$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3135362e302f32322d3234203d3e2039373934.roa File: 3131352e3137382e3135362e302f32322d3234203d3e2039373934.roa (raw, json) Hash identifier: /GnWYcBtSPYoc7BT65WKt/GY3b5MNYIBn+5B4v54nFI= Subject key identifier: E3:FF:1B:85:84:B3:2F:B7:47:FE:2C:72:FF:7A:6C:E3:7C:E0:CF:77 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 29039BA4A89093E88CF8BF1C7C22A6345374DF77 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3135362e302f32322d3234203d3e2039373934.roa Signing time: Thu 02 Jan 2025 09:02:36 +0000 ROA not before: Thu 02 Jan 2025 08:57:36 +0000 ROA not after: Thu 01 Jan 2026 09:02:36 +0000 asID: 9794 IP address blocks: 115.178.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:03:9b:a4:a8:90:93:e8:8c:f8:bf:1c:7c:22:a6:34:53:74:df:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jan 2 08:57:36 2025 GMT Not After : Jan 1 09:02:36 2026 GMT Subject: CN=E3FF1B8584B32FB747FE2C72FF7A6CE37CE0CF77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a0:3f:19:fd:54:1c:ef:93:85:32:88:cb:79: 78:5e:64:b8:38:b2:02:32:a2:eb:03:e6:91:c7:53: 17:c8:5d:d7:2c:df:fc:61:94:55:c3:39:2e:05:b8: 85:79:00:82:f1:cf:07:52:74:d2:e0:64:8e:19:38: 5d:ef:52:c9:cf:4e:7f:35:73:a4:54:15:6d:81:be: 5f:e9:dc:e5:66:86:fd:e2:96:8e:9c:0c:6b:81:a9: 76:da:c6:28:6e:ee:91:1a:44:0c:4b:74:63:0d:bc: 18:5e:0b:d7:87:f4:0c:8b:27:66:bf:0c:d7:7c:fd: ee:e4:16:6b:3a:4e:18:b4:96:ca:ad:bb:e8:a6:c2: 23:a9:72:59:9c:20:b9:41:7e:f9:f4:d1:38:e3:da: 77:ec:6d:32:49:01:30:95:84:73:6e:5b:42:b0:77: 38:a0:de:0e:96:44:be:6e:aa:56:e7:6d:ff:2f:f5: 59:34:07:73:10:98:70:86:49:83:f5:57:c2:8d:dc: 49:26:8c:3b:f3:9c:8e:b0:f5:8b:14:67:a1:05:4c: 8a:2f:c8:23:ac:bc:de:d8:0f:03:8c:fc:31:5d:1e: 6e:cb:0a:f0:fe:78:c3:32:bb:b1:a9:dc:41:c9:68: 1a:d7:2f:9d:32:32:43:d7:13:e7:f1:85:76:e6:44: 71:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:FF:1B:85:84:B3:2F:B7:47:FE:2C:72:FF:7A:6C:E3:7C:E0:CF:77 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3135362e302f32322d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.156.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:ff:b4:e8:0a:45:0e:66:4b:ae:0d:d8:7f:f0:2e:54:94:87: b4:10:68:3b:12:be:25:51:9a:06:3d:fc:eb:0a:0e:80:a7:fd: 89:fa:c2:fa:53:16:be:70:5c:5d:2e:b3:85:ed:cd:13:a2:b4: 2b:d1:39:80:c6:0b:9e:4f:86:59:85:d2:19:ec:8d:33:92:33: a6:2e:aa:29:26:27:ba:4e:14:ee:73:49:1a:6d:a9:87:01:b8: 07:16:56:c2:e8:34:ef:42:12:02:ea:97:b2:20:6d:86:90:87: d7:a7:46:c2:ac:e8:2a:41:10:a4:cb:5c:e6:ec:a9:07:ea:b9: 24:47:52:18:10:bb:14:32:c4:b0:a8:3e:5c:1d:63:a7:2a:e2: e8:39:26:c0:32:76:0a:69:b7:f4:13:09:65:07:1c:f8:3c:96: 62:f8:de:bd:87:92:73:de:b0:24:f5:ab:2b:3f:7d:01:ed:6a: a2:45:35:70:d0:fc:7b:5e:5b:09:b9:c6:59:c9:ce:31:51:f8: 11:eb:17:78:dc:4f:85:fe:5c:e0:25:72:f3:cd:98:4a:92:3d: 3f:1b:52:b2:c0:ea:72:80:66:13:ae:f1:a2:a0:0d:2a:3d:19: 98:ad:d9:c3:a2:69:b2:1e:53:2b:da:02:ee:41:ef:c9:fb:80: 15:ae:35:e2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKQObpKiQk+iM+L8cfCKmNFN033cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTAxMDIwODU3MzZaFw0yNjAxMDEwOTAyMzZaMDMxMTAvBgNV BAMTKEUzRkYxQjg1ODRCMzJGQjc0N0ZFMkM3MkZGN0E2Q0UzN0NFMENGNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkoD8Z/VQc75OFMojLeXheZLg4 sgIyousD5pHHUxfIXdcs3/xhlFXDOS4FuIV5AILxzwdSdNLgZI4ZOF3vUsnPTn81 c6RUFW2Bvl/p3OVmhv3ilo6cDGuBqXbaxihu7pEaRAxLdGMNvBheC9eH9AyLJ2a/ DNd8/e7kFms6Thi0lsqtu+imwiOpclmcILlBfvn00Tjj2nfsbTJJATCVhHNuW0Kw dzig3g6WRL5uqlbnbf8v9Vk0B3MQmHCGSYP1V8KN3EkmjDvznI6w9YsUZ6EFTIov yCOsvN7YDwOM/DFdHm7LCvD+eMMyu7Gp3EHJaBrXL50yMkPXE+fxhXbmRHFHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4/8bhYSzL7dH/ixy/3ps43zgz3cwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTM1MzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnOynDANBgkqhkiG 9w0BAQsFAAOCAQEAPP+06ApFDmZLrg3Yf/AuVJSHtBBoOxK+JVGaBj386woOgKf9 ifrC+lMWvnBcXS6zhe3NE6K0K9E5gMYLnk+GWYXSGeyNM5Izpi6qKSYnuk4U7nNJ Gm2phwG4BxZWwug070ISAuqXsiBthpCH16dGwqzoKkEQpMtc5uypB+q5JEdSGBC7 FDLEsKg+XB1jpyri6DkmwDJ2Cmm39BMJZQcc+DyWYvjevYeSc96wJPWrKz99Ae1q okU1cND8e15bCbnGWcnOMVH4EesXeNxPhf5c4CVy882YSpI9PxtSssDqcoBmE67x oqANKj0ZmK3Zw6Jpsh5TK9oC7kHvyfuAFa414g== -----END CERTIFICATE-----Generated at Sun Apr 6 08:28:12 2025 by rpki-client