$ rpki-client -vvf repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233342e302f32342d3234203d3e203435323936.roa File: 3131332e35392e3233342e302f32342d3234203d3e203435323936.roa (raw, json) Hash identifier: lEeS6vsNWcZ17S5/mxWNgu2oa8p6QhZGfAbhq4nCm2A= Subject key identifier: 1F:C7:AF:BB:1B:75:C8:37:CE:60:45:E4:5F:1A:74:63:38:C4:4A:A6 Certificate issuer: /CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Certificate serial: 11FA7243D2DAC68096610B526BF8B18BF26E4F11 Authority key identifier: 9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233342e302f32342d3234203d3e203435323936.roa Signing time: Mon 28 Apr 2025 09:00:00 +0000 ROA not before: Mon 28 Apr 2025 08:55:00 +0000 ROA not after: Mon 27 Apr 2026 09:00:00 +0000 asID: 45296 IP address blocks: 113.59.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 13:37:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:fa:72:43:d2:da:c6:80:96:61:0b:52:6b:f8:b1:8b:f2:6e:4f:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Validity Not Before: Apr 28 08:55:00 2025 GMT Not After : Apr 27 09:00:00 2026 GMT Subject: CN=1FC7AFBB1B75C837CE6045E45F1A746338C44AA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f1:aa:73:df:47:4e:dc:58:84:4e:9b:4b:c8: bf:44:ac:3f:25:7d:d0:13:2e:0e:b9:51:41:8e:b7: 40:53:cf:28:6b:ed:d2:b9:84:8f:6b:e0:df:8d:e3: aa:02:34:df:b4:04:27:ba:f6:43:cb:a3:f2:2b:0b: 2b:71:23:07:40:4d:be:cd:2a:70:89:87:12:68:d3: 1b:99:8c:eb:ca:59:73:89:4e:9a:df:16:f8:1e:dc: 35:01:33:ee:81:a8:5b:06:98:4f:c3:d3:f1:50:9a: 14:7c:07:e3:14:f3:72:1a:e1:47:80:dc:70:ee:78: 23:4a:61:8e:a8:3e:d8:c9:0e:d5:98:92:5c:76:f7: e5:45:2d:35:c8:d8:44:e2:5c:c0:6f:9f:18:29:f6: d9:da:81:ef:ad:ee:df:fa:ef:f0:02:06:d2:e7:12: b0:e1:13:cf:c1:f8:38:26:8b:5d:e9:63:ba:2d:b6: 32:a7:ad:5d:2d:cc:fa:76:24:1b:12:7e:a8:84:71: 64:7e:69:c8:1c:e8:33:a9:bc:6a:87:c4:a9:07:40: b5:e0:79:05:21:f0:c2:8f:51:1b:df:10:7e:a1:3a: ef:12:34:cc:4f:02:49:42:06:32:d5:b8:9a:fc:a7: ed:e0:de:60:cb:82:c8:bd:59:6d:d0:78:41:f7:fa: 94:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C7:AF:BB:1B:75:C8:37:CE:60:45:E4:5F:1A:74:63:38:C4:4A:A6 X509v3 Authority Key Identifier: keyid:9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233342e302f32342d3234203d3e203435323936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.59.234.0/24 Signature Algorithm: sha256WithRSAEncryption 02:24:46:1a:57:75:4b:39:ab:26:46:56:61:9c:a5:44:6c:6b: 