$ rpki-client -vvf repo-rpki.idnic.net/repo/dd54b4e2-2e58-465b-afaa-1c9465c882e6/0/3131362e3235342e3130302e302f32322d3234203d3e203535363933.roa File: 3131362e3235342e3130302e302f32322d3234203d3e203535363933.roa (raw, json) Hash identifier: p4QmW11QVKIy/H0IsIo9siyqhBsQC1fGJ4OCrOJGVFc= Subject key identifier: 36:B3:23:92:51:D1:06:C2:12:39:E5:76:28:A4:DD:EA:3E:F6:48:68 Certificate issuer: /CN=C6F736EFBEBD1A0143DB0A57A143545915A18B33 Certificate serial: 029C465C765F331E9ADB0109D6079EF7166B6352 Authority key identifier: C6:F7:36:EF:BE:BD:1A:01:43:DB:0A:57:A1:43:54:59:15:A1:8B:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C6F736EFBEBD1A0143DB0A57A143545915A18B33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dd54b4e2-2e58-465b-afaa-1c9465c882e6/0/3131362e3235342e3130302e302f32322d3234203d3e203535363933.roa Signing time: Mon 02 Jun 2025 01:02:44 +0000 ROA not before: Mon 02 Jun 2025 00:57:44 +0000 ROA not after: Mon 01 Jun 2026 01:02:44 +0000 asID: 55693 IP address blocks: 116.254.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dd54b4e2-2e58-465b-afaa-1c9465c882e6/0/C6F736EFBEBD1A0143DB0A57A143545915A18B33.crl rsync://repo-rpki.idnic.net/repo/dd54b4e2-2e58-465b-afaa-1c9465c882e6/0/C6F736EFBEBD1A0143DB0A57A143545915A18B33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C6F736EFBEBD1A0143DB0A57A143545915A18B33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 11:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:9c:46:5c:76:5f:33:1e:9a:db:01:09:d6:07:9e:f7:16:6b:63:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C6F736EFBEBD1A0143DB0A57A143545915A18B33 Validity Not Before: Jun 2 00:57:44 2025 GMT Not After : Jun 1 01:02:44 2026 GMT Subject: CN=36B3239251D106C21239E57628A4DDEA3EF64868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:3d:50:61:1f:c9:0c:73:7d:15:9b:ce:26:31: 6c:09:4f:bf:15:bc:0a:66:e4:88:b2:65:ca:92:18: c1:2c:cb:e7:ff:bf:14:d3:17:d2:c3:7b:1d:37:db: 0b:56:62:51:04:cc:13:0d:0d:31:f4:a4:02:46:7d: 30:3d:67:5e:58:ad:36:63:98:cb:e5:b0:1b:3b:c9: ad:de:ea:f7:14:b8:fe:31:d1:07:09:7b:fa:1b:63: 2e:72:df:de:7f:4a:7d:71:16:f8:41:89:c9:8d:c4: 29:c3:cb:66:ab:40:7c:1b:ce:44:04:e2:35:2a:44: a0:a0:96:78:c5:e6:d4:a9:04:30:79:59:58:70:8a: 9d:3f:47:62:33:c7:e5:6b:0d:59:ee:8e:0f:da:0f: ea:08:55:cf:7a:f4:1f:a3:87:3d:2f:e3:0e:d6:88: 4d:cd:49:87:6f:57:41:43:8b:d0:9d:ff:5e:a0:65: c5:43:71:52:e2:69:6d:36:9a:e1:20:78:9b:1e:76: 77:d6:10:27:18:8c:32:1b:4d:66:c2:c8:a4:a8:74: 60:93:24:f9:02:46:f7:07:26:54:ac:76:f5:d1:7f: 65:8b:f9:3e:6b:66:2b:e7:8a:1e:e9:68:30:80:ee: d7:9e:4d:9d:92:11:7e:f3:f6:fb:b3:ac:80:54:86: b5:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:B3:23:92:51:D1:06:C2:12:39:E5:76:28:A4:DD:EA:3E:F6:48:68 X509v3 Authority Key Identifier: keyid:C6:F7:36:EF:BE:BD:1A:01:43:DB:0A:57:A1:43:54:59:15:A1:8B:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dd54b4e2-2e58-465b-afaa-1c9465c882e6/0/C6F736EFBEBD1A0143DB0A57A143545915A18B33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C6F736EFBEBD1A0143DB0A57A143545915A18B33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dd54b4e2-2e58-465b-afaa-1c9465c882e6/0/3131362e3235342e3130302e302f32322d3234203d3e203535363933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.254.100.0/22 Signature Algorithm: sha256WithRSAEncryption ab:ff:ca:b8:c9:c9:c6:40:12:db:dd:6a:f2:20:42:e1:7e:09: da:a6:3a:0d:23:80:28:fd:77:18:77:15:2a:25:e7:20:30:b8: d7:09:04:5c:51:e8:0e:41:ea:0c:8e:26:64:8c:5d:1b:73:0e: 48:64:69:ad:46:96:17:f1:c5:1a:1f:18:86:f9:94:e5:0b:e3: 35:19:b7:db:fc:ba:63:f4:e3:51:e8:e4:f6:ed:63:3b:96:f6: 89:96:7e:2c:d1:24:99:0e:4f:1e:ca:86:95:53:a0:a0:98:f0: d0:24:20:71:46:12:af:d0:62:33:fb:ed:7e:f7:73:58:48:b4: 90:ae:53:96:bb:e3:0c:ba:19:9b:3f:81:eb:47:6a:07:07:56: 32:42:05:4f:23:dd:b6:0c:2f:50:33:6a:20:5e:cb:25:92:4d: 49:56:f5:fc:25:64:eb:32:b5:0f:a7:77:49:17:bb:13:e7:59: 84:95:b4:5a:9b:a3:88:de:56:4c:76:54:91:c6:e0:72:93:6e: 7b:6f:f6:d9:29:61:82:c4:4e:8e:50:34:d4:bb:d4:77:46:b6: 12:8a:fb:2b:6c:d7:32:e5:53:a9:cc:15:63:15:71:0b:96:b1: 0d:9a:0f:10:c5:75:cc:27:cd:03:c4:da:c1:59:32:a0:41:49: 9a:07:c7:6c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUApxGXHZfMx6a2wEJ1gee9xZrY1IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzZGNzM2RUZCRUJEMUEwMTQzREIwQTU3QTE0MzU0NTkx NUExOEIzMzAeFw0yNTA2MDIwMDU3NDRaFw0yNjA2MDEwMTAyNDRaMDMxMTAvBgNV BAMTKDM2QjMyMzkyNTFEMTA2QzIxMjM5RTU3NjI4QTREREVBM0VGNjQ4NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYPVBhH8kMc30Vm84mMWwJT78V vApm5IiyZcqSGMEsy+f/vxTTF9LDex032wtWYlEEzBMNDTH0pAJGfTA9Z15YrTZj mMvlsBs7ya3e6vcUuP4x0QcJe/obYy5y395/Sn1xFvhBicmNxCnDy2arQHwbzkQE 4jUqRKCglnjF5tSpBDB5WVhwip0/R2Izx+VrDVnujg/aD+oIVc969B+jhz0v4w7W iE3NSYdvV0FDi9Cd/16gZcVDcVLiaW02muEgeJsednfWECcYjDIbTWbCyKSodGCT JPkCRvcHJlSsdvXRf2WL+T5rZivnih7paDCA7teeTZ2SEX7z9vuzrIBUhrUNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNrMjklHRBsISOeV2KKTd6j72SGgwHwYDVR0j BBgwFoAUxvc27769GgFD2wpXoUNUWRWhizMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZDU0YjRlMi0yZTU4LTQ2NWItYWZhYS0xYzk0NjVjODgyZTYvMC9DNkY3MzZFRkJF QkQxQTAxNDNEQjBBNTdBMTQzNTQ1OTE1QTE4QjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzZGNzM2RUZCRUJEMUEwMTQzREIwQTU3QTE0MzU0NTkxNUEx OEIzMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkNTRiNGUyLTJlNTgtNDY1Yi1h ZmFhLTFjOTQ2NWM4ODJlNi8wLzMxMzEzNjJlMzIzNTM0MmUzMTMwMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM1MzYzOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCdP5kMA0GCSqG SIb3DQEBCwUAA4IBAQCr/8q4ycnGQBLb3WryIELhfgnapjoNI4Ao/XcYdxUqJecg MLjXCQRcUegOQeoMjiZkjF0bcw5IZGmtRpYX8cUaHxiG+ZTlC+M1Gbfb/Lpj9ONR 6OT27WM7lvaJln4s0SSZDk8eyoaVU6CgmPDQJCBxRhKv0GIz++1+93NYSLSQrlOW u+MMuhmbP4HrR2oHB1YyQgVPI922DC9QM2ogXsslkk1JVvX8JWTrMrUPp3dJF7sT 51mElbRam6OI3lZMdlSRxuByk257b/bZKWGCxE6OUDTUu9R3RrYSivsrbNcy5VOp zBVjFXELlrENmg8QxXXMJ80DxNrBWTKgQUmaB8ds -----END CERTIFICATE-----Generated at Thu Jun 5 18:42:30 2025 by rpki-client