$ rpki-client -vvf repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/31342e3130322e3135322e302f32322d3234203d3e203535363533.roa File: 31342e3130322e3135322e302f32322d3234203d3e203535363533.roa (raw, json) Hash identifier: tcAOfelZsfvkpX9bUklTUsOMqUIe7iMnYq8XrY6rniM= Subject key identifier: 1E:72:04:CF:66:EA:40:B7:FE:74:60:98:56:F7:16:DF:2E:FB:47:4A Certificate issuer: /CN=FC646066A689B77054AF95653FA324395357E6A3 Certificate serial: 42AAA46BBA729AB6DD0ACCE7DCFFC6ACB5E8EDCD Authority key identifier: FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/31342e3130322e3135322e302f32322d3234203d3e203535363533.roa Signing time: Mon 02 Jun 2025 02:04:06 +0000 ROA not before: Mon 02 Jun 2025 01:59:06 +0000 ROA not after: Mon 01 Jun 2026 02:04:06 +0000 asID: 55653 IP address blocks: 14.102.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:57:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:aa:a4:6b:ba:72:9a:b6:dd:0a:cc:e7:dc:ff:c6:ac:b5:e8:ed:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC646066A689B77054AF95653FA324395357E6A3 Validity Not Before: Jun 2 01:59:06 2025 GMT Not After : Jun 1 02:04:06 2026 GMT Subject: CN=1E7204CF66EA40B7FE74609856F716DF2EFB474A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:5e:6b:b5:9b:db:a7:eb:b9:05:b7:4e:e2:7b: df:40:22:b7:6c:52:e1:47:34:1d:cb:05:4e:6a:02: 7d:52:01:53:93:d6:d3:04:42:16:58:d8:4f:11:1e: 0c:32:3f:4b:5d:65:ea:76:d1:01:a8:72:b1:86:7f: 83:c2:79:6e:02:8b:90:9a:4f:b0:61:a6:5f:6f:45: 7b:15:fe:7d:40:fd:eb:c1:04:72:7b:1e:18:36:6e: 73:5b:77:d9:16:bc:5c:dd:a9:c9:49:24:5d:2b:9e: b4:29:8d:4c:73:5c:80:b6:8e:6b:e1:30:81:78:e3: c9:be:41:eb:5b:9c:72:b2:e6:b6:48:17:64:83:5d: c2:11:07:ab:f0:88:84:86:03:cc:c6:cf:ef:e9:ae: e3:e8:8b:08:cc:a8:8d:f5:40:3e:5e:0c:55:dc:49: f7:ea:3a:0e:62:62:72:47:c8:eb:85:77:04:21:f8: 2a:42:4a:44:b7:99:3b:dc:61:95:49:c8:12:d5:30: b8:c7:14:72:28:07:84:23:bc:c4:ed:74:37:d6:97: 22:74:f3:d7:20:e8:0b:15:55:4c:2e:f8:ae:8f:c4: 39:6e:de:db:04:01:ec:de:aa:b3:7b:23:9f:ea:f2: b3:34:a5:05:70:7c:97:24:3d:5f:8f:e8:2f:9d:f7: 3c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:72:04:CF:66:EA:40:B7:FE:74:60:98:56:F7:16:DF:2E:FB:47:4A X509v3 Authority Key Identifier: keyid:FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/31342e3130322e3135322e302f32322d3234203d3e203535363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 14.102.152.0/22 Signature Algorithm: sha256WithRSAEncryption 73:66:07:60:55:74:ba:e6:b9:09:71:45:91:2e:ac:01:fb:31: 