$ rpki-client -vvf repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3131342e37392e302e302f31382d3234203d3e203138303034.roa File: 3131342e37392e302e302f31382d3234203d3e203138303034.roa (raw, json) Hash identifier: hML4QQ0UsZ/MNuzlhXm7ZxAfBsEoo8p/TG6zTdeHPYA= Subject key identifier: 87:59:7F:26:33:1A:76:6D:3C:EA:E3:29:16:22:60:F1:9F:E0:EB:B2 Certificate issuer: /CN=735D87BA86773AC70137CF53116358A1F3B19766 Certificate serial: 06F5538C3D97E65D0CC55EF2922BFE0556B28796 Authority key identifier: 73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3131342e37392e302e302f31382d3234203d3e203138303034.roa Signing time: Sun 04 May 2025 05:00:02 +0000 ROA not before: Sun 04 May 2025 04:55:02 +0000 ROA not after: Sun 03 May 2026 05:00:02 +0000 asID: 18004 IP address blocks: 114.79.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 02:45:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:f5:53:8c:3d:97:e6:5d:0c:c5:5e:f2:92:2b:fe:05:56:b2:87:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=735D87BA86773AC70137CF53116358A1F3B19766 Validity Not Before: May 4 04:55:02 2025 GMT Not After : May 3 05:00:02 2026 GMT Subject: CN=87597F26331A766D3CEAE329162260F19FE0EBB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5e:96:28:cc:d0:7d:da:6f:a7:20:a1:48:44: fe:9c:07:78:07:77:5f:3e:ea:03:a1:1d:17:ab:60: 5f:e9:fb:d7:49:9a:2e:c1:4d:3a:6a:41:36:ee:94: 12:4d:eb:9c:41:ad:36:43:17:f2:20:a5:46:0b:6e: b7:3d:16:1f:db:ba:36:3c:b6:d9:79:63:ed:ca:f5: 42:47:c2:bc:9b:f7:9a:ae:4a:3e:95:1c:49:03:58: 8a:e5:95:1a:25:ba:91:45:e8:5e:fb:79:3a:8b:30: 7b:b2:be:2e:90:7b:d5:06:df:f6:f8:4d:d5:3f:5b: 48:44:6e:c2:25:27:fc:46:20:77:e9:99:d3:29:c5: bc:ad:37:aa:91:d7:60:a3:95:cb:b6:ee:04:4f:ef: 77:f0:9d:64:e8:0b:f7:34:4f:34:18:bd:92:a4:a2: ca:36:aa:0e:52:e6:70:61:0e:b2:b8:a5:f2:98:da: dc:4c:34:68:50:8d:64:d8:2f:17:85:81:37:ab:b5: b7:46:ec:8c:0e:d6:2d:58:0f:60:9f:ce:a3:22:73: 4e:1c:7a:5e:e2:f4:15:2a:18:14:37:96:ce:4a:06: 53:ae:af:8c:ff:1e:38:34:2f:9f:ae:52:6b:bc:f4: 04:38:af:b1:0d:ed:c0:69:ce:68:db:fb:84:48:12: 3b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:59:7F:26:33:1A:76:6D:3C:EA:E3:29:16:22:60:F1:9F:E0:EB:B2 X509v3 Authority Key Identifier: keyid:73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3131342e37392e302e302f31382d3234203d3e203138303034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.79.0.0/18 Signature Algorithm: sha256WithRSAEncryption 3d:19:03:21:7c:d6:be:0d:f7:2c:36:07:0a:50:9a:f2:28:4a: 