$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32332d3234203d3e20313338313238.roa File: 3232332e3133302e32302e302f32332d3234203d3e20313338313238.roa (raw, json) Hash identifier: 4XaAtrPhzGDBzDHWlHXMB0whCb6rytr+C1+HuznU5f0= Subject key identifier: 13:4E:13:5C:FB:A5:08:37:4B:F9:A1:1A:C0:0D:42:E1:E1:94:74:71 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 1A3B5B079552C9673EB36CC9078B59545C4EB33A Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32332d3234203d3e20313338313238.roa Signing time: Wed 02 Apr 2025 04:02:21 +0000 ROA not before: Wed 02 Apr 2025 03:57:21 +0000 ROA not after: Wed 01 Apr 2026 04:02:21 +0000 asID: 138128 IP address blocks: 223.130.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 19:26:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:3b:5b:07:95:52:c9:67:3e:b3:6c:c9:07:8b:59:54:5c:4e:b3:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Apr 2 03:57:21 2025 GMT Not After : Apr 1 04:02:21 2026 GMT Subject: CN=134E135CFBA508374BF9A11AC00D42E1E1947471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6d:2e:17:cc:b2:b3:5a:bd:eb:d6:69:e3:b9: 35:c8:4d:74:c4:5e:bf:33:20:eb:0c:ca:e1:41:30: e0:98:23:c1:c7:d7:25:a0:04:b4:d6:f4:83:e2:59: e1:5b:48:a4:ac:d9:c1:ad:8f:5c:b3:ab:ef:3b:bb: 56:34:9c:9b:75:e7:7a:76:e0:d9:d3:fd:a8:23:9a: ef:c7:c0:8e:5c:26:70:6e:49:78:da:3f:4c:d9:00: ad:05:4d:6e:7b:ec:16:2a:fa:92:64:58:ea:fc:4d: e2:60:7b:f1:e0:8e:53:f6:54:26:a5:7e:d9:e1:d7: 5f:d1:96:58:1a:8c:9e:81:61:57:4e:de:84:e0:5e: 28:b9:03:f5:a6:d0:a0:f4:c5:c5:7c:70:d3:6a:cd: e0:07:d7:fb:3f:06:b1:f8:39:e0:25:ba:75:38:0d: 70:24:e4:53:80:b5:0a:70:09:b9:50:a5:28:4c:7e: d0:a2:e7:ec:2c:15:7a:d4:d1:4b:3d:8a:ea:9c:7b: 67:f9:1a:17:34:87:f9:ca:d5:47:07:c2:6b:40:68: 08:45:68:6f:cd:f0:39:cf:b6:41:b6:ef:bd:6e:27: b7:29:1e:7f:34:c1:b7:4b:2a:06:cb:25:d6:df:91: 98:08:76:93:9c:f9:ef:60:84:c5:5d:06:d0:b0:b5: 26:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:4E:13:5C:FB:A5:08:37:4B:F9:A1:1A:C0:0D:42:E1:E1:94:74:71 X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32332d3234203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.130.20.0/23 Signature Algorithm: sha256WithRSAEncryption 02:a5:d5:7f:24:8d:f6:c6:60:8e:d5:3c:e5:12:50:16:48:37: 5d:7c:02:9f:cd:99:17:d9:55:57:4b:5b:85:16:a0:de:30:de: 71:c3:4c:d2:a0:fb:24:b0:b1:04:66:21:7b:c7:b2:b7:b2:99: 3a:07:ce:00:74:04:d3:3e:be:c1:c3:d6:31:a8:95:3b:05:7c: 6d:7f:0e:75:f5:cb:15:c2:47:0d:df:a9:44:db:e8:4c:ca:c5: 83:e4:72:35:c1:21:05:b5:65:fd:bc:bd:cd:a0:cf:94:2c:b1: 78:a5:3f:e6:ea:59:46:ff:bf:92:25:e1:17:4f:bf:8c:6c:ff: a6:66:c0:27:3b:53:dd:0e:38:43:96:e9:19:29:8a:26:a5:cc: ea:64:f5:4c:55:18:88:e3:4a:3c:6d:98:df:7d:68:19:57:85: 2e:f4:24:41:1c:f5:7e:dc:5e:2a:1b:98:84:17:21:02:b4:2d: bf:fe:82:46:9b:cf:af:7a:84:78:35:ea:25:1e:b6:15:9a:b1: e6:f3:f1:64:11:d6:0c:f0:ad:8b:48:31:26:9c:0b:53:b1:dd: f9:e5:2e:2f:f0:cb:1e:27:8c:8e:fb:1a:c1:75:de:42:85:fe: c3:71:5d:8b:53:76:a4:e7:83:da:fe:3e:84:c8:b8:ec:dd:61: b2:f6:f9:61 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGjtbB5VSyWc+s2zJB4tZVFxOszowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNTA0MDIwMzU3MjFaFw0yNjA0MDEwNDAyMjFaMDMxMTAvBgNV BAMTKDEzNEUxMzVDRkJBNTA4Mzc0QkY5QTExQUMwMEQ0MkUxRTE5NDc0NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1bS4XzLKzWr3r1mnjuTXITXTE Xr8zIOsMyuFBMOCYI8HH1yWgBLTW9IPiWeFbSKSs2cGtj1yzq+87u1Y0nJt153p2 4NnT/agjmu/HwI5cJnBuSXjaP0zZAK0FTW577BYq+pJkWOr8TeJge/HgjlP2VCal ftnh11/RllgajJ6BYVdO3oTgXii5A/Wm0KD0xcV8cNNqzeAH1/s/BrH4OeAlunU4 DXAk5FOAtQpwCblQpShMftCi5+wsFXrU0Us9iuqce2f5Ghc0h/nK1UcHwmtAaAhF aG/N8DnPtkG2771uJ7cpHn80wbdLKgbLJdbfkZgIdpOc+e9ghMVdBtCwtSZFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUE04TXPulCDdL+aEawA1C4eGUdHEwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzIzMzJlMzEzMzMwMmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB34IUMA0GCSqG SIb3DQEBCwUAA4IBAQACpdV/JI32xmCO1TzlElAWSDddfAKfzZkX2VVXS1uFFqDe MN5xw0zSoPsksLEEZiF7x7K3spk6B84AdATTPr7Bw9YxqJU7BXxtfw519csVwkcN 36lE2+hMysWD5HI1wSEFtWX9vL3NoM+ULLF4pT/m6llG/7+SJeEXT7+MbP+mZsAn O1PdDjhDlukZKYompczqZPVMVRiI40o8bZjffWgZV4Uu9CRBHPV+3F4qG5iEFyEC tC2//oJGm8+veoR4NeolHrYVmrHm8/FkEdYM8K2LSDEmnAtTsd355S4v8MseJ4yO +xrBdd5Chf7DcV2LU3ak54Pa/j6EyLjs3WGy9vlh -----END CERTIFICATE-----Generated at Mon Apr 7 00:16:54 2025 by rpki-client