$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131362e36362e3230302e302f32332d3233203d3e203338343936.roa File: 3131362e36362e3230302e302f32332d3233203d3e203338343936.roa (raw, json) Hash identifier: lyahC+EtvH7z9NWchPAxcZNJFGbCQc9LEQMaatXCwFs= Subject key identifier: 54:FF:A5:FF:A5:48:9F:E5:34:03:A5:A4:3B:09:35:A4:BB:93:45:2F Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 17ED1D3E21BC865DF76CC5ABB5194A709AEB436D Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131362e36362e3230302e302f32332d3233203d3e203338343936.roa Signing time: Thu 22 Aug 2024 11:00:02 +0000 ROA not before: Thu 22 Aug 2024 10:55:02 +0000 ROA not after: Thu 21 Aug 2025 11:00:02 +0000 asID: 38496 IP address blocks: 116.66.200.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 08:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:ed:1d:3e:21:bc:86:5d:f7:6c:c5:ab:b5:19:4a:70:9a:eb:43:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Aug 22 10:55:02 2024 GMT Not After : Aug 21 11:00:02 2025 GMT Subject: CN=54FFA5FFA5489FE53403A5A43B0935A4BB93452F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:09:90:f3:f7:bb:87:74:f8:89:d0:a3:45:11: c1:cc:da:51:a3:7f:1b:c6:61:8c:dd:05:7c:f6:2b: f3:49:74:c4:17:72:25:dc:35:31:3d:17:9e:81:60: 99:0e:cc:a8:c0:f0:d0:52:59:96:23:50:7c:73:15: 41:2b:a3:9e:66:78:b2:07:46:11:0d:93:01:7b:28: 82:ef:2c:31:dd:1e:8a:49:95:20:d4:14:26:7b:b5: 0f:4b:4e:51:fa:24:75:db:3c:a7:1e:65:fd:92:a1: 06:0d:11:f2:09:6c:75:6d:eb:73:30:86:41:74:8e: 4d:d9:92:3f:09:c4:31:94:26:3e:5a:25:48:a2:3d: 2a:dc:80:8e:85:1f:fc:92:f2:65:32:ce:ea:7f:c1: db:71:df:8d:f2:9a:cf:0c:c6:d0:fe:ce:1d:8d:71: 1a:48:08:1c:24:52:03:95:50:4f:e2:d9:2a:3d:b1: e1:6d:d8:1d:0c:1c:de:6a:4c:63:29:78:23:4a:5f: f1:a4:b4:fa:6d:38:7f:2d:62:1b:c0:bb:ca:c1:3b: b3:92:c6:24:fa:e1:f6:b8:fc:9a:5f:2d:a1:ca:42: dd:f8:63:6c:73:8e:3a:24:36:cf:9d:45:ba:6e:3f: 09:b9:98:19:0b:44:c3:d6:74:b3:e6:a2:9e:18:35: ba:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:FF:A5:FF:A5:48:9F:E5:34:03:A5:A4:3B:09:35:A4:BB:93:45:2F X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131362e36362e3230302e302f32332d3233203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.66.200.0/23 Signature Algorithm: sha256WithRSAEncryption 67:4c:78:12:b6:aa:b3:41:17:6f:6e:3d:50:b2:ec:c4:53:13: c5:ec:5f:f0:51:5b:7f:e6:8c:73:82:3d:4b:d5:36:63:bd:cf: e9:8c:95:ce:87:87:9b:39:07:f5:ce:75:5f:6b:ec:d2:7b:a7: 45:25:95:fb:d4:26:2c:3b:65:da:83:d0:eb:05:5c:c9:f6:e8: d6:79:4b:ee:ba:36:4c:80:fe:10:fc:6e:1d:22:be:e2:a2:a7: 38:85:24:51:9f:c4:5a:2c:35:6c:3d:f2:41:dc:43:48:0b:55: c0:a4:af:5d:23:d9:87:30:5c:d2:af:2d:59:34:96:0e:94:b4: 41:40:f2:17:86:77:56:66:88:c9:2a:3b:8d:00:8b:e7:6c:09: 22:c1:a1:bc:7c:ac:89:e7:8b:08:27:cd:84:3d:0a:67:6a:9a: e1:77:8c:4d:9d:fa:0f:64:66:0d:a6:ff:a0:2a:b8:4e:ac:05: 12:1b:ad:36:cc:8d:5c:4e:25:07:c0:30:a6:d6:64:0e:4c:35: 85:8c:76:b3:7c:d8:9d:ba:7e:49:02:ee:d5:fb:a4:08:ff:5a: 8b:52:3e:83:e6:1c:2e:53:58:e4:0c:a1:f1:3f:b1:3c:f3:44: e7:44:48:f9:37:34:bf:89:97:84:86:67:38:10:b9:18:e9:1d: da:8e:8d:8c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUF+0dPiG8hl33bMWrtRlKcJrrQ20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDA4MjIxMDU1MDJaFw0yNTA4MjExMTAwMDJaMDMxMTAvBgNV BAMTKDU0RkZBNUZGQTU0ODlGRTUzNDAzQTVBNDNCMDkzNUE0QkI5MzQ1MkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/CZDz97uHdPiJ0KNFEcHM2lGj fxvGYYzdBXz2K/NJdMQXciXcNTE9F56BYJkOzKjA8NBSWZYjUHxzFUEro55meLIH RhENkwF7KILvLDHdHopJlSDUFCZ7tQ9LTlH6JHXbPKceZf2SoQYNEfIJbHVt63Mw hkF0jk3Zkj8JxDGUJj5aJUiiPSrcgI6FH/yS8mUyzup/wdtx343yms8MxtD+zh2N cRpICBwkUgOVUE/i2So9seFt2B0MHN5qTGMpeCNKX/GktPptOH8tYhvAu8rBO7OS xiT64fa4/JpfLaHKQt34Y2xzjjokNs+dRbpuPwm5mBkLRMPWdLPmop4YNbpXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVP+l/6VIn+U0A6WkOwk1pLuTRS8wHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNjJlMzYzNjJlMzIzMDMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXRCyDANBgkqhkiG 9w0BAQsFAAOCAQEAZ0x4Eraqs0EXb249ULLsxFMTxexf8FFbf+aMc4I9S9U2Y73P 6YyVzoeHmzkH9c51X2vs0nunRSWV+9QmLDtl2oPQ6wVcyfbo1nlL7ro2TID+EPxu HSK+4qKnOIUkUZ/EWiw1bD3yQdxDSAtVwKSvXSPZhzBc0q8tWTSWDpS0QUDyF4Z3 VmaIySo7jQCL52wJIsGhvHysieeLCCfNhD0KZ2qa4XeMTZ36D2RmDab/oCq4TqwF EhutNsyNXE4lB8AwptZkDkw1hYx2s3zYnbp+SQLu1fukCP9ai1I+g+YcLlNY5Ayh 8T+xPPNE50RI+Tc0v4mXhIZnOBC5GOkd2o6NjA== -----END CERTIFICATE-----Generated at Sun Apr 6 10:53:01 2025 by rpki-client