$ rpki-client -vvf repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233322e302f32342d3234203d3e203435323936.roa File: 3131332e35392e3233322e302f32342d3234203d3e203435323936.roa (raw, json) Hash identifier: FvX6HOu240BmC0Xjx609uR2xk59ob67iwFxIeabyR18= Subject key identifier: F2:5C:2D:CE:9B:5F:6A:FF:AF:D7:C5:65:AC:25:38:60:A0:A4:05:E5 Certificate issuer: /CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Certificate serial: 30440DD3A2DA6A33947E45BC0A3B1CA9F4C188DA Authority key identifier: 9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233322e302f32342d3234203d3e203435323936.roa Signing time: Mon 28 Apr 2025 10:00:00 +0000 ROA not before: Mon 28 Apr 2025 09:55:00 +0000 ROA not after: Mon 27 Apr 2026 10:00:00 +0000 asID: 45296 IP address blocks: 113.59.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:44:0d:d3:a2:da:6a:33:94:7e:45:bc:0a:3b:1c:a9:f4:c1:88:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Validity Not Before: Apr 28 09:55:00 2025 GMT Not After : Apr 27 10:00:00 2026 GMT Subject: CN=F25C2DCE9B5F6AFFAFD7C565AC253860A0A405E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a0:8a:a9:e8:94:d7:86:79:63:f9:32:87:31: db:70:56:41:7c:fe:af:e0:d2:da:84:f8:1c:f1:49: e8:67:d0:e8:12:65:19:ad:d6:bd:36:00:f8:83:e4: 1e:b2:6c:59:3b:78:67:9d:9b:01:be:48:fb:cc:15: 36:7a:b0:dd:83:42:06:35:ec:38:5c:bc:65:da:0d: 41:ea:b3:e6:41:b1:e9:2b:e1:63:ca:db:3f:00:ed: 98:bb:a8:f7:84:a6:00:e9:47:6e:9c:31:e0:04:cc: 66:72:c5:96:76:16:47:f9:11:d6:20:2f:de:b5:f2: 0c:00:a8:65:92:e8:89:fd:59:c0:b1:76:f2:8e:b6: 5a:ae:f4:0c:70:93:95:10:8c:40:ae:71:3b:b2:5b: 6f:d1:9a:88:7f:4c:90:f2:d4:7c:ac:77:7c:e9:af: dc:64:d5:20:ea:8c:10:cd:98:87:4f:f1:8f:ef:86: ab:90:6b:37:89:d8:68:e4:4e:bd:ea:fe:d4:ef:5c: d6:b3:68:28:5b:dd:2a:2b:03:8f:42:7b:3a:c5:5e: 16:d0:10:38:b0:81:40:d5:dc:74:37:a8:ff:03:f2: 58:2b:8e:f1:24:cf:b0:e4:1f:fb:47:af:fa:d3:b7: 5f:16:ae:69:51:fa:74:4b:d6:84:69:3a:7c:ea:e3: 6a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:5C:2D:CE:9B:5F:6A:FF:AF:D7:C5:65:AC:25:38:60:A0:A4:05:E5 X509v3 Authority Key Identifier: keyid:9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233322e302f32342d3234203d3e203435323936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.59.232.0/24 Signature Algorithm: sha256WithRSAEncryption 83:7d:cc:a0:aa:9b:f6:3b:41:03:27:d6:1f:3b:4c:ef:35:00: e7:34:7e:12:7a:e3:dd:36:94:6d:4f:4d:44:b1:15:c6:45:b5: 