$ rpki-client -vvf repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/3132332e3235332e3234382e302f32332d3234203d3e20313432333739.roa File: 3132332e3235332e3234382e302f32332d3234203d3e20313432333739.roa (raw, json) Hash identifier: T9vPzFVrVbtfkOIbIR0gBtReDHG4KgAtDeHT2T3EGwQ= Subject key identifier: 83:91:65:10:DB:15:AA:30:B3:AF:41:98:E2:1F:95:6A:4D:A7:A1:5E Certificate issuer: /CN=25D788BD2A450C01354B9AB70826895FDFF56208 Certificate serial: 1570DA0748696F093371AF08B1B03B83A0946720 Authority key identifier: 25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/3132332e3235332e3234382e302f32332d3234203d3e20313432333739.roa Signing time: Wed 30 Apr 2025 05:00:02 +0000 ROA not before: Wed 30 Apr 2025 04:55:02 +0000 ROA not after: Wed 29 Apr 2026 05:00:02 +0000 asID: 142379 IP address blocks: 123.253.248.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 21:52:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:70:da:07:48:69:6f:09:33:71:af:08:b1:b0:3b:83:a0:94:67:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25D788BD2A450C01354B9AB70826895FDFF56208 Validity Not Before: Apr 30 04:55:02 2025 GMT Not After : Apr 29 05:00:02 2026 GMT Subject: CN=83916510DB15AA30B3AF4198E21F956A4DA7A15E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5e:83:5e:d5:4a:14:5b:b0:d0:51:5f:27:ea: 07:19:25:16:e1:39:3a:a9:02:c1:4b:4c:f6:c9:cc: 8d:eb:e3:3a:8f:87:29:0f:49:79:9b:9f:5b:e0:d6: cd:72:45:84:72:21:6b:4a:5e:45:ec:30:55:4b:1b: 8c:4d:7d:f7:cc:eb:45:c0:51:75:f1:fc:fe:55:90: 30:38:60:bd:34:d6:20:6a:db:e9:4a:d8:93:08:aa: 50:4e:fb:07:f8:ca:f5:30:e3:e2:16:14:cd:49:9f: 08:bc:fb:98:8c:a9:87:08:ad:43:83:29:21:3c:05: 36:d5:2e:75:b6:35:de:1e:0a:a6:08:fe:15:60:14: fe:da:c9:38:a1:0d:9d:3d:2c:6e:ce:42:f3:42:77: 4c:ee:2c:7f:00:b8:4f:a5:22:5e:76:57:a2:34:ce: 10:78:00:7b:8b:3d:41:15:12:e6:c0:24:a7:52:97: df:14:88:8b:1a:1b:8e:6b:43:d4:b7:87:a6:93:98: 28:89:59:d1:01:ee:70:d0:4a:27:48:a4:34:6a:31: fa:a1:99:ae:fe:05:3d:94:cb:c5:5d:18:c7:31:38: c6:61:d4:50:af:14:99:3d:4d:0d:9b:37:5d:c4:d3: 82:aa:e4:1a:5d:11:44:5f:30:aa:46:2e:8a:5a:c4: bf:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:91:65:10:DB:15:AA:30:B3:AF:41:98:E2:1F:95:6A:4D:A7:A1:5E X509v3 Authority Key Identifier: keyid:25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/3132332e3235332e3234382e302f32332d3234203d3e20313432333739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.253.248.0/23 Signature Algorithm: sha256WithRSAEncryption 