$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa File: 3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa (raw, json) Hash identifier: db2ZBDbPQBZ+1fLhUcrVMNSFZdZMKLIQU1qfyXpKY5M= Subject key identifier: 5B:8F:D4:6C:04:96:52:8A:5B:15:4A:D7:ED:E8:EF:13:89:40:4A:05 Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 730D425363E853C95EBFF5E5C0FFB3E84E762E2C Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa Signing time: Thu 03 Apr 2025 05:00:02 +0000 ROA not before: Thu 03 Apr 2025 04:55:02 +0000 ROA not after: Thu 02 Apr 2026 05:00:02 +0000 asID: 38785 IP address blocks: 121.101.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 00:35:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:0d:42:53:63:e8:53:c9:5e:bf:f5:e5:c0:ff:b3:e8:4e:76:2e:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: Apr 3 04:55:02 2025 GMT Not After : Apr 2 05:00:02 2026 GMT Subject: CN=5B8FD46C0496528A5B154AD7EDE8EF1389404A05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:06:b4:80:1c:45:46:71:05:60:cc:81:45:5d: 5e:fe:2c:5d:55:4f:30:58:fe:2d:5f:d5:8f:24:1f: 36:b1:01:b0:3b:30:06:f7:44:66:88:b9:53:08:34: cf:20:0c:63:c4:4c:73:2b:56:2f:cb:31:e1:db:85: cc:66:dd:e5:4f:eb:f6:b6:9c:1b:6f:48:81:47:e4: 6a:ab:02:34:89:4f:88:03:1b:22:b6:8c:6e:48:6d: d8:9d:48:d2:c2:23:d6:73:d1:42:9b:85:0c:1f:bc: 9f:9d:bd:7d:b2:75:40:0d:0d:64:6e:86:45:38:24: 3d:92:cf:a7:82:75:62:57:47:8e:06:9f:aa:ef:e5: cf:21:7d:54:ff:88:c5:df:66:aa:ac:68:29:bc:09: cc:86:5e:c4:62:7d:ee:be:3a:80:a1:4f:84:89:da: 74:d2:63:da:93:ba:0b:a7:0c:33:66:56:a8:9f:ff: f1:7b:95:5b:88:23:5f:42:78:ad:49:3d:b2:29:1a: 65:83:99:bd:00:8a:b0:04:48:13:11:90:64:44:fe: ce:29:b5:25:7e:2c:96:22:4a:04:85:e2:0e:10:7c: 05:aa:4d:db:77:b3:61:b7:0d:b0:39:8a:ad:1d:2b: 61:aa:68:c9:22:b8:68:c5:02:66:b5:b7:72:66:c2: b5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:8F:D4:6C:04:96:52:8A:5B:15:4A:D7:ED:E8:EF:13:89:40:4A:05 X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.190.0/24 Signature Algorithm: sha256WithRSAEncryption 23:00:da:51:6b:1f:55:6d:b4:4a:07:37:2a:de:41:8c:a9:d0: 7e:4f:52:94:78:56:99:01:d0:c2:ea:27:0d:b9:69:96:94:1a: 6b:11:1e:26:58:39:c9:e1:55:ba:6b:61:77:dd:7b:1d:40:c6: 89:dd:ff:eb:2a:12:5a:10:cf:7c:bb:8d:b7:4e:a1:01:49:74: c1:48:16:1a:e6:fd:79:e6:6d:22:1b:cb:99:47:4e:25:11:c8: f6:f2:4f:fd:b6:03:35:3d:a5:99:3d:5d:49:e2:7e:97:eb:b2: d7:a5:19:17:93:07:3d:07:e3:5b:23:e9:c5:7e:12:f3:e5:cc: c9:f4:24:c5:d9:f2:8e:ad:79:17:b6:d2:e5:6d:3e:6c:8f:ae: 0d:dd:57:f5:d8:af:69:ec:03:9e:88:07:45:09:83:e1:ab:a8: 13:d5:74:cf:cc:75:74:bb:d7:4e:a0:44:a3:1a:6c:22:8f:9a: 28:53:66:89:12:04:d5:0e:f9:10:1f:46:70:8c:ea:31:35:21: 78:0f:15:fe:3c:45:1c:75:d2:1a:22:02:79:c0:ff:3a:c9:e9: 5c:0f:3d:0f:ac:4c:25:20:9d:8d:57:f9:95:90:38:ab:b6:0d: 2b:e7:3c:ac:8c:92:80:b9:48:9c:7d:cc:57:db:99:0e:30:de: ac:83:0c:92 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcw1CU2PoU8lev/XlwP+z6E52LiwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNTA0MDMwNDU1MDJaFw0yNjA0MDIwNTAwMDJaMDMxMTAvBgNV BAMTKDVCOEZENDZDMDQ5NjUyOEE1QjE1NEFEN0VERThFRjEzODk0MDRBMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtBrSAHEVGcQVgzIFFXV7+LF1V TzBY/i1f1Y8kHzaxAbA7MAb3RGaIuVMINM8gDGPETHMrVi/LMeHbhcxm3eVP6/a2 nBtvSIFH5GqrAjSJT4gDGyK2jG5IbdidSNLCI9Zz0UKbhQwfvJ+dvX2ydUANDWRu hkU4JD2Sz6eCdWJXR44Gn6rv5c8hfVT/iMXfZqqsaCm8CcyGXsRife6+OoChT4SJ 2nTSY9qTugunDDNmVqif//F7lVuII19CeK1JPbIpGmWDmb0AirAESBMRkGRE/s4p tSV+LJYiSgSF4g4QfAWqTdt3s2G3DbA5iq0dK2GqaMkiuGjFAma1t3JmwrX9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUW4/UbASWUopbFUrX7ejvE4lASgUwHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NzJkZmJlLTRjYTAtNGE0Ni04 MDM3LTQ5NjhlZDk3Y2FkYy8wLzMxMzIzMTJlMzEzMDMxMmUzMTM5MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeWW+MA0GCSqG SIb3DQEBCwUAA4IBAQAjANpRax9VbbRKBzcq3kGMqdB+T1KUeFaZAdDC6icNuWmW lBprER4mWDnJ4VW6a2F33XsdQMaJ3f/rKhJaEM98u423TqEBSXTBSBYa5v155m0i G8uZR04lEcj28k/9tgM1PaWZPV1J4n6X67LXpRkXkwc9B+NbI+nFfhLz5czJ9CTF 2fKOrXkXttLlbT5sj64N3Vf12K9p7AOeiAdFCYPhq6gT1XTPzHV0u9dOoESjGmwi j5ooU2aJEgTVDvkQH0ZwjOoxNSF4DxX+PEUcddIaIgJ5wP86yelcDz0PrEwlIJ2N V/mVkDirtg0r5zysjJKAuUicfcxX25kOMN6sgwyS -----END CERTIFICATE-----Generated at Fri Apr 25 22:07:25 2025 by rpki-client on console.sobornost.net