$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e35302e32302e302f32342d3234203d3e20313336313038.roa File: 3130312e35302e32302e302f32342d3234203d3e20313336313038.roa (raw, json) Hash identifier: zzXRV/gUnMIJhFPwnHWr4fPsHNyAD+Z1UfD+tFbwBsI= Subject key identifier: 28:32:14:3C:17:F9:09:26:0F:3B:CB:18:21:B9:E9:E0:4C:7E:BD:B8 Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 319F7FD258A64973504FC28C6F60C3E778D05A6E Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e35302e32302e302f32342d3234203d3e20313336313038.roa Signing time: Tue 01 Jul 2025 03:00:00 +0000 ROA not before: Tue 01 Jul 2025 02:55:00 +0000 ROA not after: Tue 30 Jun 2026 03:00:00 +0000 asID: 136108 IP address blocks: 101.50.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 08:54:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:9f:7f:d2:58:a6:49:73:50:4f:c2:8c:6f:60:c3:e7:78:d0:5a:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jul 1 02:55:00 2025 GMT Not After : Jun 30 03:00:00 2026 GMT Subject: CN=2832143C17F909260F3BCB1821B9E9E04C7EBDB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f7:79:c4:15:22:45:1d:39:e3:14:af:77:5b: a1:f3:8c:84:6f:9e:3c:0b:1e:73:1e:26:90:5f:d3: bd:b7:00:fb:90:33:cd:f8:7c:eb:96:5d:88:18:29: 68:bb:94:17:f7:8c:52:19:55:b3:9e:cc:35:d1:65: 9e:63:72:dc:72:75:7e:ab:9e:9a:9e:45:39:c4:83: 91:65:f0:47:1f:f8:bd:fd:47:e8:4f:9a:5f:00:0e: e6:ee:2b:95:05:4b:02:ae:0b:49:c6:22:fc:92:f0: f8:87:34:28:f9:92:0e:45:c1:bc:00:f8:0e:e1:3d: 5b:50:52:40:e7:cc:d4:ee:ae:be:c8:c6:4d:7c:71: c8:5d:18:25:56:f1:10:b9:ba:96:83:9c:1b:a1:e6: e0:61:12:25:e0:a9:31:34:bd:00:8b:d5:27:0e:29: 50:78:31:d5:1f:08:d0:1f:2d:6b:41:33:df:74:d4: 7d:ba:92:ae:93:aa:a3:30:4a:3f:53:4b:24:1e:af: 1e:40:4c:68:5c:bc:03:60:3f:be:48:af:9c:9e:64: a7:ce:ba:4d:56:a8:91:1d:b4:d8:b7:b7:88:31:16: 1a:dc:e3:fa:22:89:70:a5:7e:eb:65:6b:37:7a:8b: da:75:9b:c6:4b:4a:a7:4f:88:54:46:97:ab:38:9f: 8f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:32:14:3C:17:F9:09:26:0F:3B:CB:18:21:B9:E9:E0:4C:7E:BD:B8 X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e35302e32302e302f32342d3234203d3e20313336313038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.50.20.0/24 Signature Algorithm: sha256WithRSAEncryption 81:eb:f5:28:e9:bc:ec:bd:57:9c:39:81:7a:9d:5f:81:02:39: 82:9b:0f:d4:34:8a:ef:fc:c4:05:75:a4:ce:73:06:23:cd:6a: 86:dc:ca:6a:ed:6e:3a:cb:bb:50:a7:19:ba:37:d6:05:45:59: 4a:78:da:a4:3d:ea:9d:d7:3d:86:78:2f:d7:12:a2:ae:d0:84: 5e:c9:1b:c1:4a:12:ad:d1:12:f8:58:77:f3:3d:f0:e0:b3:45: c5:bb:7e:43:bc:c7:c0:6c:54:77:25:bd:5f:0d:e1:8d:ee:ee: 96:a5:1b:dd:0c:b9:20:b0:5f:50:56:3d:13:bf:ed:8e:06:6b: 75:b9:af:22:9b:ff:7e:ee:d1:18:8f:d0:09:f3:2b:d1:3f:01: e9:03:d0:10:df:80:48:b1:57:bd:bf:c3:dd:d3:bd:7a:97:23: e8:fb:fe:c8:a4:56:e7:6a:41:11:d0:28:d3:e6:ba:8f:0c:6b: 86:c2:2b:d6:90:43:b7:10:fe:16:30:ad:40:db:f2:55:53:0d: f8:d0:cd:f2:1e:b7:67:47:f3:73:ab:1f:41:f1:12:f6:ad:aa: 4d:1f:9a:22:3e:e1:4b:b1:30:e2:27:60:bd:2c:ba:ba:6a:ba: 1d:98:a2:1a:6a:6f:27:12:aa:da:10:4f:73:d8:68:e7:ad:23: c4:52:3d:a9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMZ9/0limSXNQT8KMb2DD53jQWm4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNTA3MDEwMjU1MDBaFw0yNjA2MzAwMzAwMDBaMDMxMTAvBgNV BAMTKDI4MzIxNDNDMTdGOTA5MjYwRjNCQ0IxODIxQjlFOUUwNEM3RUJEQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR93nEFSJFHTnjFK93W6HzjIRv njwLHnMeJpBf0723APuQM834fOuWXYgYKWi7lBf3jFIZVbOezDXRZZ5jctxydX6r npqeRTnEg5Fl8Ecf+L39R+hPml8ADubuK5UFSwKuC0nGIvyS8PiHNCj5kg5FwbwA +A7hPVtQUkDnzNTurr7Ixk18cchdGCVW8RC5upaDnBuh5uBhEiXgqTE0vQCL1ScO KVB4MdUfCNAfLWtBM9901H26kq6TqqMwSj9TSyQerx5ATGhcvANgP75Ir5yeZKfO uk1WqJEdtNi3t4gxFhrc4/oiiXClfutlazd6i9p1m8ZLSqdPiFRGl6s4n4/bAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKDIUPBf5CSYPO8sYIbnp4Ex+vbgwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMxMzAzMTJlMzUzMDJlMzIzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNjMxMzAzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGUyFDANBgkqhkiG 9w0BAQsFAAOCAQEAgev1KOm87L1XnDmBep1fgQI5gpsP1DSK7/zEBXWkznMGI81q htzKau1uOsu7UKcZujfWBUVZSnjapD3qndc9hngv1xKirtCEXskbwUoSrdES+Fh3 8z3w4LNFxbt+Q7zHwGxUdyW9Xw3hje7ulqUb3Qy5ILBfUFY9E7/tjgZrdbmvIpv/ fu7RGI/QCfMr0T8B6QPQEN+ASLFXvb/D3dO9epcj6Pv+yKRW52pBEdAo0+a6jwxr hsIr1pBDtxD+FjCtQNvyVVMN+NDN8h63Z0fzc6sfQfES9q2qTR+aIj7hS7Ew4idg vSy6umq6HZiiGmpvJxKq2hBPc9ho560jxFI9qQ== -----END CERTIFICATE-----Generated at Tue Jul 1 16:52:01 2025 by rpki-client