$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32332d3233203d3e203538333639.roa File: 32372e3132332e3232302e302f32332d3233203d3e203538333639.roa (raw, json) Hash identifier: /JBo4P74jpJ3ChD/mvFb9wLb7/3b+BmBaPhTYUJE+q8= Subject key identifier: E7:70:CE:EC:DC:03:AD:94:46:E8:1F:71:BC:93:CB:FA:F4:CB:10:57 Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 53E9CB4EA85BCB0363E4D24ED61DFF29F143E4E1 Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32332d3233203d3e203538333639.roa Signing time: Mon 02 Jun 2025 02:03:37 +0000 ROA not before: Mon 02 Jun 2025 01:58:37 +0000 ROA not after: Mon 01 Jun 2026 02:03:37 +0000 asID: 58369 IP address blocks: 27.123.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:e9:cb:4e:a8:5b:cb:03:63:e4:d2:4e:d6:1d:ff:29:f1:43:e4:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jun 2 01:58:37 2025 GMT Not After : Jun 1 02:03:37 2026 GMT Subject: CN=E770CEECDC03AD9446E81F71BC93CBFAF4CB1057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4c:1a:ac:46:2f:6a:5b:6f:75:d6:25:4e:79: 29:db:16:e6:b6:b0:45:3e:f2:67:1a:89:1c:0e:7d: fb:8a:87:1d:12:a2:72:c7:23:29:0b:be:39:83:0c: f0:40:6e:04:26:04:71:a0:06:ca:04:c2:19:bc:6f: 1a:ce:a4:0d:c8:51:bb:5e:fc:fb:56:f6:96:6e:7b: 79:17:17:2f:67:93:20:5d:8d:75:71:23:85:9a:82: 1b:88:88:1f:b6:3c:e2:2c:55:33:38:cd:c6:71:be: 74:08:06:fe:40:35:28:95:5a:ec:58:cc:1f:05:f9: c4:7d:34:b8:bf:ad:ec:cd:a2:ed:8b:bf:96:ae:80: 23:40:60:59:31:69:7b:be:58:92:bf:fe:07:17:69: 1b:98:25:a7:f0:f6:e7:22:cb:92:0f:65:93:d9:b6: 80:04:b5:21:b2:a0:ba:a9:ca:fa:b7:3f:aa:2d:24: 4e:a2:57:8c:9f:f9:a2:36:b2:1c:49:2e:4b:59:11: 92:65:48:08:86:aa:86:ed:c2:ac:70:58:a4:9d:cd: bb:75:5a:01:90:d3:49:73:de:6c:9d:11:36:50:c1: 5e:16:b9:aa:3c:14:1b:94:3b:55:83:0a:40:f4:dd: e4:66:81:5b:0e:c5:8d:ba:e4:c6:92:8e:76:7a:c3: 7f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:70:CE:EC:DC:03:AD:94:46:E8:1F:71:BC:93:CB:FA:F4:CB:10:57 X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32332d3233203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.123.220.0/23 Signature Algorithm: sha256WithRSAEncryption a1:89:26:6a:05:fc:ad:4f:f9:79:e7:86:8f:b3:8f:f2:09:7f: 91:ed:9e:d8:1c:09:cd:08:68:d6:f1:0d:f3:57:b8:bc:5a:ba: b7:55:a3:e4:36:3c:e4:92:d0:0d:59:d0:96:6c:9d:51:3a:7b: 87:ec:7f:f0:8c:b3:c9:d0:b8:29:42:a6:e2:07:72:bc:d4:3d: f5:8b:e7:9c:d3:01:ba:f1:05:f8:7d:46:1f:43:f2:d2:65:04: 91:62:06:71:06:9a:66:fc:f6:05:a1:5d:7d:a0:79:b3:76:f6: 8f:2b:63:2c:12:09:e1:a9:54:51:ce:21:ff:ab:fe:ac:12:6d: 77:4d:77:5e:e2:23:01:c7:83:98:ee:62:04:9b:e7:e0:bd:f4: 14:8a:fd:b3:4f:34:66:d9:5d:20:64:63:1a:5f:bd:f5:60:9c: e3:4d:ab:90:fa:cc:1f:16:82:0d:e5:03:6f:05:ee:59:3a:52: 89:7b:a6:09:ae:66:0b:3e:2b:68:fe:50:32:dd:6e:08:bd:91: 63:88:bf:8d:c9:91:d3:a2:35:78:8f:2b:22:7b:09:4c:c4:5a: 0a:c5:82:bb:7a:7a:e2:81:b6:3a:a8:b7:de:ab:8a:b0:ac:b4: e4:65:a9:3d:ae:58:d8:39:0e:5e:b4:c8:dc:1a:c1:76:d8:f2: ce:5a:5b:a6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUU+nLTqhbywNj5NJO1h3/KfFD5OEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yNTA2MDIwMTU4MzdaFw0yNjA2MDEwMjAzMzdaMDMxMTAvBgNV BAMTKEU3NzBDRUVDREMwM0FEOTQ0NkU4MUY3MUJDOTNDQkZBRjRDQjEwNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChTBqsRi9qW2911iVOeSnbFua2 sEU+8mcaiRwOffuKhx0SonLHIykLvjmDDPBAbgQmBHGgBsoEwhm8bxrOpA3IUbte /PtW9pZue3kXFy9nkyBdjXVxI4WaghuIiB+2POIsVTM4zcZxvnQIBv5ANSiVWuxY zB8F+cR9NLi/rezNou2Lv5augCNAYFkxaXu+WJK//gcXaRuYJafw9uciy5IPZZPZ toAEtSGyoLqpyvq3P6otJE6iV4yf+aI2shxJLktZEZJlSAiGqobtwqxwWKSdzbt1 WgGQ00lz3mydETZQwV4Wuao8FBuUO1WDCkD03eRmgVsOxY265MaSjnZ6w38/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU53DO7NwDrZRG6B9xvJPL+vTLEFcwHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMyMzcyZTMxMzIzMzJlMzIzMjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEARt73DANBgkqhkiG 9w0BAQsFAAOCAQEAoYkmagX8rU/5eeeGj7OP8gl/ke2e2BwJzQho1vEN81e4vFq6 t1Wj5DY85JLQDVnQlmydUTp7h+x/8IyzydC4KUKm4gdyvNQ99YvnnNMBuvEF+H1G H0Py0mUEkWIGcQaaZvz2BaFdfaB5s3b2jytjLBIJ4alUUc4h/6v+rBJtd013XuIj AceDmO5iBJvn4L30FIr9s080ZtldIGRjGl+99WCc402rkPrMHxaCDeUDbwXuWTpS iXumCa5mCz4raP5QMt1uCL2RY4i/jcmR06I1eI8rInsJTMRaCsWCu3p64oG2Oqi3 3quKsKy05GWpPa5Y2DkOXrTI3BrBdtjyzlpbpg== -----END CERTIFICATE-----Generated at Thu Jun 5 18:16:04 2025 by rpki-client