$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38352e302f32342d3234203d3e203338373533.roa File: 3131392e3131302e38352e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: tGhUDpPitjiDOYZFb+/EhIpsRqgsxM9yV4s5hfWWwfU= Subject key identifier: B5:91:B4:FF:C6:50:08:98:6D:8B:90:46:D1:39:A8:B9:58:F2:87:63 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 72FBFCF53F1F173B65AC368B2B49BBBBB63FD4D5 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38352e302f32342d3234203d3e203338373533.roa Signing time: Fri 09 May 2025 04:00:01 +0000 ROA not before: Fri 09 May 2025 03:55:01 +0000 ROA not after: Fri 08 May 2026 04:00:01 +0000 asID: 38753 IP address blocks: 119.110.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 17:23:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:fb:fc:f5:3f:1f:17:3b:65:ac:36:8b:2b:49:bb:bb:b6:3f:d4:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: May 9 03:55:01 2025 GMT Not After : May 8 04:00:01 2026 GMT Subject: CN=B591B4FFC65008986D8B9046D139A8B958F28763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:89:5d:63:b0:c0:60:a3:d4:17:26:ce:1b:07: d1:57:f2:aa:b5:84:d9:08:bf:ce:9c:e4:96:ce:2e: 54:02:53:47:a8:3e:a5:0b:72:5a:3c:7d:7b:3b:a8: 2d:1f:5a:ba:31:d6:1a:5e:af:d7:45:de:0e:6e:17: e1:2c:f9:69:56:f3:b8:7a:bd:6c:fa:9f:5e:19:c6: c1:ac:74:f7:e5:71:1e:fa:00:ef:d7:94:5d:28:88: cf:c3:2a:bb:01:e1:dc:01:8d:0f:f0:40:27:35:17: 95:21:e9:82:36:82:23:d5:9a:43:be:da:6f:e8:c7: 77:04:6e:75:cb:38:4b:4e:75:e5:53:ea:a3:eb:cc: 2d:d0:ec:8d:7e:e5:fe:bf:06:e2:85:af:e8:27:c2: b0:45:ba:e1:93:39:68:8f:49:b1:2f:54:35:da:04: 8e:43:fc:9e:bb:02:57:cb:f8:af:f6:59:96:55:bb: c8:f5:20:c3:d1:03:7b:52:09:1e:e0:74:bc:5f:60: d3:1b:8d:08:0f:fa:af:d5:95:d5:17:5d:8d:57:8d: 60:6d:d4:4c:a8:a0:97:2f:df:b7:71:2f:6f:81:f9: 1f:a7:7d:6c:b7:68:21:33:32:b3:c4:65:02:b5:10: ff:2c:14:4b:29:0e:8c:74:d5:7d:b8:d9:a3:10:7f: 09:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:91:B4:FF:C6:50:08:98:6D:8B:90:46:D1:39:A8:B9:58:F2:87:63 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38352e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.85.0/24 Signature Algorithm: sha256WithRSAEncryption ae:85:51:88:48:23:7c:fd:0c:9f:4f:b8:f7:87:28:33:39:45: 3b:14:fe:43:d5:18:ca:d6:99:e4:73:bd:16:da:ee:2d:ca:fc: e4:ed:64:e9:75:97:cb:5c:e9:6c:cb:03:84:e2:0d:5b:98:f5: 67:f5:17:55:73:2f:b7:e8:70:25:c1:fb:59:dc:7e:95:69:72: ae:51:3b:fa:0f:b9:32:52:ca:51:6b:41:1b:24:93:e4:ff:ee: 2b:da:dd:dd:24:5b:fe:ee:30:4e:a7:11:cb:93:ea:f6:4c:d6: 28:60:f6:3d:f2:0a:96:be:b4:e9:24:ed:76:58:89:b8:be:5d: 2e:1d:f2:5d:bd:5c:81:f1:1a:96:ef:3e:8b:88:f1:68:0d:08: fa:44:f0:47:c5:e0:8d:80:19:9a:6f:90:4c:6a:cd:f4:06:72: 15:1b:5c:d7:8b:8b:c5:50:12:10:90:d6:07:c2:03:3e:9b:c0: da:6d:c5:18:b5:e0:0a:68:ca:3f:5b:d1:d7:6f:72:24:b4:a3: f4:73:87:8a:a1:b9:ab:b5:f1:10:03:2c:6a:2f:f9:44:af:12: 79:31:78:56:9f:af:a4:09:ea:65:59:24:a6:f9:ce:d0:3f:ec: 66:83:09:6d:dd:83:17:57:59:4d:ee:75:6a:3d:a7:9d:bc:7a: b7:ee:48:2e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcvv89T8fFztlrDaLK0m7u7Y/1NUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTA1MDkwMzU1MDFaFw0yNjA1MDgwNDAwMDFaMDMxMTAvBgNV BAMTKEI1OTFCNEZGQzY1MDA4OTg2RDhCOTA0NkQxMzlBOEI5NThGMjg3NjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWiV1jsMBgo9QXJs4bB9FX8qq1 hNkIv86c5JbOLlQCU0eoPqULclo8fXs7qC0fWrox1hper9dF3g5uF+Es+WlW87h6 vWz6n14ZxsGsdPflcR76AO/XlF0oiM/DKrsB4dwBjQ/wQCc1F5Uh6YI2giPVmkO+ 2m/ox3cEbnXLOEtOdeVT6qPrzC3Q7I1+5f6/BuKFr+gnwrBFuuGTOWiPSbEvVDXa BI5D/J67AlfL+K/2WZZVu8j1IMPRA3tSCR7gdLxfYNMbjQgP+q/VldUXXY1XjWBt 1EyooJcv37dxL2+B+R+nfWy3aCEzMrPEZQK1EP8sFEspDox01X242aMQfwkpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtZG0/8ZQCJhti5BG0TmouVjyh2MwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMxMzEzOTJlMzEzMTMwMmUzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHduVTANBgkqhkiG 9w0BAQsFAAOCAQEAroVRiEgjfP0Mn0+494coMzlFOxT+Q9UYytaZ5HO9FtruLcr8 5O1k6XWXy1zpbMsDhOINW5j1Z/UXVXMvt+hwJcH7Wdx+lWlyrlE7+g+5MlLKUWtB GyST5P/uK9rd3SRb/u4wTqcRy5Pq9kzWKGD2PfIKlr606STtdliJuL5dLh3yXb1c gfEalu8+i4jxaA0I+kTwR8XgjYAZmm+QTGrN9AZyFRtc14uLxVASEJDWB8IDPpvA 2m3FGLXgCmjKP1vR129yJLSj9HOHiqG5q7XxEAMsai/5RK8SeTF4Vp+vpAnqZVkk pvnO0D/sZoMJbd2DF1dZTe51aj2nnbx6t+5ILg== -----END CERTIFICATE-----Generated at Sun May 11 03:57:51 2025 by rpki-client