$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133382e302f32332d3234203d3e2039373934.roa File: 3131352e3137382e3133382e302f32332d3234203d3e2039373934.roa (raw, json) Hash identifier: x5SafWUJ/xamKFVqZZ5oKwKayYTSjdgNe5yJDP65AKA= Subject key identifier: 1A:9E:7D:76:64:9F:CB:14:4A:17:74:25:72:8A:11:4B:5D:8C:49:36 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 0E84CD5964F6A601F1C4F6B3EC27C4A16EB0E94C Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133382e302f32332d3234203d3e2039373934.roa Signing time: Thu 12 Dec 2024 09:00:01 +0000 ROA not before: Thu 12 Dec 2024 08:55:01 +0000 ROA not after: Thu 11 Dec 2025 09:00:01 +0000 asID: 9794 IP address blocks: 115.178.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:84:cd:59:64:f6:a6:01:f1:c4:f6:b3:ec:27:c4:a1:6e:b0:e9:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Dec 12 08:55:01 2024 GMT Not After : Dec 11 09:00:01 2025 GMT Subject: CN=1A9E7D76649FCB144A177425728A114B5D8C4936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b8:2e:32:98:74:fe:fa:75:11:e2:bd:45:d3: 48:2f:35:67:5f:2d:e9:ef:97:28:f2:38:2e:61:f1: 24:57:38:8e:cd:bd:ba:c7:f3:b6:fe:b1:bc:32:19: 35:63:db:8b:c0:aa:60:63:f6:d1:38:d6:cf:81:44: b7:e9:de:88:5f:9b:fc:2f:47:02:b4:b5:2f:15:77: 2c:83:54:74:49:75:f0:b8:d9:86:12:4c:95:b0:2a: bc:6c:35:52:52:e5:b2:f7:a8:8e:ef:3f:e7:fd:14: bc:c6:21:76:09:74:ad:23:03:10:8e:fa:62:a6:9b: d1:d1:6b:50:12:b3:2c:15:cb:d3:d9:a2:43:98:39: f6:9a:a9:40:49:1d:d0:5b:ed:e7:78:dc:bd:96:24: 04:73:bd:8b:cf:2d:7a:08:b1:09:bd:81:e2:85:e6: 89:3c:01:74:2a:83:f9:9b:20:2a:46:9e:85:20:8a: 88:3a:c3:c3:87:25:7d:79:de:69:f7:0a:40:3e:26: 46:a1:e2:b7:8a:57:4c:59:71:6b:16:b6:3c:78:83: b1:01:ba:ea:a1:d0:37:21:43:5b:b9:f4:aa:46:6c: b7:54:ba:6a:86:18:64:58:c6:a3:0b:9d:cb:48:ad: c2:4e:c6:96:2e:db:25:df:83:bf:e7:ed:09:31:94: dc:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:9E:7D:76:64:9F:CB:14:4A:17:74:25:72:8A:11:4B:5D:8C:49:36 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133382e302f32332d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.138.0/23 Signature Algorithm: sha256WithRSAEncryption ac:f0:30:c8:a9:02:82:7b:77:56:03:f3:04:e1:59:ce:61:3f: ae:c5:0b:17:a0:52:9e:51:b8:15:31:e9:2e:a8:1c:41:28:9d: d0:a4:a1:b0:71:c7:65:07:b5:15:8c:1c:ed:87:6a:f0:fd:2c: e6:28:e6:6e:08:4f:85:03:e4:01:1c:74:30:9b:1b:c4:05:e3: 48:7e:4e:f1:72:b5:78:3b:a0:a1:60:57:eb:b3:cf:03:b6:06: 03:8a:17:30:33:79:7a:ab:60:eb:bf:88:8e:93:18:36:8d:a1: 66:fd:80:2c:3b:a2:25:af:53:05:6f:90:2f:9f:9d:8f:26:fc: 91:aa:96:ea:35:41:e8:95:39:c8:04:6f:8b:dc:f2:ec:eb:07: f7:0b:0b:47:a0:e7:6e:97:81:ca:a4:a9:2c:5f:0a:08:fb:c5: c0:8f:87:28:37:c8:82:d3:3a:6d:0d:98:64:a8:6c:85:eb:77: 38:d5:f8:60:0f:5a:87:a9:53:c9:e2:8a:13:8f:21:69:5d:61: c3:21:fe:8b:75:5a:6a:a4:75:83:b3:ad:98:0a:50:04:d9:69: a3:2c:a1:62:ea:03:d4:c3:78:73:85:02:05:b3:d1:9d:e0:65: 6c:c4:19:f2:cf:5b:26:e1:10:12:b4:9c:7b:28:40:31:4f:0b: 5d:16:10:7a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDoTNWWT2pgHxxPaz7CfEoW6w6UwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDEyMTIwODU1MDFaFw0yNTEyMTEwOTAwMDFaMDMxMTAvBgNV BAMTKDFBOUU3RDc2NjQ5RkNCMTQ0QTE3NzQyNTcyOEExMTRCNUQ4QzQ5MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRuC4ymHT++nUR4r1F00gvNWdf LenvlyjyOC5h8SRXOI7NvbrH87b+sbwyGTVj24vAqmBj9tE41s+BRLfp3ohfm/wv RwK0tS8VdyyDVHRJdfC42YYSTJWwKrxsNVJS5bL3qI7vP+f9FLzGIXYJdK0jAxCO +mKmm9HRa1ASsywVy9PZokOYOfaaqUBJHdBb7ed43L2WJARzvYvPLXoIsQm9geKF 5ok8AXQqg/mbICpGnoUgiog6w8OHJX153mn3CkA+Jkah4reKV0xZcWsWtjx4g7EB uuqh0DchQ1u59KpGbLdUumqGGGRYxqMLnctIrcJOxpYu2yXfg7/n7QkxlNyLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUGp59dmSfyxRKF3QlcooRS12MSTYwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXOyijANBgkqhkiG 9w0BAQsFAAOCAQEArPAwyKkCgnt3VgPzBOFZzmE/rsULF6BSnlG4FTHpLqgcQSid 0KShsHHHZQe1FYwc7Ydq8P0s5ijmbghPhQPkARx0MJsbxAXjSH5O8XK1eDugoWBX 67PPA7YGA4oXMDN5eqtg67+IjpMYNo2hZv2ALDuiJa9TBW+QL5+djyb8kaqW6jVB 6JU5yARvi9zy7OsH9wsLR6DnbpeByqSpLF8KCPvFwI+HKDfIgtM6bQ2YZKhshet3 ONX4YA9ah6lTyeKKE48haV1hwyH+i3VaaqR1g7OtmApQBNlpoyyhYuoD1MN4c4UC BbPRneBlbMQZ8s9bJuEQErSceyhAMU8LXRYQeg== -----END CERTIFICATE-----Generated at Sun Apr 6 06:01:03 2025 by rpki-client