$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3136342e302f32342d3234203d3e203233363731.roa File: 3131312e39322e3136342e302f32342d3234203d3e203233363731.roa (raw, json) Hash identifier: df0Q+ODl4p6I3yq1hTHdmDcT4TE0771iCXobeoyheBo= Subject key identifier: 79:6C:4D:9D:CE:BA:93:B3:34:A2:70:64:0E:6D:06:22:91:5B:48:77 Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 4C29866C1FDD4C389165C3978FF33BDAC7261EDF Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3136342e302f32342d3234203d3e203233363731.roa Signing time: Mon 28 Apr 2025 10:02:22 +0000 ROA not before: Mon 28 Apr 2025 09:57:22 +0000 ROA not after: Mon 27 Apr 2026 10:02:22 +0000 asID: 23671 IP address blocks: 111.92.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 14:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:29:86:6c:1f:dd:4c:38:91:65:c3:97:8f:f3:3b:da:c7:26:1e:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Apr 28 09:57:22 2025 GMT Not After : Apr 27 10:02:22 2026 GMT Subject: CN=796C4D9DCEBA93B334A270640E6D0622915B4877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:27:6a:36:5d:c4:de:20:45:9c:25:4b:4a:70: cc:d1:fc:38:b1:94:3c:92:39:25:35:55:0f:52:fe: b6:ff:48:ee:0b:f0:06:4d:4c:9e:6b:6e:60:e9:78: fb:bf:1a:ab:20:02:b4:39:5d:04:7a:f8:af:ed:37: 11:bf:a0:68:b7:bb:c8:06:00:bd:36:7f:16:78:c1: b1:5a:32:08:0e:29:b4:65:9a:e1:de:0a:f1:49:c4: ca:21:66:a8:aa:54:b8:d2:92:8b:fc:4f:83:7a:b4: fc:b0:b1:47:1f:ef:b1:94:c2:14:a8:b8:06:11:45: 9f:05:d4:88:3b:02:af:8a:cf:ef:e0:5d:4d:04:4c: 76:89:96:f4:5d:0d:8d:48:48:2d:c5:c8:0a:9c:f9: d9:ee:f3:2e:e2:68:b1:2c:04:f4:6a:de:79:e8:32: ed:c5:db:d9:51:98:26:48:b1:98:00:6e:16:7f:19: 2f:59:02:6f:1d:d3:f3:aa:b7:39:71:77:d0:c3:26: bf:65:03:5d:c3:46:3f:c8:d0:e5:b3:ca:bb:11:f2: 5f:dd:4c:52:bc:90:97:37:76:7e:fc:0c:fa:7b:88: 69:cb:0c:c8:9f:82:b2:52:c2:7a:3d:5f:74:0e:39: d9:00:72:f6:86:80:54:bd:66:6c:1c:7a:71:72:56: 79:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:6C:4D:9D:CE:BA:93:B3:34:A2:70:64:0E:6D:06:22:91:5B:48:77 X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3136342e302f32342d3234203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.92.164.0/24 Signature Algorithm: sha256WithRSAEncryption b8:ea:a4:cd:1a:95:3b:f5:46:ce:0f:f9:68:d7:42:eb:df:1c: 72:6a:ed:ca:69:b0:4b:3c:06:09:83:31:ba:62:6a:93:fe:67: 32:d5:57:d1:95:f8:37:80:ec:9b:fe:2e:b6:33:dd:a2:b8:ae: 0d:7c:c5:c3:c2:2e:f0:ff:3c:da:89:89:f8:da:79:ca:c1:e9: 60:40:a5:f5:54:cd:f2:17:eb:3b:53:ee:68:ca:f2:48:55:c1: 6c:a5:27:b6:4a:34:37:d7:30:c4:72:0b:44:03:a2:69:ef:a7: b1:3e:95:1e:93:22:d9:13:30:03:5f:19:45:d4:a8:5e:69:1d: ab:98:52:4f:d2:dc:d4:2e:06:83:36:8d:64:95:94:45:ee:3a: 1f:8e:00:7f:de:f8:68:6c:87:f4:a3:4b:01:b2:f5:ae:03:7f: a3:b0:4b:96:e3:6c:ff:ce:d4:02:03:8b:80:15:fd:4a:f9:66: 32:eb:c7:ab:45:40:98:aa:e9:1c:a3:a9:a0:ab:b2:67:12:3c: b0:3d:55:81:4a:33:56:b3:55:39:29:d4:87:de:ab:16:0c:ac: df:7e:3c:ea:2f:d5:0e:b8:e1:1c:c9:2e:99:a2:2d:d1:80:3e: 82:ac:4e:9d:c4:67:f3:40:4e:7f:fb:c1:ce:25:3f:cc:eb:a6: 84:d0:92:b8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTCmGbB/dTDiRZcOXj/M72scmHt8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNTA0MjgwOTU3MjJaFw0yNjA0MjcxMDAyMjJaMDMxMTAvBgNV BAMTKDc5NkM0RDlEQ0VCQTkzQjMzNEEyNzA2NDBFNkQwNjIyOTE1QjQ4NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtJ2o2XcTeIEWcJUtKcMzR/Dix lDySOSU1VQ9S/rb/SO4L8AZNTJ5rbmDpePu/GqsgArQ5XQR6+K/tNxG/oGi3u8gG AL02fxZ4wbFaMggOKbRlmuHeCvFJxMohZqiqVLjSkov8T4N6tPywsUcf77GUwhSo uAYRRZ8F1Ig7Aq+Kz+/gXU0ETHaJlvRdDY1ISC3FyAqc+dnu8y7iaLEsBPRq3nno Mu3F29lRmCZIsZgAbhZ/GS9ZAm8d0/Oqtzlxd9DDJr9lA13DRj/I0OWzyrsR8l/d TFK8kJc3dn78DPp7iGnLDMifgrJSwno9X3QOOdkAcvaGgFS9ZmwcenFyVnmDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeWxNnc66k7M0onBkDm0GIpFbSHcwHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMxMzEzMTJlMzkzMjJlMzEzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG9cpDANBgkqhkiG 9w0BAQsFAAOCAQEAuOqkzRqVO/VGzg/5aNdC698ccmrtymmwSzwGCYMxumJqk/5n MtVX0ZX4N4Dsm/4utjPdoriuDXzFw8Iu8P882omJ+Np5ysHpYECl9VTN8hfrO1Pu aMrySFXBbKUntko0N9cwxHILRAOiae+nsT6VHpMi2RMwA18ZRdSoXmkdq5hST9Lc 1C4GgzaNZJWURe46H44Af974aGyH9KNLAbL1rgN/o7BLluNs/87UAgOLgBX9Svlm MuvHq0VAmKrpHKOpoKuyZxI8sD1VgUozVrNVOSnUh96rFgys33486i/VDrjhHMku maIt0YA+gqxOncRn80BOf/vBziU/zOumhNCSuA== -----END CERTIFICATE-----Generated at Tue Apr 29 18:45:04 2025 by rpki-client