74:a5:35:31:40:77:f6:7d:df:a3:17:52:05:d0:ef:23:15:2d: cb:f3:bd:8d:42:78:39:ff:38:54:2a:bd:6a:54:e1:4d:56:3a: 6c:d0:8b:01:fd:4c:61:95:0a:16:cf:13:f1:cf:08:bb:c8:31: ca:da:e6:07:50:0c:90:b8:e4:34:2c:ce:c6:93:0f:40:ea:4e: 06:85:a9:f5:df:1b:2c:8e:22:74:ec:0d:67:10:1a:c5:96:7f: 2b:24:d8:18:c0:ba:15:a9:f5:87:69:19:21:43:11:52:f3:d9: 23:07:22:d1:09:55:49:8c:19:b2:fe:dc:6e:98:01:3d:da:7f: 12:3e:41:86:22:58:88:a7:88:fd:f1:89:0f:ff:34:7e:96:b9: 32:75:4a:e3:5c:20:62:e6:08:3a:a0:df:bd:c4:42:f4:27:b7: 35:d0:ab:b4:e7:7d:c2:32:50:39:71:e8:4a:8f:4b:54:15:28: c0:79:66:97:70:e6:6d:ec:53:99:c8:43:fd:e6:09:b3:6a:a6: b4:c8:3b:20:6f:4b:90:d2:b6:34:1c:87:75:36:76:0b:c5:46: 6f:1d:be:83:73:5d:a7:3b:7b:b4:8f:10:9e:e8:e8:0a:84:7d: da:c1:ed:de -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEfpyQ9LaxoCWYQtSa/ixi/JuTxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJB NTlGOTlENzAeFw0yNTA0MjgwODU1MDBaFw0yNjA0MjcwOTAwMDBaMDMxMTAvBgNV BAMTKDFGQzdBRkJCMUI3NUM4MzdDRTYwNDVFNDVGMUE3NDYzMzhDNDRBQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI8apz30dO3FiETptLyL9ErD8l fdATLg65UUGOt0BTzyhr7dK5hI9r4N+N46oCNN+0BCe69kPLo/IrCytxIwdATb7N KnCJhxJo0xuZjOvKWXOJTprfFvge3DUBM+6BqFsGmE/D0/FQmhR8B+MU83Ia4UeA 3HDueCNKYY6oPtjJDtWYklx29+VFLTXI2ETiXMBvnxgp9tnage+t7t/67/ACBtLn ErDhE8/B+Dgmi13pY7ottjKnrV0tzPp2JBsSfqiEcWR+acgc6DOpvGqHxKkHQLXg eQUh8MKPURvfEH6hOu8SNMxPAklCBjLVuJr8p+3g3mDLgsi9WW3QeEH3+pS5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUH8evuxt1yDfOYEXkXxp0YzjESqYwHwYDVR0j BBgwFoAUmy8AR21qwbqrBcWmJdwAwqWfmdcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NjA2NzE4Zi1mNGM2LTQ3NzUtODk1Ny05OWQyYmQ2NjYzNjMvMC85QjJGMDA0NzZE NkFDMUJBQUIwNUM1QTYyNURDMDBDMkE1OUY5OUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJBNTlG OTlENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2MDY3MThmLWY0YzYtNDc3NS04 OTU3LTk5ZDJiZDY2NjM2My8wLzMxMzEzMzJlMzUzOTJlMzIzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMyMzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHE76jANBgkqhkiG 9w0BAQsFAAOCAQEAAiRGGld1SzmrJkZWYZylRGxrdKU1MUB39n3foxdSBdDvIxUt y/O9jUJ4Of84VCq9alThTVY6bNCLAf1MYZUKFs8T8c8Iu8gxytrmB1AMkLjkNCzO xpMPQOpOBoWp9d8bLI4idOwNZxAaxZZ/KyTYGMC6Fan1h2kZIUMRUvPZIwci0QlV SYwZsv7cbpgBPdp/Ej5BhiJYiKeI/fGJD/80fpa5MnVK41wgYuYIOqDfvcRC9Ce3 NdCrtOd9wjJQOXHoSo9LVBUowHlml3DmbexTmchD/eYJs2qmtMg7IG9LkNK2NByH dTZ2C8VGbx2+g3Ndpzt7tI8QnujoCoR92sHt3g== -----END CERTIFICATE-----Generated at Sat May 10 22:22:18 2025 by rpki-client