$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134382e302f32322d3234203d3e2039373934.roa File: 3131352e3137382e3134382e302f32322d3234203d3e2039373934.roa (raw, json) Hash identifier: QvJ+0JHL9e0ey5I/JPmJ4Akx9UBA5dvCfzyiIrLnJpY= Subject key identifier: D6:61:7A:5E:6E:74:3C:AD:FB:66:07:AD:4B:EF:0E:11:5F:03:F6:27 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 2EAE2CB7663ECEF9652ABB0A8256921D9CC02CF7 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134382e302f32322d3234203d3e2039373934.roa Signing time: Thu 02 Jan 2025 07:00:01 +0000 ROA not before: Thu 02 Jan 2025 06:55:01 +0000 ROA not after: Thu 01 Jan 2026 07:00:01 +0000 asID: 9794 IP address blocks: 115.178.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:ae:2c:b7:66:3e:ce:f9:65:2a:bb:0a:82:56:92:1d:9c:c0:2c:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jan 2 06:55:01 2025 GMT Not After : Jan 1 07:00:01 2026 GMT Subject: CN=D6617A5E6E743CADFB6607AD4BEF0E115F03F627 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6e:f5:45:58:4e:56:b5:68:6a:7d:f2:a0:2f: ae:36:26:ad:9d:8a:68:36:92:6f:30:e5:e6:6b:fb: e9:ba:dd:ab:6c:a0:bb:01:f0:20:43:9d:6f:20:95: b4:d6:96:c3:fd:89:14:c3:de:bb:e2:7f:d3:f7:b9: d2:c2:40:ff:d6:99:1c:67:53:af:79:6d:51:b4:ac: 28:ff:4f:64:a4:6d:11:27:74:ad:09:f9:a1:a9:44: e3:3f:65:ed:9f:4d:e3:97:f2:f7:c5:c2:b7:cc:9e: 24:ad:36:f1:6b:6e:62:74:4f:e3:e5:3b:35:f1:e2: 1e:86:0d:be:36:35:9c:51:a9:62:bd:4a:02:3b:f5: 07:17:6d:47:e6:f1:6e:b6:33:62:f5:bd:3c:e8:95: fb:ed:53:57:eb:64:2d:0d:67:20:a2:d6:88:09:7d: 5a:f0:7b:39:af:c6:ab:8a:31:ee:b1:88:8a:b9:53: fa:60:db:fd:7b:87:e5:0f:57:50:7e:6b:c1:e1:de: 0a:77:9f:ad:10:42:a8:3b:a9:a5:e6:89:33:94:85: 76:27:e3:2b:ea:3b:91:73:a0:ae:04:18:6e:9c:dc: e3:01:86:fb:2c:6e:f2:d0:06:1b:27:3f:98:72:f1: 7f:df:1d:57:33:99:17:95:ad:a4:94:1f:1d:55:e8: b6:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:61:7A:5E:6E:74:3C:AD:FB:66:07:AD:4B:EF:0E:11:5F:03:F6:27 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3134382e302f32322d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.148.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:52:ab:39:5f:84:cd:49:08:9e:dd:f0:9f:2d:2e:bd:7d:9b: c6:0f:8f:b9:9a:10:5c:dd:dd:be:eb:9d:27:27:5a:3d:44:16: 02:68:3b:2b:d4:ab:80:9d:ac:5c:d7:7c:11:1d:db:87:97:22: 88:1b:52:c4:50:ea:20:c9:b4:c1:29:32:fb:02:f1:20:d2:4d: d7:89:6a:c0:37:50:ba:ab:2f:c0:11:35:88:1e:fb:69:b7:81: 3b:7f:8c:79:ab:99:e3:b5:f0:ee:1e:dd:55:c0:db:7f:dd:07: 67:1c:04:49:b4:5f:0f:d4:2d:24:c9:f4:0b:14:53:15:10:54: e8:43:72:3b:c4:b9:e8:8e:35:7b:b4:0a:69:e0:2c:63:98:59: 86:72:f3:f3:cb:5b:c6:8b:19:80:f2:f7:a3:36:a1:29:79:07: 6b:d1:7f:f6:4f:d7:f1:a8:06:7d:7e:44:c8:55:45:93:dd:2b: 32:5c:d3:82:96:75:52:f0:8c:9b:7b:d0:b7:d0:6d:44:20:04: 1e:6b:2b:a5:9a:e1:f4:07:11:e2:38:2e:c8:34:34:34:ed:05: af:8b:f9:c5:02:8a:51:cc:d7:3a:b0:90:88:ac:31:97:6e:af: 15:ee:08:12:d4:91:d3:ce:a8:34:85:8e:ea:87:91:9e:0f:ec: 5c:1a:0d:af -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULq4st2Y+zvllKrsKglaSHZzALPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTAxMDIwNjU1MDFaFw0yNjAxMDEwNzAwMDFaMDMxMTAvBgNV BAMTKEQ2NjE3QTVFNkU3NDNDQURGQjY2MDdBRDRCRUYwRTExNUYwM0Y2MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3bvVFWE5WtWhqffKgL642Jq2d img2km8w5eZr++m63atsoLsB8CBDnW8glbTWlsP9iRTD3rvif9P3udLCQP/WmRxn U695bVG0rCj/T2SkbREndK0J+aGpROM/Ze2fTeOX8vfFwrfMniStNvFrbmJ0T+Pl OzXx4h6GDb42NZxRqWK9SgI79QcXbUfm8W62M2L1vTzolfvtU1frZC0NZyCi1ogJ fVrwezmvxquKMe6xiIq5U/pg2/17h+UPV1B+a8Hh3gp3n60QQqg7qaXmiTOUhXYn 4yvqO5FzoK4EGG6c3OMBhvssbvLQBhsnP5hy8X/fHVczmReVraSUHx1V6LZvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1mF6Xm50PK37ZgetS+8OEV8D9icwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTM0MzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnOylDANBgkqhkiG 9w0BAQsFAAOCAQEAblKrOV+EzUkInt3wny0uvX2bxg+PuZoQXN3dvuudJydaPUQW Amg7K9SrgJ2sXNd8ER3bh5ciiBtSxFDqIMm0wSky+wLxINJN14lqwDdQuqsvwBE1 iB77abeBO3+MeauZ47Xw7h7dVcDbf90HZxwESbRfD9QtJMn0CxRTFRBU6ENyO8S5 6I41e7QKaeAsY5hZhnLz88tbxosZgPL3ozahKXkHa9F/9k/X8agGfX5EyFVFk90r MlzTgpZ1UvCMm3vQt9BtRCAEHmsrpZrh9AcR4jguyDQ0NO0Fr4v5xQKKUczXOrCQ iKwxl26vFe4IEtSR086oNIWO6oeRng/sXBoNrw== -----END CERTIFICATE-----Generated at Sun Apr 6 06:03:04 2025 by rpki-client