$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32322d3232203d3e203538333639.roa File: 32372e3132332e3232302e302f32322d3232203d3e203538333639.roa (raw, json) Hash identifier: kX3dq46HeFTClj3IBXvucQQnmP2RQJrLntVCWH0N/gk= Subject key identifier: 5C:41:6E:D9:64:22:B9:F8:A3:F7:0A:D7:A3:0D:51:D8:C9:E3:9C:1F Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 49458E79D7D0E88FE31290FBB0A5DC31F5430122 Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32322d3232203d3e203538333639.roa Signing time: Mon 02 Jun 2025 02:03:36 +0000 ROA not before: Mon 02 Jun 2025 01:58:36 +0000 ROA not after: Mon 01 Jun 2026 02:03:36 +0000 asID: 58369 IP address blocks: 27.123.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:45:8e:79:d7:d0:e8:8f:e3:12:90:fb:b0:a5:dc:31:f5:43:01:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jun 2 01:58:36 2025 GMT Not After : Jun 1 02:03:36 2026 GMT Subject: CN=5C416ED96422B9F8A3F70AD7A30D51D8C9E39C1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2e:8a:0e:41:a2:24:fd:8a:da:b2:8a:87:23: 82:d0:f9:bc:d4:c0:c2:cf:bb:55:d5:47:f8:bd:45: c9:e5:4f:5e:42:31:15:4d:18:be:31:25:07:80:d3: 09:1f:7c:5c:6f:6b:dc:48:8e:9d:28:ef:d6:b7:c7: cc:3c:32:9c:d6:6a:13:41:7e:27:39:d7:32:5d:74: b5:b6:c9:0f:56:1d:e9:58:42:ef:44:0c:ac:45:63: 9a:3f:a1:bd:29:43:03:7f:ee:b0:48:a3:0d:cf:1b: 2b:09:89:d1:53:28:46:8d:03:50:66:6a:fa:fe:87: 80:32:35:ab:46:e6:52:a7:94:76:31:d2:db:52:3c: 8c:d5:af:67:ac:13:87:b5:a3:28:09:45:46:5c:b7: 34:6d:a2:40:e9:7f:3c:1c:a2:72:ec:1d:cc:9d:99: 53:98:88:6c:90:f7:12:b8:62:38:0a:1b:27:d8:f0: 3b:54:67:d5:66:3c:20:90:a1:93:17:a3:07:ba:ae: a6:e8:90:fc:31:69:48:96:87:10:57:a9:46:cf:fa: 1d:07:80:cb:3a:57:4f:b5:08:d7:be:bf:9c:b1:0f: 1d:d2:77:69:8f:00:23:c3:73:e5:6a:6f:4b:06:4b: 03:a2:bb:8d:07:14:41:91:45:d9:ad:ff:b4:13:1f: bf:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:41:6E:D9:64:22:B9:F8:A3:F7:0A:D7:A3:0D:51:D8:C9:E3:9C:1F X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32322d3232203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.123.220.0/22 Signature Algorithm: sha256WithRSAEncryption 68:dd:c0:6f:57:70:e5:68:db:a1:19:fe:64:20:f2:29:73:34: 54:34:35:f7:b2:58:b8:97:3d:77:0c:a7:24:80:85:76:10:df: 86:28:e7:6a:4f:66:6a:3c:f5:f5:96:e4:39:38:44:5c:e9:8f: 96:c8:17:40:be:90:72:f4:e5:c3:fa:d4:18:9f:27:a8:05:95: 85:12:c8:a9:eb:41:e2:26:d5:53:4c:ed:bd:d7:d7:21:54:59: c9:47:06:14:11:1c:76:4a:b5:f1:75:a7:84:c0:ea:41:05:37: 0c:27:c4:40:1b:df:46:14:43:13:d7:7e:63:cb:89:15:5a:0d: 17:af:60:bf:1b:95:2f:9b:04:4c:f6:98:92:5b:21:a2:f7:07: f8:fc:10:80:16:4a:33:0d:ee:8a:e4:38:21:62:ab:ea:d9:46: bc:05:e6:68:be:09:63:79:42:fd:81:f4:9c:fa:b4:02:09:8f: fd:14:98:68:b1:b5:61:64:1e:2c:15:cb:dc:2a:27:f5:1c:cb: 94:62:5a:27:e0:b9:e9:2e:69:53:b8:2d:19:5a:6c:dc:86:ef: f8:a0:89:6a:fe:6e:4a:12:45:40:d2:63:15:0c:76:b1:e0:09: 0b:95:0d:37:41:b5:9a:66:c5:6b:c0:12:d2:03:6a:7d:e3:59: cd:b8:82:76 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSUWOedfQ6I/jEpD7sKXcMfVDASIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yNTA2MDIwMTU4MzZaFw0yNjA2MDEwMjAzMzZaMDMxMTAvBgNV BAMTKDVDNDE2RUQ5NjQyMkI5RjhBM0Y3MEFEN0EzMEQ1MUQ4QzlFMzlDMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRLooOQaIk/YrasoqHI4LQ+bzU wMLPu1XVR/i9RcnlT15CMRVNGL4xJQeA0wkffFxva9xIjp0o79a3x8w8MpzWahNB fic51zJddLW2yQ9WHelYQu9EDKxFY5o/ob0pQwN/7rBIow3PGysJidFTKEaNA1Bm avr+h4AyNatG5lKnlHYx0ttSPIzVr2esE4e1oygJRUZctzRtokDpfzwconLsHcyd mVOYiGyQ9xK4YjgKGyfY8DtUZ9VmPCCQoZMXowe6rqbokPwxaUiWhxBXqUbP+h0H gMs6V0+1CNe+v5yxDx3Sd2mPACPDc+Vqb0sGSwOiu40HFEGRRdmt/7QTH7+DAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXEFu2WQiufij9wrXow1R2MnjnB8wHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMyMzcyZTMxMzIzMzJlMzIzMjMwMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAht73DANBgkqhkiG 9w0BAQsFAAOCAQEAaN3Ab1dw5WjboRn+ZCDyKXM0VDQ197JYuJc9dwynJICFdhDf hijnak9majz19ZbkOThEXOmPlsgXQL6QcvTlw/rUGJ8nqAWVhRLIqetB4ibVU0zt vdfXIVRZyUcGFBEcdkq18XWnhMDqQQU3DCfEQBvfRhRDE9d+Y8uJFVoNF69gvxuV L5sETPaYklshovcH+PwQgBZKMw3uiuQ4IWKr6tlGvAXmaL4JY3lC/YH0nPq0AgmP /RSYaLG1YWQeLBXL3Con9RzLlGJaJ+C56S5pU7gtGVps3Ibv+KCJav5uShJFQNJj FQx2seAJC5UNN0G1mmbFa8AS0gNqfeNZzbiCdg== -----END CERTIFICATE-----Generated at Thu Jun 5 18:15:18 2025 by rpki-client