$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131372e3130332e382e302f32342d3234203d3e203338343936.roa File: 3131372e3130332e382e302f32342d3234203d3e203338343936.roa (raw, json) Hash identifier: JGAxvMzImmIX2z0TFhbcxlN3CJc64Tn9JNXPSFwDG0E= Subject key identifier: EA:D2:9A:F2:94:63:AA:07:CC:A1:61:61:55:EC:0C:02:5B:BC:4B:D3 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 4275296E6CEB7DE13FCD5FC39C7B2141BCC1B457 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131372e3130332e382e302f32342d3234203d3e203338343936.roa Signing time: Wed 19 Mar 2025 05:02:22 +0000 ROA not before: Wed 19 Mar 2025 04:57:22 +0000 ROA not after: Wed 18 Mar 2026 05:02:22 +0000 asID: 38496 IP address blocks: 117.103.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 08:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:75:29:6e:6c:eb:7d:e1:3f:cd:5f:c3:9c:7b:21:41:bc:c1:b4:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Mar 19 04:57:22 2025 GMT Not After : Mar 18 05:02:22 2026 GMT Subject: CN=EAD29AF29463AA07CCA1616155EC0C025BBC4BD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:97:16:d2:20:e7:f2:ba:17:c5:29:99:8c:9d: a3:4b:e8:74:74:8e:14:14:1f:24:59:a2:46:bb:1c: f9:12:25:60:77:14:27:b7:4e:53:ae:43:db:ad:95: d1:30:34:17:1c:6b:a5:25:69:05:09:26:07:f4:86: 43:65:b8:ee:94:e0:4b:73:41:d4:d4:f4:ed:5b:4e: 34:9f:9d:b4:47:06:11:90:0d:a1:98:eb:08:d5:1e: 8e:9a:3f:26:96:5d:48:76:f1:03:f4:74:41:b5:82: c8:b2:59:43:3d:62:c4:9f:a3:47:d8:7e:e0:6b:9b: 99:51:87:8f:f8:ae:ad:0c:29:ae:05:83:74:3c:3c: a5:52:75:36:21:09:b8:1e:95:bb:68:5c:1f:2b:c5: 1d:cf:17:06:0a:60:77:a0:cb:bd:e7:06:28:1c:03: c4:1f:c0:48:f2:21:bc:6b:bd:f8:45:e2:73:6c:47: 78:98:4f:23:0f:d8:c8:18:8c:a7:26:88:b7:55:53: a1:91:a5:41:0a:e7:b4:ad:de:85:88:91:14:3c:96: 6a:ba:b4:b2:bb:7d:fe:3d:4c:70:75:c9:0d:6c:3f: 65:4f:ec:b8:05:bc:f6:ee:62:86:94:12:e7:11:1e: a0:de:5e:06:2d:61:94:e2:65:66:d7:b0:48:1d:7b: a5:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:D2:9A:F2:94:63:AA:07:CC:A1:61:61:55:EC:0C:02:5B:BC:4B:D3 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131372e3130332e382e302f32342d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.103.8.0/24 Signature Algorithm: sha256WithRSAEncryption 66:41:a0:57:ab:81:7e:10:ea:63:aa:dc:46:22:a5:e2:fe:46: 78:68:88:78:9c:63:a1:8c:0d:62:18:50:c5:29:57:cd:02:f4: 3b:be:61:4c:24:d7:bf:13:d2:e7:02:0b:ea:ec:48:02:3a:21: 9b:85:e4:d1:bc:db:26:22:05:2b:21:b6:bb:95:bc:ef:31:19: 3b:92:dc:8f:da:5c:4f:74:0c:50:e7:2c:e7:f7:bc:b1:bf:2f: 27:b4:e6:12:e0:57:fd:e5:72:56:5a:99:f0:b6:a8:7a:4f:b4: ce:ff:fa:24:c6:8c:74:4f:24:3e:78:75:4c:d4:c4:b3:8b:0a: cf:ba:b1:e1:88:5a:d6:28:6a:35:3b:03:dc:20:42:e5:72:3c: b1:b9:0e:1f:a8:40:40:a1:cf:61:ea:83:b8:8e:08:85:a1:6d: bc:02:8b:73:03:e0:a3:9c:fd:60:50:fb:84:b0:a0:ee:0d:99: 0f:80:3f:20:04:83:9e:78:bd:a6:ef:76:77:20:11:cf:07:55: fc:b0:29:91:a9:86:e5:76:b2:65:4c:fb:34:9c:36:c1:43:15: af:5f:61:6a:05:c2:b6:aa:e5:1b:54:bc:76:c9:66:80:a2:c5: 63:34:8f:80:1a:06:f9:39:8e:fe:1f:55:85:b8:88:6e:8b:a7: b7:62:f1:90 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQnUpbmzrfeE/zV/DnHshQbzBtFcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNTAzMTkwNDU3MjJaFw0yNjAzMTgwNTAyMjJaMDMxMTAvBgNV BAMTKEVBRDI5QUYyOTQ2M0FBMDdDQ0ExNjE2MTU1RUMwQzAyNUJCQzRCRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUlxbSIOfyuhfFKZmMnaNL6HR0 jhQUHyRZoka7HPkSJWB3FCe3TlOuQ9utldEwNBcca6UlaQUJJgf0hkNluO6U4Etz QdTU9O1bTjSfnbRHBhGQDaGY6wjVHo6aPyaWXUh28QP0dEG1gsiyWUM9YsSfo0fY fuBrm5lRh4/4rq0MKa4Fg3Q8PKVSdTYhCbgelbtoXB8rxR3PFwYKYHegy73nBigc A8QfwEjyIbxrvfhF4nNsR3iYTyMP2MgYjKcmiLdVU6GRpUEK57St3oWIkRQ8lmq6 tLK7ff49THB1yQ1sP2VP7LgFvPbuYoaUEucRHqDeXgYtYZTiZWbXsEgde6WtAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU6tKa8pRjqgfMoWFhVewMAlu8S9MwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNzJlMzEzMDMzMmUzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNDM5MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB1ZwgwDQYJKoZIhvcN AQELBQADggEBAGZBoFergX4Q6mOq3EYipeL+RnhoiHicY6GMDWIYUMUpV80C9Du+ YUwk178T0ucCC+rsSAI6IZuF5NG82yYiBSshtruVvO8xGTuS3I/aXE90DFDnLOf3 vLG/Lye05hLgV/3lclZamfC2qHpPtM7/+iTGjHRPJD54dUzUxLOLCs+6seGIWtYo ajU7A9wgQuVyPLG5Dh+oQEChz2Hqg7iOCIWhbbwCi3MD4KOc/WBQ+4SwoO4NmQ+A PyAEg554vabvdncgEc8HVfywKZGphuV2smVM+zScNsFDFa9fYWoFwraq5RtUvHbJ ZoCixWM0j4AaBvk5jv4fVYW4iG6Lp7di8ZA= -----END CERTIFICATE-----Generated at Sun Apr 6 10:53:03 2025 by rpki-client