$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136362e302f32342d3234203d3e2039333431.roa File: 3131392e3235322e3136362e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: 0xvwKTfxoMhaCq1luTn6vAjJfbweCNWH0GAnTz4luM0= Subject key identifier: C6:36:DE:B6:35:ED:5C:90:61:7C:B1:A4:DF:1F:7D:4B:6C:2F:1A:61 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 606D36331B1EA02912EBB17F552D1C8330184443 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136362e302f32342d3234203d3e2039333431.roa Signing time: Sun 23 Mar 2025 07:00:02 +0000 ROA not before: Sun 23 Mar 2025 06:55:02 +0000 ROA not after: Sun 22 Mar 2026 07:00:02 +0000 asID: 9341 IP address blocks: 119.252.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 06:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:6d:36:33:1b:1e:a0:29:12:eb:b1:7f:55:2d:1c:83:30:18:44:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Mar 23 06:55:02 2025 GMT Not After : Mar 22 07:00:02 2026 GMT Subject: CN=C636DEB635ED5C90617CB1A4DF1F7D4B6C2F1A61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:43:e2:80:b3:32:48:f9:b2:a2:fa:94:dd:ec: e7:b9:27:8b:a7:d1:2e:77:c6:05:ba:c0:20:13:0f: 2b:ac:f4:b4:0e:a6:d3:14:20:9a:69:50:5c:24:34: 44:cd:3a:15:93:75:a0:58:2d:b4:09:04:07:9c:f4: 45:e9:24:5e:9c:cd:6d:35:da:77:ed:fe:c4:2e:7a: 84:d8:a8:64:7c:cb:cd:b4:bc:27:d7:8e:21:1a:4a: d1:c7:d6:f2:50:32:e1:89:56:a5:cd:0c:e9:37:f3: 2d:38:d2:06:c7:c3:0f:a0:1e:25:98:07:77:68:fe: 84:fa:45:66:50:8e:92:39:98:6b:48:9c:f5:6d:43: 71:55:c8:b4:75:47:66:2a:5e:ff:66:84:11:3a:a5: f5:f9:90:7c:8a:2e:8e:e5:b0:7a:c1:22:5a:f5:26: 5e:16:d3:1f:1c:49:b6:11:9a:ae:a1:22:c2:9a:91: 58:3c:34:4d:92:28:7a:e6:92:9a:4d:31:bc:e1:82: 99:50:a2:35:b1:e9:7d:c9:74:b3:aa:aa:db:4a:fc: e8:53:19:58:6b:c4:60:dd:6a:b6:af:92:9b:73:3e: b9:9b:8f:20:c9:37:33:d9:2f:d2:52:d9:1c:03:46: 96:63:f3:81:57:8f:f4:30:4c:38:7a:84:39:d6:a1: 76:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:36:DE:B6:35:ED:5C:90:61:7C:B1:A4:DF:1F:7D:4B:6C:2F:1A:61 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136362e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.252.166.0/24 Signature Algorithm: sha256WithRSAEncryption 80:9f:9b:14:8b:6c:26:f4:8f:79:ae:27:27:f5:84:0a:dc:ad: d7:4c:7c:26:5c:16:81:2f:61:15:94:3c:89:c6:29:80:c0:4b: 5d:07:4c:bf:1b:c5:d6:eb:c6:23:e0:39:28:68:1e:d1:d8:22: 15:ab:54:05:26:8c:08:a4:c6:5f:d8:98:23:24:92:c0:64:ca: 3f:52:bc:91:34:d9:77:57:3a:97:b1:49:48:3b:73:aa:8c:f5: 6c:ad:7a:59:4a:ef:50:0f:15:b7:1e:13:31:3f:25:8c:c6:5b: d0:28:2c:ce:c6:a7:b8:0f:f3:26:b5:d6:56:c3:7a:58:8d:8f: 34:97:6f:86:4e:5a:67:5e:68:d0:34:8e:6d:4a:7d:5b:ee:21: b1:4a:5a:37:c1:b8:21:6d:21:34:2c:76:28:7d:5d:17:5e:ef: 05:73:26:4a:2f:48:9d:db:32:07:14:85:f4:40:e8:15:26:c2: a3:91:d0:27:2d:b7:fd:87:b3:8d:9d:db:4f:7e:45:72:68:b3: 6e:e6:48:79:ac:44:63:21:b7:d4:40:3e:3b:3e:ac:69:c4:ef: 1d:78:1f:8a:d8:e6:45:10:ae:48:1c:70:53:55:f8:2c:df:45: d2:4c:ab:3e:ed:c0:a4:dd:b9:92:d8:06:82:6f:d5:71:6e:d4: af:8a:7a:ec -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYG02MxseoCkS67F/VS0cgzAYREMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNTAzMjMwNjU1MDJaFw0yNjAzMjIwNzAwMDJaMDMxMTAvBgNV BAMTKEM2MzZERUI2MzVFRDVDOTA2MTdDQjFBNERGMUY3RDRCNkMyRjFBNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQ+KAszJI+bKi+pTd7Oe5J4un 0S53xgW6wCATDyus9LQOptMUIJppUFwkNETNOhWTdaBYLbQJBAec9EXpJF6czW01 2nft/sQueoTYqGR8y820vCfXjiEaStHH1vJQMuGJVqXNDOk38y040gbHww+gHiWY B3do/oT6RWZQjpI5mGtInPVtQ3FVyLR1R2YqXv9mhBE6pfX5kHyKLo7lsHrBIlr1 Jl4W0x8cSbYRmq6hIsKakVg8NE2SKHrmkppNMbzhgplQojWx6X3JdLOqqttK/OhT GVhrxGDdaravkptzPrmbjyDJNzPZL9JS2RwDRpZj84FXj/QwTDh6hDnWoXZzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxjbetjXtXJBhfLGk3x99S2wvGmEwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMxMzEzOTJlMzIzNTMyMmUzMTM2MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHf8pjANBgkqhkiG 9w0BAQsFAAOCAQEAgJ+bFItsJvSPea4nJ/WECtyt10x8JlwWgS9hFZQ8icYpgMBL XQdMvxvF1uvGI+A5KGge0dgiFatUBSaMCKTGX9iYIySSwGTKP1K8kTTZd1c6l7FJ SDtzqoz1bK16WUrvUA8Vtx4TMT8ljMZb0CgszsanuA/zJrXWVsN6WI2PNJdvhk5a Z15o0DSObUp9W+4hsUpaN8G4IW0hNCx2KH1dF17vBXMmSi9IndsyBxSF9EDoFSbC o5HQJy23/YezjZ3bT35FcmizbuZIeaxEYyG31EA+Oz6sacTvHXgfitjmRRCuSBxw U1X4LN9F0kyrPu3ApN25ktgGgm/VcW7Ur4p67A== -----END CERTIFICATE-----Generated at Sat Apr 26 14:54:41 2025 by rpki-client