$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e38382e302f32312d3234203d3e203338313635.roa File: 3131342e33302e38382e302f32312d3234203d3e203338313635.roa (raw, json) Hash identifier: TZbSdoDAZVW1tu8XCCeAm6P5iE1TO8fyyE2pAH6CI8g= Subject key identifier: CD:52:A3:64:FF:EB:35:FE:F9:1F:3D:63:46:59:DF:1C:00:05:C0:9B Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Certificate serial: 628BE9CFDCB2C4611FD32B50495C2E6C100018A6 Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e38382e302f32312d3234203d3e203338313635.roa Signing time: Thu 12 Jun 2025 01:00:01 +0000 ROA not before: Thu 12 Jun 2025 00:55:01 +0000 ROA not after: Thu 11 Jun 2026 01:00:01 +0000 asID: 38165 IP address blocks: 114.30.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 12:31:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:8b:e9:cf:dc:b2:c4:61:1f:d3:2b:50:49:5c:2e:6c:10:00:18:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Validity Not Before: Jun 12 00:55:01 2025 GMT Not After : Jun 11 01:00:01 2026 GMT Subject: CN=CD52A364FFEB35FEF91F3D634659DF1C0005C09B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ff:d2:7d:e5:38:36:a1:97:71:32:72:50:4b: e5:0a:27:8c:61:4d:d8:ac:2a:81:81:86:86:38:34: 7c:35:7a:d2:8a:ca:c0:97:92:2c:86:ca:b0:e1:79: 60:49:a1:16:1f:33:02:77:a9:4c:67:77:33:00:01: c4:63:33:e2:f4:20:f8:42:1f:01:27:4a:c4:f5:c9: fe:57:aa:08:12:d5:5e:a2:07:47:40:d0:6d:98:71: c0:20:35:78:f3:26:99:41:d5:88:4d:33:de:1a:83: fe:9c:de:40:ca:cd:41:65:49:1e:ee:b7:cf:e4:63: d1:a9:1b:e4:be:ad:20:21:e2:f2:5e:9f:f9:85:45: 14:c5:63:65:a0:21:fa:03:59:2f:4f:1a:7d:6c:fb: 10:7c:2b:6a:5e:90:7e:f5:d4:03:4f:f0:0d:0d:a7: f1:88:26:0c:04:97:82:89:24:c2:73:01:40:14:1e: e5:de:de:19:e2:62:b0:ac:41:b0:e7:87:cb:09:4d: 5b:34:4f:b2:05:f6:55:6a:1f:32:4d:06:33:f7:3b: e4:9a:1a:c2:ec:f2:af:21:8a:c2:55:2c:16:21:5b: 3f:ec:70:0e:f4:20:d4:c4:e4:f9:e6:4b:85:85:a6: 70:6f:65:fb:6c:3b:df:91:52:1f:ed:d5:bc:21:34: 4e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:52:A3:64:FF:EB:35:FE:F9:1F:3D:63:46:59:DF:1C:00:05:C0:9B X509v3 Authority Key Identifier: keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e38382e302f32312d3234203d3e203338313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.30.88.0/21 Signature Algorithm: sha256WithRSAEncryption 38:4c:83:83:e8:32:f4:e4:12:4f:8f:6e:dd:4e:16:df:2d:8b: 97:ce:b2:44:5e:e7:4a:5e:c7:4d:06:cb:4c:16:b1:fa:d5:42: 