$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134302e302f32322d3234203d3e2039373934.roa File: 3131352e3137382e3134302e302f32322d3234203d3e2039373934.roa (raw, json) Hash identifier: 483zFk053EhNO29iOPB7uVU+tkReAoFUFjgXS/+rOF0= Subject key identifier: 19:ED:1E:72:CA:1E:CF:F3:E4:4A:46:46:B6:04:F4:CA:BB:D8:6D:4C Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 2BEFF96E9FD9A6F641AF02B2CCFA683291D53E5F Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134302e302f32322d3234203d3e2039373934.roa Signing time: Thu 02 Jan 2025 09:02:37 +0000 ROA not before: Thu 02 Jan 2025 08:57:37 +0000 ROA not after: Thu 01 Jan 2026 09:02:37 +0000 asID: 9794 IP address blocks: 115.178.140.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:ef:f9:6e:9f:d9:a6:f6:41:af:02:b2:cc:fa:68:32:91:d5:3e:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jan 2 08:57:37 2025 GMT Not After : Jan 1 09:02:37 2026 GMT Subject: CN=19ED1E72CA1ECFF3E44A4646B604F4CABBD86D4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:0c:b0:ac:4b:12:2b:2a:30:bb:91:2a:a7:15: 3a:5e:6c:c2:5b:83:e2:9b:6f:d8:e5:5e:1f:76:06: e5:1d:33:90:60:7a:26:2a:3d:34:b3:69:6a:a5:8c: 7d:9f:de:27:49:bf:b6:e1:1e:a3:48:a9:3b:9b:d7: 1f:66:d3:68:17:c9:37:ae:20:6e:2b:01:41:2d:c4: 69:8d:e2:f5:0a:6f:03:2a:06:52:ec:61:ae:22:ad: ba:3d:53:16:c5:54:1d:c9:ea:3d:8a:91:a2:6b:30: 77:01:92:f8:39:9b:9c:fe:17:88:d9:65:2f:40:87: bb:68:90:d5:2a:14:40:4f:46:a2:46:6a:8b:a9:c3: 60:f6:1e:7e:8c:ca:08:97:d5:d1:82:31:0a:52:ba: b7:ea:68:38:78:f5:3a:4f:9c:22:ac:72:0c:4b:7b: 82:bf:8a:7c:62:f1:6c:da:45:b1:af:84:8a:a1:41: 2b:31:4f:29:6c:fe:8d:73:94:29:46:a3:04:36:3a: ac:e6:af:66:7b:c0:c3:0e:0b:78:e6:75:27:0d:dd: a5:ba:bc:5a:1d:2d:45:56:3e:08:fd:4f:ae:39:78: 52:26:69:68:ae:56:e6:63:1c:e8:05:53:08:5f:34: 60:ac:f3:37:04:36:45:6a:28:0b:df:8b:1a:6d:54: e9:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:ED:1E:72:CA:1E:CF:F3:E4:4A:46:46:B6:04:F4:CA:BB:D8:6D:4C X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134302e302f32322d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.140.0/22 Signature Algorithm: sha256WithRSAEncryption 13:e0:e0:e4:ba:dc:b9:65:6c:2f:e6:69:57:7f:c4:e0:e4:f3: b7:c1:fc:ee:1a:66:98:05:40:c4:4f:63:ad:a3:55:75:c7:fe: 4e:8c:d6:b6:6a:69:b5:11:1f:9b:58:74:39:8a:ba:b4:8a:59: 9f:b3:8e:78:b6:75:3b:06:fb:71:4f:bf:9f:c4:a7:79:d9:3a: 63:ac:22:35:a7:d4:f1:5f:a9:bc:8e:6f:de:47:a8:0b:6d:66: 3c:5e:d4:87:2e:6f:db:e8:31:13:9f:5f:10:0e:0c:ed:c8:c3: 80:c0:92:64:9d:77:f9:5b:ea:71:a1:c4:1b:fc:5a:3b:ec:2f: e9:a9:8c:05:d3:3a:07:57:b4:92:2a:d2:fc:30:74:15:9a:a5: 61:2c:7f:f3:4e:9e:72:a2:ec:6a:e5:41:6b:30:b9:6c:a5:ab: 92:29:d3:0c:89:dc:06:0f:aa:8b:da:e0:53:33:82:15:8e:03: 11:69:80:2d:cc:a0:4d:ff:43:c6:af:fd:39:0d:74:c0:ab:3a: d8:d0:c1:00:10:c9:bd:19:d3:eb:e3:1c:76:f1:81:da:ca:19: 62:d3:ed:2e:f6:58:bf:15:14:b4:c6:58:90:a9:d9:e5:df:c0: 51:1e:c4:5e:d5:e9:d1:c4:90:56:ea:c4:9d:c7:56:e9:77:36: 85:99:7c:83 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUK+/5bp/ZpvZBrwKyzPpoMpHVPl8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTAxMDIwODU3MzdaFw0yNjAxMDEwOTAyMzdaMDMxMTAvBgNV BAMTKDE5RUQxRTcyQ0ExRUNGRjNFNDRBNDY0NkI2MDRGNENBQkJEODZENEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcDLCsSxIrKjC7kSqnFTpebMJb g+Kbb9jlXh92BuUdM5BgeiYqPTSzaWqljH2f3idJv7bhHqNIqTub1x9m02gXyTeu IG4rAUEtxGmN4vUKbwMqBlLsYa4irbo9UxbFVB3J6j2KkaJrMHcBkvg5m5z+F4jZ ZS9Ah7tokNUqFEBPRqJGaoupw2D2Hn6MygiX1dGCMQpSurfqaDh49TpPnCKscgxL e4K/inxi8WzaRbGvhIqhQSsxTyls/o1zlClGowQ2Oqzmr2Z7wMMOC3jmdScN3aW6 vFodLUVWPgj9T645eFImaWiuVuZjHOgFUwhfNGCs8zcENkVqKAvfixptVOllAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUGe0ecsoez/PkSkZGtgT0yrvYbUwwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTM0MzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnOyjDANBgkqhkiG 9w0BAQsFAAOCAQEAE+Dg5LrcuWVsL+ZpV3/E4OTzt8H87hpmmAVAxE9jraNVdcf+ TozWtmpptREfm1h0OYq6tIpZn7OOeLZ1Owb7cU+/n8Snedk6Y6wiNafU8V+pvI5v 3keoC21mPF7Uhy5v2+gxE59fEA4M7cjDgMCSZJ13+VvqcaHEG/xaO+wv6amMBdM6 B1e0kirS/DB0FZqlYSx/806ecqLsauVBazC5bKWrkinTDIncBg+qi9rgUzOCFY4D EWmALcygTf9Dxq/9OQ10wKs62NDBABDJvRnT6+McdvGB2soZYtPtLvZYvxUUtMZY kKnZ5d/AUR7EXtXp0cSQVurEncdW6Xc2hZl8gw== -----END CERTIFICATE-----Generated at Sun Apr 6 06:01:00 2025 by rpki-client