$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234342e302f32342d3234203d3e203338343936.roa File: 3131342e33312e3234342e302f32342d3234203d3e203338343936.roa (raw, json) Hash identifier: NNRxOh9jQ83peHk0ks+0vb+5Xp/LU9bZ5doe/nY6G24= Subject key identifier: C9:6C:A9:D0:1D:9B:3E:C3:57:47:57:35:74:60:23:56:2F:AE:47:F8 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 7B5A0A5A396B56EE0370AFEFFE9F076BC27E86A8 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234342e302f32342d3234203d3e203338343936.roa Signing time: Tue 04 Mar 2025 06:02:25 +0000 ROA not before: Tue 04 Mar 2025 05:57:25 +0000 ROA not after: Tue 03 Mar 2026 06:02:25 +0000 asID: 38496 IP address blocks: 114.31.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 08:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:5a:0a:5a:39:6b:56:ee:03:70:af:ef:fe:9f:07:6b:c2:7e:86:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Mar 4 05:57:25 2025 GMT Not After : Mar 3 06:02:25 2026 GMT Subject: CN=C96CA9D01D9B3EC357475735746023562FAE47F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:50:16:83:34:d3:43:76:1d:c5:e1:ce:4b:46: c8:3a:37:77:31:8a:44:00:4c:b4:d0:28:10:10:a3: e8:cc:f6:dc:f5:fd:70:3e:8b:eb:4d:6d:9f:61:cd: e1:a5:71:95:2c:57:f6:99:db:54:79:f1:85:0c:5e: 9b:d0:27:3a:ae:7a:21:5b:5d:ad:0e:df:66:3e:d8: 8b:19:6a:ca:6a:70:3d:0c:51:84:9e:15:db:ef:bc: 95:23:f5:c8:a1:81:cc:1a:5a:b7:e7:cf:d3:42:f7: 39:ca:9f:f9:de:24:32:e3:01:d9:18:a7:07:80:87: 33:b4:e1:28:8d:99:46:41:1c:0a:31:6e:8e:ac:da: 96:f6:fd:14:6b:0c:fe:1b:44:c3:e7:59:a0:40:01: 57:7f:71:b0:a5:03:dd:39:e8:ad:4c:69:ce:f0:72: 1d:1d:8a:ac:02:4d:ce:02:2c:51:85:f8:49:0b:fe: 86:2d:d0:d6:ad:20:8c:bc:29:51:2f:02:9c:78:cf: dc:0a:90:24:39:d2:25:49:12:5c:b3:10:a1:be:e7: de:77:ad:36:a9:5d:81:a5:52:89:82:be:53:44:d8: 10:83:84:31:8b:6a:cf:2e:ea:38:91:3a:5c:78:32: 76:16:8c:3d:ab:db:f4:bf:28:1c:fb:8a:29:66:d8: 0e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:6C:A9:D0:1D:9B:3E:C3:57:47:57:35:74:60:23:56:2F:AE:47:F8 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234342e302f32342d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.31.244.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:c3:58:78:8f:c1:a0:b7:72:2f:df:98:7d:99:3c:00:82:8f: 81:9d:44:2a:88:87:f1:48:75:84:3f:d4:34:3c:2e:f4:ec:19: d7:91:d2:77:9f:fc:01:d6:f0:e1:5c:1f:71:25:50:7d:d4:ba: 4c:42:26:89:31:23:1a:57:68:9e:f3:3f:bc:90:1c:d4:51:4b: 25:b8:f8:5d:cc:f6:74:76:83:15:31:0d:dc:07:2c:b4:25:70: 83:7d:2b:71:e4:b9:d7:50:d2:5c:5e:a6:f0:1d:22:96:03:a6: f3:d5:6b:f7:81:11:ea:fc:4d:c9:ec:10:a0:9b:08:51:39:cf: 09:57:64:65:24:96:10:1a:eb:8c:0e:64:e5:20:68:93:c9:ff: dc:cd:05:88:2a:8e:c5:4e:30:68:5d:bd:7a:9f:e8:d0:57:1d: 3e:e1:ab:95:03:d3:97:fe:20:b4:e9:35:f1:ba:57:9d:1f:20: 38:c6:5f:d7:cb:6a:fd:6d:54:07:eb:7f:d6:15:10:6b:bc:45: 5d:75:e4:d6:b0:70:62:df:2f:56:55:67:9a:38:15:e8:f6:30: f0:30:85:2c:b8:bb:b2:4e:a6:1b:31:b8:0f:5e:e6:b1:cb:43: 84:ce:95:9a:c8:32:b8:19:09:e9:38:ba:05:94:57:52:a9:71: 92:7a:54:c4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUe1oKWjlrVu4DcK/v/p8Ha8J+hqgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNTAzMDQwNTU3MjVaFw0yNjAzMDMwNjAyMjVaMDMxMTAvBgNV BAMTKEM5NkNBOUQwMUQ5QjNFQzM1NzQ3NTczNTc0NjAyMzU2MkZBRTQ3RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6UBaDNNNDdh3F4c5LRsg6N3cx ikQATLTQKBAQo+jM9tz1/XA+i+tNbZ9hzeGlcZUsV/aZ21R58YUMXpvQJzqueiFb Xa0O32Y+2IsZaspqcD0MUYSeFdvvvJUj9cihgcwaWrfnz9NC9znKn/neJDLjAdkY pweAhzO04SiNmUZBHAoxbo6s2pb2/RRrDP4bRMPnWaBAAVd/cbClA9056K1Mac7w ch0diqwCTc4CLFGF+EkL/oYt0NatIIy8KVEvApx4z9wKkCQ50iVJElyzEKG+5953 rTapXYGlUomCvlNE2BCDhDGLas8u6jiROlx4MnYWjD2r2/S/KBz7iilm2A45AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyWyp0B2bPsNXR1c1dGAjVi+uR/gwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNDJlMzMzMTJlMzIzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHIf9DANBgkqhkiG 9w0BAQsFAAOCAQEAasNYeI/BoLdyL9+YfZk8AIKPgZ1EKoiH8Uh1hD/UNDwu9OwZ 15HSd5/8Adbw4VwfcSVQfdS6TEImiTEjGldonvM/vJAc1FFLJbj4Xcz2dHaDFTEN 3AcstCVwg30rceS511DSXF6m8B0ilgOm89Vr94ER6vxNyewQoJsIUTnPCVdkZSSW EBrrjA5k5SBok8n/3M0FiCqOxU4waF29ep/o0FcdPuGrlQPTl/4gtOk18bpXnR8g OMZf18tq/W1UB+t/1hUQa7xFXXXk1rBwYt8vVlVnmjgV6PYw8DCFLLi7sk6mGzG4 D17msctDhM6VmsgyuBkJ6Ti6BZRXUqlxknpUxA== -----END CERTIFICATE-----Generated at Sun Apr 6 10:52:42 2025 by rpki-client