89:e8:f7:2e:f0:28:c2:07:a4:37:47:05:4c:12:a9:e8:32:eb: a6:00:e6:3c:73:8c:65:35:1a:8e:85:54:a0:d0:03:9e:7e:e8: 83:63:03:06:40:c0:4b:b5:e9:e5:b3:e3:5c:fe:67:30:f6:cf: 60:a5:38:26:28:24:d0:de:c2:6b:04:0f:5f:e3:7e:c4:e7:15: 1a:13:a7:f1:57:f9:cb:c3:4a:d8:36:8e:2c:5d:33:54:49:69: ac:6c:c0:13:e0:01:2d:9a:81:ad:d8:1e:32:e8:8f:f7:3c:f9: 08:5b:e2:bc:cb:b2:db:6f:cf:8e:a0:10:b6:f2:05:ca:99:69: 8f:74:69:3c:ba:d1:35:fa:ff:d1:20:a4:52:52:e9:10:fe:5d: d1:c9:f6:7f:3c:32:96:85:92:54:96:ce:a9:57:9e:85:c0:f1: 7f:c0:db:b9:93:ee:24:79:0c:db:bb:3e:63:0e:92:a2:f5:62: 04:42:af:60:e5:17:2f:94:01:e3:4f:7e:e7:83:ed:49:a3:81: af:80:e7:63:bf:2f:f3:48:0b:af:cb:2c:17:b6:05:ee:d6:70: 33:c0:65:02 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUYovpz9yyxGEf0ytQSVwubBAAGKYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5 NzlEMTA1MzAeFw0yNTA2MTIwMDU1MDFaFw0yNjA2MTEwMTAwMDFaMDMxMTAvBgNV BAMTKENENTJBMzY0RkZFQjM1RkVGOTFGM0Q2MzQ2NTlERjFDMDAwNUMwOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL/9J95Tg2oZdxMnJQS+UKJ4xh TdisKoGBhoY4NHw1etKKysCXkiyGyrDheWBJoRYfMwJ3qUxndzMAAcRjM+L0IPhC HwEnSsT1yf5XqggS1V6iB0dA0G2YccAgNXjzJplB1YhNM94ag/6c3kDKzUFlSR7u t8/kY9GpG+S+rSAh4vJen/mFRRTFY2WgIfoDWS9PGn1s+xB8K2pekH711ANP8A0N p/GIJgwEl4KJJMJzAUAUHuXe3hniYrCsQbDnh8sJTVs0T7IF9lVqHzJNBjP3O+Sa GsLs8q8hisJVLBYhWz/scA70INTE5PnmS4WFpnBvZftsO9+RUh/t1bwhNE4fAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUzVKjZP/rNf75Hz1jRlnfHAAFwJswHwYDVR0j BBgwFoAU8sIkFL8I/Aiwrr9E+vhahZedEFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzQ0OGMxMS1mOGQzLTQ1N2QtOGUyMi04NDg4N2FiMjJhMzAvMC9GMkMyMjQxNEJG MDhGQzA4QjBBRUJGNDRGQUY4NUE4NTk3OUQxMDUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5NzlE MTA1My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3NDQ4YzExLWY4ZDMtNDU3ZC04 ZTIyLTg0ODg3YWIyMmEzMC8wLzMxMzEzNDJlMzMzMDJlMzgzODJlMzAyZjMyMzEy ZDMyMzQyMDNkM2UyMDMzMzgzMTM2MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANyHlgwDQYJKoZIhvcN AQELBQADggEBADhMg4PoMvTkEk+Pbt1OFt8ti5fOskRe50pex00Gy0wWsfrVQono 9y7wKMIHpDdHBUwSqegy66YA5jxzjGU1Go6FVKDQA55+6INjAwZAwEu16eWz41z+ ZzD2z2ClOCYoJNDewmsED1/jfsTnFRoTp/FX+cvDStg2jixdM1RJaaxswBPgAS2a ga3YHjLoj/c8+Qhb4rzLsttvz46gELbyBcqZaY90aTy60TX6/9EgpFJS6RD+XdHJ 9n88MpaFklSWzqlXnoXA8X/A27mT7iR5DNu7PmMOkqL1YgRCr2DlFy+UAeNPfueD 7Umjga+A52O/L/NIC6/LLBe2Be7WcDPAZQI= -----END CERTIFICATE-----Generated at Mon Jun 16 14:01:42 2025 by rpki-client