$ rpki-client -vvf repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232302e302f32342d3234203d3e203436303332.roa File: 3131382e3135312e3232302e302f32342d3234203d3e203436303332.roa (raw, json) Hash identifier: JFOIJs50h687qC8bpxxJdwCT4qWgGzzf4owWeGTBCcg= Subject key identifier: AE:91:22:7A:B3:84:12:D4:49:D1:74:86:6A:87:B3:C6:99:10:4C:E9 Certificate issuer: /CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Certificate serial: 729D33705BFD92DF8ED4D8231F10FDDB4466FE4B Authority key identifier: F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232302e302f32342d3234203d3e203436303332.roa Signing time: Mon 02 Jun 2025 02:02:37 +0000 ROA not before: Mon 02 Jun 2025 01:57:37 +0000 ROA not after: Mon 01 Jun 2026 02:02:37 +0000 asID: 46032 IP address blocks: 118.151.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:9d:33:70:5b:fd:92:df:8e:d4:d8:23:1f:10:fd:db:44:66:fe:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Validity Not Before: Jun 2 01:57:37 2025 GMT Not After : Jun 1 02:02:37 2026 GMT Subject: CN=AE91227AB38412D449D174866A87B3C699104CE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:af:93:09:57:23:33:e2:b7:23:59:c6:3b:53: 09:45:eb:98:3d:f5:cd:36:aa:8e:bb:bf:5b:c2:44: 13:d6:bb:39:fd:84:60:0c:3a:ae:c7:53:1f:e5:44: 2b:7a:29:a8:35:22:33:14:b2:2e:74:e1:1f:2f:95: 90:e9:51:6c:71:9b:90:bf:d2:ba:25:46:23:71:8c: ad:0c:19:5b:f7:c3:d6:95:15:7b:f5:e8:2c:b2:2e: 58:a7:c9:40:df:d0:02:d7:bb:4c:1c:78:60:ed:f0: d3:40:c0:7e:b9:59:c0:98:ef:04:3a:8b:2c:75:6f: 6a:6b:c4:81:69:80:a2:ad:51:d0:40:e4:fc:91:38: e6:7f:f5:65:78:cd:3f:a8:03:c9:55:5f:23:81:a3: d9:da:98:9e:49:22:3e:42:ee:4a:f8:43:c5:03:31: 60:e2:2e:6e:58:60:8b:b5:f4:41:e3:4f:a8:46:a2: 19:93:8e:11:a1:47:a4:50:ff:ed:9b:0e:2b:e2:85: 43:50:ba:18:63:d4:c6:b9:b0:c6:d0:a4:a8:2d:cd: 49:53:70:44:04:4a:f1:b8:5c:a6:a8:25:f3:f8:ac: c2:2d:d0:fa:6b:2c:95:f0:63:34:61:92:35:83:f4: c4:51:b3:69:b4:bb:fd:e4:05:bf:08:00:27:23:10: b8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:91:22:7A:B3:84:12:D4:49:D1:74:86:6A:87:B3:C6:99:10:4C:E9 X509v3 Authority Key Identifier: keyid:F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232302e302f32342d3234203d3e203436303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.151.220.0/24 Signature Algorithm: sha256WithRSAEncryption 33:db:88:37:1e:d0:1d:c8:0f:63:fa:15:43:d5:e5:de:f6:b8: 5a:0a:6d:68:91:84:72:de:3d:22:b6:94:1a:a6:97:6a:64:6b: