$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3132382e302f32342d3234203d3e2039373934.roa File: 3131352e3137382e3132382e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: ejQNBn6qDVIKo5GQeuVzPAqE1tQZdNOG/NIxysH6t+w= Subject key identifier: 7E:82:BB:92:90:84:28:8D:A0:DD:2F:1B:DA:76:78:EA:62:05:AA:E4 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 293085DB28115FF2CE3A244DCDA853DE8B57439A Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3132382e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:05 +0000 ROA not before: Mon 02 Jun 2025 00:58:05 +0000 ROA not after: Mon 01 Jun 2026 01:03:05 +0000 asID: 9794 IP address blocks: 115.178.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:30:85:db:28:11:5f:f2:ce:3a:24:4d:cd:a8:53:de:8b:57:43:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:05 2025 GMT Not After : Jun 1 01:03:05 2026 GMT Subject: CN=7E82BB929084288DA0DD2F1BDA7678EA6205AAE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:51:0e:cb:b5:1a:0a:7d:e2:d3:6b:51:e5:50: b1:42:b8:7d:80:ad:2e:66:06:da:16:5f:c8:1f:8b: db:ea:3d:28:7d:1d:d6:13:00:89:10:49:08:a1:ca: aa:10:27:23:c3:3a:6a:97:91:27:63:26:6b:01:e0: 36:7e:c2:e5:16:ea:9b:05:da:ba:6d:12:8f:4d:4f: 2a:2f:b8:19:5d:54:aa:a5:ae:82:e0:75:f7:19:5a: 65:39:8d:4e:46:b6:c0:e2:dc:90:59:93:6f:be:13: b7:f5:8b:08:28:84:2d:55:12:8d:75:38:8c:3c:73: 6f:42:29:07:a7:46:e6:7d:18:3b:f5:ab:32:54:ea: 00:b0:7c:1e:3e:cd:48:7d:c5:b2:9d:c1:aa:20:2c: 37:c7:2b:d0:6f:b5:2d:c0:9a:3e:a5:8e:c1:0c:35: 6f:ef:4b:cc:63:17:d2:19:79:13:d3:5a:1a:61:ad: 00:55:4b:4a:f0:c6:4a:1c:5e:5d:74:3a:64:76:d9: 1a:8f:dc:75:7f:36:81:6c:13:7b:11:cd:e5:e7:11: e5:87:e9:10:8e:54:6b:09:95:dc:7a:c0:98:fb:33: 9f:89:43:b8:98:cd:73:f8:00:9a:d9:55:50:99:57: ad:bf:80:61:32:e9:fd:f4:19:7e:4f:31:d9:88:c7: 2d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:82:BB:92:90:84:28:8D:A0:DD:2F:1B:DA:76:78:EA:62:05:AA:E4 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3132382e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.128.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:53:af:ba:75:9f:ca:d8:ec:7c:82:4f:e5:d2:b7:07:ac:9c: cc:27:2f:42:0b:8d:0d:34:a8:02:34:3d:fa:c9:08:eb:b6:29: b3:ff:6b:a8:85:3b:41:c3:2c:72:95:b3:c4:1b:cd:e8:ec:e9: 5b:8a:f4:39:22:a4:e3:6a:77:6b:a2:c7:b9:bd:27:7f:0d:ea: a5:1c:a0:53:42:4d:d1:ad:b1:d2:01:dd:62:15:50:5d:e4:d9: f2:f5:8e:a4:c1:dd:32:48:ad:ae:56:2e:8e:ef:ad:c0:3e:c1: f4:73:a7:5e:b5:e6:c8:ae:0a:d0:6e:4b:d7:b7:02:78:d6:26: 34:88:2a:be:79:94:1a:a3:73:bd:d5:fa:da:6b:68:f3:0c:bb: fa:f2:c3:7d:7e:fe:67:1c:30:ec:78:f0:65:b2:cd:e8:0f:cb: e6:cf:a7:a8:35:99:be:97:bc:f1:e0:ad:3e:8d:b8:88:41:f9: 50:d5:6d:0a:8b:9b:c8:4b:b9:16:76:be:39:c8:e6:ad:88:0a: 3e:7b:b5:44:86:b9:76:e9:a0:22:e9:d5:5c:b8:32:c3:2e:b2: 10:8b:7e:a3:8f:e5:92:db:ee:4d:f7:cb:1d:ce:de:10:d4:a5: 3a:04:b9:50:da:8a:80:64:40:29:a7:73:5c:7a:25:59:0e:6d: 0b:46:da:79 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKTCF2ygRX/LOOiRNzahT3otXQ5owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDVaFw0yNjA2MDEwMTAzMDVaMDMxMTAvBgNV BAMTKDdFODJCQjkyOTA4NDI4OERBMEREMkYxQkRBNzY3OEVBNjIwNUFBRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxUQ7LtRoKfeLTa1HlULFCuH2A rS5mBtoWX8gfi9vqPSh9HdYTAIkQSQihyqoQJyPDOmqXkSdjJmsB4DZ+wuUW6psF 2rptEo9NTyovuBldVKqlroLgdfcZWmU5jU5GtsDi3JBZk2++E7f1iwgohC1VEo11 OIw8c29CKQenRuZ9GDv1qzJU6gCwfB4+zUh9xbKdwaogLDfHK9BvtS3Amj6ljsEM NW/vS8xjF9IZeRPTWhphrQBVS0rwxkocXl10OmR22RqP3HV/NoFsE3sRzeXnEeWH 6RCOVGsJldx6wJj7M5+JQ7iYzXP4AJrZVVCZV62/gGEy6f30GX5PMdmIxy0DAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfoK7kpCEKI2g3S8b2nZ46mIFquQwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTMyMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHOygDANBgkqhkiG 9w0BAQsFAAOCAQEAa1OvunWfytjsfIJP5dK3B6yczCcvQguNDTSoAjQ9+skI67Yp s/9rqIU7QcMscpWzxBvN6OzpW4r0OSKk42p3a6LHub0nfw3qpRygU0JN0a2x0gHd YhVQXeTZ8vWOpMHdMkitrlYuju+twD7B9HOnXrXmyK4K0G5L17cCeNYmNIgqvnmU GqNzvdX62mto8wy7+vLDfX7+Zxww7HjwZbLN6A/L5s+nqDWZvpe88eCtPo24iEH5 UNVtCoubyEu5Fna+OcjmrYgKPnu1RIa5dumgIunVXLgywy6yEIt+o4/lktvuTffL Hc7eENSlOgS5UNqKgGRAKadzXHolWQ5tC0baeQ== -----END CERTIFICATE-----Generated at Thu Jun 5 18:34:40 2025 by rpki-client