$ rpki-client -vvf repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233322e302f32332d3234203d3e203435323936.roa File: 3131332e35392e3233322e302f32332d3234203d3e203435323936.roa (raw, json) Hash identifier: o92oWma+qVg7kDpp1dBbsZyfIxt7kWwBQcOjSnqRqMk= Subject key identifier: 8C:B0:F0:12:18:7D:92:23:00:B9:60:C1:A1:D0:5C:E6:6D:27:49:24 Certificate issuer: /CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Certificate serial: 2D279216FF0E4B46E254179762095885FFECBB49 Authority key identifier: 9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233322e302f32332d3234203d3e203435323936.roa Signing time: Mon 28 Apr 2025 09:00:01 +0000 ROA not before: Mon 28 Apr 2025 08:55:01 +0000 ROA not after: Mon 27 Apr 2026 09:00:01 +0000 asID: 45296 IP address blocks: 113.59.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:27:92:16:ff:0e:4b:46:e2:54:17:97:62:09:58:85:ff:ec:bb:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Validity Not Before: Apr 28 08:55:01 2025 GMT Not After : Apr 27 09:00:01 2026 GMT Subject: CN=8CB0F012187D922300B960C1A1D05CE66D274924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fd:b0:c6:7d:ba:0e:a1:7e:6e:41:d2:5e:89: b6:34:74:0b:53:b9:1a:43:dd:5b:29:de:30:e0:41: 19:d2:7d:a6:d0:49:05:d5:c4:c1:ab:00:f4:f1:e3: 7c:65:ff:38:e0:33:c0:f4:fa:22:2c:4f:7b:b4:0b: 5b:68:db:02:70:b8:ea:a7:bf:1f:2d:18:b7:7b:f9: 31:91:9b:04:52:61:81:02:61:ce:31:e0:c3:e6:fa: 64:80:dd:34:d0:4d:5b:4a:ce:95:55:84:61:2b:46: ab:6e:4a:d8:7c:2c:00:bd:3f:94:aa:e1:26:48:61: a4:32:e4:b7:37:77:ab:7e:02:c9:dd:b0:d3:90:8b: 1e:b5:14:21:2f:65:a3:9a:9b:2c:20:11:c3:f9:d9: 6d:13:e0:50:41:2a:14:c0:bd:94:86:0e:a0:3f:25: 95:fc:fc:33:46:a0:ae:bf:19:a7:13:5b:4d:5f:b4: 07:b2:31:89:a5:06:a2:1b:5b:cc:28:65:4f:7b:8f: af:67:9f:52:22:e9:8e:5a:43:5f:19:f7:cb:af:16: 70:69:bb:65:61:30:94:a7:bd:f2:b9:08:71:6a:e0: b5:bd:d2:00:cc:8a:ad:1e:9a:ea:94:d6:56:b7:5a: bb:a2:8b:ba:a6:c4:45:ed:cf:f3:9b:b7:87:b6:ea: 97:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:B0:F0:12:18:7D:92:23:00:B9:60:C1:A1:D0:5C:E6:6D:27:49:24 X509v3 Authority Key Identifier: keyid:9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233322e302f32332d3234203d3e203435323936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.59.232.0/23 Signature Algorithm: sha256WithRSAEncryption 72:33:00:2b:41:54:8b:73:e0:a9:a3:2c:d3:90:a1:d3:e3:5d: 93:b8:ca:5c:1e:51:a0:d6:c6:cc:28:45:87:37:8e:36:05:0d: 