$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/3131332e3231322e3136302e302f32312d3234203d3e203435323935.roa File: 3131332e3231322e3136302e302f32312d3234203d3e203435323935.roa (raw, json) Hash identifier: ykBCC6a4TUa9u53qD+3M0qE2NkGoJtCXa3OdoYw7FhA= Subject key identifier: 7B:E8:70:77:45:9A:E6:9F:87:94:8C:CA:04:09:5D:58:BA:12:47:BA Certificate issuer: /CN=F30F14F4AEB6630FF4E270B0729358AEBFA97733 Certificate serial: 7B934C075214B6BFEA0747CDEB1F4F7D3A8008DB Authority key identifier: F3:0F:14:F4:AE:B6:63:0F:F4:E2:70:B0:72:93:58:AE:BF:A9:77:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F30F14F4AEB6630FF4E270B0729358AEBFA97733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/3131332e3231322e3136302e302f32312d3234203d3e203435323935.roa Signing time: Mon 02 Jun 2025 02:04:01 +0000 ROA not before: Mon 02 Jun 2025 01:59:01 +0000 ROA not after: Mon 01 Jun 2026 02:04:01 +0000 asID: 45295 IP address blocks: 113.212.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/F30F14F4AEB6630FF4E270B0729358AEBFA97733.crl rsync://repo-rpki.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/F30F14F4AEB6630FF4E270B0729358AEBFA97733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F30F14F4AEB6630FF4E270B0729358AEBFA97733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:33:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:93:4c:07:52:14:b6:bf:ea:07:47:cd:eb:1f:4f:7d:3a:80:08:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F30F14F4AEB6630FF4E270B0729358AEBFA97733 Validity Not Before: Jun 2 01:59:01 2025 GMT Not After : Jun 1 02:04:01 2026 GMT Subject: CN=7BE87077459AE69F87948CCA04095D58BA1247BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a9:bc:ff:05:5b:2d:8a:48:e5:de:e1:21:99: 84:31:48:e2:1b:6e:3c:a1:6c:4e:5b:cf:dc:24:3b: 4f:43:00:2e:1d:2d:05:c2:70:ac:8d:37:cb:5c:b1: 9b:22:db:69:e5:ef:d8:9d:d8:ba:3a:4e:6e:d6:f8: a9:75:6a:0b:84:2a:bb:ee:83:cc:cb:98:1a:54:c9: ac:11:84:c9:d5:a9:79:3e:3c:de:95:c9:3f:e7:01: 3d:d1:aa:a4:e0:24:7f:77:37:6e:11:93:95:27:be: 07:bf:bc:54:24:f1:21:07:b9:63:3a:12:86:f1:f6: 14:13:77:2e:c8:0c:ca:20:7b:08:a0:5c:3b:cc:14: ab:25:a9:f7:b3:8c:a0:7d:ce:90:0d:fd:fb:f7:82: 45:86:7b:05:99:4a:68:eb:10:87:f6:ba:81:1d:c2: 16:1e:56:66:34:59:23:bf:8f:55:d6:71:16:3a:6c: 16:3c:80:26:12:72:72:0e:17:35:d3:71:6c:6e:de: 05:0f:ed:1b:eb:52:37:f3:30:83:a3:6e:17:cd:8c: 4f:dc:4d:64:0a:ef:8c:bf:83:6b:a6:ab:7f:37:04: ba:81:76:4b:23:61:e0:8e:92:99:2d:2a:53:b3:10: 7f:de:ff:09:c8:15:01:a3:91:98:77:01:5f:f8:7c: b5:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:E8:70:77:45:9A:E6:9F:87:94:8C:CA:04:09:5D:58:BA:12:47:BA X509v3 Authority Key Identifier: keyid:F3:0F:14:F4:AE:B6:63:0F:F4:E2:70:B0:72:93:58:AE:BF:A9:77:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/F30F14F4AEB6630FF4E270B0729358AEBFA97733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F30F14F4AEB6630FF4E270B0729358AEBFA97733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/3131332e3231322e3136302e302f32312d3234203d3e203435323935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.212.160.0/21 