$ rpki-client -vvf repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3131372e3130342e3139322e302f31392d3234203d3e203233363636.roa File: 3131372e3130342e3139322e302f31392d3234203d3e203233363636.roa (raw, json) Hash identifier: zCm8uejNjkpY+DjdGXgrEnekcPvtN86UHanFShqlM6g= Subject key identifier: 33:BF:ED:35:24:A0:D2:E4:A5:78:0F:B8:CF:E4:3E:15:79:76:9E:CA Certificate issuer: /CN=0BB3D1874063172B5374865233070332233FB7B3 Certificate serial: 1CFED7E14EAF5DC08BF760F6AD1F3B3FB09EE38E Authority key identifier: 0B:B3:D1:87:40:63:17:2B:53:74:86:52:33:07:03:32:23:3F:B7:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB3D1874063172B5374865233070332233FB7B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3131372e3130342e3139322e302f31392d3234203d3e203233363636.roa Signing time: Mon 02 Jun 2025 02:04:34 +0000 ROA not before: Mon 02 Jun 2025 01:59:34 +0000 ROA not after: Mon 01 Jun 2026 02:04:34 +0000 asID: 23666 IP address blocks: 117.104.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/0BB3D1874063172B5374865233070332233FB7B3.crl rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/0BB3D1874063172B5374865233070332233FB7B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB3D1874063172B5374865233070332233FB7B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 08:11:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:fe:d7:e1:4e:af:5d:c0:8b:f7:60:f6:ad:1f:3b:3f:b0:9e:e3:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB3D1874063172B5374865233070332233FB7B3 Validity Not Before: Jun 2 01:59:34 2025 GMT Not After : Jun 1 02:04:34 2026 GMT Subject: CN=33BFED3524A0D2E4A5780FB8CFE43E1579769ECA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d8:79:cf:fb:67:d2:2e:8d:1e:28:98:ed:78: 94:52:33:07:45:87:8c:46:e2:09:2e:df:5d:54:ac: c6:b8:07:6c:56:7d:7e:bb:45:5e:77:a0:a9:6b:48: 26:ee:18:3e:c0:b2:ac:64:6b:d4:48:fa:b2:28:bf: c0:f4:bd:8e:da:17:00:a5:67:d1:1c:2c:d3:77:12: b4:01:24:96:0e:c6:56:c5:ed:35:8b:7f:55:a9:f1: 3e:44:4a:c1:e8:7b:d8:18:2b:13:af:d9:18:f1:b8: 19:0a:e8:e1:9a:f5:ac:be:d5:e8:99:47:fb:c1:d6: f8:07:0e:7a:aa:7b:04:91:ae:ac:4c:a2:4d:67:07: eb:aa:6c:fd:6c:6b:b9:14:64:24:b7:fd:13:95:7c: 67:41:cf:9f:cf:79:42:d1:f2:70:f1:c1:80:ca:81: 5c:32:bf:b3:c8:46:0c:6d:40:a0:55:74:d7:df:c6: 35:43:27:3c:1d:ff:d1:03:87:43:87:4c:08:ee:55: dc:e2:71:f4:d4:48:9f:73:3a:57:f0:cb:4a:07:92: 21:1f:37:89:d4:e6:ac:f9:ad:78:30:db:03:e2:3b: a9:aa:5d:cd:25:1a:2c:06:ea:28:d7:8d:76:a6:a1: 86:c1:c3:54:bd:df:a2:6f:75:4f:29:9c:a9:e6:cd: b4:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:BF:ED:35:24:A0:D2:E4:A5:78:0F:B8:CF:E4:3E:15:79:76:9E:CA X509v3 Authority Key Identifier: