$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234362e302f32342d3234203d3e203338343936.roa File: 3131342e33312e3234362e302f32342d3234203d3e203338343936.roa (raw, json) Hash identifier: 9m2hzVFW9q6EKS/UeTAohr3G8QWLsAiLd2nmE2qGFVQ= Subject key identifier: E7:DE:D1:6D:61:56:27:67:94:08:2E:F9:9C:BD:B0:B5:1F:26:CB:D3 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 29772A3DC30483EF1BFBAE546183AF9A88B19EA3 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234362e302f32342d3234203d3e203338343936.roa Signing time: Sun 09 Feb 2025 04:00:02 +0000 ROA not before: Sun 09 Feb 2025 03:55:02 +0000 ROA not after: Sun 08 Feb 2026 04:00:02 +0000 asID: 38496 IP address blocks: 114.31.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 08:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:77:2a:3d:c3:04:83:ef:1b:fb:ae:54:61:83:af:9a:88:b1:9e:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Feb 9 03:55:02 2025 GMT Not After : Feb 8 04:00:02 2026 GMT Subject: CN=E7DED16D6156276794082EF99CBDB0B51F26CBD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b7:9d:66:2a:4d:8e:20:da:7a:46:8f:1d:bc: 8d:9d:05:86:22:0d:2e:f5:44:74:b0:5d:29:fe:d4: c1:96:5f:dc:2b:74:42:d0:d7:1d:08:c7:5c:7a:82: b1:f5:bf:c4:1b:e9:4b:a5:7b:9f:ad:86:73:9b:ff: c8:9d:59:ac:98:b2:89:8c:7e:f2:05:f9:2d:66:ba: 87:9d:3f:19:2f:da:02:50:da:ee:c0:74:c1:7f:43: 04:fe:63:89:fe:15:90:d7:23:1a:b1:b5:a2:50:69: bc:6b:3e:aa:29:d5:8d:d1:45:81:03:b8:dd:49:35: 68:5e:37:eb:2e:a1:e6:24:54:6d:d2:ef:06:5e:06: f9:c1:68:47:0a:be:67:58:ce:b9:92:f6:03:94:eb: 02:17:50:27:5f:4a:24:e3:5c:14:30:bf:cc:04:07: c5:f9:4c:48:84:20:f2:92:8c:a2:ac:53:78:37:99: 73:22:0d:12:46:35:7a:1e:45:c4:a3:ca:fa:0f:bd: ec:c0:ec:dd:1a:71:ac:b8:5e:63:1d:c9:9a:86:7a: 7d:d2:ac:44:9d:85:fa:a9:be:2f:8d:6a:14:1e:45: ec:9e:15:f7:1d:dd:6f:5a:0e:eb:cc:b8:04:28:3c: 98:23:8b:9c:d8:93:84:3c:b0:fb:2b:94:f5:3f:db: a7:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:DE:D1:6D:61:56:27:67:94:08:2E:F9:9C:BD:B0:B5:1F:26:CB:D3 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234362e302f32342d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.31.246.0/24 Signature Algorithm: sha256WithRSAEncryption 42:0f:3d:b7:2f:43:e0:3e:09:bd:fc:eb:ad:05:16:a2:c4:5f: af:d3:48:2c:fe:c1:e4:ef:f9:a5:3e:00:5e:2b:5c:f7:9f:fd: 7a:14:65:23:b8:88:6e:83:ad:c8:8f:da:2b:7f:95:78:50:73: 64:9c:c3:cb:da:68:19:46:8f:55:2b:f2:b6:b3:60:df:12:3e: 8f:8e:76:b9:68:01:24:1e:80:aa:6e:a6:5a:e9:16:fe:12:49: 85:65:85:05:e7:a1:fa:92:d9:26:9c:0b:c7:e4:cb:1e:15:38: 44:8c:c9:a0:55:1e:8c:bc:04:f6:ad:a0:c9:e6:3e:b1:85:d5: c6:85:e0:fd:5d:f2:68:dd:24:21:5c:a6:62:a5:f1:1d:93:ca: 1b:32:f8:61:fe:6e:8b:1b:a6:b7:1e:da:4b:f6:77:6a:8f:de: af:4b:f7:13:53:37:49:3f:0d:d9:10:57:15:58:68:83:0e:d5: 0f:93:36:11:e4:4d:61:8e:54:9e:bb:de:cd:ec:50:34:c6:54: d0:0b:79:1b:68:bd:d8:b3:28:af:77:26:12:6b:64:23:70:b2: 42:da:59:3d:44:48:e8:21:7f:79:17:3b:08:76:36:91:2b:53: ca:38:7c:67:ce:a9:dc:9f:02:7b:20:53:28:8e:c7:c5:62:aa: d4:35:2e:13 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKXcqPcMEg+8b+65UYYOvmoixnqMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNTAyMDkwMzU1MDJaFw0yNjAyMDgwNDAwMDJaMDMxMTAvBgNV BAMTKEU3REVEMTZENjE1NjI3Njc5NDA4MkVGOTlDQkRCMEI1MUYyNkNCRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDat51mKk2OINp6Ro8dvI2dBYYi DS71RHSwXSn+1MGWX9wrdELQ1x0Ix1x6grH1v8Qb6Uule5+thnOb/8idWayYsomM fvIF+S1muoedPxkv2gJQ2u7AdMF/QwT+Y4n+FZDXIxqxtaJQabxrPqop1Y3RRYED uN1JNWheN+suoeYkVG3S7wZeBvnBaEcKvmdYzrmS9gOU6wIXUCdfSiTjXBQwv8wE B8X5TEiEIPKSjKKsU3g3mXMiDRJGNXoeRcSjyvoPvezA7N0acay4XmMdyZqGen3S rESdhfqpvi+NahQeReyeFfcd3W9aDuvMuAQoPJgji5zYk4Q8sPsrlPU/26fXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU597RbWFWJ2eUCC75nL2wtR8my9MwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNDJlMzMzMTJlMzIzNDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHIf9jANBgkqhkiG 9w0BAQsFAAOCAQEAQg89ty9D4D4JvfzrrQUWosRfr9NILP7B5O/5pT4AXitc95/9 ehRlI7iIboOtyI/aK3+VeFBzZJzDy9poGUaPVSvytrNg3xI+j452uWgBJB6Aqm6m WukW/hJJhWWFBeeh+pLZJpwLx+TLHhU4RIzJoFUejLwE9q2gyeY+sYXVxoXg/V3y aN0kIVymYqXxHZPKGzL4Yf5uixumtx7aS/Z3ao/er0v3E1M3ST8N2RBXFVhogw7V D5M2EeRNYY5UnrvezexQNMZU0At5G2i92LMor3cmEmtkI3CyQtpZPURI6CF/eRc7 CHY2kStTyjh8Z86p3J8CeyBTKI7HxWKq1DUuEw== -----END CERTIFICATE-----Generated at Sun Apr 6 10:55:18 2025 by rpki-client