$ rpki-client -vvf repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3132332e3235332e3233322e302f32322d3234203d3e203137363730.roa File: 3132332e3235332e3233322e302f32322d3234203d3e203137363730.roa (raw, json) Hash identifier: R1hpl90tpuGr3S7MM3M7sdpYxwM9mEKg6oXY2ZteCXg= Subject key identifier: 90:1B:65:04:03:7E:FC:50:B3:54:C4:F0:10:0D:3D:F8:45:D5:53:46 Certificate issuer: /CN=89402655017312B8CFCB367BA82966AA21E11F90 Certificate serial: 2F69A1151DE31D040044C6B06A820E87C34D61A2 Authority key identifier: 89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3132332e3235332e3233322e302f32322d3234203d3e203137363730.roa Signing time: Sun 06 Jul 2025 18:00:00 +0000 ROA not before: Sun 06 Jul 2025 17:55:00 +0000 ROA not after: Sun 05 Jul 2026 18:00:00 +0000 asID: 17670 IP address blocks: 123.253.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.crl rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 17:27:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:69:a1:15:1d:e3:1d:04:00:44:c6:b0:6a:82:0e:87:c3:4d:61:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89402655017312B8CFCB367BA82966AA21E11F90 Validity Not Before: Jul 6 17:55:00 2025 GMT Not After : Jul 5 18:00:00 2026 GMT Subject: CN=901B6504037EFC50B354C4F0100D3DF845D55346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:04:9a:b9:f9:5e:b9:43:77:b8:b2:d0:eb:9b: 56:9e:c6:77:4b:ca:b5:9d:fe:df:14:44:62:91:1c: 75:96:e0:5c:a9:a9:44:b9:7b:03:42:39:6d:74:b7: 99:67:87:cb:90:fa:9f:1b:bf:a1:a0:61:eb:db:1e: 9c:ca:fb:56:b1:a9:b7:13:b1:a3:13:b8:43:2e:1b: 99:0d:6d:03:b5:42:1c:e1:ee:44:63:bf:77:0b:a3: cb:3a:99:d1:84:f0:64:b4:19:e9:2c:b2:7b:cc:b1: 6d:2a:41:a0:2a:d3:12:db:8d:86:5f:f7:a2:f0:ca: de:bb:30:f7:d8:06:f4:68:3a:13:8e:d2:50:70:81: 9d:13:6b:1c:7b:8d:36:1c:32:a2:88:23:be:db:13: 93:d0:a8:26:6e:0a:bd:e3:a3:ae:d6:32:82:b4:00: ef:81:4a:d2:5a:2f:17:4c:ad:92:d0:76:25:ef:18: 5b:af:2f:6f:c9:1e:9f:51:39:31:69:22:7d:96:6a: 27:24:4f:91:64:85:ed:dd:75:82:7e:10:4b:43:80: 16:5c:9b:15:ab:83:a8:17:05:79:d4:cc:be:50:7f: 38:57:18:a5:9d:35:eb:9e:6f:8e:ba:68:31:a6:a6: fe:22:6a:c8:c4:1a:ac:56:d7:52:0c:4e:10:28:8a: 68:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:1B:65:04:03:7E:FC:50:B3:54:C4:F0:10:0D:3D:F8:45:D5:53:46 X509v3 Authority Key Identifier: keyid:89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3132332e3235332e3233322e302f32322d3234203d3e203137363730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.253.232.