$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34322e302f32342d3234203d3e203338313635.roa File: 3131362e31322e34322e302f32342d3234203d3e203338313635.roa (raw, json) Hash identifier: rdciNNiI86zji4iX/jzZVpufZvBXyPsjlZ+Iz052j04= Subject key identifier: 2A:E3:FD:FB:6C:2E:4E:3A:36:B1:3F:CF:CB:52:78:3D:94:B9:66:01 Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Certificate serial: 2276A01CE9EE048E5059FB02B034B6EDDFF3C265 Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34322e302f32342d3234203d3e203338313635.roa Signing time: Mon 27 Jan 2025 02:00:00 +0000 ROA not before: Mon 27 Jan 2025 01:55:00 +0000 ROA not after: Mon 26 Jan 2026 02:00:00 +0000 asID: 38165 IP address blocks: 116.12.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 18:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:76:a0:1c:e9:ee:04:8e:50:59:fb:02:b0:34:b6:ed:df:f3:c2:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Validity Not Before: Jan 27 01:55:00 2025 GMT Not After : Jan 26 02:00:00 2026 GMT Subject: CN=2AE3FDFB6C2E4E3A36B13FCFCB52783D94B96601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:95:cf:6e:ee:e2:a7:6f:9e:93:67:82:47:d8: 3a:14:32:f0:72:48:20:18:ce:18:7b:5b:03:3c:82: 01:6a:96:9d:8a:43:62:98:3f:07:5b:52:49:87:ee: ef:08:5b:08:e3:f4:6e:32:ef:cd:a5:47:b1:69:6f: 6e:16:bf:79:91:e6:24:8a:36:2c:da:ad:6f:0d:81: 4e:10:a2:51:0b:fd:13:8a:1d:d0:44:d4:26:12:1e: ab:e4:e0:23:93:8b:2d:e1:d1:88:a7:0b:31:c3:ce: 5f:b0:4a:11:bc:c0:4f:25:2b:ac:fe:dd:42:a6:93: f1:e7:50:e9:a9:06:d2:da:05:97:76:f6:47:90:d1: ad:3b:1b:c3:e2:e0:1b:cf:d6:ec:57:5a:57:36:99: 3b:8f:c5:7a:c1:91:d7:59:12:13:02:f5:f9:c6:62: e8:e9:3d:6c:1b:20:ef:16:a8:2b:8a:17:21:f8:3a: a7:9d:68:92:8c:f7:3e:80:fe:5e:fc:0c:39:1d:2b: d7:77:78:6e:20:ee:c4:a2:ea:b2:e4:4b:8c:46:6e: 5a:5e:1f:45:1b:8c:32:c5:06:d4:2b:c4:35:e9:73: 35:1e:2a:09:6b:4b:c7:84:bb:99:c3:00:52:7f:4c: 4c:16:8e:10:33:9c:4f:2a:b6:62:14:ba:ba:d7:b8: bf:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:E3:FD:FB:6C:2E:4E:3A:36:B1:3F:CF:CB:52:78:3D:94:B9:66:01 X509v3 Authority Key Identifier: keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34322e302f32342d3234203d3e203338313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.12.42.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:1e:7d:18:2a:dd:e8:43:d5:fa:2a:a3:1d:2e:10:11:94:e9: 99:46:ae:b4:e9:cf:a4:fa:51:e4:c7:eb:ff:83:ea:b6:2c:17: 6b:dd:2c:b6:a7:dd:62:56:14:b2:38:2c:23:ac:8c:78:da:20: 88:e1:71:c7:f3:0b:83:86:90:f8:eb:24:9f:6f:0a:f7:01:d7: 88:36:53:ac:86:a1:91:ff:31:09:9f:0f:fc:be:94:03:c6:28: 50:53:40:d4:e3:70:c4:e4:66:85:3b:be:ed:11:55:1d:3b:73: 38:f3:47:8f:80:4a:fe:0a:f5:24:b7:ff:6d:74:a8:a3:c2:04: ad:60:b5:7c:6f:75:de:ac:43:3a:27:9c:56:d4:6a:68:10:1b: fc:40:36:5d:ce:a8:68:ba:2a:e3:16:85:f1:02:9c:42:f8:eb: ff:4c:84:db:aa:32:36:e9:86:48:a6:01:c3:63:d8:c2:1d:d8: 26:a5:87:48:ac:ee:7c:e0:c1:0e:cb:76:7e:61:a3:f3:77:42: ce:53:c9:b8:7f:2f:30:f1:d2:57:ea:2b:62:e5:98:1d:87:c9: 36:20:ed:04:04:df:68:1e:e8:b6:ea:d2:33:31:f0:c4:c9:d5: 2f:bd:b4:32:31:dd:b9:7e:d0:1a:e9:e5:02:25:63:c2:f3:e8: d2:e1:59:52 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUInagHOnuBI5QWfsCsDS27d/zwmUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5 NzlEMTA1MzAeFw0yNTAxMjcwMTU1MDBaFw0yNjAxMjYwMjAwMDBaMDMxMTAvBgNV BAMTKDJBRTNGREZCNkMyRTRFM0EzNkIxM0ZDRkNCNTI3ODNEOTRCOTY2MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/lc9u7uKnb56TZ4JH2DoUMvBy SCAYzhh7WwM8ggFqlp2KQ2KYPwdbUkmH7u8IWwjj9G4y782lR7Fpb24Wv3mR5iSK NizarW8NgU4QolEL/ROKHdBE1CYSHqvk4COTiy3h0YinCzHDzl+wShG8wE8lK6z+ 3UKmk/HnUOmpBtLaBZd29keQ0a07G8Pi4BvP1uxXWlc2mTuPxXrBkddZEhMC9fnG YujpPWwbIO8WqCuKFyH4OqedaJKM9z6A/l78DDkdK9d3eG4g7sSi6rLkS4xGblpe H0UbjDLFBtQrxDXpczUeKglrS8eEu5nDAFJ/TEwWjhAznE8qtmIUurrXuL9lAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUKuP9+2wuTjo2sT/Py1J4PZS5ZgEwHwYDVR0j BBgwFoAU8sIkFL8I/Aiwrr9E+vhahZedEFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzQ0OGMxMS1mOGQzLTQ1N2QtOGUyMi04NDg4N2FiMjJhMzAvMC9GMkMyMjQxNEJG MDhGQzA4QjBBRUJGNDRGQUY4NUE4NTk3OUQxMDUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5NzlE MTA1My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3NDQ4YzExLWY4ZDMtNDU3ZC04 ZTIyLTg0ODg3YWIyMmEzMC8wLzMxMzEzNjJlMzEzMjJlMzQzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM2MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB0DCowDQYJKoZIhvcN AQELBQADggEBAG8efRgq3ehD1foqox0uEBGU6ZlGrrTpz6T6UeTH6/+D6rYsF2vd LLan3WJWFLI4LCOsjHjaIIjhccfzC4OGkPjrJJ9vCvcB14g2U6yGoZH/MQmfD/y+ lAPGKFBTQNTjcMTkZoU7vu0RVR07czjzR4+ASv4K9SS3/210qKPCBK1gtXxvdd6s QzonnFbUamgQG/xANl3OqGi6KuMWhfECnEL46/9MhNuqMjbphkimAcNj2MId2Cal h0is7nzgwQ7Ldn5ho/N3Qs5Tybh/LzDx0lfqK2LlmB2HyTYg7QQE32ge6Lbq0jMx 8MTJ1S+9tDIx3bl+0Brp5QIlY8Lz6NLhWVI= -----END CERTIFICATE-----Generated at Sun Apr 6 17:50:18 2025 by rpki-client