$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131362e3235342e3132302e302f32312d3234203d3e203338343936.roa File: 3131362e3235342e3132302e302f32312d3234203d3e203338343936.roa (raw, json) Hash identifier: c2gnya4wEZbPFVlTTBYMl5sMC673nl+EUKKZGGppVOM= Subject key identifier: 0C:96:8B:1F:2A:EE:51:9E:D6:80:8E:1E:27:16:64:B4:79:B1:05:21 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 465E1ED52ECAE8F330EA6CD82CFA811D2FBA775D Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131362e3235342e3132302e302f32312d3234203d3e203338343936.roa Signing time: Mon 01 Jul 2024 01:05:34 +0000 ROA not before: Mon 01 Jul 2024 01:00:34 +0000 ROA not after: Mon 30 Jun 2025 01:05:34 +0000 asID: 38496 IP address blocks: 116.254.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 08:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:5e:1e:d5:2e:ca:e8:f3:30:ea:6c:d8:2c:fa:81:1d:2f:ba:77:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Jul 1 01:00:34 2024 GMT Not After : Jun 30 01:05:34 2025 GMT Subject: CN=0C968B1F2AEE519ED6808E1E271664B479B10521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bb:2a:e7:f8:1f:2a:40:0c:df:15:7a:c1:4b: 52:9c:0c:24:06:e1:21:e7:bf:17:49:2a:9b:03:75: 9e:72:6f:3b:8f:58:fd:8c:f6:1a:76:6d:25:11:3d: a0:b8:ca:61:60:68:57:c1:4d:c5:0e:6f:a1:32:78: 97:6f:a6:58:9c:5f:e2:b6:49:00:27:89:dd:d2:8d: 52:09:8e:a8:fc:7b:68:c4:50:77:79:8a:95:94:6d: 77:a8:ce:2d:1c:bb:13:3d:db:ca:87:f1:3e:e1:c8: ea:73:7b:8f:8e:29:5c:c2:9a:eb:71:15:5f:9e:df: cd:82:ad:36:9c:3f:18:9e:c7:72:c5:7f:38:ee:2b: d2:d4:50:e4:bd:e8:6b:59:74:ec:85:3a:12:4b:be: 21:5a:52:a7:3c:2c:0d:f7:cd:0c:0e:c1:2b:98:ed: a5:c5:a8:4a:6a:ee:b9:ab:ef:54:d7:03:a5:fb:8a: 28:d6:53:ce:b2:bb:aa:7b:74:e2:8a:37:a1:a7:d0: fc:d1:88:23:9d:c1:58:39:aa:09:c6:6f:ba:93:52: f8:b6:ad:f2:7e:a3:cb:a9:54:8d:de:f7:46:3d:a8: d2:94:b8:e6:f6:e7:ad:c7:6d:31:f2:95:8e:41:3c: f1:06:4b:1b:90:c4:bb:25:57:1f:14:83:19:f7:13: dd:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:96:8B:1F:2A:EE:51:9E:D6:80:8E:1E:27:16:64:B4:79:B1:05:21 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131362e3235342e3132302e302f32312d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.254.120.0/21 Signature Algorithm: sha256WithRSAEncryption 82:d9:d4:b6:ba:0b:fb:2f:61:2b:cf:99:22:f4:f6:e5:83:e3: 5a:b0:55:5d:b9:01:c4:87:7e:5a:38:0b:26:66:1b:5a:98:3f: be:9f:1e:da:f6:3b:1e:ab:dd:b9:f9:0c:25:0b:38:97:ea:df: 16:23:af:59:23:78:d8:28:e6:f2:1f:ad:7c:06:0e:f3:91:2f: c8:4f:c8:25:71:4d:60:35:a7:23:09:d0:84:9a:62:51:cf:e1: ab:98:7e:c0:2d:72:c8:71:8e:29:7c:ba:e7:af:54:fc:ed:23: a8:03:d0:1b:82:2d:41:d0:76:77:7d:b4:a6:7b:cb:48:72:30: ea:c2:75:1b:9a:66:6d:ea:58:00:80:41:b1:d7:09:b0:c4:40: fe:ea:95:67:cf:1d:01:ec:8e:90:bf:d9:66:bb:71:b9:c7:a7: c3:69:ae:b7:d2:b6:f6:ce:84:fc:57:b5:34:d7:14:72:80:a5: af:cf:0f:2c:f7:24:44:a8:bd:20:df:80:0b:5b:65:f5:3b:16: 89:cc:df:2d:b7:96:83:15:9b:d6:e4:a3:85:3f:4e:4b:9b:8f: bc:2b:a6:d7:17:6d:87:d7:ed:fc:7c:4f:de:3d:44:da:3b:c4: 64:bb:0c:22:d5:71:c0:78:9a:9e:fe:a3:5e:ad:eb:ec:3a:96: 91:07:79:3c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURl4e1S7K6PMw6mzYLPqBHS+6d10wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDA3MDEwMTAwMzRaFw0yNTA2MzAwMTA1MzRaMDMxMTAvBgNV BAMTKDBDOTY4QjFGMkFFRTUxOUVENjgwOEUxRTI3MTY2NEI0NzlCMTA1MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIuyrn+B8qQAzfFXrBS1KcDCQG 4SHnvxdJKpsDdZ5ybzuPWP2M9hp2bSURPaC4ymFgaFfBTcUOb6EyeJdvplicX+K2 SQAnid3SjVIJjqj8e2jEUHd5ipWUbXeozi0cuxM928qH8T7hyOpze4+OKVzCmutx FV+e382CrTacPxiex3LFfzjuK9LUUOS96GtZdOyFOhJLviFaUqc8LA33zQwOwSuY 7aXFqEpq7rmr71TXA6X7iijWU86yu6p7dOKKN6Gn0PzRiCOdwVg5qgnGb7qTUvi2 rfJ+o8upVI3e90Y9qNKUuOb2563HbTHylY5BPPEGSxuQxLslVx8Ugxn3E93DAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDJaLHyruUZ7WgI4eJxZktHmxBSEwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNjJlMzIzNTM0MmUzMTMyMzAyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMzM4MzQzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDdP54MA0GCSqG SIb3DQEBCwUAA4IBAQCC2dS2ugv7L2Erz5ki9Pblg+NasFVduQHEh35aOAsmZhta mD++nx7a9jseq925+QwlCziX6t8WI69ZI3jYKObyH618Bg7zkS/IT8glcU1gNacj CdCEmmJRz+GrmH7ALXLIcY4pfLrnr1T87SOoA9Abgi1B0HZ3fbSme8tIcjDqwnUb mmZt6lgAgEGx1wmwxED+6pVnzx0B7I6Qv9lmu3G5x6fDaa630rb2zoT8V7U01xRy gKWvzw8s9yREqL0g34ALW2X1OxaJzN8tt5aDFZvW5KOFP05Lm4+8K6bXF22H1+38 fE/ePUTaO8Rkuwwi1XHAeJqe/qNerevsOpaRB3k8 -----END CERTIFICATE-----Generated at Sun Apr 6 10:50:24 2025 by rpki-client