$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234332e302f32342d3234203d3e203338343936.roa File: 3131342e33312e3234332e302f32342d3234203d3e203338343936.roa (raw, json) Hash identifier: +/XNBbvhS4SAocqenfGbOANarlBTmrLln1Fzlw/xu24= Subject key identifier: AF:32:7D:F7:E1:DA:B2:E3:D3:EA:40:2A:C2:73:5B:57:B1:CB:FA:8F Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 77CE5338E801F6655D9ED6A6FC8771D0C9683042 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234332e302f32342d3234203d3e203338343936.roa Signing time: Tue 04 Mar 2025 06:02:25 +0000 ROA not before: Tue 04 Mar 2025 05:57:25 +0000 ROA not after: Tue 03 Mar 2026 06:02:25 +0000 asID: 38496 IP address blocks: 114.31.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 08:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:ce:53:38:e8:01:f6:65:5d:9e:d6:a6:fc:87:71:d0:c9:68:30:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Mar 4 05:57:25 2025 GMT Not After : Mar 3 06:02:25 2026 GMT Subject: CN=AF327DF7E1DAB2E3D3EA402AC2735B57B1CBFA8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:81:18:d1:91:c1:b4:ba:de:d3:b9:5e:ee:c1: c3:2d:29:aa:b3:e1:cf:26:65:fa:33:cb:70:ce:51: 1e:23:3b:e6:cd:32:fe:de:30:c4:5f:0a:5c:4c:9e: d2:8b:f5:72:46:ca:d2:fc:b7:c1:41:78:8d:91:d7: d9:c5:b0:1c:05:dc:a4:71:8e:1d:ba:4f:96:ba:12: 55:ed:71:ca:fd:6d:27:43:9b:44:fa:d3:04:0a:a7: 4b:0b:e2:1b:10:fe:9e:19:7a:e2:08:46:16:c2:48: a3:c6:c9:24:ba:5e:13:32:3a:a4:a4:a8:f2:90:4d: 21:35:e2:21:73:ee:08:b4:94:74:72:1b:cf:d0:92: 53:12:10:31:3b:f9:a6:2f:88:7b:6b:46:96:9e:e0: a1:07:17:b8:71:fc:3e:fd:b8:6c:20:f9:0b:98:de: 6a:6a:f3:21:b6:02:ad:f0:3c:7e:6e:b4:30:92:13: 78:6b:b9:2d:f1:ac:19:82:3a:a7:97:d8:73:a7:28: 8e:9e:d9:f7:c5:d3:24:b9:20:66:92:6d:a8:be:b7: c8:a0:07:f0:31:d8:ab:2c:1c:f5:77:b1:52:0c:0f: 0c:b1:44:3e:94:08:fd:06:4e:0e:a5:cf:55:c5:a2: 62:ed:e5:60:c6:a7:76:f2:d2:2e:26:2b:8b:b7:1b: 46:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:32:7D:F7:E1:DA:B2:E3:D3:EA:40:2A:C2:73:5B:57:B1:CB:FA:8F X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234332e302f32342d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.31.243.0/24 Signature Algorithm: sha256WithRSAEncryption 61:05:b3:64:f8:39:6d:66:42:08:5d:e7:56:41:c0:1f:84:e8: 0f:a6:33:07:2e:85:dc:38:1a:fc:aa:ee:f0:11:64:7d:f8:73: 16:7c:8a:ad:06:2b:3f:22:d9:08:89:0e:57:66:27:40:bb:38: 6c:e8:c0:4a:45:b6:ca:b3:09:63:63:57:bd:53:66:9e:98:17: 87:9a:b7:10:0a:0a:ff:42:85:b2:f4:9a:7d:66:81:59:17:8f: e2:08:79:21:2c:e4:a5:cc:d5:de:a5:d1:e1:88:f4:ed:40:ad: 6e:58:9f:3b:09:ef:d8:28:36:cd:f2:fa:a3:67:fc:a9:f2:f8: e5:a8:b4:0e:3c:dc:1a:8b:bf:48:8e:2c:41:85:c0:93:57:01: 6c:4c:36:61:32:76:85:fe:a2:3f:fe:bc:c0:d4:a0:38:15:62: 9e:21:52:28:55:f7:d6:73:00:a1:c4:f2:86:eb:cf:bc:61:45: 4d:95:10:53:12:1a:4a:8d:fd:6a:0a:1c:a9:d1:33:d2:14:4c: e0:11:65:01:ba:0e:77:b0:26:86:60:bc:8e:ee:a0:ed:00:aa: 6c:f7:e3:06:43:08:8d:54:82:94:9c:b3:66:f7:80:38:e8:3d: 96:45:95:df:02:c3:e3:c2:c3:48:6c:01:3a:0f:9a:d5:9b:74: 20:15:9b:f6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUd85TOOgB9mVdntam/Idx0MloMEIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNTAzMDQwNTU3MjVaFw0yNjAzMDMwNjAyMjVaMDMxMTAvBgNV BAMTKEFGMzI3REY3RTFEQUIyRTNEM0VBNDAyQUMyNzM1QjU3QjFDQkZBOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDugRjRkcG0ut7TuV7uwcMtKaqz 4c8mZfozy3DOUR4jO+bNMv7eMMRfClxMntKL9XJGytL8t8FBeI2R19nFsBwF3KRx jh26T5a6ElXtccr9bSdDm0T60wQKp0sL4hsQ/p4ZeuIIRhbCSKPGySS6XhMyOqSk qPKQTSE14iFz7gi0lHRyG8/QklMSEDE7+aYviHtrRpae4KEHF7hx/D79uGwg+QuY 3mpq8yG2Aq3wPH5utDCSE3hruS3xrBmCOqeX2HOnKI6e2ffF0yS5IGaSbai+t8ig B/Ax2KssHPV3sVIMDwyxRD6UCP0GTg6lz1XFomLt5WDGp3by0i4mK4u3G0anAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrzJ99+HasuPT6kAqwnNbV7HL+o8wHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNDJlMzMzMTJlMzIzNDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHIf8zANBgkqhkiG 9w0BAQsFAAOCAQEAYQWzZPg5bWZCCF3nVkHAH4ToD6YzBy6F3Dga/Kru8BFkffhz FnyKrQYrPyLZCIkOV2YnQLs4bOjASkW2yrMJY2NXvVNmnpgXh5q3EAoK/0KFsvSa fWaBWReP4gh5ISzkpczV3qXR4Yj07UCtblifOwnv2Cg2zfL6o2f8qfL45ai0Djzc Gou/SI4sQYXAk1cBbEw2YTJ2hf6iP/68wNSgOBViniFSKFX31nMAocTyhuvPvGFF TZUQUxIaSo39agocqdEz0hRM4BFlAboOd7AmhmC8ju6g7QCqbPfjBkMIjVSClJyz ZveAOOg9lkWV3wLD48LDSGwBOg+a1Zt0IBWb9g== -----END CERTIFICATE-----Generated at Sun Apr 6 10:55:26 2025 by rpki-client