$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131352e3137382e3132362e302f32342d3234203d3e20313337333436.roa File: 3131352e3137382e3132362e302f32342d3234203d3e20313337333436.roa (raw, json) Hash identifier: ggHriDF4Mhk/2vQIRnKVxcftGy+SHsTGPPJRVa7jtvA= Subject key identifier: 67:F0:1C:75:AE:0D:F4:B6:EE:99:17:59:5E:99:4E:21:60:C4:1A:18 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 29ADFDF70A9E5D5E5A9982B315D03C3272A7A7F8 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131352e3137382e3132362e302f32342d3234203d3e20313337333436.roa Signing time: Wed 05 Mar 2025 07:07:05 +0000 ROA not before: Wed 05 Mar 2025 07:02:05 +0000 ROA not after: Wed 04 Mar 2026 07:07:05 +0000 asID: 137346 IP address blocks: 115.178.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 08:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:ad:fd:f7:0a:9e:5d:5e:5a:99:82:b3:15:d0:3c:32:72:a7:a7:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Mar 5 07:02:05 2025 GMT Not After : Mar 4 07:07:05 2026 GMT Subject: CN=67F01C75AE0DF4B6EE9917595E994E2160C41A18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1b:4c:fa:64:1d:99:cc:14:06:27:51:97:59: 5a:d2:b1:c2:cf:17:21:97:fc:b6:e7:c5:ca:35:96: 96:c0:30:fe:24:65:09:78:72:93:7e:cb:5e:b2:77: 9b:3d:9f:49:cc:9d:56:d2:ce:56:a1:12:1c:63:56: bb:f7:15:c7:9b:17:cc:52:15:fd:e7:65:4c:64:98: 71:b9:0e:84:5c:8d:0d:fb:3c:b1:88:9f:2e:2f:2e: ee:61:c1:f5:2c:ae:f4:f7:51:18:18:cd:fd:c6:19: ef:5c:ab:be:aa:a7:34:3c:85:d0:20:30:21:93:d9: e3:19:94:08:7a:73:74:cc:56:96:ec:94:e2:59:1b: bb:6d:77:57:e0:98:ae:3d:8b:72:98:01:98:2b:84: ef:ea:a9:11:d2:3e:22:29:fc:48:ef:87:a4:a5:8d: cf:14:bd:fd:db:20:84:e8:b8:8f:05:fc:26:a4:f3: d7:dc:46:fa:14:7f:5b:8b:04:e2:eb:57:f9:fc:60: 8c:ef:cd:e1:dd:eb:48:dc:83:5b:bb:60:21:80:7e: b2:a2:bd:91:06:04:65:7b:66:23:79:75:ce:10:e6: 32:05:09:15:3b:57:af:5b:0b:a4:f1:a8:f5:21:f4: 74:4b:4b:53:3b:a2:69:46:b2:e7:ab:00:6b:27:26: d0:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F0:1C:75:AE:0D:F4:B6:EE:99:17:59:5E:99:4E:21:60:C4:1A:18 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131352e3137382e3132362e302f32342d3234203d3e20313337333436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.126.0/24 Signature Algorithm: sha256WithRSAEncryption 06:89:81:8f:c3:94:80:65:e0:b9:f4:58:d5:4b:bf:d3:90:97: fe:41:25:6e:e3:56:3d:73:35:7c:5f:15:9d:f1:93:ef:8d:94: 11:da:e3:30:5b:c7:5a:af:72:d9:5d:03:8b:9e:ab:a5:fe:77: 8b:ae:e9:5f:9c:7f:48:17:69:1c:a0:ca:b2:55:1e:67:5d:e1: b7:16:96:7c:d2:3d:22:fb:1c:85:ad:59:12:53:ca:45:95:1e: e2:24:bd:05:ff:2f:1d:d4:1c:91:82:d8:26:1f:e6:13:a2:dd: 70:6c:f6:37:65:e4:ea:38:db:51:0a:96:79:ec:e7:12:aa:92: ca:31:90:18:54:90:4a:24:e9:51:f6:d2:00:db:17:28:a9:2c: 42:12:b7:fb:f4:86:54:a5:c5:6a:c1:71:7c:42:30:2e:c6:6f: 82:f1:54:52:5f:d4:e1:2b:ee:43:50:1a:5f:f0:b2:eb:d3:55: 47:76:03:8e:a0:75:04:35:e6:ce:01:b8:df:8b:5e:68:74:a9: 21:83:cf:fd:b1:5a:c3:0a:67:31:04:a7:19:85:1a:21:be:e3: 05:b8:67:bc:9c:2d:a9:09:a2:7a:96:08:3f:32:21:10:39:e9: 21:6b:67:60:bd:df:b0:bf:b6:d1:99:d4:eb:d9:8c:47:6f:58: 67:23:d1:55 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKa399wqeXV5amYKzFdA8MnKnp/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNTAzMDUwNzAyMDVaFw0yNjAzMDQwNzA3MDVaMDMxMTAvBgNV BAMTKDY3RjAxQzc1QUUwREY0QjZFRTk5MTc1OTVFOTk0RTIxNjBDNDFBMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCG0z6ZB2ZzBQGJ1GXWVrSscLP FyGX/Lbnxco1lpbAMP4kZQl4cpN+y16yd5s9n0nMnVbSzlahEhxjVrv3FcebF8xS Ff3nZUxkmHG5DoRcjQ37PLGIny4vLu5hwfUsrvT3URgYzf3GGe9cq76qpzQ8hdAg MCGT2eMZlAh6c3TMVpbslOJZG7ttd1fgmK49i3KYAZgrhO/qqRHSPiIp/Ejvh6Sl jc8Uvf3bIITouI8F/Cak89fcRvoUf1uLBOLrV/n8YIzvzeHd60jcg1u7YCGAfrKi vZEGBGV7ZiN5dc4Q5jIFCRU7V69bC6TxqPUh9HRLS1M7omlGsuerAGsnJtChAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZ/Acda4N9LbumRdZXplOIWDEGhgwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNTJlMzEzNzM4MmUzMTMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABzsn4wDQYJ KoZIhvcNAQELBQADggEBAAaJgY/DlIBl4Ln0WNVLv9OQl/5BJW7jVj1zNXxfFZ3x k++NlBHa4zBbx1qvctldA4ueq6X+d4uu6V+cf0gXaRygyrJVHmdd4bcWlnzSPSL7 HIWtWRJTykWVHuIkvQX/Lx3UHJGC2CYf5hOi3XBs9jdl5Oo421EKlnns5xKqksox kBhUkEok6VH20gDbFyipLEISt/v0hlSlxWrBcXxCMC7Gb4LxVFJf1OEr7kNQGl/w suvTVUd2A46gdQQ15s4BuN+LXmh0qSGDz/2xWsMKZzEEpxmFGiG+4wW4Z7ycLakJ onqWCD8yIRA56SFrZ2C937C/ttGZ1OvZjEdvWGcj0VU= -----END CERTIFICATE-----Generated at Sun Apr 6 10:52:47 2025 by rpki-client