$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131372e3130332e31322e302f32342d3234203d3e203338343936.roa File: 3131372e3130332e31322e302f32342d3234203d3e203338343936.roa (raw, json) Hash identifier: FF4Ww99X0j2R8sFj9q38J94djZo3rO5U+RNIIguLkl8= Subject key identifier: FF:4B:DA:43:C8:9D:66:C7:E5:05:44:B8:48:51:32:27:86:29:0C:C7 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 62C0EE02C9801CDF4C3CCD22124965B61B34EB01 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131372e3130332e31322e302f32342d3234203d3e203338343936.roa Signing time: Wed 19 Mar 2025 05:02:22 +0000 ROA not before: Wed 19 Mar 2025 04:57:22 +0000 ROA not after: Wed 18 Mar 2026 05:02:22 +0000 asID: 38496 IP address blocks: 117.103.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 08:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:c0:ee:02:c9:80:1c:df:4c:3c:cd:22:12:49:65:b6:1b:34:eb:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Mar 19 04:57:22 2025 GMT Not After : Mar 18 05:02:22 2026 GMT Subject: CN=FF4BDA43C89D66C7E50544B84851322786290CC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1c:4d:06:c0:90:cc:d0:1e:2f:07:34:aa:50: 20:a5:01:76:73:70:d3:66:6e:14:21:e6:12:2d:3d: a2:0d:fd:47:8a:5b:a8:aa:e9:35:d0:89:57:3b:d2: ed:de:47:e7:bc:7b:ad:2b:a8:c6:33:20:fd:62:49: fc:d3:49:f4:c0:63:50:4f:07:c5:e7:c1:ef:d1:3b: 38:82:b0:84:56:e7:02:0c:b6:0d:13:34:6d:c5:bd: 95:9e:2c:c5:bb:95:a1:50:5d:36:5b:b0:ed:d8:39: bc:55:cc:a3:b7:10:fa:3c:e0:b8:6d:fa:76:d8:23: 0b:30:7e:8d:92:03:a8:c3:b8:35:9e:d8:39:77:c8: 4e:8f:0b:27:3a:a7:f0:6d:52:f6:66:6e:37:1d:8b: f4:14:d6:e4:f9:f3:e2:80:87:b3:be:64:6f:60:90: cc:16:68:71:31:ef:32:3e:b7:95:23:88:09:c3:cf: 7b:c6:59:aa:5b:b8:9f:15:fa:1a:bf:6a:96:63:98: 53:ab:20:ed:03:e5:0a:d8:84:ca:1c:83:b0:a0:3a: 1a:09:13:a2:86:b6:98:ce:4f:d4:1a:fa:a8:b8:79: fa:5d:ca:44:66:77:0b:a0:0f:a2:81:06:41:69:f1: 80:be:be:39:e9:7b:d2:72:e1:f4:1b:be:aa:12:82: 3d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:4B:DA:43:C8:9D:66:C7:E5:05:44:B8:48:51:32:27:86:29:0C:C7 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131372e3130332e31322e302f32342d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.103.12.0/24 Signature Algorithm: sha256WithRSAEncryption 52:15:08:0b:15:b1:7d:64:4f:b4:8b:a5:49:b6:1f:7d:39:1f: 24:58:2c:3f:ca:3b:1c:63:85:50:09:c0:1b:2a:d4:cd:ad:70: 4e:7b:1b:73:a6:3b:72:88:79:df:01:9c:b6:d8:25:e7:47:5d: 30:01:45:2d:e9:46:4e:34:ad:09:58:a1:bf:81:33:e6:e6:fc: bb:0b:62:58:75:6f:ac:4e:13:31:13:aa:47:1e:1b:fd:1f:54: 10:ed:f9:68:5a:2b:9a:24:af:10:65:ff:aa:30:ca:81:c0:6d: cf:7b:9e:30:3b:e8:34:02:f9:38:ec:da:be:32:28:6c:36:90: 1e:87:90:fb:80:aa:45:35:52:4f:8d:dd:f8:58:b1:7e:84:bd: 11:27:b5:fa:1d:3b:2d:b9:bb:0f:e1:18:27:10:a2:d1:51:2e: 23:a7:a6:97:3d:f2:6c:93:af:79:56:5e:7c:9d:dc:19:39:59: ed:9b:ad:c0:8b:43:03:47:1a:49:0e:01:05:4f:01:08:dd:59: ac:8b:f5:2a:f2:be:86:1e:e2:b1:f8:77:dd:0c:15:bd:00:a2: 17:08:11:d4:02:1b:73:23:cc:26:d7:36:88:5e:c1:49:26:45: 86:d0:73:81:b2:78:f3:1f:49:49:9f:a6:74:c6:51:3b:a2:6a: 14:cd:c2:29 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYsDuAsmAHN9MPM0iEkllths06wEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNTAzMTkwNDU3MjJaFw0yNjAzMTgwNTAyMjJaMDMxMTAvBgNV BAMTKEZGNEJEQTQzQzg5RDY2QzdFNTA1NDRCODQ4NTEzMjI3ODYyOTBDQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsHE0GwJDM0B4vBzSqUCClAXZz cNNmbhQh5hItPaIN/UeKW6iq6TXQiVc70u3eR+e8e60rqMYzIP1iSfzTSfTAY1BP B8Xnwe/ROziCsIRW5wIMtg0TNG3FvZWeLMW7laFQXTZbsO3YObxVzKO3EPo84Lht +nbYIwswfo2SA6jDuDWe2Dl3yE6PCyc6p/BtUvZmbjcdi/QU1uT58+KAh7O+ZG9g kMwWaHEx7zI+t5UjiAnDz3vGWapbuJ8V+hq/apZjmFOrIO0D5QrYhMocg7CgOhoJ E6KGtpjOT9Qa+qi4efpdykRmdwugD6KBBkFp8YC+vjnpe9Jy4fQbvqoSgj1NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/0vaQ8idZsflBUS4SFEyJ4YpDMcwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNzJlMzEzMDMzMmUzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVnDDANBgkqhkiG 9w0BAQsFAAOCAQEAUhUICxWxfWRPtIulSbYffTkfJFgsP8o7HGOFUAnAGyrUza1w Tnsbc6Y7coh53wGcttgl50ddMAFFLelGTjStCVihv4Ez5ub8uwtiWHVvrE4TMROq Rx4b/R9UEO35aFormiSvEGX/qjDKgcBtz3ueMDvoNAL5OOzavjIobDaQHoeQ+4Cq RTVST43d+FixfoS9ESe1+h07Lbm7D+EYJxCi0VEuI6emlz3ybJOveVZefJ3cGTlZ 7ZutwItDA0caSQ4BBU8BCN1ZrIv1KvK+hh7isfh33QwVvQCiFwgR1AIbcyPMJtc2 iF7BSSZFhtBzgbJ48x9JSZ+mdMZRO6JqFM3CKQ== -----END CERTIFICATE-----Generated at Sun Apr 6 10:53:09 2025 by rpki-client