$ rpki-client -vvf repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3131372e35342e302e302f31362d3234203d3e2039333430.roa File: 3131372e35342e302e302f31362d3234203d3e2039333430.roa (raw, json) Hash identifier: UieSxZjEvKIMrWcJdH2TDXUustdkDqF4w0J/hh4yLRA= Subject key identifier: FE:49:6D:CA:CB:1D:35:2D:4F:59:F3:B3:2C:9F:E3:FA:EA:26:F6:A1 Certificate issuer: /CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308 Certificate serial: 162894460C96DC5BE230FAE9DACEA59CB63D3D52 Authority key identifier: B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3131372e35342e302e302f31362d3234203d3e2039333430.roa Signing time: Wed 19 Mar 2025 07:00:01 +0000 ROA not before: Wed 19 Mar 2025 06:55:01 +0000 ROA not after: Wed 18 Mar 2026 07:00:01 +0000 asID: 9340 IP address blocks: 117.54.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.crl rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 14:15:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:28:94:46:0c:96:dc:5b:e2:30:fa:e9:da:ce:a5:9c:b6:3d:3d:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308 Validity Not Before: Mar 19 06:55:01 2025 GMT Not After : Mar 18 07:00:01 2026 GMT Subject: CN=FE496DCACB1D352D4F59F3B32C9FE3FAEA26F6A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5f:dd:a8:bd:93:c5:cc:8a:73:85:df:f9:c0: df:ee:13:fd:b6:a6:fb:90:e5:06:16:54:62:b8:2d: 19:58:ff:11:6f:f5:86:f3:3f:ff:27:3f:a1:1e:61: 2d:93:67:76:81:44:34:63:88:ba:4b:9f:b8:30:47: 72:4c:d1:55:32:c4:e2:9e:18:5f:d7:17:a4:f3:bc: 82:02:65:4d:28:98:aa:91:72:d8:ac:f3:6e:35:aa: bc:c5:49:8d:55:0a:bd:84:07:96:a7:a9:93:bc:2b: 79:a8:45:75:e5:65:d4:8f:63:a3:0b:09:e0:b5:a9: ea:ab:82:f1:db:79:57:bf:1b:d8:0d:f4:46:03:54: b5:a1:c4:e0:83:da:f0:61:d0:e8:f4:57:1c:7e:72: b5:2a:76:df:99:23:62:79:6f:d2:de:a7:ea:dc:14: b0:35:46:d6:03:83:74:ee:a1:86:66:48:44:ae:ce: 7a:59:42:aa:4a:ef:ee:e9:d2:1a:ec:15:20:5c:17: 2c:49:d4:4b:5d:65:ef:f7:11:a3:3f:7a:d0:22:c9: b6:d4:31:e7:d9:80:9d:14:ff:53:82:bc:5f:24:0d: 08:7c:47:89:3c:74:74:b4:7d:1e:a0:93:30:0a:f7: 25:77:e1:d4:da:35:ba:bb:ce:31:a5:ff:48:be:22: eb:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:49:6D:CA:CB:1D:35:2D:4F:59:F3:B3:2C:9F:E3:FA:EA:26:F6:A1 X509v3 Authority Key Identifier: keyid:B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3131372e35342e302e302f31362d3234203d3e2039333430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.54.0.0/16 Signature Algorithm: sha256WithRSAEncryption 13:7f:58:a2:d7:1d:d6:92:4f:2e:38:72:a7:3b:e7:66:f5:38: 