d6:98:17:d3:df:81:fb:68:10:0e:d3:08:2d:2a:45:f6:e9:f6: df:58:32:12:29:9c:22:8c:ba:16:35:aa:d2:6e:8b:8e:70:3a: f6:3c:ae:e6:bf:2e:c2:94:84:74:9d:16:4a:f0:17:14:d7:8b: fb:99:26:0f:a1:bb:cb:d1:85:22:e0:a2:92:c2:8c:3a:0d:be: 17:0e:2a:da:ce:08:87:53:62:c5:3a:01:75:4f:db:cf:73:f4: c1:a7:30:6c:ff:6a:00:d7:ae:af:f9:14:c0:d1:a0:bf:99:61: 12:87:2f:7b:d1:1c:0c:6c:f8:09:66:71:39:87:69:31:fe:64: 60:52:4f:f8:4d:01:4f:c1:69:8a:da:d7:32:c8:a0:a9:b4:2d: f3:ae:59:93:2d:c4:a8:16:ca:cc:98:35:85:f3:c9:df:ec:ca: 8d:c3:04:3c:b8:32:a3:5b:fd:be:81:fc:d3:28:8b:0c:b9:52: 94:c8:8e:6b:2a:2f:c5:74:67:fa:51:09:4f:92:09:d9:36:0c: 5d:25:ad:2a:6b:c0:6b:8e:69:0e:88:24:cc:2e:33:5a:52:bb: 19:55:75:69 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcp0zcFv9kt+O1NgjHxD920Rm/kswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZC RUIyM0ZFODAeFw0yNTA2MDIwMTU3MzdaFw0yNjA2MDEwMjAyMzdaMDMxMTAvBgNV BAMTKEFFOTEyMjdBQjM4NDEyRDQ0OUQxNzQ4NjZBODdCM0M2OTkxMDRDRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCar5MJVyMz4rcjWcY7UwlF65g9 9c02qo67v1vCRBPWuzn9hGAMOq7HUx/lRCt6Kag1IjMUsi504R8vlZDpUWxxm5C/ 0rolRiNxjK0MGVv3w9aVFXv16CyyLlinyUDf0ALXu0wceGDt8NNAwH65WcCY7wQ6 iyx1b2prxIFpgKKtUdBA5PyROOZ/9WV4zT+oA8lVXyOBo9namJ5JIj5C7kr4Q8UD MWDiLm5YYIu19EHjT6hGohmTjhGhR6RQ/+2bDivihUNQuhhj1Ma5sMbQpKgtzUlT cEQESvG4XKaoJfP4rMIt0PprLJXwYzRhkjWD9MRRs2m0u/3kBb8IACcjELhrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrpEierOEEtRJ0XSGaoezxpkQTOkwHwYDVR0j BBgwFoAU8bccT5/77BaMhkXf95upBr6yP+gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTdiOTBjYi04ZWJkLTRjN2ItOGMzMS0xMzNhOGI0ZWQ2OWMvMC9GMUI3MUM0RjlG RkJFQzE2OEM4NjQ1REZGNzlCQTkwNkJFQjIzRkU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZCRUIy M0ZFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1N2I5MGNiLThlYmQtNGM3Yi04 YzMxLTEzM2E4YjRlZDY5Yy8wLzMxMzEzODJlMzEzNTMxMmUzMjMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdpfcMA0GCSqG SIb3DQEBCwUAA4IBAQAz24g3HtAdyA9j+hVD1eXe9rhaCm1okYRy3j0itpQappdq ZGvWmBfT34H7aBAO0wgtKkX26fbfWDISKZwijLoWNarSbouOcDr2PK7mvy7ClIR0 nRZK8BcU14v7mSYPobvL0YUi4KKSwow6Db4XDirazgiHU2LFOgF1T9vPc/TBpzBs /2oA166v+RTA0aC/mWEShy970RwMbPgJZnE5h2kx/mRgUk/4TQFPwWmK2tcyyKCp tC3zrlmTLcSoFsrMmDWF88nf7MqNwwQ8uDKjW/2+gfzTKIsMuVKUyI5rKi/FdGf6 UQlPkgnZNgxdJa0qa8BrjmkOiCTMLjNaUrsZVXVp -----END CERTIFICATE-----Generated at Sun Jun 8 03:47:24 2025 by rpki-client