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:d2:77:2a:62:e1:54:ef:5a:48:7c:1f:20:63:d7:45:80:3d: 6f:b5:f7:7f:67:ee:bb:ad:a0:0b:85:1b:41:21:d9:ae:e4:d5: 29:c2:8c:87:37:7f:56:18:9f:95:85:96:2a:33:b9:ac:3d:2f: 04:6e:94:0b:2e:08:28:b1:1c:e5:3d:cc:cd:92:58:da:06:c8: 2b:2d:71:b0:03:b9:17:5b:45:54:22:8f:63:5c:a2:44:9b:73: b3:77:22:c4:5c:96:b5:0b:aa:52:60:28:61:c9:69:1f:e1:dc: d9:42:5b:fa:08:da:99:79:1f:ec:65:44:c0:b7:6f:38:cd:5d: 3c:73:19:51:c8:4d:10:a2:5c:9d:ab:74:ec:b1:3e:a5:95:e0: d3:69:f6:a8:a7:04:fe:f4:27:9b:d6:1d:a9:97:86:ad:1d:16: 47:91:de:b7:a1:18:32:27:3b:aa:ad:f2:2e:f0:50:3a:4b:04: 33:49:35:62:34:fc:3a:56:77:a4:b1:32:6c:32:7a:47:e5:23: f6:6c:0f:b0:c1:63:0c:4d:95:f6:7b:b7:de:2b:78:32:bc:8e: eb:0c:fe:a1:00:c8:29:bb:54:6d:ed:45:61:26:87:cf:88:7a: 5b:e7:3a:b4:32:9d:75:ee:e7:a0:e0:83:42:34:f9:68:d1:9d: 71:37:be:1a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUL2mhFR3jHQQARMawaoIOh8NNYaIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk0MDI2NTUwMTczMTJCOENGQ0IzNjdCQTgyOTY2QUEy MUUxMUY5MDAeFw0yNTA3MDYxNzU1MDBaFw0yNjA3MDUxODAwMDBaMDMxMTAvBgNV BAMTKDkwMUI2NTA0MDM3RUZDNTBCMzU0QzRGMDEwMEQzREY4NDVENTUzNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBJq5+V65Q3e4stDrm1aexndL yrWd/t8URGKRHHWW4FypqUS5ewNCOW10t5lnh8uQ+p8bv6GgYevbHpzK+1axqbcT saMTuEMuG5kNbQO1Qhzh7kRjv3cLo8s6mdGE8GS0GekssnvMsW0qQaAq0xLbjYZf 96Lwyt67MPfYBvRoOhOO0lBwgZ0Taxx7jTYcMqKII77bE5PQqCZuCr3jo67WMoK0 AO+BStJaLxdMrZLQdiXvGFuvL2/JHp9ROTFpIn2WaickT5Fkhe3ddYJ+EEtDgBZc mxWrg6gXBXnUzL5QfzhXGKWdNeueb466aDGmpv4iasjEGqxW11IMThAoimj/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkBtlBAN+/FCzVMTwEA09+EXVU0YwHwYDVR0j BBgwFoAUiUAmVQFzErjPyzZ7qClmqiHhH5AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZmIxYzgwYy00ZDZjLTQ0MDgtODk0Ny1mYmE2ZTdjNGJlN2MvMC84OTQwMjY1NTAx NzMxMkI4Q0ZDQjM2N0JBODI5NjZBQTIxRTExRjkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk0MDI2NTUwMTczMTJCOENGQ0IzNjdCQTgyOTY2QUEyMUUx MUY5MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmYjFjODBjLTRkNmMtNDQwOC04 OTQ3LWZiYTZlN2M0YmU3Yy8wLzMxMzIzMzJlMzIzNTMzMmUzMjMzMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTM3MzYzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCe/3oMA0GCSqG SIb3DQEBCwUAA4IBAQCK0ncqYuFU71pIfB8gY9dFgD1vtfd/Z+67raALhRtBIdmu 5NUpwoyHN39WGJ+VhZYqM7msPS8EbpQLLggosRzlPczNkljaBsgrLXGwA7kXW0VU Io9jXKJEm3OzdyLEXJa1C6pSYChhyWkf4dzZQlv6CNqZeR/sZUTAt284zV08cxlR yE0Qolydq3TssT6lleDTafaopwT+9Ceb1h2pl4atHRZHkd63oRgyJzuqrfIu8FA6 SwQzSTViNPw6VneksTJsMnpH5SP2bA+wwWMMTZX2e7feK3gyvI7rDP6hAMgpu1Rt 7UVhJofPiHpb5zq0Mp117ueg4INCNPlo0Z1xN74a -----END CERTIFICATE-----Generated at Mon Jul 21 07:24:54 2025 by rpki-client