$ rpki-client -vvf repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38382e302f32342d3234203d3e203338373733.roa File: 3131342e3134312e38382e302f32342d3234203d3e203338373733.roa (raw, json) Hash identifier: uzdxCFJ60y1EqFPWBfLgLUEnJ7LWJrfPQeMyJb9m5FM= Subject key identifier: 07:15:22:67:A2:2E:C0:CD:E8:08:06:12:D9:A9:47:FA:79:03:8C:94 Certificate issuer: /CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F Certificate serial: 4165DA0AE90B6D267F4FC9511A38717AFADBD8FA Authority key identifier: 1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38382e302f32342d3234203d3e203338373733.roa Signing time: Wed 19 Mar 2025 03:00:01 +0000 ROA not before: Wed 19 Mar 2025 02:55:01 +0000 ROA not after: Wed 18 Mar 2026 03:00:01 +0000 asID: 38773 IP address blocks: 114.141.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 09:32:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:65:da:0a:e9:0b:6d:26:7f:4f:c9:51:1a:38:71:7a:fa:db:d8:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F Validity Not Before: Mar 19 02:55:01 2025 GMT Not After : Mar 18 03:00:01 2026 GMT Subject: CN=07152267A22EC0CDE8080612D9A947FA79038C94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9d:8a:02:89:88:d8:b2:bb:18:a0:6d:54:b5: 7e:c3:ff:33:18:12:3b:d5:f3:5b:49:0e:ce:85:89: 06:e4:0a:bb:a3:a7:e7:73:5b:97:a3:d1:63:7d:4f: 7c:12:54:ed:a5:1f:2b:d1:c8:01:c2:9f:fc:17:0f: 30:6d:ce:64:0d:19:4d:d2:4c:cc:f5:f8:3b:85:1b: e4:23:07:6e:a7:38:4e:c3:c0:2a:17:b2:ff:7b:dd: 68:f3:7e:5b:86:b9:16:01:23:e5:58:f6:1d:ad:2c: ea:4f:fc:d7:ad:d9:c0:ed:d2:02:72:1b:2a:6a:fd: d9:87:a8:f9:1e:8a:94:c9:9b:82:fa:4a:4e:92:8b: 55:86:de:3d:45:48:e8:95:f0:4d:d0:62:45:ff:0e: c9:25:1a:9f:71:2a:bb:bb:53:68:4e:6d:62:7f:19: a6:ec:3a:fb:56:8c:8b:7c:6d:68:34:79:bc:10:76: 3e:2e:ca:12:05:16:1d:32:53:6a:4e:d5:63:34:24: 68:72:4f:b2:c5:68:5f:d5:db:fe:27:49:c6:10:0c: be:13:47:cf:c3:f2:f5:4d:5f:63:56:66:57:d7:6f: 2c:7c:89:b0:1e:a3:8f:7f:25:87:d8:8a:bf:ed:d1: 9a:5a:9b:3f:f9:e7:a2:c6:71:ce:30:c6:a2:c7:84: a2:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:15:22:67:A2:2E:C0:CD:E8:08:06:12:D9:A9:47:FA:79:03:8C:94 X509v3 Authority Key Identifier: keyid:1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38382e302f32342d3234203d3e203338373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.141.88.0/24 Signature Algorithm: sha256WithRSAEncryption af:5a:cd:45:1f:dc:9f:d8:87:b3:36:d3:84:70:e0:53:fc:53: c1:a6:1d:a2:6d:e8:32:e3:14:07:dc:ac:1b:be:c1:d6:eb:9c: fe:d8:82:b4:cb:f5:84:41:79:04:dd:f9:27:3f:4a:6f:eb:ff: 1f:9e:c3:d0:5c:4c:94:1f:a7:7c:a4:39:09:43:db:12:fa:5f: aa:c1:6e:23:a1:3c:8e:7d:a6:47:45:da:e0:7b:52:94:06:2f: 99:dc:92:3a:d7:53:eb:9f:ec:f8:0f:c9:83:93:95:cc:66:40: 05:45:cc:7d:27:fe:3b:af:db:c2:4f:23:61:c8:93:9f:f9:d5: 25:15:f8:49:fc:af:b7:05:13:e4:c5:22:94:5f:74:6c:ec:a7: de:54:d4:0c:6b:26:b5:78:c6:81:aa:de:85:11:77:2e:79:9b: 3b:c3:50:c5:a9:31:bd:07:62:01:8d:8f:d9:a4:db:17:5c:70: 3b:f1:b5:74:86:b8:ad:3b:68:14:00:c1:f6:10:f5:bb:36:9f: 1e:4c:ab:ff:bf:06:af:87:7a:89:4a:88:66:1d:89:e6:24:a5: a2:7e:af:6e:84:28:8b:09:a9:a4:4e:d2:67:3d:e3:e6:45:98: d1:86:fd:5f:40:bd:f1:62:96:a0:b2:d0:70:c3:34:10:05:02: ad:0c:4f:4a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQWXaCukLbSZ/T8lRGjhxevrb2PowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcw REMxNDY0RjAeFw0yNTAzMTkwMjU1MDFaFw0yNjAzMTgwMzAwMDFaMDMxMTAvBgNV BAMTKDA3MTUyMjY3QTIyRUMwQ0RFODA4MDYxMkQ5QTk0N0ZBNzkwMzhDOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXnYoCiYjYsrsYoG1UtX7D/zMY EjvV81tJDs6FiQbkCrujp+dzW5ej0WN9T3wSVO2lHyvRyAHCn/wXDzBtzmQNGU3S TMz1+DuFG+QjB26nOE7DwCoXsv973WjzfluGuRYBI+VY9h2tLOpP/Net2cDt0gJy Gypq/dmHqPkeipTJm4L6Sk6Si1WG3j1FSOiV8E3QYkX/DsklGp9xKru7U2hObWJ/ GabsOvtWjIt8bWg0ebwQdj4uyhIFFh0yU2pO1WM0JGhyT7LFaF/V2/4nScYQDL4T R8/D8vVNX2NWZlfXbyx8ibAeo49/JYfYir/t0Zpamz/556LGcc4wxqLHhKK7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBxUiZ6IuwM3oCAYS2alH+nkDjJQwHwYDVR0j BBgwFoAUG/mdTc1b9QO+lyOr9VHd1w3BRk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j N2ZjNTRmYi03MjRlLTQzMTYtYjliYy0xYzRiMDZlYTU3YWUvMC8xQkY5OUQ0RENE NUJGNTAzQkU5NzIzQUJGNTUxRERENzBEQzE0NjRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcwREMx NDY0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3ZmM1NGZiLTcyNGUtNDMxNi1i OWJjLTFjNGIwNmVhNTdhZS8wLzMxMzEzNDJlMzEzNDMxMmUzODM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHKNWDANBgkqhkiG 9w0BAQsFAAOCAQEAr1rNRR/cn9iHszbThHDgU/xTwaYdom3oMuMUB9ysG77B1uuc /tiCtMv1hEF5BN35Jz9Kb+v/H57D0FxMlB+nfKQ5CUPbEvpfqsFuI6E8jn2mR0Xa 4HtSlAYvmdySOtdT65/s+A/Jg5OVzGZABUXMfSf+O6/bwk8jYciTn/nVJRX4Sfyv twUT5MUilF90bOyn3lTUDGsmtXjGgarehRF3LnmbO8NQxakxvQdiAY2P2aTbF1xw O/G1dIa4rTtoFADB9hD1uzafHkyr/78Gr4d6iUqIZh2J5iSlon6vboQoiwmppE7S Zz3j5kWY0Yb9X0C98WKWoLLQcMM0EAUCrQxPSg== -----END CERTIFICATE-----Generated at Sun Apr 6 05:57:32 2025 by rpki-client