$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3137342e302f32342d3234203d3e203233363731.roa File: 3131312e39322e3137342e302f32342d3234203d3e203233363731.roa (raw, json) Hash identifier: iSE7SlBpYXDTIvrotxnrP3PFTmmB98DokgHfrrkNkRo= Subject key identifier: A0:87:25:D9:EE:AC:F1:8F:0E:58:52:88:24:FD:FD:D6:99:29:E7:7C Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 5924D80ACA12C837F618C428422EFFFE821565B4 Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3137342e302f32342d3234203d3e203233363731.roa Signing time: Tue 29 Apr 2025 03:00:00 +0000 ROA not before: Tue 29 Apr 2025 02:55:00 +0000 ROA not after: Tue 28 Apr 2026 03:00:00 +0000 asID: 23671 IP address blocks: 111.92.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 14:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:24:d8:0a:ca:12:c8:37:f6:18:c4:28:42:2e:ff:fe:82:15:65:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Apr 29 02:55:00 2025 GMT Not After : Apr 28 03:00:00 2026 GMT Subject: CN=A08725D9EEACF18F0E58528824FDFDD69929E77C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:36:bf:a2:6e:96:00:33:3a:69:ed:db:a3:28: 4b:5e:da:4c:f4:75:0e:d8:c2:ed:44:d1:88:d5:34: db:2e:d1:ef:15:9b:4b:a7:e8:d4:c4:ce:75:48:78: 5d:92:ef:f7:ca:f8:e9:65:24:ed:18:8e:50:a0:29: fb:59:67:c3:41:52:68:72:84:59:09:07:ea:9a:49: 52:28:f0:c2:e6:ff:37:1d:b0:0a:14:9d:6f:1c:ac: fd:99:d2:9a:f9:64:e9:d9:5c:54:95:2d:41:24:75: f2:72:ac:32:09:cf:6e:1f:fd:c5:d8:e0:dc:b0:93: d0:ad:2a:de:d4:71:bc:a7:20:52:88:f3:18:ae:54: de:f9:51:5a:12:19:75:fb:2e:86:05:47:f3:f6:bc: b0:1e:5a:09:4d:bd:8e:0c:bf:af:f6:a3:0b:0f:78: b8:d5:75:57:3c:82:28:a1:ff:0f:b1:75:54:39:bd: 16:70:1d:c8:22:7f:91:22:d8:4f:23:49:d7:3d:b9: 14:00:d7:e0:82:05:04:bc:9f:4b:02:28:73:89:90: e0:0a:33:ae:e8:4d:38:50:ad:44:a1:ef:fd:a7:e0: 02:fc:81:50:95:4d:63:57:30:dc:6b:18:e0:d3:ac: 22:72:26:55:d9:1a:ef:b9:6a:0d:25:8e:ee:fd:a3: 55:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:87:25:D9:EE:AC:F1:8F:0E:58:52:88:24:FD:FD:D6:99:29:E7:7C X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3137342e302f32342d3234203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.92.174.0/24 Signature Algorithm: sha256WithRSAEncryption 87:8f:cc:08:2c:3b:26:cb:cc:bd:08:c3:c2:8e:88:a9:d1:08: 0b:74:da:eb:2b:00:4c:5e:7c:dc:93:fc:44:ff:36:97:a4:99: f5:3d:6a:fd:b8:58:a2:92:44:01:0e:23:e1:20:41:75:ed:ed: d2:b2:c7:f3:1a:8e:9a:24:2b:97:06:4f:73:65:9c:c0:6e:c1: d6:3f:c3:5a:87:6f:87:61:4d:5c:ec:1b:27:33:b0:a0:d2:a6: 22:92:44:eb:18:2d:92:43:a1:d1:bf:35:23:d1:68:f2:bf:05: 42:49:db:e5:ce:93:7f:8d:47:8d:d6:ab:ad:c1:33:80:89:1c: c4:e7:d2:a8:bb:94:10:52:c9:e3:1d:c2:26:66:76:0d:f0:ca: d2:8f:2b:0d:d5:42:f4:a7:37:f8:d3:71:5f:8f:14:31:46:e0: 6c:ff:92:dd:94:95:ce:07:f1:3a:08:f0:27:ba:6f:c9:58:ee: 64:e9:fe:7e:47:72:ce:93:7c:e6:10:d0:ad:9a:07:7f:5f:19: 60:b6:67:49:63:1f:ce:95:88:bc:ad:7a:57:99:c6:e4:fb:fd: 19:f1:46:b8:66:4e:74:9b:c5:88:30:86:86:e7:8d:f8:d0:23: d5:a8:fe:37:61:1c:ef:4d:3c:c1:d9:3d:24:14:aa:10:8c:6c: 8b:12:e4:8c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWSTYCsoSyDf2GMQoQi7//oIVZbQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNTA0MjkwMjU1MDBaFw0yNjA0MjgwMzAwMDBaMDMxMTAvBgNV BAMTKEEwODcyNUQ5RUVBQ0YxOEYwRTU4NTI4ODI0RkRGREQ2OTkyOUU3N0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtNr+ibpYAMzpp7dujKEte2kz0 dQ7Ywu1E0YjVNNsu0e8Vm0un6NTEznVIeF2S7/fK+OllJO0YjlCgKftZZ8NBUmhy hFkJB+qaSVIo8MLm/zcdsAoUnW8crP2Z0pr5ZOnZXFSVLUEkdfJyrDIJz24f/cXY 4Nywk9CtKt7UcbynIFKI8xiuVN75UVoSGXX7LoYFR/P2vLAeWglNvY4Mv6/2owsP eLjVdVc8giih/w+xdVQ5vRZwHcgif5Ei2E8jSdc9uRQA1+CCBQS8n0sCKHOJkOAK M67oTThQrUSh7/2n4AL8gVCVTWNXMNxrGODTrCJyJlXZGu+5ag0lju79o1UNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUoIcl2e6s8Y8OWFKIJP391pkp53wwHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMxMzEzMTJlMzkzMjJlMzEzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG9crjANBgkqhkiG 9w0BAQsFAAOCAQEAh4/MCCw7JsvMvQjDwo6IqdEIC3Ta6ysATF583JP8RP82l6SZ 9T1q/bhYopJEAQ4j4SBBde3t0rLH8xqOmiQrlwZPc2WcwG7B1j/DWodvh2FNXOwb JzOwoNKmIpJE6xgtkkOh0b81I9Fo8r8FQknb5c6Tf41HjdarrcEzgIkcxOfSqLuU EFLJ4x3CJmZ2DfDK0o8rDdVC9Kc3+NNxX48UMUbgbP+S3ZSVzgfxOgjwJ7pvyVju ZOn+fkdyzpN85hDQrZoHf18ZYLZnSWMfzpWIvK16V5nG5Pv9GfFGuGZOdJvFiDCG hueN+NAj1aj+N2Ec7008wdk9JBSqEIxsixLkjA== -----END CERTIFICATE-----Generated at Tue Apr 29 18:01:37 2025 by rpki-client