$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32342d3234203d3e203538333639.roa File: 32372e3132332e3232302e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: G8Sk81D51M2Eq8C/j8b3r5NfSezsnRS44rVUmyX44Ew= Subject key identifier: 73:3F:16:BF:72:7B:2F:60:F2:98:48:51:6F:64:B1:C3:76:13:D2:AB Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 5608018E39B06997A137425EBBB9EAAB1430DA15 Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32342d3234203d3e203538333639.roa Signing time: Mon 02 Jun 2025 02:03:39 +0000 ROA not before: Mon 02 Jun 2025 01:58:39 +0000 ROA not after: Mon 01 Jun 2026 02:03:39 +0000 asID: 58369 IP address blocks: 27.123.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:08:01:8e:39:b0:69:97:a1:37:42:5e:bb:b9:ea:ab:14:30:da:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jun 2 01:58:39 2025 GMT Not After : Jun 1 02:03:39 2026 GMT Subject: CN=733F16BF727B2F60F29848516F64B1C37613D2AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:73:b4:1f:cd:89:d8:a1:b5:26:9f:d7:70:bc: 5b:88:a4:8d:44:80:2b:2e:18:a7:0c:f2:06:ee:ee: 50:98:57:01:0d:f3:c4:1b:c2:95:b9:fc:ca:e3:e0: 62:a5:0b:5c:43:4a:26:c4:e9:dd:e0:56:91:f1:bc: 27:10:a4:a2:68:d5:a3:d1:cb:99:9a:11:27:65:90: e7:64:51:15:4a:4e:29:ca:04:91:cf:b2:0a:24:4e: a5:98:3d:c6:12:24:37:9b:ed:06:82:90:0d:44:d8: 58:88:de:b0:2c:f5:3b:f3:24:ed:14:34:96:cf:40: ca:1a:5b:6c:ec:3f:a5:a5:90:9b:8f:ef:76:02:59: a3:55:5e:04:46:00:5c:0d:8c:3e:a4:5c:c2:04:6c: 76:08:fb:dc:17:45:ce:72:17:12:4d:d6:4c:d4:3d: d5:da:6c:c6:7d:98:47:e3:ea:83:a2:72:27:51:7f: 10:31:12:a5:24:47:60:40:f9:ff:e1:47:e0:34:ca: a5:d6:e9:5d:0d:77:0c:ec:45:dd:29:f2:44:d5:88: f6:18:ee:5b:4e:3a:6b:4b:51:f8:b3:a6:42:16:25: cf:5e:19:95:81:21:da:04:66:05:bf:cd:92:92:c0: 7c:d3:71:2d:8d:9f:6a:58:db:44:3d:73:9f:99:ac: 72:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:3F:16:BF:72:7B:2F:60:F2:98:48:51:6F:64:B1:C3:76:13:D2:AB X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.123.220.0/24 Signature Algorithm: sha256WithRSAEncryption 76:3b:ca:85:8a:4d:ee:87:18:fe:5c:63:18:18:ad:75:16:24: 87:97:74:bb:2a:cd:35:94:ae:00:ac:a4:4a:28:0c:f0:24:11: e1:e3:ec:0e:51:4b:2b:c8:65:54:35:19:54:49:68:6f:54:23: 4f:69:0e:24:f9:36:4d:ba:7e:cd:ce:e6:c9:53:de:84:da:d0: 12:b0:2c:09:d9:b7:b9:17:a5:8d:7d:40:b9:f9:40:c8:7b:a3: 12:df:3f:ac:33:ad:d9:c8:5a:bc:73:11:00:d3:8d:5d:af:39: 91:c5:4f:e1:8f:38:de:b3:23:9d:00:f3:87:42:c5:9c:95:a6: ee:19:4a:b6:76:b8:9f:07:bb:e8:fc:c6:14:88:80:1b:c0:bf: 05:65:4d:41:87:3d:ad:a7:c8:70:ba:18:77:47:bc:9c:d2:af: b5:e3:3a:d1:02:f8:c1:3a:aa:29:f4:08:f6:7a:ac:52:1d:63: 8f:7f:2e:a1:87:6e:d6:ff:7c:96:2d:3f:20:7d:ac:ff:01:65: ba:47:36:d3:30:92:82:d4:39:1a:2f:67:de:8a:db:15:0a:cf: a1:45:e3:87:31:0d:35:67:39:59:7b:71:21:be:3b:a5:54:61: 3a:7e:52:52:e6:bb:b1:14:1d:99:ae:c3:a2:ab:f9:0c:8c:07: 10:d9:ea:16 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVggBjjmwaZehN0Jeu7nqqxQw2hUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yNTA2MDIwMTU4MzlaFw0yNjA2MDEwMjAzMzlaMDMxMTAvBgNV BAMTKDczM0YxNkJGNzI3QjJGNjBGMjk4NDg1MTZGNjRCMUMzNzYxM0QyQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJc7QfzYnYobUmn9dwvFuIpI1E gCsuGKcM8gbu7lCYVwEN88QbwpW5/Mrj4GKlC1xDSibE6d3gVpHxvCcQpKJo1aPR y5maESdlkOdkURVKTinKBJHPsgokTqWYPcYSJDeb7QaCkA1E2FiI3rAs9TvzJO0U NJbPQMoaW2zsP6WlkJuP73YCWaNVXgRGAFwNjD6kXMIEbHYI+9wXRc5yFxJN1kzU PdXabMZ9mEfj6oOicidRfxAxEqUkR2BA+f/hR+A0yqXW6V0NdwzsRd0p8kTViPYY 7ltOOmtLUfizpkIWJc9eGZWBIdoEZgW/zZKSwHzTcS2Nn2pY20Q9c5+ZrHI1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcz8Wv3J7L2DymEhRb2Sxw3YT0qswHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMyMzcyZTMxMzIzMzJlMzIzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABt73DANBgkqhkiG 9w0BAQsFAAOCAQEAdjvKhYpN7ocY/lxjGBitdRYkh5d0uyrNNZSuAKykSigM8CQR 4ePsDlFLK8hlVDUZVElob1QjT2kOJPk2Tbp+zc7myVPehNrQErAsCdm3uReljX1A uflAyHujEt8/rDOt2chavHMRANONXa85kcVP4Y843rMjnQDzh0LFnJWm7hlKtna4 nwe76PzGFIiAG8C/BWVNQYc9rafIcLoYd0e8nNKvteM60QL4wTqqKfQI9nqsUh1j j38uoYdu1v98li0/IH2s/wFlukc20zCSgtQ5Gi9n3orbFQrPoUXjhzENNWc5WXtx Ib47pVRhOn5SUua7sRQdma7Doqv5DIwHENnqFg== -----END CERTIFICATE-----Generated at Thu Jun 5 18:20:03 2025 by rpki-client