$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133342e302f32342d3234203d3e2039373934.roa File: 3131352e3137382e3133342e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: O/1sZ0tfe9uYpV+pzfgS4+MMIVDDWOdwlSRzANz5Hho= Subject key identifier: D0:32:CE:50:D6:2E:B0:53:F9:71:9A:14:7F:D5:2F:BE:46:F3:8B:AB Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 3B707C63CBD7CAD9FE73FC1F6C47A363883A297B Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133342e302f32342d3234203d3e2039373934.roa Signing time: Thu 12 Dec 2024 09:00:00 +0000 ROA not before: Thu 12 Dec 2024 08:55:00 +0000 ROA not after: Thu 11 Dec 2025 09:00:00 +0000 asID: 9794 IP address blocks: 115.178.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:70:7c:63:cb:d7:ca:d9:fe:73:fc:1f:6c:47:a3:63:88:3a:29:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Dec 12 08:55:00 2024 GMT Not After : Dec 11 09:00:00 2025 GMT Subject: CN=D032CE50D62EB053F9719A147FD52FBE46F38BAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:02:c4:8b:49:ad:2b:76:8d:f6:18:c0:fb:b1: 28:4d:93:18:9f:b0:7e:07:7e:88:92:44:c6:72:ae: 4f:47:22:f4:af:e2:b1:49:f9:2e:d5:f8:de:82:0f: a5:f3:08:a5:27:a1:80:f6:14:6c:05:81:33:c3:2b: 79:5b:1d:14:33:76:19:10:db:80:50:89:d6:90:3e: 1f:3f:22:56:6d:82:b4:67:0b:06:dc:e2:03:1b:24: cd:54:f1:4b:81:c5:eb:1d:f2:f4:a4:31:98:95:a1: 40:86:53:b0:23:48:d9:58:12:e5:29:0c:be:0d:58: d2:06:4c:43:81:ce:c1:a1:b2:79:6d:5b:64:89:03: f4:a6:35:0e:c9:66:b6:df:10:3c:c4:31:3b:7d:b1: 2c:f7:0b:57:55:1a:ac:b7:71:d3:92:38:8d:b5:51: fc:3b:ae:9d:d1:a4:78:90:88:e5:8a:36:61:87:d5: 6e:ff:44:28:3c:ee:2a:15:cd:a6:5b:3b:49:de:a4: 97:b5:1c:3c:e2:73:04:1a:4e:09:d0:74:d7:4b:4a: ac:b3:e6:2e:33:81:45:60:64:a8:97:b1:c7:81:45: 53:fe:57:1f:24:92:d0:1f:e5:04:60:c1:e7:b1:d1: 1f:d6:f5:03:a8:3f:70:47:7c:6f:98:a4:1c:14:3d: 12:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:32:CE:50:D6:2E:B0:53:F9:71:9A:14:7F:D5:2F:BE:46:F3:8B:AB X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133342e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.134.0/24 Signature Algorithm: sha256WithRSAEncryption ba:7d:71:0a:69:10:30:ff:9c:12:da:27:86:55:91:7c:2e:ca: 2d:0b:a9:d5:5f:f1:4b:fd:d3:53:e9:5a:a8:8b:e1:47:ea:b6: a4:ee:3e:30:a6:ab:e1:e8:c9:39:1f:69:98:20:67:18:2a:82: 41:c0:e2:83:71:59:7a:98:7a:a8:59:6f:28:1f:d7:17:83:2b: 73:0d:b0:6a:4c:6a:72:61:18:91:37:16:21:cf:84:aa:ab:8d: 4a:72:ad:36:9a:e5:c8:52:36:f2:bd:a0:27:3f:81:d6:af:0a: 2d:be:ac:ba:e9:d2:42:0e:a3:4b:cc:7a:1d:eb:2e:c3:9c:4e: 9d:8d:3b:21:0c:77:b0:a2:d7:fa:cc:c8:41:cf:d8:96:cf:dc: 30:13:00:90:ac:85:d0:49:b0:4b:f2:97:2b:23:a6:b9:97:a6: 44:39:c8:38:b7:25:38:ff:b7:58:84:bd:e7:4e:fa:4d:bc:04: 55:50:74:dc:38:c8:44:a1:bb:47:9f:47:e9:49:ef:0f:17:80: 48:de:7e:84:5b:e5:56:42:42:ba:ea:5b:84:f7:16:22:26:08: 37:27:38:47:e8:3a:e7:9f:41:ae:66:40:26:2a:a7:0c:34:09: bf:d6:e5:97:b0:a0:7d:87:e2:6c:cd:e0:a5:06:7d:c5:49:d6: d6:48:3e:e3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUO3B8Y8vXytn+c/wfbEejY4g6KXswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDEyMTIwODU1MDBaFw0yNTEyMTEwOTAwMDBaMDMxMTAvBgNV BAMTKEQwMzJDRTUwRDYyRUIwNTNGOTcxOUExNDdGRDUyRkJFNDZGMzhCQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwAsSLSa0rdo32GMD7sShNkxif sH4HfoiSRMZyrk9HIvSv4rFJ+S7V+N6CD6XzCKUnoYD2FGwFgTPDK3lbHRQzdhkQ 24BQidaQPh8/IlZtgrRnCwbc4gMbJM1U8UuBxesd8vSkMZiVoUCGU7AjSNlYEuUp DL4NWNIGTEOBzsGhsnltW2SJA/SmNQ7JZrbfEDzEMTt9sSz3C1dVGqy3cdOSOI21 Ufw7rp3RpHiQiOWKNmGH1W7/RCg87ioVzaZbO0nepJe1HDzicwQaTgnQdNdLSqyz 5i4zgUVgZKiXsceBRVP+Vx8kktAf5QRgweex0R/W9QOoP3BHfG+YpBwUPRJzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0DLOUNYusFP5cZoUf9Uvvkbzi6swHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHOyhjANBgkqhkiG 9w0BAQsFAAOCAQEAun1xCmkQMP+cEtonhlWRfC7KLQup1V/xS/3TU+laqIvhR+q2 pO4+MKar4ejJOR9pmCBnGCqCQcDig3FZeph6qFlvKB/XF4Mrcw2wakxqcmEYkTcW Ic+EqquNSnKtNprlyFI28r2gJz+B1q8KLb6suunSQg6jS8x6Hesuw5xOnY07IQx3 sKLX+szIQc/Yls/cMBMAkKyF0EmwS/KXKyOmuZemRDnIOLclOP+3WIS95076TbwE VVB03DjIRKG7R59H6UnvDxeASN5+hFvlVkJCuupbhPcWIiYINyc4R+g6559BrmZA JiqnDDQJv9bll7CgfYfibM3gpQZ9xUnW1kg+4w== -----END CERTIFICATE-----Generated at Sun Apr 6 08:25:13 2025 by rpki-client