$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131372e3130332e31352e302f32342d3234203d3e203338343936.roa File: 3131372e3130332e31352e302f32342d3234203d3e203338343936.roa (raw, json) Hash identifier: fcrKBakX7DXHaIhOslt9/x/F/h62katjsgVnWrIKpCw= Subject key identifier: 85:88:5F:5A:6E:AD:3F:84:24:E1:94:9F:2E:74:EB:85:4B:13:79:01 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 0F9A83797C637D86A205EF53002BD9DA28446C24 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131372e3130332e31352e302f32342d3234203d3e203338343936.roa Signing time: Wed 19 Mar 2025 05:02:22 +0000 ROA not before: Wed 19 Mar 2025 04:57:22 +0000 ROA not after: Wed 18 Mar 2026 05:02:22 +0000 asID: 38496 IP address blocks: 117.103.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 08:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:9a:83:79:7c:63:7d:86:a2:05:ef:53:00:2b:d9:da:28:44:6c:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Mar 19 04:57:22 2025 GMT Not After : Mar 18 05:02:22 2026 GMT Subject: CN=85885F5A6EAD3F8424E1949F2E74EB854B137901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d7:b3:17:2b:a5:b9:f5:8b:c0:a5:ed:1d:4a: 6a:9a:b5:d0:d3:cf:0e:d7:a7:cb:3e:9d:66:ab:a0: f2:0e:19:e0:18:73:20:bb:bc:4a:fd:c5:db:bf:48: e4:7a:59:d4:ab:78:cf:2b:d0:86:74:18:b0:f3:71: 23:08:7f:61:10:ee:b4:fa:db:7f:de:f2:43:bd:1f: e3:b7:2f:a1:72:11:a6:46:69:07:91:c0:26:30:3e: 86:31:0c:23:51:e5:ce:af:31:78:a3:80:98:b0:c6: 4b:f1:95:ea:d7:ed:cb:29:04:3c:13:9e:9d:1a:f0: 7f:b4:ec:87:4e:84:b6:70:2d:17:4e:e6:bc:fe:0a: 4a:37:c5:1b:01:c5:f9:da:9a:89:96:1c:4e:5e:6d: 00:51:f8:41:a3:1f:fe:24:4c:b0:1c:5f:17:77:04: 0a:5b:bb:e8:d9:18:c5:c5:e1:7c:4b:3d:55:6b:44: 8a:ac:25:3e:c6:7f:66:f8:45:20:cd:70:dc:c7:4b: 02:33:09:cd:d1:ac:c6:52:06:e1:8c:01:e8:8d:32: b6:c4:ec:da:62:e0:85:f8:e6:bd:9f:5a:05:e1:f3: 03:35:e9:da:59:71:86:3e:96:f3:ca:7f:91:d2:79: 4b:3b:6b:41:56:eb:94:1d:80:2f:16:00:ca:f7:a1: 96:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:88:5F:5A:6E:AD:3F:84:24:E1:94:9F:2E:74:EB:85:4B:13:79:01 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131372e3130332e31352e302f32342d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.103.15.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:8b:f9:f4:9b:00:54:35:c9:32:4c:99:d0:ac:5b:0b:36:fd: 55:7e:ff:d9:02:a7:3f:00:23:a4:70:5d:7a:64:23:5a:6f:38: 53:02:a9:12:63:bc:7a:e2:59:5b:92:a8:a3:11:c9:01:8e:13: 7d:1d:e9:2e:68:7d:02:e4:cd:46:28:e5:ae:57:7a:85:4d:fd: 13:1d:c2:07:a4:f0:58:8f:cb:af:81:3f:cb:84:54:af:ea:6c: b2:1c:c6:28:43:ec:d6:01:a1:77:21:4a:67:04:3f:da:18:33: 95:e4:11:e1:af:b5:82:2b:49:df:21:0b:2e:1f:11:52:69:e1: 90:5c:94:f4:ab:f1:66:d6:bc:20:7e:65:39:ed:3e:a7:11:ee: 24:03:4c:97:5c:85:60:f7:f2:a0:5b:c2:84:56:41:eb:dc:f0: 71:0e:15:c1:62:a4:bc:0c:f7:f7:33:ef:af:5b:09:aa:ac:14: 42:47:2b:66:fa:e0:99:06:75:b6:61:cc:29:e3:5d:a8:fe:39: 95:d9:7c:fd:24:7e:1b:37:7c:07:62:88:25:7b:d5:17:66:6f: b0:e7:f1:08:2d:6e:dd:4a:27:30:72:da:ea:98:1b:23:f2:b6: 0b:a8:18:58:2f:88:26:d1:1a:7e:47:68:2b:73:ec:d6:79:eb: 3c:38:d1:0b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUD5qDeXxjfYaiBe9TACvZ2ihEbCQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNTAzMTkwNDU3MjJaFw0yNjAzMTgwNTAyMjJaMDMxMTAvBgNV BAMTKDg1ODg1RjVBNkVBRDNGODQyNEUxOTQ5RjJFNzRFQjg1NEIxMzc5MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw17MXK6W59YvApe0dSmqatdDT zw7Xp8s+nWaroPIOGeAYcyC7vEr9xdu/SOR6WdSreM8r0IZ0GLDzcSMIf2EQ7rT6 23/e8kO9H+O3L6FyEaZGaQeRwCYwPoYxDCNR5c6vMXijgJiwxkvxlerX7cspBDwT np0a8H+07IdOhLZwLRdO5rz+Cko3xRsBxfnamomWHE5ebQBR+EGjH/4kTLAcXxd3 BApbu+jZGMXF4XxLPVVrRIqsJT7Gf2b4RSDNcNzHSwIzCc3RrMZSBuGMAeiNMrbE 7Npi4IX45r2fWgXh8wM16dpZcYY+lvPKf5HSeUs7a0FW65QdgC8WAMr3oZZdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhYhfWm6tP4Qk4ZSfLnTrhUsTeQEwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNzJlMzEzMDMzMmUzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVnDzANBgkqhkiG 9w0BAQsFAAOCAQEACov59JsAVDXJMkyZ0KxbCzb9VX7/2QKnPwAjpHBdemQjWm84 UwKpEmO8euJZW5KooxHJAY4TfR3pLmh9AuTNRijlrld6hU39Ex3CB6TwWI/Lr4E/ y4RUr+psshzGKEPs1gGhdyFKZwQ/2hgzleQR4a+1gitJ3yELLh8RUmnhkFyU9Kvx Zta8IH5lOe0+pxHuJANMl1yFYPfyoFvChFZB69zwcQ4VwWKkvAz39zPvr1sJqqwU QkcrZvrgmQZ1tmHMKeNdqP45ldl8/SR+Gzd8B2KIJXvVF2ZvsOfxCC1u3UonMHLa 6pgbI/K2C6gYWC+IJtEafkdoK3Ps1nnrPDjRCw== -----END CERTIFICATE-----Generated at Sun Apr 6 10:52:58 2025 by rpki-client