74:75:f0:9b:7d:13:23:bb:1d:ac:dc:7d:be:75:fa:e0:5d:55: fb:46:ed:bc:3a:e1:83:bd:8b:5b:c2:f6:c2:b2:6a:86:50:db: 7a:20:38:8e:e0:c3:32:a2:8c:d2:99:fd:7d:be:a0:50:a8:93: b8:3d:7b:aa:99:30:70:73:df:09:5c:69:28:55:27:33:b5:e4: 47:94:a8:71:61:0f:7c:4e:22:eb:cd:e2:01:28:07:d0:81:a9: 55:1b:0d:81:f6:6d:c8:07:10:1f:54:63:78:01:b8:3e:3a:9e: dc:34:85:60:af:22:46:86:e9:e0:cd:9b:29:d0:dd:57:85:14: 76:11:8e:de:e1:f5:74:7a:a3:59:55:b9:e0:04:4a:c6:bc:d5: b0:27:1c:60:f5:82:32:3f:f2:e1:ea:29:51:9f:57:30:da:f4: 13:93:85:9e:af:90:0f:58:1b:fc:6e:32:c4:76:91:8a:65:38: b7:77:01:25:56:b7:f8:fe:05:0b:75:3b:fc:ae:4a:40:ab:ff: 6a:d4:49:03:76:b4:49:24:c3:89:2f:e2:8a:a5:a1:07:fd:7f: 98:9e:f7:33:82:02:13:92:04:d0:43:0a:07:f4:af:14:ff:8c: b5:b0:8a:eb -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUBvVTjD2X5l0MxV7ykiv+BVayh5YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFG M0IxOTc2NjAeFw0yNTA1MDQwNDU1MDJaFw0yNjA1MDMwNTAwMDJaMDMxMTAvBgNV BAMTKDg3NTk3RjI2MzMxQTc2NkQzQ0VBRTMyOTE2MjI2MEYxOUZFMEVCQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNXpYozNB92m+nIKFIRP6cB3gH d18+6gOhHRerYF/p+9dJmi7BTTpqQTbulBJN65xBrTZDF/IgpUYLbrc9Fh/bujY8 ttl5Y+3K9UJHwryb95quSj6VHEkDWIrllRolupFF6F77eTqLMHuyvi6Qe9UG3/b4 TdU/W0hEbsIlJ/xGIHfpmdMpxbytN6qR12Cjlcu27gRP73fwnWToC/c0TzQYvZKk oso2qg5S5nBhDrK4pfKY2txMNGhQjWTYLxeFgTertbdG7IwO1i1YD2CfzqMic04c el7i9BUqGBQ3ls5KBlOur4z/Hjg0L5+uUmu89AQ4r7EN7cBpzmjb+4RIEjt/AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUh1l/JjMadm086uMpFiJg8Z/g67IwHwYDVR0j BBgwFoAUc12HuoZ3OscBN89TEWNYofOxl2YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjVkMzY0YS1kYTBiLTQ1NDAtOTM0OS01OTMwYmQ3MjVjZTMvMC83MzVEODdCQTg2 NzczQUM3MDEzN0NGNTMxMTYzNThBMUYzQjE5NzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFGM0Ix OTc2Ni5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGY1ZDM2NGEtZGEwYi00NTQwLTkz NDktNTkzMGJkNzI1Y2UzLzAvMzEzMTM0MmUzNzM5MmUzMDJlMzAyZjMxMzgyZDMy MzQyMDNkM2UyMDMxMzgzMDMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZyTwAwDQYJKoZIhvcNAQEL BQADggEBAD0ZAyF81r4N9yw2BwpQmvIoSnR18Jt9EyO7Hazcfb51+uBdVftG7bw6 4YO9i1vC9sKyaoZQ23ogOI7gwzKijNKZ/X2+oFCok7g9e6qZMHBz3wlcaShVJzO1 5EeUqHFhD3xOIuvN4gEoB9CBqVUbDYH2bcgHEB9UY3gBuD46ntw0hWCvIkaG6eDN mynQ3VeFFHYRjt7h9XR6o1lVueAESsa81bAnHGD1gjI/8uHqKVGfVzDa9BOThZ6v kA9YG/xuMsR2kYplOLd3ASVWt/j+BQt1O/yuSkCr/2rUSQN2tEkkw4kv4oqloQf9 f5ie9zOCAhOSBNBDCgf0rxT/jLWwius= -----END CERTIFICATE-----Generated at Sun May 11 23:00:24 2025 by rpki-client