$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa File: 3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa (raw, json) Hash identifier: 73W8GLSa6I8P01k3aFdjjpvb756Sn1uc1jeTJZ00bq4= Subject key identifier: F6:16:FE:CB:AC:8D:01:57:6C:E6:62:04:34:71:CB:91:2C:06:B8:E8 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 2098E00612061AEC3ED226C32E29CD1FF24496DD Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa Signing time: Mon 02 Jun 2025 02:04:21 +0000 ROA not before: Mon 02 Jun 2025 01:59:21 +0000 ROA not after: Mon 01 Jun 2026 02:04:21 +0000 asID: 138128 IP address blocks: 223.130.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:98:e0:06:12:06:1a:ec:3e:d2:26:c3:2e:29:cd:1f:f2:44:96:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Jun 2 01:59:21 2025 GMT Not After : Jun 1 02:04:21 2026 GMT Subject: CN=F616FECBAC8D01576CE662043471CB912C06B8E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:20:55:e4:05:10:4c:10:c3:46:39:9d:0f:ee: a1:e3:d0:84:24:de:9e:df:78:1f:3a:17:71:61:5c: 68:99:63:14:ef:d6:58:b9:c4:81:3b:a0:68:ec:9e: b3:6a:62:7d:21:23:df:66:71:dc:99:fb:f4:7e:33: f9:a3:2f:7f:6f:aa:25:b5:d1:50:2c:3f:6c:6f:4f: c1:b9:11:a8:3b:7c:07:ab:27:3a:5f:72:42:78:06: 46:43:a3:e4:8b:26:9a:2c:df:3b:d4:b0:7b:c7:d7: 5a:57:aa:96:c0:bb:c3:17:ca:87:cb:00:c2:30:ff: 99:9f:15:d5:11:30:44:6f:93:ea:35:cf:5d:21:bd: 63:6b:40:9f:b8:c3:7a:43:72:67:26:00:e1:d5:f1: 84:9c:38:75:30:d1:07:46:0f:1c:81:2a:84:82:7a: c3:c3:7b:75:c4:75:1c:d1:d1:5f:3f:2a:23:1e:9a: 8e:e4:65:80:63:e3:04:33:02:47:cd:97:66:ec:fc: 4a:21:c2:96:d8:4d:eb:0e:0f:5b:8f:4c:db:a0:19: 4b:37:8f:ab:f8:a1:23:1e:35:1d:ed:db:a8:35:d8: 7e:87:64:ff:90:69:dc:53:29:82:e6:fa:37:78:7b: 73:ae:ac:12:ee:68:98:25:28:0a:16:f3:be:0c:fe: c7:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:16:FE:CB:AC:8D:01:57:6C:E6:62:04:34:71:CB:91:2C:06:B8:E8 X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.130.21.0/24 Signature Algorithm: sha256WithRSAEncryption a2:3c:0d:a6:9f:b4:95:f1:a3:a3:e7:45:9e:50:cf:8a:e4:e0: 55:c3:b2:d0:0f:0a:bf:c9:b8:a5:bf:3c:f8:87:3f:d6:0f:42: 03:01:b7:ec:e4:cd:df:b5:69:b2:c9:b5:ae:2f:03:00:ca:e4: eb:7a:25:56:af:9b:f6:d0:b3:41:7e:7a:35:83:a9:41:1d:ad: 6e:63:3d:84:80:0e:56:18:8b:d3:45:a2:60:cf:22:35:95:be: b4:58:bb:39:70:d5:8e:a2:47:cd:7b:95:02:98:28:2e:ef:c2: 31:95:25:a4:b3:af:66:03:9a:4b:96:58:ca:f0:6f:fa:49:00: d0:76:f2:d5:46:fd:b1:17:b8:68:69:57:14:28:f1:86:b0:28: 79:dd:9f:98:46:b5:c0:22:fb:36:5f:4a:7e:84:63:99:e4:ab: 34:dd:46:f7:77:73:a5:9a:b2:c2:71:fe:3d:2f:1f:2d:8f:01: ad:b7:31:d3:18:3b:49:6d:ad:dd:bd:34:0a:56:d8:61:be:b7: 66:ec:49:83:f0:76:dd:9c:b7:d3:86:d4:f5:bd:06:42:da:4e: 7c:47:93:61:9d:e4:fb:1c:bd:6a:7f:9d:43:dc:03:08:54:4e: f2:61:6b:13:38:18:0a:e2:6b:1a:7c:c2:d0:c2:38:6d:9e:58: 03:7c:72:e5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIJjgBhIGGuw+0ibDLinNH/JElt0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNTA2MDIwMTU5MjFaFw0yNjA2MDEwMjA0MjFaMDMxMTAvBgNV BAMTKEY2MTZGRUNCQUM4RDAxNTc2Q0U2NjIwNDM0NzFDQjkxMkMwNkI4RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeIFXkBRBMEMNGOZ0P7qHj0IQk 3p7feB86F3FhXGiZYxTv1li5xIE7oGjsnrNqYn0hI99mcdyZ+/R+M/mjL39vqiW1 0VAsP2xvT8G5Eag7fAerJzpfckJ4BkZDo+SLJpos3zvUsHvH11pXqpbAu8MXyofL AMIw/5mfFdURMERvk+o1z10hvWNrQJ+4w3pDcmcmAOHV8YScOHUw0QdGDxyBKoSC esPDe3XEdRzR0V8/KiMemo7kZYBj4wQzAkfNl2bs/EohwpbYTesOD1uPTNugGUs3 j6v4oSMeNR3t26g12H6HZP+QadxTKYLm+jd4e3OurBLuaJglKAoW874M/seVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9hb+y6yNAVds5mIENHHLkSwGuOgwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzIzMzJlMzEzMzMwMmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA34IVMA0GCSqG SIb3DQEBCwUAA4IBAQCiPA2mn7SV8aOj50WeUM+K5OBVw7LQDwq/ybilvzz4hz/W D0IDAbfs5M3ftWmyybWuLwMAyuTreiVWr5v20LNBfno1g6lBHa1uYz2EgA5WGIvT RaJgzyI1lb60WLs5cNWOokfNe5UCmCgu78IxlSWks69mA5pLlljK8G/6SQDQdvLV Rv2xF7hoaVcUKPGGsCh53Z+YRrXAIvs2X0p+hGOZ5Ks03Ub3d3OlmrLCcf49Lx8t jwGttzHTGDtJba3dvTQKVthhvrdm7EmD8HbdnLfThtT1vQZC2k58R5NhneT7HL1q f51D3AMIVE7yYWsTOBgK4msafMLQwjhtnlgDfHLl -----END CERTIFICATE-----Generated at Thu Jun 5 19:11:47 2025 by rpki-client