$ rpki-client -vvf repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232322e302f32342d3234203d3e203436303332.roa File: 3131382e3135312e3232322e302f32342d3234203d3e203436303332.roa (raw, json) Hash identifier: c7lD2035nwAuocF3S+Kkx7XFX+D5GmobD9VRSTS7t1w= Subject key identifier: C8:88:8D:E7:62:D6:1F:6E:1F:41:6D:47:13:D3:78:32:E5:E4:CF:3A Certificate issuer: /CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Certificate serial: 4E4D8B1C94D0D19FC3CB4A994020F34CB7106C39 Authority key identifier: F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232322e302f32342d3234203d3e203436303332.roa Signing time: Mon 02 Jun 2025 02:02:36 +0000 ROA not before: Mon 02 Jun 2025 01:57:36 +0000 ROA not after: Mon 01 Jun 2026 02:02:36 +0000 asID: 46032 IP address blocks: 118.151.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:4d:8b:1c:94:d0:d1:9f:c3:cb:4a:99:40:20:f3:4c:b7:10:6c:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Validity Not Before: Jun 2 01:57:36 2025 GMT Not After : Jun 1 02:02:36 2026 GMT Subject: CN=C8888DE762D61F6E1F416D4713D37832E5E4CF3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:45:b1:76:06:f7:7d:46:49:a6:84:64:b4:af: 04:75:9d:03:f7:07:85:60:34:17:8a:b8:ea:36:2e: 21:18:fc:11:3f:94:9c:d9:38:63:48:15:cd:e4:4f: 12:38:a3:9a:47:51:8e:01:e3:e0:6b:a8:8f:53:5e: f8:d0:1e:50:28:da:e5:b8:c7:d4:5a:09:12:46:8e: 35:92:f3:90:4f:78:f1:2c:3e:2a:cc:3b:13:cf:ec: 49:50:24:e3:1c:26:68:d4:e7:11:5d:49:b3:f2:b0: 66:c4:cc:69:a9:30:45:c7:f5:85:cc:72:70:54:7a: fc:4c:80:ea:5c:e6:79:f4:cb:59:f2:70:74:a0:cc: 94:fb:67:23:86:8f:0e:ec:9c:50:93:c6:f5:6b:06: 6d:ea:02:f8:8f:4e:48:d2:25:3e:d5:b6:44:77:49: 01:8e:d6:20:ca:6f:24:d8:c1:d9:c6:2c:a8:1a:35: 6a:97:9b:25:1d:7e:3c:4b:8b:b7:99:6b:1b:88:21: 84:c6:e0:11:1a:01:0e:02:35:fb:4d:bc:9b:30:ba: e9:a9:f9:96:87:5d:a9:7b:ba:2e:69:13:e7:fe:91: 7d:b0:ef:45:0d:b0:bf:b7:f6:93:2f:f7:81:5d:aa: 0b:25:9b:4b:84:33:06:11:62:62:e2:1b:1f:39:d4: d8:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:88:8D:E7:62:D6:1F:6E:1F:41:6D:47:13:D3:78:32:E5:E4:CF:3A X509v3 Authority Key Identifier: keyid:F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232322e302f32342d3234203d3e203436303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.151.222.0/24 Signature Algorithm: sha256WithRSAEncryption 44:0d:c0:0f:ab:c7:b8:ae:7b:39:25:f3:7f:e1:94:4e:9d:e2: b5:ee:77:5d:13:28:40:e8:2a:f9:86:ad:cd:a3:bd:45:a8:68: 73:ee:cd:9b:96:82:75:f3:08:35:ab:2d:75:42:eb:3e:30:14: 5d:43:63:40:98:ec:e3:16:79:ad:e8:67:34:09:11:d4:f9:4f: ee:e9:61:dc:8a:94:db:a4:58:ba:d3:9e:19:4a:2f:11:57:22: d0:fe:5d:98:b7:d8:0a:ac:1d:1c:a6:8f:81:fa:d2:14:b0:69: 0c:f2:b5:94:89:6f:96:31:c7:7e:2b:57:e6:22:50:14:f3:95: d4:f9:bc:f0:6e:09:ad:75:b1:61:cc:ce:0e:6a:1e:b9:0d:c4: 5f:ac:14:d5:f9:ab:d5:97:d3:93:45:c5:d4:cd:29:c0:bd:0c: ea:f6:ef:b8:4a:0a:28:3c:e0:90:de:e1:ac:4b:93:81:86:ac: c8:c5:b9:5b:78:71:0b:be:f1:06:e1:46:94:f4:10:79:29:b8: 86:02:20:f2:ae:2f:32:1d:31:e4:a4:e4:d4:8e:9c:80:51:98: e1:3c:ed:f8:10:1d:73:71:c4:af:da:d0:cd:cd:9e:4e:a5:c6: ff:26:46:05:ea:f2:2f:3b:d7:ab:2c:25:9f:61:06:c3:8f:4d: e1:e9:d0:6c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTk2LHJTQ0Z/Dy0qZQCDzTLcQbDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZC RUIyM0ZFODAeFw0yNTA2MDIwMTU3MzZaFw0yNjA2MDEwMjAyMzZaMDMxMTAvBgNV BAMTKEM4ODg4REU3NjJENjFGNkUxRjQxNkQ0NzEzRDM3ODMyRTVFNENGM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCRbF2Bvd9RkmmhGS0rwR1nQP3 B4VgNBeKuOo2LiEY/BE/lJzZOGNIFc3kTxI4o5pHUY4B4+BrqI9TXvjQHlAo2uW4 x9RaCRJGjjWS85BPePEsPirMOxPP7ElQJOMcJmjU5xFdSbPysGbEzGmpMEXH9YXM cnBUevxMgOpc5nn0y1nycHSgzJT7ZyOGjw7snFCTxvVrBm3qAviPTkjSJT7VtkR3 SQGO1iDKbyTYwdnGLKgaNWqXmyUdfjxLi7eZaxuIIYTG4BEaAQ4CNftNvJswuump +ZaHXal7ui5pE+f+kX2w70UNsL+39pMv94Fdqgslm0uEMwYRYmLiGx851NiNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyIiN52LWH24fQW1HE9N4MuXkzzowHwYDVR0j BBgwFoAU8bccT5/77BaMhkXf95upBr6yP+gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTdiOTBjYi04ZWJkLTRjN2ItOGMzMS0xMzNhOGI0ZWQ2OWMvMC9GMUI3MUM0RjlG RkJFQzE2OEM4NjQ1REZGNzlCQTkwNkJFQjIzRkU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZCRUIy M0ZFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1N2I5MGNiLThlYmQtNGM3Yi04 YzMxLTEzM2E4YjRlZDY5Yy8wLzMxMzEzODJlMzEzNTMxMmUzMjMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdpfeMA0GCSqG SIb3DQEBCwUAA4IBAQBEDcAPq8e4rns5JfN/4ZROneK17nddEyhA6Cr5hq3No71F qGhz7s2bloJ18wg1qy11Qus+MBRdQ2NAmOzjFnmt6Gc0CRHU+U/u6WHcipTbpFi6 054ZSi8RVyLQ/l2Yt9gKrB0cpo+B+tIUsGkM8rWUiW+WMcd+K1fmIlAU85XU+bzw bgmtdbFhzM4Oah65DcRfrBTV+avVl9OTRcXUzSnAvQzq9u+4SgooPOCQ3uGsS5OB hqzIxblbeHELvvEG4UaU9BB5KbiGAiDyri8yHTHkpOTUjpyAUZjhPO34EB1zccSv 2tDNzZ5Opcb/JkYF6vIvO9erLCWfYQbDj03h6dBs -----END CERTIFICATE-----Generated at Sun Jun 8 03:48:44 2025 by rpki-client