94:05:ea:05:a7:b9:d9:02:f1:6f:23:d3:93:b6:7d:26:74:1b: bb:da:0b:90:7d:d6:84:45:8d:4c:8e:9f:03:fb:f1:ec:99:70: a2:ad:6f:ad:8c:9c:d3:16:12:20:7c:28:7e:e7:f0:71:8c:ed: a5:5e:41:54:12:fc:00:2e:77:73:b2:a1:f1:e2:b5:14:e7:45: d1:1d:63:33:d4:14:5f:3f:46:09:95:a3:58:48:a2:2f:ca:e1: 10:62:57:12:c2:37:93:bc:b3:fb:f6:af:9b:6c:84:2e:f0:67: 97:d9:99:06:07:fd:f8:93:6f:59:d6:56:bc:df:4a:7e:6a:93: 2c:1b:21:9b:8c:3b:cf:78:25:5d:23:65:18:27:bb:e5:1c:f8: 30:c7:f5:b9:54:06:64:4e:67:e6:19:2a:31:8b:84:7a:e7:a5: 0d:59:29:7f:27:95:f4:95:16:92:68:75:35:fd:17:9a:c1:c9: 4f:92:fe:ad:dd:ea:75:74:c5:19:df:73:14:ee:a3:8f:29:ed: cd:20:12:93:31:c5:ce:20:da:fd:46:c1:7a:4d:5f:64:3d:85: a8:c1:59:3b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMEQN06LaajOUfkW8CjscqfTBiNowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJB NTlGOTlENzAeFw0yNTA0MjgwOTU1MDBaFw0yNjA0MjcxMDAwMDBaMDMxMTAvBgNV BAMTKEYyNUMyRENFOUI1RjZBRkZBRkQ3QzU2NUFDMjUzODYwQTBBNDA1RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPoIqp6JTXhnlj+TKHMdtwVkF8 /q/g0tqE+BzxSehn0OgSZRmt1r02APiD5B6ybFk7eGedmwG+SPvMFTZ6sN2DQgY1 7DhcvGXaDUHqs+ZBsekr4WPK2z8A7Zi7qPeEpgDpR26cMeAEzGZyxZZ2Fkf5EdYg L9618gwAqGWS6In9WcCxdvKOtlqu9Axwk5UQjECucTuyW2/Rmoh/TJDy1Hysd3zp r9xk1SDqjBDNmIdP8Y/vhquQazeJ2GjkTr3q/tTvXNazaChb3SorA49CezrFXhbQ EDiwgUDV3HQ3qP8D8lgrjvEkz7DkH/tHr/rTt18WrmlR+nRL1oRpOnzq42ojAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8lwtzptfav+v18VlrCU4YKCkBeUwHwYDVR0j BBgwFoAUmy8AR21qwbqrBcWmJdwAwqWfmdcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NjA2NzE4Zi1mNGM2LTQ3NzUtODk1Ny05OWQyYmQ2NjYzNjMvMC85QjJGMDA0NzZE NkFDMUJBQUIwNUM1QTYyNURDMDBDMkE1OUY5OUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJBNTlG OTlENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2MDY3MThmLWY0YzYtNDc3NS04 OTU3LTk5ZDJiZDY2NjM2My8wLzMxMzEzMzJlMzUzOTJlMzIzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMyMzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHE76DANBgkqhkiG 9w0BAQsFAAOCAQEAg33MoKqb9jtBAyfWHztM7zUA5zR+Enrj3TaUbU9NRLEVxkW1 lAXqBae52QLxbyPTk7Z9JnQbu9oLkH3WhEWNTI6fA/vx7Jlwoq1vrYyc0xYSIHwo fufwcYztpV5BVBL8AC53c7Kh8eK1FOdF0R1jM9QUXz9GCZWjWEiiL8rhEGJXEsI3 k7yz+/avm2yELvBnl9mZBgf9+JNvWdZWvN9KfmqTLBshm4w7z3glXSNlGCe75Rz4 MMf1uVQGZE5n5hkqMYuEeuelDVkpfyeV9JUWkmh1Nf0XmsHJT5L+rd3qdXTFGd9z FO6jjyntzSASkzHFziDa/UbBek1fZD2FqMFZOw== -----END CERTIFICATE-----Generated at Tue Apr 29 12:12:11 2025 by rpki-client