:de:78:9e:24:bb:db:10: ef:56:51:5e:be:31:d3:d4:ec:2f:68:56:c0:45:e8: 31:f4:ef:f5:28:33:71:96:e8:6d:2c:11:a2:be:11: 41:fb:55:36:10:e1:3b:93:38:6d:21:f9:15:61:a3: e2:db:68:e7:c8:8a:0a:e2:7b:e5:e4:f7:91:fc:d4: 3d:4d:7a:30:19:34:fb:f6:fc:c1:12:b4:03:ff:ca: 95:8a:c4:43:42:8b:86:25:5d:b7:87:aa:c4:7d:8d: 40:97:6a:a7:58:3d:5a:d4:89:2e:0f:03:f3:fb:19: 4e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:69:E6:C8:77:21:70:E1:34:FA:F0:66:27:FA:14:03:A7:A3:61:26 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3132312e35322e3133362e302f32312d3231203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.52.136.0/21 Signature Algorithm: sha256WithRSAEncryption 5a:ba:78:7b:f0:fd:23:5f:e1:aa:c3:82:a4:3a:8d:06:15:b7: 34:da:ba:7a:02:5e:a4:2c:16:59:a1:75:58:00:2c:85:98:ab: 9b:e5:98:8f:6b:71:fc:c6:81:b6:fa:7d:50:8d:43:e3:ae:1f: 77:87:94:51:bf:08:0b:35:ac:ef:2a:74:8d:77:c8:fd:27:fa: de:04:11:de:66:82:89:f9:17:79:65:df:c2:80:3d:17:35:4e: 2c:62:a7:45:02:b8:92:6e:7b:92:01:11:16:a1:c6:48:ec:7b: 19:c9:9e:d8:d0:08:97:5e:f2:a6:16:9e:d3:30:fb:60:b3:09: 9f:45:6a:42:91:e6:d5:40:90:0d:91:b4:16:57:b0:5e:25:43: 36:e4:aa:5a:27:f4:2c:6e:b2:d1:29:d8:81:29:70:50:8a:1b: a2:c6:95:c8:14:18:36:88:db:6c:24:4a:f5:9a:d8:46:7e:06: 86:b4:0d:46:ea:e8:95:eb:3a:ff:51:96:bb:9b:47:10:04:17: a2:93:fc:b3:3b:80:e1:b4:bc:b8:37:1f:66:62:57:26:71:fc: be:a6:19:d2:48:df:f7:73:4c:76:32:80:7b:00:e8:9b:d5:0d: 32:4a:ba:be:bb:5d:fd:0b:3c:ca:2d:37:0a:6a:ab:5a:7c:30: e2:63:62:1c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUG8m7JzLxqy8H53hOsAV7EBYga/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yNTA2MDIwMTU4MDZaFw0yNjA2MDEwMjAzMDZaMDMxMTAvBgNV BAMTKDY3NjlFNkM4NzcyMTcwRTEzNEZBRjA2NjI3RkExNDAzQTdBMzYxMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgVojRooApujknayowXCGqlTh1 n1Wp9trmlJPISs1pkYfMWRKajnGtaDcwKB+iXmxhi4U1pxCJIpHGuK4t++vGtLOv b+DA9Pjjj2igsyN/UtbECWOFN3nbcBlJIErJ9MvS4zi0ZDjATM+E/vt79Cyo6Wdq ydWvUipOMZWAlHSQNzSE9JPTKLXuSA+5tTZj3nieJLvbEO9WUV6+MdPU7C9oVsBF 6DH07/UoM3GW6G0sEaK+EUH7VTYQ4TuTOG0h+RVho+LbaOfIigrie+Xk95H81D1N ejAZNPv2/MEStAP/ypWKxENCi4YlXbeHqsR9jUCXaqdYPVrUiS4PA/P7GU4VAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZ2nmyHchcOE0+vBmJ/oUA6ejYSYwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMxMzIzMTJlMzUzMjJlMzEzMzM2MmUzMDJmMzIz MTJkMzIzMTIwM2QzZTIwMzUzNTM2MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3k0iDANBgkqhkiG 9w0BAQsFAAOCAQEAWrp4e/D9I1/hqsOCpDqNBhW3NNq6egJepCwWWaF1WAAshZir m+WYj2tx/MaBtvp9UI1D464fd4eUUb8ICzWs7yp0jXfI/Sf63gQR3maCifkXeWXf woA9FzVOLGKnRQK4km57kgERFqHGSOx7Gcme2NAIl17yphae0zD7YLMJn0VqQpHm 1UCQDZG0FlewXiVDNuSqWif0LG6y0SnYgSlwUIobosaVyBQYNojbbCRK9ZrYRn4G hrQNRuroles6/1GWu5tHEAQXopP8szuA4bS8uDcfZmJXJnH8vqYZ0kjf93NMdjKA ewDom9UNMkq6vrtd/Qs8yi03CmqrWnww4mNiHA== -----END CERTIFICATE-----Generated at Sat Jun 7 04:46:48 2025 by rpki-client