$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3132342e3135382e3138342e302f32312d3234203d3e203535363835.roa File: 3132342e3135382e3138342e302f32312d3234203d3e203535363835.roa (raw, json) Hash identifier: UXt+o9R59nNbcpxzpiidJBWAFPmT7THazjhYxKYW8KE= Subject key identifier: EE:C3:67:D6:00:DF:30:A8:DE:CC:2F:13:97:02:63:5A:66:A3:D4:52 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 452864AF251DDFD17D2600AD5F15DFE81D526896 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3132342e3135382e3138342e302f32312d3234203d3e203535363835.roa Signing time: Sun 04 May 2025 11:23:01 +0000 ROA not before: Sun 04 May 2025 11:18:01 +0000 ROA not after: Sun 03 May 2026 11:23:01 +0000 asID: 55685 IP address blocks: 124.158.184.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 16:56:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:28:64:af:25:1d:df:d1:7d:26:00:ad:5f:15:df:e8:1d:52:68:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: May 4 11:18:01 2025 GMT Not After : May 3 11:23:01 2026 GMT Subject: CN=EEC367D600DF30A8DECC2F139702635A66A3D452 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:62:4a:37:da:bb:42:b3:a8:ed:75:0e:19:3f: 18:36:26:3b:76:1f:f7:0d:83:24:4f:0f:fc:84:f7: 03:0f:02:0a:9c:6c:de:65:47:b2:02:03:8b:dc:7c: 35:b0:3c:45:a7:5a:a0:69:e9:b4:de:59:03:82:6e: 35:d3:b3:f7:f4:8f:e1:5a:ff:95:61:9c:73:73:b9: 22:a7:a9:ee:61:7e:80:21:57:01:00:26:06:5a:51: 6f:ff:7a:eb:9d:ff:c9:3d:a3:52:8d:15:07:e6:bd: 63:e3:80:1d:26:3c:38:13:48:3d:78:a5:d0:8d:fe: 78:61:3b:7d:2a:74:a0:b0:59:83:8a:46:ac:94:e4: fd:4f:c7:f0:5c:b5:9c:5a:37:44:ee:3e:03:0a:77: 52:d4:1f:a6:ba:d6:73:31:0c:ad:1e:a4:c8:89:b5: b8:cf:0d:4b:2a:ae:de:cc:aa:45:62:96:3a:13:c1: 6c:03:30:ca:f3:b0:2a:41:fd:1e:61:0a:10:ae:80: 9b:1a:11:41:fe:90:ae:6c:53:bc:72:5a:b3:ea:36: bf:57:e8:51:9e:67:ab:f4:a8:67:04:f8:de:81:58: a0:08:7e:6e:ac:1b:3b:66:ad:f7:96:23:4b:a2:1b: ee:cf:53:bf:db:40:ac:87:57:bb:53:52:75:a6:41: 06:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:C3:67:D6:00:DF:30:A8:DE:CC:2F:13:97:02:63:5A:66:A3:D4:52 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3132342e3135382e3138342e302f32312d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.158.184.0/21 Signature Algorithm: sha256WithRSAEncryption 8f:d0:e3:48:79:76:60:ea:a8:84:70:cd:59:11:97:89:38:4b: 58:c1:99:56:7c:6c:61:26:9d:8f:f8:7b:b0:97:8c:09:98:17: 1c:b5:77:a3:9c:98:81:da:8c:dc:65:3c:fd:bd:b0:03:52:36: d9:46:fa:ac:ee:52:dc:03:ce:7e:5d:30:c6:6b:b3:2b:85:8f: c1:07:2a:a1:fb:8b:21:17:fa:e8:06:56:4d:a3:87:d9:4d:f3: 69:56:e9:44:44:37:0b:b8:70:e5:d3:cc:a1:bd:39:3e:0f:85: 0b:0f:64:e6:7c:61:b2:e0:57:8e:a7:7c:d0:f4:93:b2:f5:42: 40:1a:33:bd:e8:d2:4b:c1:9f:bc:82:d9:46:4a:6d:50:fc:70: 2e:11:32:51:a1:5d:c9:43:16:c4:26:f8:72:1a:b7:e8:96:d5: ac:de:67:14:1f:1d:5f:b8:95:43:aa:a3:63:bc:ae:d1:e7:4c: 6d:c5:68:f6:f7:66:c8:f4:97:e6:77:17:28:2d:53:d3:81:d1: d5:5d:10:81:9b:31:b5:f6:44:a9:7f:fb:1b:bc:50:80:12:b5: 97:37:6d:0a:b4:46:8c:3c:1c:1a:3b:94:68:01:57:50:64:0f: 78:61:ed:af:22:75:8b:8c:2b:f0:1a:8f:0b:2b:c4:49:11:8b: e1:de:8d:fb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURShkryUd39F9JgCtXxXf6B1SaJYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA1MDQxMTE4MDFaFw0yNjA1MDMxMTIzMDFaMDMxMTAvBgNV BAMTKEVFQzM2N0Q2MDBERjMwQThERUNDMkYxMzk3MDI2MzVBNjZBM0Q0NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Yko32rtCs6jtdQ4ZPxg2Jjt2 H/cNgyRPD/yE9wMPAgqcbN5lR7ICA4vcfDWwPEWnWqBp6bTeWQOCbjXTs/f0j+Fa /5VhnHNzuSKnqe5hfoAhVwEAJgZaUW//euud/8k9o1KNFQfmvWPjgB0mPDgTSD14 pdCN/nhhO30qdKCwWYOKRqyU5P1Px/BctZxaN0TuPgMKd1LUH6a61nMxDK0epMiJ tbjPDUsqrt7MqkViljoTwWwDMMrzsCpB/R5hChCugJsaEUH+kK5sU7xyWrPqNr9X 6FGeZ6v0qGcE+N6BWKAIfm6sGztmrfeWI0uiG+7PU7/bQKyHV7tTUnWmQQZTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7sNn1gDfMKjezC8TlwJjWmaj1FIwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzIzNDJlMzEzNTM4MmUzMTM4MzQyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDfJ64MA0GCSqG SIb3DQEBCwUAA4IBAQCP0ONIeXZg6qiEcM1ZEZeJOEtYwZlWfGxhJp2P+Huwl4wJ mBcctXejnJiB2ozcZTz9vbADUjbZRvqs7lLcA85+XTDGa7MrhY/BByqh+4shF/ro BlZNo4fZTfNpVulERDcLuHDl08yhvTk+D4ULD2TmfGGy4FeOp3zQ9JOy9UJAGjO9 6NJLwZ+8gtlGSm1Q/HAuETJRoV3JQxbEJvhyGrfoltWs3mcUHx1fuJVDqqNjvK7R 50xtxWj292bI9JfmdxcoLVPTgdHVXRCBmzG19kSpf/sbvFCAErWXN20KtEaMPBwa O5RoAVdQZA94Ye2vInWLjCvwGo8LK8RJEYvh3o37 -----END CERTIFICATE-----Generated at Sat May 10 13:35:48 2025 by rpki-client