$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3137312e302f32342d3234203d3e203233363731.roa File: 3131312e39322e3137312e302f32342d3234203d3e203233363731.roa (raw, json) Hash identifier: o4W2Bn3hIO35RbuFmhkTKwAoJsgLCdi8pu7yd1yS3Ms= Subject key identifier: 00:3E:9E:2B:AB:27:2B:DE:28:90:ED:33:E2:F0:3C:8C:13:87:C5:4F Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 3161FCD76163C5E6BFF3C4D2ECEF51A67ABAEFD5 Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3137312e302f32342d3234203d3e203233363731.roa Signing time: Mon 28 Apr 2025 10:02:22 +0000 ROA not before: Mon 28 Apr 2025 09:57:22 +0000 ROA not after: Mon 27 Apr 2026 10:02:22 +0000 asID: 23671 IP address blocks: 111.92.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:25:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:61:fc:d7:61:63:c5:e6:bf:f3:c4:d2:ec:ef:51:a6:7a:ba:ef:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Apr 28 09:57:22 2025 GMT Not After : Apr 27 10:02:22 2026 GMT Subject: CN=003E9E2BAB272BDE2890ED33E2F03C8C1387C54F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c7:b7:2e:8d:78:65:85:b9:cb:fd:7f:2b:ef: 89:96:38:be:c3:61:bb:27:bd:ed:68:1c:31:07:b1: a0:04:0a:74:04:89:47:ef:48:d3:a5:54:2e:d6:e7: 8e:96:0e:8f:d6:d7:0b:16:6b:ed:8e:05:ce:9a:fc: aa:cc:16:13:26:5d:db:ba:79:3f:15:eb:d6:4d:14: ed:4e:6f:58:1a:77:80:7e:28:af:39:c3:a3:78:0c: 7a:31:ce:e2:4a:35:79:f8:d5:02:37:e8:7a:66:23: 17:a5:7e:c0:a7:1b:be:5d:66:f1:44:5f:2e:15:30: 6d:a7:b8:3b:97:19:4d:39:0a:27:cf:6b:ea:2c:14: e6:e1:15:eb:19:91:d5:92:ff:6d:2d:ca:66:2b:0d: 3d:8c:95:a8:b2:55:af:40:ff:a3:42:6e:e9:51:52: 14:d1:fa:2d:5e:a2:6e:69:26:04:ab:f0:d4:60:7d: 74:25:1f:54:59:d1:df:10:62:00:f7:da:03:27:65: bf:c6:63:12:c9:47:75:48:ce:98:c5:95:4d:06:97: 4d:aa:e3:e4:d9:a2:4e:29:a0:60:98:5a:41:65:ed: 4b:56:20:30:f9:51:7b:89:23:fd:b4:0d:53:8b:2e: a3:ff:1c:0f:7a:c9:5e:cd:58:04:8e:d5:bf:de:59: f2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:3E:9E:2B:AB:27:2B:DE:28:90:ED:33:E2:F0:3C:8C:13:87:C5:4F X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3137312e302f32342d3234203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.92.171.0/24 Signature Algorithm: sha256WithRSAEncryption 70:47:e2:e2:d6:cb:0f:d5:ec:82:ad:5b:96:7c:25:d2:ca:66: 4f:42:21:38:44:21:af:65:b5:5a:a5:a1:10:50:31:cb:75:9f: f3:aa:80:4f:46:e6:0f:9b:c3:f6:07:88:72:04:9c:ff:10:b4: 8f:c5:d7:b4:f7:54:fe:15:7e:e8:84:dc:90:28:2a:55:f3:0d: 93:00:a2:00:ab:74:b3:62:53:c3:9f:24:0e:0e:e4:4d:86:60: 0c:97:d0:8b:fd:0a:9f:1b:5b:ee:86:0b:5d:1c:2f:fd:42:3e: 9a:a8:7d:5d:73:89:1f:ec:16:70:ec:64:c0:13:8f:43:9d:c0: c4:2a:38:fa:13:24:23:11:6d:9e:32:58:14:94:25:0f:dd:54: 6a:b8:bc:ea:fa:22:1c:23:13:f9:0e:9e:46:2b:64:06:13:18: ba:f1:7f:db:d6:8f:02:cd:ed:91:fc:d3:22:df:8e:19:47:62: 1c:b2:4c:80:6c:f6:8a:e7:ac:39:8f:3a:d0:92:50:f6:f8:9a: 6b:eb:68:33:13:0a:fb:86:e9:7e:a1:1a:bc:50:7c:e2:ee:89: 9d:31:aa:bd:d3:3a:20:34:0b:6f:6e:cc:fa:37:aa:68:66:5b: e4:7b:55:2f:f5:3b:89:a0:6e:91:78:0a:06:a1:82:03:dc:3c: bb:63:49:6c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMWH812Fjxea/88TS7O9Rpnq679UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNTA0MjgwOTU3MjJaFw0yNjA0MjcxMDAyMjJaMDMxMTAvBgNV BAMTKDAwM0U5RTJCQUIyNzJCREUyODkwRUQzM0UyRjAzQzhDMTM4N0M1NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0x7cujXhlhbnL/X8r74mWOL7D Ybsnve1oHDEHsaAECnQEiUfvSNOlVC7W546WDo/W1wsWa+2OBc6a/KrMFhMmXdu6 eT8V69ZNFO1Ob1gad4B+KK85w6N4DHoxzuJKNXn41QI36HpmIxelfsCnG75dZvFE Xy4VMG2nuDuXGU05CifPa+osFObhFesZkdWS/20tymYrDT2MlaiyVa9A/6NCbulR UhTR+i1eom5pJgSr8NRgfXQlH1RZ0d8QYgD32gMnZb/GYxLJR3VIzpjFlU0Gl02q 4+TZok4poGCYWkFl7UtWIDD5UXuJI/20DVOLLqP/HA96yV7NWASO1b/eWfK3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAD6eK6snK94okO0z4vA8jBOHxU8wHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMxMzEzMTJlMzkzMjJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG9cqzANBgkqhkiG 9w0BAQsFAAOCAQEAcEfi4tbLD9Xsgq1blnwl0spmT0IhOEQhr2W1WqWhEFAxy3Wf 86qAT0bmD5vD9geIcgSc/xC0j8XXtPdU/hV+6ITckCgqVfMNkwCiAKt0s2JTw58k Dg7kTYZgDJfQi/0Knxtb7oYLXRwv/UI+mqh9XXOJH+wWcOxkwBOPQ53AxCo4+hMk IxFtnjJYFJQlD91Uari86voiHCMT+Q6eRitkBhMYuvF/29aPAs3tkfzTIt+OGUdi HLJMgGz2iuesOY860JJQ9viaa+toMxMK+4bpfqEavFB84u6JnTGqvdM6IDQLb27M +jeqaGZb5HtVL/U7iaBukXgKBqGCA9w8u2NJbA== -----END CERTIFICATE-----Generated at Thu May 15 20:29:52 2025 by rpki-client