$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134342e302f32322d3234203d3e2039373934.roa File: 3131352e3137382e3134342e302f32322d3234203d3e2039373934.roa (raw, json) Hash identifier: S9vykVgbpIE3HYjGgVAm1Qaxxv72NSrbcrGCCUpJ7SU= Subject key identifier: D6:3B:F4:57:D7:88:54:40:B3:4E:1B:B3:FD:FC:B9:52:17:D8:03:EE Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 3BCDB1629CCEF0C550C9404D5E0B3FBF84490005 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134342e302f32322d3234203d3e2039373934.roa Signing time: Thu 02 Jan 2025 07:00:00 +0000 ROA not before: Thu 02 Jan 2025 06:55:00 +0000 ROA not after: Thu 01 Jan 2026 07:00:00 +0000 asID: 9794 IP address blocks: 115.178.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:cd:b1:62:9c:ce:f0:c5:50:c9:40:4d:5e:0b:3f:bf:84:49:00:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jan 2 06:55:00 2025 GMT Not After : Jan 1 07:00:00 2026 GMT Subject: CN=D63BF457D7885440B34E1BB3FDFCB95217D803EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d3:5d:26:b0:10:6c:e4:2c:e7:57:9f:7d:36: d4:da:e2:f4:e5:3f:45:62:d4:75:5f:b2:7e:42:4b: a8:65:a5:ff:a7:44:55:4d:16:0d:e8:e5:27:e4:79: d8:bb:f7:25:79:a1:0d:29:6d:64:c2:34:c3:dc:0f: 66:72:75:2a:ae:6b:96:14:91:5f:34:75:79:dd:4f: 9f:f0:e6:76:f3:a4:eb:f1:68:63:50:36:9b:14:7f: fb:f4:2f:ea:2a:cc:29:c1:f1:3b:98:18:00:14:aa: 10:4d:a7:6c:41:c7:7a:f9:96:7e:8b:ec:1d:91:29: bd:79:a5:4f:50:f2:ef:a6:da:78:9e:14:24:42:36: 21:3d:45:5b:08:13:ea:c2:13:c1:4d:54:53:64:73: a3:7b:8b:01:23:b0:a9:fa:78:23:f6:e0:53:11:82: c6:cd:21:77:35:96:11:37:84:da:f8:dd:ce:ee:be: e6:31:64:80:0a:b0:56:8d:43:36:df:40:ce:8f:c9: f6:36:53:f1:a9:f1:a4:03:4b:76:76:71:b1:0b:b8: fd:b5:d2:b9:c0:11:76:f1:ac:e1:e6:e7:ec:aa:6d: fc:99:72:85:fa:53:8c:09:c0:2b:0a:36:2e:28:ad: a7:59:f8:e6:74:8c:9f:5a:fb:07:29:66:cc:d9:09: 05:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:3B:F4:57:D7:88:54:40:B3:4E:1B:B3:FD:FC:B9:52:17:D8:03:EE X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134342e302f32322d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.144.0/22 Signature Algorithm: sha256WithRSAEncryption 16:3c:c6:4e:ab:02:ad:56:29:ee:a7:5a:6e:23:ca:00:99:f2: e9:63:20:1e:68:7d:fc:53:b4:d7:a3:32:31:94:0f:70:ee:fd: 4e:23:15:ed:a6:7d:3b:7c:13:58:16:da:5e:2e:ea:6a:8e:dc: 69:3d:0d:c4:71:68:27:5e:fe:34:54:fe:96:58:6b:bd:62:04: e2:db:f8:46:1a:df:fd:87:bb:81:22:60:16:f1:67:39:29:cd: 29:fa:dd:c2:ee:0e:17:2c:24:50:77:2d:6e:9a:f2:c9:2e:92: d2:d3:a1:eb:c5:5e:d6:94:c4:02:6c:90:19:41:11:07:7f:9f: cb:b1:65:36:7f:b6:ec:5a:75:a9:7d:7b:79:cc:91:ff:37:c4: 9f:06:70:4a:98:a8:9d:d2:2a:42:a2:52:aa:c3:42:1b:77:aa: eb:39:22:6c:38:a6:97:2c:d6:59:56:54:67:cf:1c:09:d9:af: 22:c0:37:d9:e9:b1:ca:ac:57:8c:4e:39:7d:9b:37:48:fe:b1: 42:c8:c3:29:27:cb:4c:e1:fb:f5:24:c0:61:20:1b:d8:5b:66: 0d:f5:49:d6:1b:eb:22:ae:c4:04:af:62:77:90:e6:3b:a4:ed: 21:2f:65:b6:93:d8:78:6f:6a:c0:df:21:97:e5:a3:a0:b5:41: cb:55:97:21 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUO82xYpzO8MVQyUBNXgs/v4RJAAUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTAxMDIwNjU1MDBaFw0yNjAxMDEwNzAwMDBaMDMxMTAvBgNV BAMTKEQ2M0JGNDU3RDc4ODU0NDBCMzRFMUJCM0ZERkNCOTUyMTdEODAzRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC010msBBs5CznV599NtTa4vTl P0Vi1HVfsn5CS6hlpf+nRFVNFg3o5Sfkedi79yV5oQ0pbWTCNMPcD2ZydSqua5YU kV80dXndT5/w5nbzpOvxaGNQNpsUf/v0L+oqzCnB8TuYGAAUqhBNp2xBx3r5ln6L 7B2RKb15pU9Q8u+m2nieFCRCNiE9RVsIE+rCE8FNVFNkc6N7iwEjsKn6eCP24FMR gsbNIXc1lhE3hNr43c7uvuYxZIAKsFaNQzbfQM6PyfY2U/Gp8aQDS3Z2cbELuP21 0rnAEXbxrOHm5+yqbfyZcoX6U4wJwCsKNi4oradZ+OZ0jJ9a+wcpZszZCQW1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1jv0V9eIVECzThuz/fy5UhfYA+4wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTM0MzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnOykDANBgkqhkiG 9w0BAQsFAAOCAQEAFjzGTqsCrVYp7qdabiPKAJny6WMgHmh9/FO016MyMZQPcO79 TiMV7aZ9O3wTWBbaXi7qao7caT0NxHFoJ17+NFT+llhrvWIE4tv4Rhrf/Ye7gSJg FvFnOSnNKfrdwu4OFywkUHctbpryyS6S0tOh68Ve1pTEAmyQGUERB3+fy7FlNn+2 7Fp1qX17ecyR/zfEnwZwSpiondIqQqJSqsNCG3eq6zkibDimlyzWWVZUZ88cCdmv IsA32emxyqxXjE45fZs3SP6xQsjDKSfLTOH79STAYSAb2FtmDfVJ1hvrIq7EBK9i d5DmO6TtIS9ltpPYeG9qwN8hl+WjoLVBy1WXIQ== -----END CERTIFICATE-----Generated at Sun Apr 6 08:27:55 2025 by rpki-client