$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232332e302f32342d3234203d3e203538333639.roa File: 32372e3132332e3232332e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: PTVwA5jSdi/lBgcSZSfENeN+MmxWfhHUWstqCSbwR6g= Subject key identifier: 16:53:B7:26:5F:4B:8D:63:06:F7:17:56:79:5A:0F:E0:AA:74:38:08 Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 57517789C9C9D743F6E1035D57EF9F98B83B17B5 Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232332e302f32342d3234203d3e203538333639.roa Signing time: Mon 02 Jun 2025 02:03:36 +0000 ROA not before: Mon 02 Jun 2025 01:58:36 +0000 ROA not after: Mon 01 Jun 2026 02:03:36 +0000 asID: 58369 IP address blocks: 27.123.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:51:77:89:c9:c9:d7:43:f6:e1:03:5d:57:ef:9f:98:b8:3b:17:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jun 2 01:58:36 2025 GMT Not After : Jun 1 02:03:36 2026 GMT Subject: CN=1653B7265F4B8D6306F71756795A0FE0AA743808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b2:bb:5d:64:29:6f:7e:1a:dc:8c:7d:1d:de: 98:f5:20:9a:64:f2:9b:0d:fe:03:31:4b:39:0a:03: de:01:27:43:96:d6:c7:a2:c7:08:cc:85:d7:3e:bf: 1d:f7:e5:aa:42:c1:fd:06:ff:c6:fb:55:47:25:29: 5c:56:41:d5:dd:de:b5:26:1e:b0:fd:11:38:7e:d6: 8a:9d:0f:0a:42:61:08:3e:99:4a:25:f4:9d:56:ee: 55:51:8e:ee:f9:52:3a:6c:5a:b4:ad:65:38:85:9f: 98:ad:07:28:41:b6:ec:51:20:5f:eb:1c:25:6b:56: 72:f5:a8:eb:d4:6e:3e:1f:dc:70:6a:82:d7:6f:a9: 2c:f5:4c:25:e8:3a:15:40:88:6e:23:50:de:db:bb: 82:da:62:35:0a:ff:4c:1a:7f:4a:28:b1:05:c1:df: 16:36:75:28:d2:0e:22:3f:99:e7:60:86:69:38:ca: b8:a2:1b:1d:6d:3a:72:2b:6d:9b:a0:38:02:c9:6b: 08:13:ef:42:c6:b7:76:f6:d2:e3:ca:3a:53:72:b5: ef:9f:d8:77:1c:e6:7f:b1:27:82:d5:6a:ce:c9:d4: cb:28:28:98:5b:bd:ad:c5:86:48:42:72:2c:b1:ad: 52:c7:13:7f:fe:1e:e5:77:d5:9f:29:86:8b:dd:32: 49:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:53:B7:26:5F:4B:8D:63:06:F7:17:56:79:5A:0F:E0:AA:74:38:08 X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232332e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.123.223.0/24 Signature Algorithm: sha256WithRSAEncryption 98:b8:e4:ef:b8:d8:84:e0:2d:95:49:6d:92:4c:5d:bb:68:b5: e6:4d:e7:f1:00:b7:55:bb:07:54:d7:61:ae:da:7c:b6:06:2a: 57:d1:d2:5c:83:66:d3:6c:b2:5a:59:3d:fe:bd:f9:22:b8:85: 09:98:e0:74:f3:0a:7e:46:cb:03:30:ae:1f:94:1e:0d:dc:a2: cc:bc:3d:de:80:10:3b:23:22:1e:c9:a4:34:25:f3:3c:c0:9e: 3e:ab:24:4b:44:39:e0:bf:f2:ff:88:58:32:76:1d:a7:68:03: cb:20:9b:ee:27:0a:66:de:0c:51:1e:e0:5e:91:03:65:dc:55: 07:47:be:3a:d3:16:34:75:a6:b8:23:a0:7c:60:5b:b7:76:7c: 7a:5f:41:99:71:ce:60:0f:1f:d9:7a:77:3b:50:17:2d:e2:0c: dd:72:ce:eb:85:4e:c9:ec:2d:87:eb:bf:2b:10:ef:ae:63:97: 71:99:6b:53:e6:d1:da:3c:28:ec:5c:2e:ef:92:4a:03:f8:49: 80:c1:2d:05:01:20:40:92:3f:73:54:d7:ef:de:fb:46:bf:83: e6:b0:ed:6b:d6:1a:ff:92:35:a5:91:0e:34:e2:0e:ca:37:34: a3:ec:a8:de:e2:ff:f1:97:20:13:ba:fc:70:53:2e:ec:fc:99: ae:d3:78:bf -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUV1F3icnJ10P24QNdV++fmLg7F7UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yNTA2MDIwMTU4MzZaFw0yNjA2MDEwMjAzMzZaMDMxMTAvBgNV BAMTKDE2NTNCNzI2NUY0QjhENjMwNkY3MTc1Njc5NUEwRkUwQUE3NDM4MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnsrtdZClvfhrcjH0d3pj1IJpk 8psN/gMxSzkKA94BJ0OW1seixwjMhdc+vx335apCwf0G/8b7VUclKVxWQdXd3rUm HrD9ETh+1oqdDwpCYQg+mUol9J1W7lVRju75UjpsWrStZTiFn5itByhBtuxRIF/r HCVrVnL1qOvUbj4f3HBqgtdvqSz1TCXoOhVAiG4jUN7bu4LaYjUK/0waf0oosQXB 3xY2dSjSDiI/medghmk4yriiGx1tOnIrbZugOALJawgT70LGt3b20uPKOlNyte+f 2Hcc5n+xJ4LVas7J1MsoKJhbva3FhkhCciyxrVLHE3/+HuV31Z8phovdMkknAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFlO3Jl9LjWMG9xdWeVoP4Kp0OAgwHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMyMzcyZTMxMzIzMzJlMzIzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABt73zANBgkqhkiG 9w0BAQsFAAOCAQEAmLjk77jYhOAtlUltkkxdu2i15k3n8QC3VbsHVNdhrtp8tgYq V9HSXINm02yyWlk9/r35IriFCZjgdPMKfkbLAzCuH5QeDdyizLw93oAQOyMiHsmk NCXzPMCePqskS0Q54L/y/4hYMnYdp2gDyyCb7icKZt4MUR7gXpEDZdxVB0e+OtMW NHWmuCOgfGBbt3Z8el9BmXHOYA8f2Xp3O1AXLeIM3XLO64VOyewth+u/KxDvrmOX cZlrU+bR2jwo7Fwu75JKA/hJgMEtBQEgQJI/c1TX7977Rr+D5rDta9Ya/5I1pZEO NOIOyjc0o+yo3uL/8ZcgE7r8cFMu7PyZrtN4vw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:21:08 2025 by rpki-client