$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32312d3234203d3e203435333035.roa File: 3132342e34302e3234382e302f32312d3234203d3e203435333035.roa (raw, json) Hash identifier: VtiYvCa1bjH6ANhQ1ZiFk2JkSbje5+lBzE3EKLizBTk= Subject key identifier: 70:1E:3C:FF:85:18:3D:55:EB:5C:50:AC:2C:0B:CB:9B:94:05:B1:3E Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 1A8599951B00DCA2AC4C6B00D95CFBC4531726 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32312d3234203d3e203435333035.roa Signing time: Mon 02 Jun 2025 02:03:09 +0000 ROA not before: Mon 02 Jun 2025 01:58:09 +0000 ROA not after: Mon 01 Jun 2026 02:03:09 +0000 asID: 45305 IP address blocks: 124.40.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:85:99:95:1b:00:dc:a2:ac:4c:6b:00:d9:5c:fb:c4:53:17:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Jun 2 01:58:09 2025 GMT Not After : Jun 1 02:03:09 2026 GMT Subject: CN=701E3CFF85183D55EB5C50AC2C0BCB9B9405B13E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:33:c8:1e:0f:c1:dd:7e:7f:03:89:08:ea:e5: aa:1f:f5:49:91:19:06:2c:b8:a0:a5:96:54:df:e3: 0c:90:89:81:3a:ec:ae:dd:90:2d:c9:a0:b4:1b:d5: 10:ce:48:8e:21:76:7d:b0:01:d5:8d:2b:c4:2a:65: 64:82:e5:49:d5:89:ff:5e:9d:59:b1:94:e7:b9:09: 4a:9b:1b:10:25:8e:26:de:fb:29:58:95:12:e0:65: 1c:e2:a7:c4:b8:69:e5:44:d6:39:5a:8c:17:06:11: bd:0a:23:1d:c0:c3:6d:0c:09:81:ab:fc:7a:f3:77: 0e:fe:5c:96:55:0d:28:c3:33:f8:4f:2f:ce:fc:76: 42:e3:e7:fb:78:7a:5e:40:90:45:38:14:fe:bb:94: d3:e7:7a:f1:d9:3a:ed:f6:38:91:38:e1:00:98:b3: 07:e7:ff:de:df:ec:f8:e8:05:9f:de:8d:91:4e:94: ca:2d:bf:9b:86:11:2b:38:94:d0:f0:1b:c9:bd:b9: 40:b2:40:87:1d:54:c0:9d:1a:65:cc:15:5a:2e:fd: 9d:6a:d8:89:0c:0a:b0:c7:4c:7c:b3:d6:d8:3c:ef: d6:ae:05:f1:50:d7:d4:3d:c2:e7:2b:61:5a:43:4f: 05:0d:1f:76:b3:9f:eb:d6:b9:1d:dc:43:68:42:af: 48:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:1E:3C:FF:85:18:3D:55:EB:5C:50:AC:2C:0B:CB:9B:94:05:B1:3E X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32312d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.40.248.0/21 Signature Algorithm: sha256WithRSAEncryption 02:a6:3f:09:57:7a:8d:73:8d:ad:f0:84:54:a1:0f:aa:9d:f4: df:74:61:d9:ac:61:ae:b1:ff:ea:ba:23:33:90:3c:15:16:f8: 07:a9:e6:61:ed:23:4e:13:78:5f:97:1d:2e:58:df:7f:42:98: 36:3a:f7:11:27:1a:58:f6:21:0d:45:91:2a:1d:ec:68:1d:4c: 06:2c:19:e2:c0:1f:e5:8d:eb:3d:f4:38:76:ae:b3:5f:89:d0: 