03:4e:95:b4:84:6b:b4:82:dc:60:e8:b8:03:e4:a8:02:90:b4: b5:01:df:c6:de:c6:90:2c:29:dd:0e:e4:a6:1f:18:d8:0a:16: 5b:a9:04:3b:99:57:6e:23:77:36:2b:fc:78:71:d7:d8:bd:6c: a4:1d:93:f5:22:48:ba:57:82:2e:fe:45:2a:f1:ad:e0:dd:7b: 79:2b:db:b8:05:93:88:f3:97:4e:50:32:d8:6b:21:5f:dc:33: 36:ec:31:39:ab:e0:a3:8b:43:39:51:c4:0c:04:3f:49:ac:aa: 7a:1c:82:6a:c9:7c:8e:f0:e5:b3:92:46:cd:0b:36:f3:3c:8a: 32:7a:e8:b8:c8:57:61:46:78:f3:86:7b:c1:d1:b3:42:4c:59: ee:e6:94:16:fe:54:93:27:04:57:0e:7b:c9:ed:52:59:0b:8d: 53:df:73:da:4e:fd:9d:c9:fc:ab:12:fe:c6:d6:30:1f:95:c4: a2:ff:3b:d1:77:b7:a1:b9:29:91:c3:5b:ac:25:f9:3f:d1:58: 99:10:6f:66:0d:3c:d5:73:4d:e4:de:a8:30:71:99:e1:6e:c6: d8:46:7a:8e:3a:b3:68:76:d4:6d:79:65:0c:0e:e6:00:57:83: fa:3c:6b:68 -----BEGIN CERTIFICATE----- MIIFIDCCBAigAwIBAgIUFiiURgyW3FviMPrp2s6lnLY9PVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhDMkEyQjFCMjExNjRBRjhFQUVFMzg3QzdEOUE1RDk0 RDRGODMwODAeFw0yNTAzMTkwNjU1MDFaFw0yNjAzMTgwNzAwMDFaMDMxMTAvBgNV BAMTKEZFNDk2RENBQ0IxRDM1MkQ0RjU5RjNCMzJDOUZFM0ZBRUEyNkY2QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwX92ovZPFzIpzhd/5wN/uE/22 pvuQ5QYWVGK4LRlY/xFv9YbzP/8nP6EeYS2TZ3aBRDRjiLpLn7gwR3JM0VUyxOKe GF/XF6TzvIICZU0omKqRctis8241qrzFSY1VCr2EB5anqZO8K3moRXXlZdSPY6ML CeC1qeqrgvHbeVe/G9gN9EYDVLWhxOCD2vBh0Oj0Vxx+crUqdt+ZI2J5b9Lep+rc FLA1RtYDg3TuoYZmSESuznpZQqpK7+7p0hrsFSBcFyxJ1EtdZe/3EaM/etAiybbU MefZgJ0U/1OCvF8kDQh8R4k8dHS0fR6gkzAK9yV34dTaNbq7zjGl/0i+IutZAgMB AAGjggIqMIICJjAdBgNVHQ4EFgQU/kltyssdNS1PWfOzLJ/j+uom9qEwHwYDVR0j BBgwFoAUuMKisbIRZK+OruOHx9ml2U1PgwgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NWIxZTU3ZS1hMGYxLTQ2N2YtYTQ2Zi01NWEzMTU3YjBkNjUvMC9COEMyQTJCMUIy MTE2NEFGOEVBRUUzODdDN0Q5QTVEOTRENEY4MzA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjhDMkEyQjFCMjExNjRBRjhFQUVFMzg3QzdEOUE1RDk0RDRG ODMwOC5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZTViMWU1N2UtYTBmMS00NjdmLWE0 NmYtNTVhMzE1N2IwZDY1LzAvMzEzMTM3MmUzNTM0MmUzMDJlMzAyZjMxMzYyZDMy MzQyMDNkM2UyMDM5MzMzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAdTYwDQYJKoZIhvcNAQELBQAD ggEBABN/WKLXHdaSTy44cqc752b1OANOlbSEa7SC3GDouAPkqAKQtLUB38bexpAs Kd0O5KYfGNgKFlupBDuZV24jdzYr/Hhx19i9bKQdk/UiSLpXgi7+RSrxreDde3kr 27gFk4jzl05QMthrIV/cMzbsMTmr4KOLQzlRxAwEP0msqnocgmrJfI7w5bOSRs0L NvM8ijJ66LjIV2FGePOGe8HRs0JMWe7mlBb+VJMnBFcOe8ntUlkLjVPfc9pO/Z3J /KsS/sbWMB+VxKL/O9F3t6G5KZHDW6wl+T/RWJkQb2YNPNVzTeTeqDBxmeFuxthG eo46s2h21G15ZQwO5gBXg/o8a2g= -----END CERTIFICATE-----Generated at Sun Apr 6 14:28:49 2025 by rpki-client