$ rpki-client -vvf repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3131352e3137382e3232342e302f31392d3234203d3e203138303034.roa File: 3131352e3137382e3232342e302f31392d3234203d3e203138303034.roa (raw, json) Hash identifier: cuW15q9SnbE27U2Jg8nnNYvxOwHbFyEv1g42R3Sx4E0= Subject key identifier: F1:FF:F8:70:8A:FF:F4:81:13:09:73:62:92:74:D0:1A:D1:6A:78:90 Certificate issuer: /CN=735D87BA86773AC70137CF53116358A1F3B19766 Certificate serial: 3D89E9DAD124C74B3D87A5999F2C36CEF84514FE Authority key identifier: 73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3131352e3137382e3232342e302f31392d3234203d3e203138303034.roa Signing time: Sun 04 May 2025 04:00:02 +0000 ROA not before: Sun 04 May 2025 03:55:02 +0000 ROA not after: Sun 03 May 2026 04:00:02 +0000 asID: 18004 IP address blocks: 115.178.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 02:45:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:89:e9:da:d1:24:c7:4b:3d:87:a5:99:9f:2c:36:ce:f8:45:14:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=735D87BA86773AC70137CF53116358A1F3B19766 Validity Not Before: May 4 03:55:02 2025 GMT Not After : May 3 04:00:02 2026 GMT Subject: CN=F1FFF8708AFFF481130973629274D01AD16A7890 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:16:2b:b2:f2:37:a9:81:84:89:de:60:d8:70: 38:9b:04:0d:bb:2c:eb:3e:3b:18:e8:e3:4d:10:62: 01:28:2c:f3:0f:46:88:3e:72:9d:f7:25:61:6b:f3: f4:8f:93:5e:eb:ef:b8:63:24:c0:a7:0a:5e:37:95: 6f:56:c5:c6:19:db:2a:72:3d:f7:89:2a:48:6a:a8: b3:89:4b:1e:90:d3:ba:37:58:4a:3b:7d:d5:94:21: b1:b3:4b:13:c9:06:61:aa:c5:bb:b8:3a:8b:ac:25: 60:53:68:35:59:62:cc:49:43:a7:67:62:38:e7:cf: 71:05:00:ef:43:85:8d:7c:a6:26:21:c7:2d:ce:3c: 76:36:6c:63:d4:0f:d0:71:95:65:cf:b5:84:a3:ab: 1b:0f:c8:b5:1c:cf:eb:55:56:d8:44:7f:6d:8e:ca: 22:48:b9:98:3e:75:55:33:3d:be:06:b0:5a:93:fc: 1e:c9:cb:d4:86:36:fa:91:39:7d:68:67:99:4a:3a: 26:94:b1:90:39:d9:59:de:9f:bd:da:1c:c8:a7:07: 01:a2:a6:a7:8a:33:2c:ed:83:d8:9c:18:c4:49:e3: 1a:e4:e0:b9:09:f0:af:67:13:ee:42:3e:fa:ef:66: cc:8e:3f:59:31:20:68:9b:1d:07:4f:c6:10:af:53: c8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:FF:F8:70:8A:FF:F4:81:13:09:73:62:92:74:D0:1A:D1:6A:78:90 X509v3 Authority Key Identifier: keyid:73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3131352e3137382e3232342e302f31392d3234203d3e203138303034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.224.0/19 Signature Algorithm: sha256WithRSAEncryption bb:e8:19:3f:ff:f5:0f:fb:d6:6c:80:39:f8:03:05:a0:2a:fa: 