48:81:cc:5e:2b:ad:d8:ab:fc:70:7b:3b:79:53:8b:c4:db:94: 39:8d:15:fc:3a:19:84:75:75:fb:6f:74:dc:70:1b:d8:f1:cb: c7:09:a9:7c:9b:f2:16:81:96:4d:7c:4b:5d:aa:1d:b2:52:80: 35:52:3e:c0:77:e9:2b:af:7e:1c:ea:03:47:87:15:31:4f:0d: fd:f7:c2:14:53:0a:06:fa:4d:d3:0c:b3:12:6e:8d:97:b6:71: 7f:b7:2f:e8:0e:5b:57:08:ed:69:8b:6a:dc:cc:f6:04:a6:82: 87:7e:2c:35:d6:e7:62:fd:8e:fe:38:a4:eb:28:f9:8f:2d:4d: ec:4c:2e:bf:3d:db:41:c7:e9:69:0d:71:86:94:d3:71:5e:d4: ea:c9:c7:82:dc:e1:d9:e6:fc:3b:c0:87:5b:ad:c6:1d:1a:04: 58:63:dc:a8:8a:9e:e4:a5:7a:9a:a0:5e:f7:6e:80:c0:1a:4e: 2e:bd:bd:9a:6d:50:2c:5c:69:90:ed:2a:13:59:72:00:0c:50: 8a:f2:2c:88:0c:97:58:a3:41:74:15:96:a7:b6:f1:d8:0a:2e: 52:b0:4c:83:80:85:27:bf:b3:ef:c3:93:22:78:b8:87:fa:86: 7f:ef:4a:bc:a7:2f:d9:76:77:bd:44:05:34:a5:b8:42:74:c7: 89:dc:90:25 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFXDaB0hpbwkzca8IsbA7g6CUZyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZE RkY1NjIwODAeFw0yNTA0MzAwNDU1MDJaFw0yNjA0MjkwNTAwMDJaMDMxMTAvBgNV BAMTKDgzOTE2NTEwREIxNUFBMzBCM0FGNDE5OEUyMUY5NTZBNERBN0ExNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkXoNe1UoUW7DQUV8n6gcZJRbh OTqpAsFLTPbJzI3r4zqPhykPSXmbn1vg1s1yRYRyIWtKXkXsMFVLG4xNfffM60XA UXXx/P5VkDA4YL001iBq2+lK2JMIqlBO+wf4yvUw4+IWFM1Jnwi8+5iMqYcIrUOD KSE8BTbVLnW2Nd4eCqYI/hVgFP7ayTihDZ09LG7OQvNCd0zuLH8AuE+lIl52V6I0 zhB4AHuLPUEVEubAJKdSl98UiIsaG45rQ9S3h6aTmCiJWdEB7nDQSidIpDRqMfqh ma7+BT2Uy8VdGMcxOMZh1FCvFJk9TQ2bN13E04Kq5BpdEURfMKpGLopaxL8XAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUg5FlENsVqjCzr0GY4h+Vak2noV4wHwYDVR0j BBgwFoAUJdeIvSpFDAE1S5q3CCaJX9/1YggwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmE3NjY1YS1iNTBiLTRhNDUtYThmOS0wZDY5YmQ3ZDc0M2QvMC8yNUQ3ODhCRDJB NDUwQzAxMzU0QjlBQjcwODI2ODk1RkRGRjU2MjA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZERkY1 NjIwOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2YTc2NjVhLWI1MGItNGE0NS1h OGY5LTBkNjliZDdkNzQzZC8wLzMxMzIzMzJlMzIzNTMzMmUzMjM0MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF7/fgwDQYJ KoZIhvcNAQELBQADggEBAEiBzF4rrdir/HB7O3lTi8TblDmNFfw6GYR1dftvdNxw G9jxy8cJqXyb8haBlk18S12qHbJSgDVSPsB36SuvfhzqA0eHFTFPDf33whRTCgb6 TdMMsxJujZe2cX+3L+gOW1cI7WmLatzM9gSmgod+LDXW52L9jv44pOso+Y8tTexM Lr8920HH6WkNcYaU03Fe1OrJx4Lc4dnm/DvAh1utxh0aBFhj3KiKnuSlepqgXvdu gMAaTi69vZptUCxcaZDtKhNZcgAMUIryLIgMl1ijQXQVlqe28dgKLlKwTIOAhSe/ s+/DkyJ4uIf6hn/vSrynL9l2d71EBTSluEJ0x4nckCU= -----END CERTIFICATE-----Generated at Thu Jun 5 18:27:35 2025 by rpki-client