51:83:b0:39:0a:9f:00:96:1a:f2:f0:a3:44:49:74:d2:d8:07: 69:ba:3f:77:00:3f:42:f1:35:b1:cd:9f:43:d7:9e:39:cd:32: 38:6a:ab:47:3c:59:f7:e6:ef:e7:a4:3a:ab:02:f8:9c:6a:4a: b5:8f:88:a1:dc:b9:95:74:63:11:8c:87:66:75:0e:46:f0:4e: d0:ae:e4:68:12:33:72:60:a1:a6:fa:25:05:a8:74:a1:8a:4a: c1:3b:01:f7:2b:30:f0:f0:1e:00:6e:fc:a2:08:ad:e0:38:75: 86:d7:d4:de:cb:33:e7:5d:47:0f:2b:2c:e8:33:6f:bb:34:d1: 34:82:cc:a8:19:5f:a8:5f:ca:f5:88:a8:46:d4:c4:d4:9b:3a: c1:3c:d4:4e:33:8f:99:f5:1c:10:a2:d0:e7:ca:c4:5b:0a:95: 7f:d7:40:d3:3a:5d:61:54:37:fb:25:f3:26:c1:13:90:41:13: f5:26:29:93:04:85:e9:bb:10:b6:7c:6a:a4:5b:45:84:08:88: c0:b8:54:7e:b4:be:19:52:32:17:16:da:e8:86:b9:9e:7f:e7: fd:be:22:5d:b3:57:99:a5:6d:ea:61:27:ab:14:39:f1:e2:79: b0:c1:60:9e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQqqka7pymrbdCszn3P/GrLXo7c0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1 MzU3RTZBMzAeFw0yNTA2MDIwMTU5MDZaFw0yNjA2MDEwMjA0MDZaMDMxMTAvBgNV BAMTKDFFNzIwNENGNjZFQTQwQjdGRTc0NjA5ODU2RjcxNkRGMkVGQjQ3NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhXmu1m9un67kFt07ie99AIrds UuFHNB3LBU5qAn1SAVOT1tMEQhZY2E8RHgwyP0tdZep20QGocrGGf4PCeW4Ci5Ca T7Bhpl9vRXsV/n1A/evBBHJ7Hhg2bnNbd9kWvFzdqclJJF0rnrQpjUxzXIC2jmvh MIF448m+QetbnHKy5rZIF2SDXcIRB6vwiISGA8zGz+/pruPoiwjMqI31QD5eDFXc SffqOg5iYnJHyOuFdwQh+CpCSkS3mTvcYZVJyBLVMLjHFHIoB4QjvMTtdDfWlyJ0 89cg6AsVVUwu+K6PxDlu3tsEAezeqrN7I5/q8rM0pQVwfJckPV+P6C+d9zztAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHnIEz2bqQLf+dGCYVvcW3y77R0owHwYDVR0j BBgwFoAU/GRgZqaJt3BUr5VlP6MkOVNX5qMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OTc0NjVlMy03OGEwLTQ5NjUtYWUxNC1lNGNiNGQwZmMxODUvMC9GQzY0NjA2NkE2 ODlCNzcwNTRBRjk1NjUzRkEzMjQzOTUzNTdFNkEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1MzU3 RTZBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h ZTE0LWU0Y2I0ZDBmYzE4NS8wLzMxMzQyZTMxMzAzMjJlMzEzNTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzNTM2MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAg5mmDANBgkqhkiG 9w0BAQsFAAOCAQEAc2YHYFV0uua5CXFFkS6sAfsxUYOwOQqfAJYa8vCjREl00tgH abo/dwA/QvE1sc2fQ9eeOc0yOGqrRzxZ9+bv56Q6qwL4nGpKtY+Iody5lXRjEYyH ZnUORvBO0K7kaBIzcmChpvolBah0oYpKwTsB9ysw8PAeAG78ogit4Dh1htfU3ssz 511HDyss6DNvuzTRNILMqBlfqF/K9YioRtTE1Js6wTzUTjOPmfUcEKLQ58rEWwqV f9dA0zpdYVQ3+yXzJsETkEET9SYpkwSF6bsQtnxqpFtFhAiIwLhUfrS+GVIyFxba 6Ia5nn/n/b4iXbNXmaVt6mEnqxQ58eJ5sMFgng== -----END CERTIFICATE-----Generated at Sun Jun 8 06:23:37 2025 by rpki-client