90:fc:ab:2c:e9:cc:cd:6d:cb:b5:d4:e0:cd:3d:a7:f3:4f:4e: f1:00:02:09:a0:18:88:39:49:9e:a6:b5:07:e0:69:ba:90:ad: 09:1b:97:4a:8f:0b:cb:90:f1:36:a5:2c:8b:a4:fb:b6:12:ce: 08:97:c8:21:ec:4a:cf:51:f9:fc:f8:22:3e:8d:c9:95:1f:4b: e5:4e:65:13:03:aa:b9:b3:bf:db:f4:d2:c5:6d:dd:2a:84:5e: 2b:03:c2:be:c4:7d:99:4a:52:a0:c8:2e:81:69:8e:72:c0:82: fc:b2:0b:95:c9:e2:4f:68:c4:57:4e:f6:15:86:f0:f1:fb:87: cd:0f:58:d6:08:e4:b2:84:ba:ef:2e:5b:3b:17:96:39:8a:72: 4e:00:93:2b:54:1b:56:b4:2d:7c:56:32:f7:26:ac:33:e3:5b: 99:1e:da:fb:52:20:db:24:1d:7f:aa:8e:bb:12:7a:18:fc:69: e5:bd:ef:89:73:f9:86:26:5c:31:db:f0:08:1b:5f:73:e4:f0: 14:de:22:db:da:4d:4f:3f:be:7d:06:fb:c8:d8:16:fc:4c:ae: be:0f:31:16:48:ef:dd:9d:b2:4e:12:08:0d:5b:f1:a2:e5:6f: 2e:7d:49:ad -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPYnp2tEkx0s9h6WZnyw2zvhFFP4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFG M0IxOTc2NjAeFw0yNTA1MDQwMzU1MDJaFw0yNjA1MDMwNDAwMDJaMDMxMTAvBgNV BAMTKEYxRkZGODcwOEFGRkY0ODExMzA5NzM2MjkyNzREMDFBRDE2QTc4OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAFiuy8jepgYSJ3mDYcDibBA27 LOs+Oxjo400QYgEoLPMPRog+cp33JWFr8/SPk17r77hjJMCnCl43lW9WxcYZ2ypy PfeJKkhqqLOJSx6Q07o3WEo7fdWUIbGzSxPJBmGqxbu4OousJWBTaDVZYsxJQ6dn Yjjnz3EFAO9DhY18piYhxy3OPHY2bGPUD9BxlWXPtYSjqxsPyLUcz+tVVthEf22O yiJIuZg+dVUzPb4GsFqT/B7Jy9SGNvqROX1oZ5lKOiaUsZA52Vnen73aHMinBwGi pqeKMyztg9icGMRJ4xrk4LkJ8K9nE+5CPvrvZsyOP1kxIGibHQdPxhCvU8izAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8f/4cIr/9IETCXNiknTQGtFqeJAwHwYDVR0j BBgwFoAUc12HuoZ3OscBN89TEWNYofOxl2YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjVkMzY0YS1kYTBiLTQ1NDAtOTM0OS01OTMwYmQ3MjVjZTMvMC83MzVEODdCQTg2 NzczQUM3MDEzN0NGNTMxMTYzNThBMUYzQjE5NzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFGM0Ix OTc2Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNWQzNjRhLWRhMGItNDU0MC05 MzQ5LTU5MzBiZDcyNWNlMy8wLzMxMzEzNTJlMzEzNzM4MmUzMjMyMzQyZTMwMmYz MTM5MmQzMjM0MjAzZDNlMjAzMTM4MzAzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFc7LgMA0GCSqG SIb3DQEBCwUAA4IBAQC76Bk///UP+9ZsgDn4AwWgKvqQ/Kss6czNbcu11ODNPafz T07xAAIJoBiIOUmeprUH4Gm6kK0JG5dKjwvLkPE2pSyLpPu2Es4Il8gh7ErPUfn8 +CI+jcmVH0vlTmUTA6q5s7/b9NLFbd0qhF4rA8K+xH2ZSlKgyC6BaY5ywIL8sguV yeJPaMRXTvYVhvDx+4fND1jWCOSyhLrvLls7F5Y5inJOAJMrVBtWtC18VjL3Jqwz 41uZHtr7UiDbJB1/qo67EnoY/Gnlve+Jc/mGJlwx2/AIG19z5PAU3iLb2k1PP759 BvvI2Bb8TK6+DzEWSO/dnbJOEggNW/Gi5W8ufUmt -----END CERTIFICATE-----Generated at Mon May 12 18:57:35 2025 by rpki-client