$ rpki-client -vvf repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131372e302f32342d3234203d3e203338353233.roa File: 3131372e37342e3131372e302f32342d3234203d3e203338353233.roa (raw, json) Hash identifier: V8HVQOfgmh/cc0nhLeaxvvDoxZedeMVRv4rqy3Nfh7U= Subject key identifier: 44:53:B9:E4:C4:B1:9C:00:35:B4:D8:A9:87:BC:EF:2C:E3:26:E9:9F Certificate issuer: /CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Certificate serial: 32919F2D32CD143252AD49DF231973DC7A96517A Authority key identifier: 1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131372e302f32342d3234203d3e203338353233.roa Signing time: Fri 04 Jul 2025 16:00:02 +0000 ROA not before: Fri 04 Jul 2025 15:55:02 +0000 ROA not after: Fri 03 Jul 2026 16:00:02 +0000 asID: 38523 IP address blocks: 117.74.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 03:33:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:91:9f:2d:32:cd:14:32:52:ad:49:df:23:19:73:dc:7a:96:51:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Validity Not Before: Jul 4 15:55:02 2025 GMT Not After : Jul 3 16:00:02 2026 GMT Subject: CN=4453B9E4C4B19C0035B4D8A987BCEF2CE326E99F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:93:02:3d:17:0a:f1:1b:db:45:78:be:c7:bc: 10:40:4e:55:65:b4:c5:8d:0e:da:5f:48:9f:56:81: d6:06:32:80:6b:01:c1:8f:cb:34:74:b9:e1:aa:76: f4:f5:f4:66:cf:fe:18:af:13:99:83:44:af:dd:5c: 05:97:83:5c:fe:39:1e:2f:59:c4:d4:cf:9d:e6:18: 0f:f4:a7:01:33:4c:b5:8f:f3:93:d6:66:0c:c0:28: db:33:a5:cb:f4:a2:e8:e5:35:2b:f5:1c:d5:2a:ca: 91:d8:6c:62:27:2f:94:88:df:d1:55:8b:90:1e:21: fb:f4:68:86:56:04:16:61:6b:7a:9a:65:57:c0:7c: 9d:5d:47:33:89:ff:16:60:fe:58:b1:7a:f6:04:9c: 20:64:93:86:ab:c3:da:a9:07:d2:34:04:5c:93:1f: 34:04:53:e1:6f:80:5f:d8:78:a2:27:e5:5f:40:a1: 14:59:0a:d1:47:d7:40:23:21:6e:d9:cc:84:b6:79: 6d:b9:dd:ba:75:21:2f:2f:b8:67:2b:58:42:84:5c: 82:df:1d:2c:26:2f:e7:5a:27:55:ea:52:69:38:90: 8e:eb:49:cf:51:19:e0:d7:28:f3:23:3d:1c:84:80: 89:a4:b6:28:e0:d9:87:f7:dc:0a:3f:78:37:43:8b: b1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:53:B9:E4:C4:B1:9C:00:35:B4:D8:A9:87:BC:EF:2C:E3:26:E9:9F X509v3 Authority Key Identifier: keyid:1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131372e302f32342d3234203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.74.117.0/24 Signature Algorithm: sha256WithRSAEncryption 83:b6:00:00:1d:f1:ac:d4:6c:07:c1:c3:15:5a:0c:ac:7f:5f: 8a:62:27:5c:52:f8:d9:d6:ef:41:86:f9:8f:9c:a4:b8:ec:98: da:c3:62:1b:66:a7:83:0d:3b:16:a4:2f:88:46:cd:7b:88:a3: b1:68:70:e9:64:e5:95:74:ca:cd:4d:cf:09:86:01:85:84:66: 84:80:10:ee:86:21:0f:36:84:bf:19:e8:e2:42:d5:24:b2:8a: df:24:a1:3f:7b:eb:7d:b7:4a:ef:4b:59:0f:ef:bd:39:b1:69: ea:71:05:1e:92:0b:4b:b4:b5:3b:e8:a3:4f:77:0f:d1:23:7e: 4e:49:74:f1:0e:58:2f:3d:47:28:85:af:70:67:10:25:f2:b2: 61:db:ee:97:10:d5:fc:4d:3a:ee:55:81:31:43:4b:37:e3:cc: 9e:4b:63:02:a4:4e:27:b6:77:91:10:a2:be:0d:e3:50:3e:67: f4:81:a5:67:64:ad:18:ea:df:6a:2b:10:e2:22:1c:e5:6d:f1: 97:93:16:19:13:a3:3c:ea:16:62:de:f3:de:a4:ca:00:3b:a1: ac:78:62:17:54:2e:2c:95:83:f5:62:8d:50:2d:b4:88:6e:55: 52:78:13:1e:05:68:c6:a2:98:38:4a:8e:13:3e:b2:b3:29:9c: 33:f6:0c:48 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMpGfLTLNFDJSrUnfIxlz3HqWUXowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2 MDM5NDQ4RjAeFw0yNTA3MDQxNTU1MDJaFw0yNjA3MDMxNjAwMDJaMDMxMTAvBgNV BAMTKDQ0NTNCOUU0QzRCMTlDMDAzNUI0RDhBOTg3QkNFRjJDRTMyNkU5OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNkwI9FwrxG9tFeL7HvBBATlVl tMWNDtpfSJ9WgdYGMoBrAcGPyzR0ueGqdvT19GbP/hivE5mDRK/dXAWXg1z+OR4v WcTUz53mGA/0pwEzTLWP85PWZgzAKNszpcv0oujlNSv1HNUqypHYbGInL5SI39FV i5AeIfv0aIZWBBZha3qaZVfAfJ1dRzOJ/xZg/lixevYEnCBkk4arw9qpB9I0BFyT HzQEU+FvgF/YeKIn5V9AoRRZCtFH10AjIW7ZzIS2eW253bp1IS8vuGcrWEKEXILf HSwmL+daJ1XqUmk4kI7rSc9RGeDXKPMjPRyEgImktijg2Yf33Ao/eDdDi7F/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURFO55MSxnAA1tNiph7zvLOMm6Z8wHwYDVR0j BBgwFoAUG8SX0K0K2oBoOkrRfGC4e2A5RI8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTVhMWE0NC0zMzdkLTRkYjQtOTBkNy01YmQ0ZjM3MjE0YjgvMC8xQkM0OTdEMEFE MEFEQTgwNjgzQTRBRDE3QzYwQjg3QjYwMzk0NDhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2MDM5 NDQ4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMxMzEzNzJlMzczNDJlMzEzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVKdTANBgkqhkiG 9w0BAQsFAAOCAQEAg7YAAB3xrNRsB8HDFVoMrH9fimInXFL42dbvQYb5j5ykuOyY 2sNiG2angw07FqQviEbNe4ijsWhw6WTllXTKzU3PCYYBhYRmhIAQ7oYhDzaEvxno 4kLVJLKK3yShP3vrfbdK70tZD++9ObFp6nEFHpILS7S1O+ijT3cP0SN+Tkl08Q5Y Lz1HKIWvcGcQJfKyYdvulxDV/E067lWBMUNLN+PMnktjAqROJ7Z3kRCivg3jUD5n 9IGlZ2StGOrfaisQ4iIc5W3xl5MWGROjPOoWYt7z3qTKADuhrHhiF1QuLJWD9WKN UC20iG5VUngTHgVoxqKYOEqOEz6ysymcM/YMSA== -----END CERTIFICATE-----Generated at Sat Aug 9 14:16:50 2025 by rpki-client