$ rpki-client -vvf repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3131352e3137382e3139322e302f31392d3234203d3e203138303034.roa File: 3131352e3137382e3139322e302f31392d3234203d3e203138303034.roa (raw, json) Hash identifier: bNf7w52cmLw3GYp+mMaw3papmg1ZcgmFTgd1v4VSUIU= Subject key identifier: 9A:D2:9E:A5:0F:F3:33:6E:4E:7F:29:75:6F:64:AD:BA:F7:A9:62:75 Certificate issuer: /CN=735D87BA86773AC70137CF53116358A1F3B19766 Certificate serial: 44F00F8ECD4536E4AD519C6AFD43FA0D9C830CED Authority key identifier: 73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3131352e3137382e3139322e302f31392d3234203d3e203138303034.roa Signing time: Sun 04 May 2025 03:00:01 +0000 ROA not before: Sun 04 May 2025 02:55:01 +0000 ROA not after: Sun 03 May 2026 03:00:01 +0000 asID: 18004 IP address blocks: 115.178.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 02:45:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:f0:0f:8e:cd:45:36:e4:ad:51:9c:6a:fd:43:fa:0d:9c:83:0c:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=735D87BA86773AC70137CF53116358A1F3B19766 Validity Not Before: May 4 02:55:01 2025 GMT Not After : May 3 03:00:01 2026 GMT Subject: CN=9AD29EA50FF3336E4E7F29756F64ADBAF7A96275 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c8:a2:68:9f:22:fe:01:93:d2:4c:f1:6e:98: 92:16:89:93:74:05:18:22:02:41:8f:0c:f1:80:44: c0:fd:b9:6c:9e:dd:10:5f:42:f2:03:04:c5:47:e0: 65:a1:58:c4:4e:8e:33:ff:a1:c3:38:1d:3c:db:20: f2:0b:48:af:5d:41:21:36:27:3e:f0:23:b3:39:84: fb:db:86:ba:69:ef:b5:43:29:c3:a9:3c:7f:36:a7: 8d:7b:b5:cd:29:0c:92:ba:3b:05:37:ad:74:73:06: 8e:29:31:0c:32:53:9b:6c:10:fa:ac:a4:2f:59:db: 7f:61:55:d6:5c:26:3e:de:ba:39:1a:c9:6a:85:0e: 81:29:e9:16:9d:c3:1b:54:83:ff:5d:8c:d6:c9:66: 6c:e0:00:9d:43:c0:e4:b0:1f:16:3d:2a:37:0a:4d: b8:61:a4:8c:54:29:78:30:ce:4b:de:cd:a2:aa:3d: 05:db:e2:5f:b3:28:ac:36:53:ad:40:69:7e:58:5e: 51:49:1b:3d:48:8f:85:c1:f9:57:16:3f:08:94:4b: 21:3a:f6:54:89:bb:06:0a:c7:5a:1f:f6:50:14:86: da:bd:04:d4:7d:7e:0a:ed:46:b2:d4:36:8e:1f:99: fa:28:15:c1:a7:c0:9d:d5:58:57:4a:7c:5b:ae:b0: af:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D2:9E:A5:0F:F3:33:6E:4E:7F:29:75:6F:64:AD:BA:F7:A9:62:75 X509v3 Authority Key Identifier: keyid:73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3131352e3137382e3139322e302f31392d3234203d3e203138303034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.192.0/19 Signature Algorithm: sha256WithRSAEncryption 37:73:02:85:11:11:63:f5:d8:7b:6b:01:ef:6e:64:6e:d1:4c: c9:82:19:4d:9a:00:b0:07:ce:5e:48:a9:92:fb:bb:6f:3b:e5: ec:4e:52:ee:d0:a8:de:13:ff:98:da:33:2c:70:35:e8:ee:75: 3b:76:cc:e2:53:d3:7a:4a:d0:1b:d5:94:df:e2:7a:21:39:29: 9b:8f:e6:74:a9:ef:3b:0d:0d:fa:0a:68:d3:c7:91:26:14:84: cd:3f:cf:6f:ce:5a:8e:a0:72:be:54:f6:bb:0d:25:7a:85:7c: 94:b9:b4:9a:07:8a:02:57:1a:c2:6c:e1:3f:43:45:28:de:eb: 2c:11:74:6a:3a:38:4c:8f:70:4c:c5:26:57:30:d5:2c:90:15: 21:39:9b:20:c4:b9:26:16:4d:ce:b4:99:66:ca:17:24:5f:cb: c0:64:35:82:c5:db:ca:c7:e4:0c:94:56:df:93:8c:19:b8:32: ff:02:a6:07:65:1e:c1:ab:2d:40:39:ef:e6:c6:93:cb:93:e8: fd:e0:6e:fa:91:79:fe:fe:93:5f:9c:49:50:8b:38:b7:84:90: 34:3f:5e:06:28:5d:81:18:f6:1a:27:cc:65:4d:86:a0:21:58: 33:66:1f:75:05:01:ef:40:fb:19:d9:fc:ca:1d:35:48:ed:30: fb:72:a4:c4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURPAPjs1FNuStUZxq/UP6DZyDDO0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFG M0IxOTc2NjAeFw0yNTA1MDQwMjU1MDFaFw0yNjA1MDMwMzAwMDFaMDMxMTAvBgNV BAMTKDlBRDI5RUE1MEZGMzMzNkU0RTdGMjk3NTZGNjRBREJBRjdBOTYyNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnyKJonyL+AZPSTPFumJIWiZN0 BRgiAkGPDPGARMD9uWye3RBfQvIDBMVH4GWhWMROjjP/ocM4HTzbIPILSK9dQSE2 Jz7wI7M5hPvbhrpp77VDKcOpPH82p417tc0pDJK6OwU3rXRzBo4pMQwyU5tsEPqs pC9Z239hVdZcJj7eujkayWqFDoEp6RadwxtUg/9djNbJZmzgAJ1DwOSwHxY9KjcK TbhhpIxUKXgwzkvezaKqPQXb4l+zKKw2U61AaX5YXlFJGz1Ij4XB+VcWPwiUSyE6 9lSJuwYKx1of9lAUhtq9BNR9fgrtRrLUNo4fmfooFcGnwJ3VWFdKfFuusK/BAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmtKepQ/zM25Ofyl1b2StuvepYnUwHwYDVR0j BBgwFoAUc12HuoZ3OscBN89TEWNYofOxl2YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjVkMzY0YS1kYTBiLTQ1NDAtOTM0OS01OTMwYmQ3MjVjZTMvMC83MzVEODdCQTg2 NzczQUM3MDEzN0NGNTMxMTYzNThBMUYzQjE5NzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFGM0Ix OTc2Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNWQzNjRhLWRhMGItNDU0MC05 MzQ5LTU5MzBiZDcyNWNlMy8wLzMxMzEzNTJlMzEzNzM4MmUzMTM5MzIyZTMwMmYz MTM5MmQzMjM0MjAzZDNlMjAzMTM4MzAzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFc7LAMA0GCSqG SIb3DQEBCwUAA4IBAQA3cwKFERFj9dh7awHvbmRu0UzJghlNmgCwB85eSKmS+7tv O+XsTlLu0KjeE/+Y2jMscDXo7nU7dsziU9N6StAb1ZTf4nohOSmbj+Z0qe87DQ36 CmjTx5EmFITNP89vzlqOoHK+VPa7DSV6hXyUubSaB4oCVxrCbOE/Q0Uo3ussEXRq OjhMj3BMxSZXMNUskBUhOZsgxLkmFk3OtJlmyhckX8vAZDWCxdvKx+QMlFbfk4wZ uDL/AqYHZR7Bqy1AOe/mxpPLk+j94G76kXn+/pNfnElQizi3hJA0P14GKF2BGPYa J8xlTYagIVgzZh91BQHvQPsZ2fzKHTVI7TD7cqTE -----END CERTIFICATE-----Generated at Sun May 11 16:43:11 2025 by rpki-client