$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3132392e302f32342d3234203d3e2039373934.roa File: 3131352e3137382e3132392e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: wQElWeQ2rbZka/ExELNJuDPhtFn3CR/KXn8DQosMzq8= Subject key identifier: E4:2B:75:5A:8E:4D:87:30:2D:79:A5:93:9A:97:78:FE:23:89:56:ED Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 34AEC10A90BF02FB2FC734DBAE9D811A47644F6F Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3132392e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:05 +0000 ROA not before: Mon 02 Jun 2025 00:58:05 +0000 ROA not after: Mon 01 Jun 2026 01:03:05 +0000 asID: 9794 IP address blocks: 115.178.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:ae:c1:0a:90:bf:02:fb:2f:c7:34:db:ae:9d:81:1a:47:64:4f:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:05 2025 GMT Not After : Jun 1 01:03:05 2026 GMT Subject: CN=E42B755A8E4D87302D79A5939A9778FE238956ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ba:19:de:44:97:79:54:84:56:8e:08:f9:ca: 0d:32:b4:d2:53:b6:44:40:f5:41:4e:ae:68:c2:ee: 21:d7:7e:f3:ba:f3:ba:0a:3f:65:5d:69:e4:82:1c: 73:c4:a1:90:01:7f:af:8b:69:24:4b:1a:94:c4:5c: f4:d6:a7:23:3b:83:1b:4f:a5:79:f5:25:7c:fe:0a: a0:7b:90:1d:f8:c8:36:53:8c:6d:53:fe:a7:47:ac: cb:66:fe:41:29:66:c6:8c:fb:62:68:9a:7f:a3:d6: 1e:3f:f1:d9:67:40:24:c4:88:62:49:74:84:89:3f: 04:62:d0:6e:f7:fc:cf:ee:d9:55:bb:19:2f:b1:d5: a1:b6:a7:2f:8b:18:83:83:5f:78:11:9f:31:c8:0f: 2d:15:7a:82:11:e2:60:15:62:d1:25:56:76:8a:4b: ef:8f:6c:ef:4d:92:1d:93:14:0d:26:28:7a:4d:a3: 47:19:a0:ee:c6:31:a9:e1:d3:ba:cb:86:73:70:f2: 90:36:c1:2d:60:ac:77:e0:ff:74:bc:5e:5e:c7:f6: 4e:ea:48:a5:63:41:c0:10:89:0a:8e:a7:e3:31:f6: f8:5c:7b:91:e0:05:79:0e:b4:04:b4:92:eb:aa:c9: f6:11:e3:c0:75:49:fd:f1:e5:f6:4a:3d:8e:ee:23: 02:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:2B:75:5A:8E:4D:87:30:2D:79:A5:93:9A:97:78:FE:23:89:56:ED X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3132392e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.129.0/24 Signature Algorithm: sha256WithRSAEncryption 57:91:e1:f7:eb:da:98:b2:97:19:f6:c3:69:f5:98:3b:ad:70: 72:f7:c3:c6:ec:d2:d8:f8:0b:39:e1:6f:3c:0b:ab:2a:5a:b1: c6:00:76:61:0a:f5:18:6c:97:a4:54:6f:75:f3:94:9b:df:8f: 7b:ee:ee:61:e9:e4:4d:80:40:82:32:83:6b:3b:97:f2:20:98: 04:4f:78:79:d9:4d:ca:5c:bf:b7:32:a1:9d:69:70:74:27:5d: ff:a0:97:ae:02:75:d7:b1:db:c1:d2:fb:42:7b:13:a8:de:f5: 58:ee:72:86:e0:a4:37:02:32:0e:c4:03:91:ac:b0:d9:e5:bd: 37:8e:01:76:2c:e5:d3:28:9c:01:d1:83:29:10:f7:88:a0:37: 92:9c:fb:3e:66:12:3f:c7:22:69:04:33:9f:fe:c3:14:46:be: 74:86:28:86:0d:96:97:59:25:40:30:d8:e2:0f:45:62:29:c8: 9b:b0:34:30:b8:e9:5a:29:49:a7:44:33:cc:b7:94:73:73:a1: a2:87:89:4a:d8:c1:96:08:f3:1b:77:22:f3:ca:67:83:89:65: f7:4f:d7:bf:b0:d5:17:b6:49:5d:29:79:bc:a1:52:9d:51:02: 7f:bd:74:67:12:d6:24:eb:ef:78:24:69:f5:12:63:f5:c0:a2: 86:c4:14:49 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNK7BCpC/AvsvxzTbrp2BGkdkT28wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDVaFw0yNjA2MDEwMTAzMDVaMDMxMTAvBgNV BAMTKEU0MkI3NTVBOEU0RDg3MzAyRDc5QTU5MzlBOTc3OEZFMjM4OTU2RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9uhneRJd5VIRWjgj5yg0ytNJT tkRA9UFOrmjC7iHXfvO687oKP2VdaeSCHHPEoZABf6+LaSRLGpTEXPTWpyM7gxtP pXn1JXz+CqB7kB34yDZTjG1T/qdHrMtm/kEpZsaM+2Jomn+j1h4/8dlnQCTEiGJJ dISJPwRi0G73/M/u2VW7GS+x1aG2py+LGIODX3gRnzHIDy0VeoIR4mAVYtElVnaK S++PbO9Nkh2TFA0mKHpNo0cZoO7GManh07rLhnNw8pA2wS1grHfg/3S8Xl7H9k7q SKVjQcAQiQqOp+Mx9vhce5HgBXkOtAS0kuuqyfYR48B1Sf3x5fZKPY7uIwJ7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU5Ct1Wo5NhzAteaWTmpd4/iOJVu0wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHOygTANBgkqhkiG 9w0BAQsFAAOCAQEAV5Hh9+vamLKXGfbDafWYO61wcvfDxuzS2PgLOeFvPAurKlqx xgB2YQr1GGyXpFRvdfOUm9+Pe+7uYenkTYBAgjKDazuX8iCYBE94edlNyly/tzKh nWlwdCdd/6CXrgJ117HbwdL7QnsTqN71WO5yhuCkNwIyDsQDkayw2eW9N44Bdizl 0yicAdGDKRD3iKA3kpz7PmYSP8ciaQQzn/7DFEa+dIYohg2Wl1klQDDY4g9FYinI m7A0MLjpWilJp0QzzLeUc3OhooeJStjBlgjzG3ci88png4ll90/Xv7DVF7ZJXSl5 vKFSnVECf710ZxLWJOvveCRp9RJj9cCihsQUSQ== -----END CERTIFICATE-----Generated at Thu Jun 5 18:33:38 2025 by rpki-client