$ rpki-client -vvf repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232362e302f32342d3234203d3e203139393035.roa File: 3132302e32392e3232362e302f32342d3234203d3e203139393035.roa (raw, json) Hash identifier: 3HF7GKrMWvA2HVJvaEA0TLWlABe/FvvXdYdd308g/bM= Subject key identifier: 92:DC:36:76:29:0F:80:85:EC:3C:82:BB:EE:E9:B0:6F:D0:E1:BF:31 Certificate issuer: /CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Certificate serial: 47D23C276FD8E4B35FC129FA1D6254E08A6BECE2 Authority key identifier: 3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject info access: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232362e302f32342d3234203d3e203139393035.roa Signing time: Wed 25 Jun 2025 07:12:01 +0000 ROA not before: Wed 25 Jun 2025 07:07:01 +0000 ROA not after: Wed 24 Jun 2026 07:12:01 +0000 asID: 19905 IP address blocks: 120.29.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:d2:3c:27:6f:d8:e4:b3:5f:c1:29:fa:1d:62:54:e0:8a:6b:ec:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Validity Not Before: Jun 25 07:07:01 2025 GMT Not After : Jun 24 07:12:01 2026 GMT Subject: CN=92DC3676290F8085EC3C82BBEEE9B06FD0E1BF31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5d:f3:3f:27:6e:7b:8c:c8:fe:f7:97:13:71: b2:b0:3e:e8:8b:7d:bf:f6:c4:cb:43:42:89:2a:00: cb:44:97:44:ff:1f:f7:79:1c:03:1f:0c:20:b8:fe: 11:ea:a2:51:4f:7a:e8:b7:10:2b:c6:b1:db:ac:46: 29:11:f1:01:ce:2e:f1:aa:f0:49:ff:bb:7b:41:19: 42:e8:ba:50:1d:0c:61:27:8f:0a:69:82:ca:44:94: 7d:c7:31:ef:79:85:ba:3a:38:77:2d:56:d1:2d:1e: b1:84:3b:da:e2:e7:0e:e1:31:82:77:3d:cc:6d:85: 65:1b:47:60:fa:f8:e0:28:b5:70:66:e0:1f:6a:ce: 89:f9:25:a1:57:24:00:cf:ed:02:44:4d:fb:2a:de: bb:53:b8:9d:c3:9d:92:07:99:72:83:13:ca:8b:ee: 8e:94:4b:33:03:1e:dc:0a:64:78:dc:d1:96:da:d2: a8:3a:ee:0d:5c:75:7c:cc:f1:dd:32:60:1f:13:80: af:5c:6b:be:44:7e:36:43:d2:d2:a4:6c:d2:06:39: 9c:40:f2:be:96:fa:cd:23:68:88:fd:62:7f:21:bc: d0:19:ad:85:5e:16:40:b8:e7:ec:13:52:a8:29:f6: a7:0b:3e:df:32:a3:1d:dd:57:24:68:1b:bc:a6:9d: e7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:DC:36:76:29:0F:80:85:EC:3C:82:BB:EE:E9:B0:6F:D0:E1:BF:31 X509v3 Authority Key Identifier: keyid:3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232362e302f32342d3234203d3e203139393035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.29.226.0/24 Signature Algorithm: sha256WithRSAEncryption 32:6b:c1:97:30:96:33:f1:ca:8e:b6:a3:59:17:c2:0f:cb:84: 