$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232322e302f32332d3233203d3e203538333639.roa File: 32372e3132332e3232322e302f32332d3233203d3e203538333639.roa (raw, json) Hash identifier: HgDr0nYYB9ZPmoxkcf3qhmgYJruCUeoxV5XtdGfyiLg= Subject key identifier: AA:79:FE:24:E9:82:E9:3F:68:6E:E7:CB:67:BF:F3:C7:EA:C4:06:30 Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 5DD2A5C762749841695A386685BADE27CDDA7685 Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232322e302f32332d3233203d3e203538333639.roa Signing time: Mon 02 Jun 2025 02:03:38 +0000 ROA not before: Mon 02 Jun 2025 01:58:38 +0000 ROA not after: Mon 01 Jun 2026 02:03:38 +0000 asID: 58369 IP address blocks: 27.123.222.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:d2:a5:c7:62:74:98:41:69:5a:38:66:85:ba:de:27:cd:da:76:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jun 2 01:58:38 2025 GMT Not After : Jun 1 02:03:38 2026 GMT Subject: CN=AA79FE24E982E93F686EE7CB67BFF3C7EAC40630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3e:1f:46:08:17:64:bb:be:51:06:a9:d1:6e: 49:3b:ed:ad:c0:9e:71:16:3d:f6:8e:25:70:ef:05: 87:b4:0d:60:5e:9d:44:2e:ce:84:e3:4c:91:07:0b: 2b:ff:d9:b3:52:1c:9b:d3:a4:8e:16:18:c4:8e:44: 31:60:1f:b1:36:ab:4f:10:54:ac:26:d9:64:dd:67: f8:3c:24:9f:0d:af:8d:a8:bc:21:0f:d9:33:be:5b: e8:50:1f:b2:81:ce:f7:ee:56:a4:ef:19:ce:25:b8: e9:0d:36:e8:8e:31:38:7a:3f:3c:36:6c:8a:59:9f: cd:27:9d:92:81:fe:52:e3:42:1c:15:84:4b:39:f2: 56:ff:3e:a1:52:6e:39:ba:d2:46:93:e1:cc:f8:bc: db:57:76:7c:72:8d:e9:89:46:27:2f:d7:94:0a:52: 8c:95:b0:8c:1a:b1:dd:8e:91:08:11:13:72:38:44: 92:be:bc:98:42:5d:26:f0:13:f8:25:8c:fc:ba:07: ea:ad:eb:1f:8f:14:df:6c:56:8d:a4:bb:9c:48:a6: 92:66:77:2a:c3:64:d0:fd:6f:83:46:d5:75:53:85: 41:cf:4b:22:95:c9:f1:66:05:cf:9f:54:e3:9c:8f: 28:e0:fb:f9:03:a6:7b:95:cf:52:de:a5:5b:15:af: b1:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:79:FE:24:E9:82:E9:3F:68:6E:E7:CB:67:BF:F3:C7:EA:C4:06:30 X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232322e302f32332d3233203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.123.222.0/23 Signature Algorithm: sha256WithRSAEncryption 06:38:5f:d1:7c:bf:13:f6:97:ac:d6:8d:bb:4d:60:76:98:70: 14:0d:61:93:4b:c3:66:9e:53:b4:98:41:75:3f:1a:9a:a7:7d: d5:cc:ae:2f:40:43:1a:e4:17:50:92:fb:0b:c8:15:9f:b9:66: d4:13:33:ed:05:21:fe:b2:19:c5:6f:31:07:79:80:89:f3:44: cb:73:c4:fa:1b:0d:17:39:c4:14:09:41:6d:a0:6c:30:db:ca: 12:45:8b:46:d2:ef:d3:9f:f1:cf:3a:f0:39:0a:e5:6d:69:03: 73:57:1d:09:26:d7:0c:28:2f:95:86:24:f0:44:bd:fb:09:2e: 5a:84:9b:e4:58:fc:0d:7d:35:b8:b3:48:ac:da:c4:0f:d0:76: 9e:4d:04:cf:36:16:e9:b4:e8:0e:be:12:2e:c2:9c:e0:84:76: fd:06:e1:56:fc:e6:03:57:ec:f7:a5:3c:9a:ed:e0:5f:dc:9c: ff:5e:4e:93:85:f9:0a:66:99:0b:ae:af:5c:f6:d5:93:ce:85: 42:a9:1c:a2:0d:83:4b:6b:f8:44:20:0d:89:2b:24:2d:49:d0: dc:07:54:72:4b:a0:e4:5b:a1:09:cc:00:d4:28:95:27:ad:bb: 8f:00:3a:49:47:b9:32:d1:5c:cd:81:2d:55:b5:e3:c5:7f:15: 7d:ef:ab:37 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXdKlx2J0mEFpWjhmhbreJ83adoUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yNTA2MDIwMTU4MzhaFw0yNjA2MDEwMjAzMzhaMDMxMTAvBgNV BAMTKEFBNzlGRTI0RTk4MkU5M0Y2ODZFRTdDQjY3QkZGM0M3RUFDNDA2MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZPh9GCBdku75RBqnRbkk77a3A nnEWPfaOJXDvBYe0DWBenUQuzoTjTJEHCyv/2bNSHJvTpI4WGMSORDFgH7E2q08Q VKwm2WTdZ/g8JJ8Nr42ovCEP2TO+W+hQH7KBzvfuVqTvGc4luOkNNuiOMTh6Pzw2 bIpZn80nnZKB/lLjQhwVhEs58lb/PqFSbjm60kaT4cz4vNtXdnxyjemJRicv15QK UoyVsIwasd2OkQgRE3I4RJK+vJhCXSbwE/gljPy6B+qt6x+PFN9sVo2ku5xIppJm dyrDZND9b4NG1XVThUHPSyKVyfFmBc+fVOOcjyjg+/kDpnuVz1LepVsVr7E5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqnn+JOmC6T9obufLZ7/zx+rEBjAwHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMyMzcyZTMxMzIzMzJlMzIzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEARt73jANBgkqhkiG 9w0BAQsFAAOCAQEABjhf0Xy/E/aXrNaNu01gdphwFA1hk0vDZp5TtJhBdT8amqd9 1cyuL0BDGuQXUJL7C8gVn7lm1BMz7QUh/rIZxW8xB3mAifNEy3PE+hsNFznEFAlB baBsMNvKEkWLRtLv05/xzzrwOQrlbWkDc1cdCSbXDCgvlYYk8ES9+wkuWoSb5Fj8 DX01uLNIrNrED9B2nk0EzzYW6bToDr4SLsKc4IR2/QbhVvzmA1fs96U8mu3gX9yc /15Ok4X5CmaZC66vXPbVk86FQqkcog2DS2v4RCANiSskLUnQ3AdUckug5FuhCcwA 1CiVJ627jwA6SUe5MtFczYEtVbXjxX8Vfe+rNw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:16:05 2025 by rpki-client