keyid:0B:B3:D1:87:40:63:17:2B:53:74:86:52:33:07:03:32:23:3F:B7:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/0BB3D1874063172B5374865233070332233FB7B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB3D1874063172B5374865233070332233FB7B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3131372e3130342e3139322e302f31392d3234203d3e203233363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.104.192.0/19 Signature Algorithm: sha256WithRSAEncryption 52:81:db:d7:70:d4:1d:69:a3:67:3c:4b:e5:36:5d:9d:cf:75: 38:80:1e:2a:d3:cc:db:ba:8d:a2:c2:d7:88:01:1e:76:15:de: f6:a3:40:50:75:37:5b:42:97:d7:e5:50:7b:e7:e9:f8:e6:60: 9d:eb:45:20:a5:61:53:fc:25:a9:6d:64:26:66:a3:e0:d1:ea: 64:03:7c:92:09:04:8f:85:9f:b2:65:4f:ba:eb:fd:51:78:e0: 7d:a5:a9:b8:df:cb:6c:fd:2e:76:b1:d6:00:3f:0c:23:3c:14: 26:d0:84:97:3a:4e:6b:0a:e0:8c:08:70:71:2c:0d:97:94:26: 83:6f:5c:f5:b0:46:08:8e:3c:5d:88:42:df:2c:71:d6:af:7f: 78:52:2d:b6:ac:10:59:28:fb:4d:30:7b:32:cc:ee:cd:b6:93: 6a:78:d7:73:8f:ce:d8:71:7f:de:32:a9:5b:58:0d:44:6c:b8: 60:ee:05:30:39:39:56:d0:63:f2:37:69:50:13:13:cf:ad:64: a3:35:73:d2:eb:06:65:4a:2b:76:d5:ed:cb:d2:24:6e:80:5f: 51:25:1b:5f:17:5a:c4:57:22:f7:f1:03:59:9d:57:00:48:72: 6a:f9:84:8d:9c:b2:00:cb:58:f2:17:6e:6e:1d:03:9d:5a:0a: 2c:8b:ad:6b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHP7X4U6vXcCL92D2rR87P7Ce444wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCM0QxODc0MDYzMTcyQjUzNzQ4NjUyMzMwNzAzMzIy MzNGQjdCMzAeFw0yNTA2MDIwMTU5MzRaFw0yNjA2MDEwMjA0MzRaMDMxMTAvBgNV BAMTKDMzQkZFRDM1MjRBMEQyRTRBNTc4MEZCOENGRTQzRTE1Nzk3NjlFQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR2HnP+2fSLo0eKJjteJRSMwdF h4xG4gku311UrMa4B2xWfX67RV53oKlrSCbuGD7Asqxka9RI+rIov8D0vY7aFwCl Z9EcLNN3ErQBJJYOxlbF7TWLf1Wp8T5ESsHoe9gYKxOv2RjxuBkK6OGa9ay+1eiZ R/vB1vgHDnqqewSRrqxMok1nB+uqbP1sa7kUZCS3/ROVfGdBz5/PeULR8nDxwYDK gVwyv7PIRgxtQKBVdNffxjVDJzwd/9EDh0OHTAjuVdzicfTUSJ9zOlfwy0oHkiEf N4nU5qz5rXgw2wPiO6mqXc0lGiwG6ijXjXamoYbBw1S936JvdU8pnKnmzbQNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUM7/tNSSg0uSleA+4z+Q+FXl2nsowHwYDVR0j BBgwFoAUC7PRh0BjFytTdIZSMwcDMiM/t7MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTkwOGI4My03ZjQ0LTQ2ZTAtODUzNS02ZmI4NGI1OWQ1OGEvMC8wQkIzRDE4NzQw NjMxNzJCNTM3NDg2NTIzMzA3MDMzMjIzM0ZCN0IzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCM0QxODc0MDYzMTcyQjUzNzQ4NjUyMzMwNzAzMzIyMzNG QjdCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1OTA4YjgzLTdmNDQtNDZlMC04 NTM1LTZmYjg0YjU5ZDU4YS8wLzMxMzEzNzJlMzEzMDM0MmUzMTM5MzIyZTMwMmYz MTM5MmQzMjM0MjAzZDNlMjAzMjMzMzYzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFdWjAMA0GCSqG SIb3DQEBCwUAA4IBAQBSgdvXcNQdaaNnPEvlNl2dz3U4gB4q08zbuo2iwteIAR52 Fd72o0BQdTdbQpfX5VB75+n45mCd60UgpWFT/CWpbWQmZqPg0epkA3ySCQSPhZ+y ZU+66/1ReOB9pam438ts/S52sdYAPwwjPBQm0ISXOk5rCuCMCHBxLA2XlCaDb1z1 sEYIjjxdiELfLHHWr394Ui22rBBZKPtNMHsyzO7NtpNqeNdzj87YcX/eMqlbWA1E bLhg7gUwOTlW0GPyN2lQExPPrWSjNXPS6wZlSit21e3L0iRugF9RJRtfF1rEVyL3 8QNZnVcASHJq+YSNnLIAy1jyF25uHQOdWgosi61r -----END CERTIFICATE-----Generated at Mon Jun 16 02:39:02 2025 by rpki-client