4b:e4:c1:91:84:86:f2:7e:b2:2d:18:7a:79:bd:3c:f5:da:76: 32:5e:1d:e9:5d:69:cd:94:c3:2e:93:0c:b0:83:96:e1:a0:aa: d9:3f:47:86:a9:b0:26:bb:db:d1:09:0e:09:86:a3:00:72:4a: 1b:eb:c3:b2:f8:2f:32:46:08:3e:57:9a:1e:be:82:35:d5:40: 89:2c:2b:f3:a8:94:4c:96:92:a9:a8:36:11:b1:5a:d8:29:7e: 4d:e5:f6:f6:f4:dc:02:de:48:24:ff:2b:96:7a:8f:d7:61:81: 7c:cb:9e:de:8e:61:49:81:9e:50:26:c6:04:24:54:e2:96:c3: 7c:0c:c0:0b:bb:95:de:69:5e:27:e7:9d:4c:2a:b7:ac:d5:f2: 21:de:5e:80:9c:d4:59:21:cd:e5:03:79:35:77:ce:18:65:8f: fd:40:2e:80:1e:b8:43:97:58:ea:e3:7e:e7:e8:3d:09:fc:a9: 6c:32:0e:2d:9e:18:96:23:08:ec:27:67:6b:68:2f:05:71:11: 49:40:66:ed:10:f6:47:13:e7:56:56:a6:ce:07:c0:b2:3d:4b: 91:ed:42:3f:c9:06:38:e1:ec:df:43:f3:61:cb:37:31:ec:08: 25:de:77:36 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUR9I8J2/Y5LNfwSn6HWJU4Ipr7OIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdB MzVCMDI1MTAeFw0yNTA2MjUwNzA3MDFaFw0yNjA2MjQwNzEyMDFaMDMxMTAvBgNV BAMTKDkyREMzNjc2MjkwRjgwODVFQzNDODJCQkVFRTlCMDZGRDBFMUJGMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8XfM/J257jMj+95cTcbKwPuiL fb/2xMtDQokqAMtEl0T/H/d5HAMfDCC4/hHqolFPeui3ECvGsdusRikR8QHOLvGq 8En/u3tBGULoulAdDGEnjwppgspElH3HMe95hbo6OHctVtEtHrGEO9ri5w7hMYJ3 PcxthWUbR2D6+OAotXBm4B9qzon5JaFXJADP7QJETfsq3rtTuJ3DnZIHmXKDE8qL 7o6USzMDHtwKZHjc0Zba0qg67g1cdXzM8d0yYB8TgK9ca75EfjZD0tKkbNIGOZxA 8r6W+s0jaIj9Yn8hvNAZrYVeFkC45+wTUqgp9qcLPt8yox3dVyRoG7ymnecNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUktw2dikPgIXsPIK77umwb9DhvzEwHwYDVR0j BBgwFoAUPmZijAPKuMbW/N7b4HAFV6NbAlEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjFjOWNhZC1jM2I5LTQ1YTAtYmViNi1iY2U0OGUyYjIyNzIvMC8zRTY2NjI4QzAz Q0FCOEM2RDZGQ0RFREJFMDcwMDU1N0EzNUIwMjUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdBMzVC MDI1MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyMWM5Y2FkLWMzYjktNDVhMC1i ZWI2LWJjZTQ4ZTJiMjI3Mi8wLzMxMzIzMDJlMzIzOTJlMzIzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzOTM5MzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHgd4jANBgkqhkiG 9w0BAQsFAAOCAQEAMmvBlzCWM/HKjrajWRfCD8uES+TBkYSG8n6yLRh6eb089dp2 Ml4d6V1pzZTDLpMMsIOW4aCq2T9HhqmwJrvb0QkOCYajAHJKG+vDsvgvMkYIPlea Hr6CNdVAiSwr86iUTJaSqag2EbFa2Cl+TeX29vTcAt5IJP8rlnqP12GBfMue3o5h SYGeUCbGBCRU4pbDfAzAC7uV3mleJ+edTCq3rNXyId5egJzUWSHN5QN5NXfOGGWP /UAugB64Q5dY6uN+5+g9CfypbDIOLZ4YliMI7Cdna2gvBXERSUBm7RD2RxPnVlam zgfAsj1Lke1CP8kGOOHs30PzYcs3MewIJd53Ng== -----END CERTIFICATE-----Generated at Mon Jun 30 03:20:06 2025 by rpki-client