Signature Algorithm: sha256WithRSAEncryption 2a:71:e5:9a:0a:78:b3:5a:62:c3:86:fb:c1:fc:f0:de:57:88: 74:cc:7e:c3:64:24:14:68:3b:f5:9d:77:cd:41:d1:8e:5f:38: 42:0c:37:2f:6c:24:15:e0:f1:f1:59:33:a0:37:13:ae:74:22: 51:a1:cc:89:a8:96:a6:95:86:bc:9c:c2:2c:0a:8c:e4:50:ef: 5a:8d:41:e9:ad:a9:36:b0:bc:4c:04:e4:bf:10:87:e8:68:37: 66:c4:3f:21:cc:6b:f1:47:c5:43:2a:f2:0a:cf:58:8c:af:a1: f2:c2:64:2f:4e:75:ea:27:eb:be:82:80:af:ae:e8:df:9f:20: 69:27:79:57:5b:74:c0:c3:00:86:15:8f:b7:16:4e:89:a2:d4: f6:5f:71:7a:58:8e:12:cf:bb:7c:a8:2a:70:25:55:ae:93:03: 0c:5b:f0:7e:3c:c8:61:09:c8:4c:48:fe:f8:5b:c1:11:a7:45: f4:81:e8:9a:94:86:48:db:3a:d4:cf:b5:c4:78:8d:f8:98:be: 1a:8e:c1:ab:80:72:76:01:33:af:2f:e4:82:fd:a4:8d:b1:48: 78:d5:03:3a:93:ef:e3:d0:c0:f0:b7:1b:dc:fe:7c:7d:c0:b7: e0:ed:6e:36:40:22:8f:ea:84:9d:c9:83:e7:f2:bb:7b:66:89: 68:c3:dd:68 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUe5NMB1IUtr/qB0fN6x9PfTqACNswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMwRjE0RjRBRUI2NjMwRkY0RTI3MEIwNzI5MzU4QUVC RkE5NzczMzAeFw0yNTA2MDIwMTU5MDFaFw0yNjA2MDEwMjA0MDFaMDMxMTAvBgNV BAMTKDdCRTg3MDc3NDU5QUU2OUY4Nzk0OENDQTA0MDk1RDU4QkExMjQ3QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCqbz/BVstikjl3uEhmYQxSOIb bjyhbE5bz9wkO09DAC4dLQXCcKyNN8tcsZsi22nl79id2Lo6Tm7W+Kl1aguEKrvu g8zLmBpUyawRhMnVqXk+PN6VyT/nAT3RqqTgJH93N24Rk5Unvge/vFQk8SEHuWM6 Eobx9hQTdy7IDMogewigXDvMFKslqfezjKB9zpAN/fv3gkWGewWZSmjrEIf2uoEd whYeVmY0WSO/j1XWcRY6bBY8gCYScnIOFzXTcWxu3gUP7RvrUjfzMIOjbhfNjE/c TWQK74y/g2umq383BLqBdksjYeCOkpktKlOzEH/e/wnIFQGjkZh3AV/4fLWPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUe+hwd0Wa5p+HlIzKBAldWLoSR7owHwYDVR0j BBgwFoAU8w8U9K62Yw/04nCwcpNYrr+pdzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGY0OGE4OS05MGM1LTRmNWEtODAxNS0zNmYxMTk2YTcxYzgvMC9GMzBGMTRGNEFF QjY2MzBGRjRFMjcwQjA3MjkzNThBRUJGQTk3NzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMwRjE0RjRBRUI2NjMwRkY0RTI3MEIwNzI5MzU4QUVCRkE5 NzczMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0ZjQ4YTg5LTkwYzUtNGY1YS04 MDE1LTM2ZjExOTZhNzFjOC8wLzMxMzEzMzJlMzIzMTMyMmUzMTM2MzAyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzNDM1MzIzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDcdSgMA0GCSqG SIb3DQEBCwUAA4IBAQAqceWaCnizWmLDhvvB/PDeV4h0zH7DZCQUaDv1nXfNQdGO XzhCDDcvbCQV4PHxWTOgNxOudCJRocyJqJamlYa8nMIsCozkUO9ajUHprak2sLxM BOS/EIfoaDdmxD8hzGvxR8VDKvIKz1iMr6HywmQvTnXqJ+u+goCvrujfnyBpJ3lX W3TAwwCGFY+3Fk6JotT2X3F6WI4Sz7t8qCpwJVWukwMMW/B+PMhhCchMSP74W8ER p0X0geialIZI2zrUz7XEeI34mL4ajsGrgHJ2ATOvL+SC/aSNsUh41QM6k+/j0MDw txvc/nx9wLfg7W42QCKP6oSdyYPn8rt7Zolow91o -----END CERTIFICATE-----Generated at Sat Jun 7 22:55:18 2025 by rpki-client