92:9d:a5:5e:97:85:5c:60:b6:e7:2c:d3:cb:78:4f:65:ab:07: bf:6c:07:6e:05:be:db:5a:6d:e4:c4:5f:23:c6:ee:94:0f:d3: 51:58:ac:71:c3:59:41:e1:0d:d6:6b:c9:fc:a9:23:2e:96:9e: 96:4e:08:fb:95:bd:ad:12:8b:5f:de:d7:64:e4:36:26:f7:0c: 8a:8e:12:0e:18:58:73:66:88:bf:7b:1c:df:a1:c7:7c:eb:69: 4f:c4:c5:de:5f:05:86:22:c7:00:fa:73:f5:aa:20:67:65:7f: 80:fd:6a:29:e0:d4:02:2e:2f:cf:3a:60:ea:77:4c:91:60:fe: e8:da:a4:57:f6:15:42:e0:0e:c6:79:a8:3a:e3:a3:09:6b:c3: 4b:b8:1e:dc:d3:ff:f2:b2:5e:1b:85:2e:19:74:d4:e9:c5:65: 1d:f1:ab:bc -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgITGoWZlRsA3KKsTGsA2Vz7xFMXJjANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhEMjVBMDRBMEU0RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYx NDJFNUZEMB4XDTI1MDYwMjAxNTgwOVoXDTI2MDYwMTAyMDMwOVowMzExMC8GA1UE AxMoNzAxRTNDRkY4NTE4M0Q1NUVCNUM1MEFDMkMwQkNCOUI5NDA1QjEzRTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALMzyB4Pwd1+fwOJCOrlqh/1SZEZ Biy4oKWWVN/jDJCJgTrsrt2QLcmgtBvVEM5IjiF2fbAB1Y0rxCplZILlSdWJ/16d WbGU57kJSpsbECWOJt77KViVEuBlHOKnxLhp5UTWOVqMFwYRvQojHcDDbQwJgav8 evN3Dv5cllUNKMMz+E8vzvx2QuPn+3h6XkCQRTgU/ruU0+d68dk67fY4kTjhAJiz B+f/3t/s+OgFn96NkU6Uyi2/m4YRKziU0PAbyb25QLJAhx1UwJ0aZcwVWi79nWrY iQwKsMdMfLPW2Dzv1q4F8VDX1D3C5ythWkNPBQ0fdrOf69a5HdxDaEKvSG0CAwEA AaOCAjIwggIuMB0GA1UdDgQWBBRwHjz/hRg9VetcUKwsC8ublAWxPjAfBgNVHSME GDAWgBTSWgSg5OUv9CLZ2PuFfSPcYULl/TAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJk OTVjMTljLTMyNjItNDhjNy1hZjAyLTM3YTgzNWQwYTc3OS8wL0QyNUEwNEEwRTRF NTJGRjQyMkQ5RDhGQjg1N0QyM0RDNjE0MkU1RkQuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi9EMjVBMDRBMEU0RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJF NUZELmNlcjCBogYIKwYBBQUHAQsEgZUwgZIwgY8GCCsGAQUFBzALhoGCcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmQ5NWMxOWMtMzI2Mi00OGM3LWFm MDItMzdhODM1ZDBhNzc5LzAvMzEzMjM0MmUzNDMwMmUzMjM0MzgyZTMwMmYzMjMx MmQzMjM0MjAzZDNlMjAzNDM1MzMzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDfCj4MA0GCSqGSIb3 DQEBCwUAA4IBAQACpj8JV3qNc42t8IRUoQ+qnfTfdGHZrGGusf/quiMzkDwVFvgH qeZh7SNOE3hflx0uWN9/Qpg2OvcRJxpY9iENRZEqHexoHUwGLBniwB/ljes99Dh2 rrNfidCSnaVel4VcYLbnLNPLeE9lqwe/bAduBb7bWm3kxF8jxu6UD9NRWKxxw1lB 4Q3Wa8n8qSMulp6WTgj7lb2tEotf3tdk5DYm9wyKjhIOGFhzZoi/exzfocd862lP xMXeXwWGIscA+nP1qiBnZX+A/Wop4NQCLi/POmDqd0yRYP7o2qRX9hVC4A7Geag6 46MJa8NLuB7c0//ysl4bhS4ZdNTpxWUd8au8 -----END CERTIFICATE-----Generated at Sat Jun 7 18:39:28 2025 by rpki-client