45:ba:78:cc:f2:d5:21:ef:2d:dc:ee:fd:68:04:27:fb:dc:2e: 33:0f:62:1d:45:f0:97:60:d0:6c:71:74:87:76:c1:ef:b6:dc: d7:b5:07:07:32:62:08:63:32:93:5d:aa:77:f3:25:1e:67:8d: 77:c8:8b:64:54:9f:b2:94:6f:e3:2d:90:e8:8a:12:9b:21:d3: 0d:9a:3e:db:0f:70:47:a6:24:fc:c4:0f:fc:ca:66:0a:e7:c7: bc:ca:7f:e4:71:04:36:89:f4:b5:24:87:d4:24:b8:f0:3f:0f: 0a:c4:de:5c:5d:ed:de:88:32:73:73:41:6a:bc:9d:0e:a1:40: fd:2d:92:bc:0c:54:b9:b9:bf:77:66:a2:b2:53:d6:f6:9e:4f: 00:35:4b:60:3e:f3:49:b3:f7:8d:c4:99:df:a9:4e:67:b5:cd: ad:e6:df:7e:11:fc:e2:c0:7b:46:7b:05:d5:21:e4:1b:6e:b5: 92:c6:bc:ab:d4:5e:a7:9f:a3:cd:4c:67:b9:61:af:65:3f:3b: 4d:d5:54:a6:ca:14:f1:43:6e:30:6d:0e:11:e1:03:1c:0b:f6: cb:9a:03:66 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULSeSFv8OS0biVBeXYglYhf/su0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJB NTlGOTlENzAeFw0yNTA0MjgwODU1MDFaFw0yNjA0MjcwOTAwMDFaMDMxMTAvBgNV BAMTKDhDQjBGMDEyMTg3RDkyMjMwMEI5NjBDMUExRDA1Q0U2NkQyNzQ5MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz/bDGfboOoX5uQdJeibY0dAtT uRpD3Vsp3jDgQRnSfabQSQXVxMGrAPTx43xl/zjgM8D0+iIsT3u0C1to2wJwuOqn vx8tGLd7+TGRmwRSYYECYc4x4MPm+mSA3TTQTVtKzpVVhGErRqtuSth8LAC9P5Sq 4SZIYaQy5Lc3d6t+AsndsNOQix61FCEvZaOamywgEcP52W0T4FBBKhTAvZSGDqA/ JZX8/DNGoK6/GacTW01ftAeyMYmlBqIbW8woZU97j69nn1Ii6Y5aQ18Z98uvFnBp u2VhMJSnvfK5CHFq4LW90gDMiq0emuqU1la3Wruii7qmxEXtz/Obt4e26pftAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjLDwEhh9kiMAuWDBodBc5m0nSSQwHwYDVR0j BBgwFoAUmy8AR21qwbqrBcWmJdwAwqWfmdcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NjA2NzE4Zi1mNGM2LTQ3NzUtODk1Ny05OWQyYmQ2NjYzNjMvMC85QjJGMDA0NzZE NkFDMUJBQUIwNUM1QTYyNURDMDBDMkE1OUY5OUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJBNTlG OTlENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2MDY3MThmLWY0YzYtNDc3NS04 OTU3LTk5ZDJiZDY2NjM2My8wLzMxMzEzMzJlMzUzOTJlMzIzMzMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNTMyMzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXE76DANBgkqhkiG 9w0BAQsFAAOCAQEAcjMAK0FUi3PgqaMs05Ch0+Ndk7jKXB5RoNbGzChFhzeONgUN Rbp4zPLVIe8t3O79aAQn+9wuMw9iHUXwl2DQbHF0h3bB77bc17UHBzJiCGMyk12q d/MlHmeNd8iLZFSfspRv4y2Q6IoSmyHTDZo+2w9wR6Yk/MQP/MpmCufHvMp/5HEE Non0tSSH1CS48D8PCsTeXF3t3ogyc3NBarydDqFA/S2SvAxUubm/d2aislPW9p5P ADVLYD7zSbP3jcSZ36lOZ7XNrebffhH84sB7RnsF1SHkG261ksa8q9Rep5+jzUxn uWGvZT87TdVUpsoU8UNuMG0OEeEDHAv2y5oDZg== -----END CERTIFICATE-----Generated at Tue Apr 29 02:33:36 2025 by rpki-client