$ rpki-client -vvf repo-rpki.idnic.net/repo/31224247-347f-4a57-a79a-cb2c21c9170e/0/3231302e38372e3132332e302f32342d3234203d3e20313532303634.roa File: 3231302e38372e3132332e302f32342d3234203d3e20313532303634.roa (raw, json) Hash identifier: cxNzmi6v2p99HHhR+ggQ6n1CG/x3GBlPxyYmKXCdmXo= Subject key identifier: F2:AA:CA:B7:42:AB:16:CC:67:89:C5:97:A9:EE:0B:AB:B9:BE:C1:93 Certificate issuer: /CN=52FA38C22CA0987CE48A3BD5191FFDA2AD39DB3B Certificate serial: 165E4522A54D64622C1A553B50F06342AA366B74 Authority key identifier: 52:FA:38:C2:2C:A0:98:7C:E4:8A:3B:D5:19:1F:FD:A2:AD:39:DB:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52FA38C22CA0987CE48A3BD5191FFDA2AD39DB3B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/31224247-347f-4a57-a79a-cb2c21c9170e/0/3231302e38372e3132332e302f32342d3234203d3e20313532303634.roa Signing time: Sun 01 Jun 2025 08:00:00 +0000 ROA not before: Sun 01 Jun 2025 07:55:00 +0000 ROA not after: Sun 31 May 2026 08:00:00 +0000 asID: 152064 IP address blocks: 210.87.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/31224247-347f-4a57-a79a-cb2c21c9170e/0/52FA38C22CA0987CE48A3BD5191FFDA2AD39DB3B.crl rsync://repo-rpki.idnic.net/repo/31224247-347f-4a57-a79a-cb2c21c9170e/0/52FA38C22CA0987CE48A3BD5191FFDA2AD39DB3B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52FA38C22CA0987CE48A3BD5191FFDA2AD39DB3B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 23:59:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:5e:45:22:a5:4d:64:62:2c:1a:55:3b:50:f0:63:42:aa:36:6b:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52FA38C22CA0987CE48A3BD5191FFDA2AD39DB3B Validity Not Before: Jun 1 07:55:00 2025 GMT Not After : May 31 08:00:00 2026 GMT Subject: CN=F2AACAB742AB16CC6789C597A9EE0BABB9BEC193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ab:ee:77:c1:65:5e:12:6a:60:09:4c:b2:fe: b5:a8:73:46:f1:7a:64:29:cd:f2:01:02:d3:9d:ad: ee:35:21:6a:53:ff:a5:67:9d:20:ac:6d:90:d8:02: 47:e6:89:86:5d:d8:9e:cc:a3:91:25:39:d7:c1:8d: c6:09:5f:3b:92:bd:9b:ba:8f:f8:00:a5:8a:42:70: 5f:4f:e0:cc:31:04:27:75:53:88:f3:28:9b:cf:5f: 2b:f6:00:7f:f9:57:ef:ce:ed:9b:e5:ac:b5:42:38: 33:cb:53:8f:1d:96:f2:b7:41:54:56:42:06:5b:c3: 16:ca:d2:03:76:28:61:c7:4c:ba:a9:fe:0e:d5:3a: 4b:01:0a:66:14:9d:c3:ff:d5:05:65:e7:ab:f2:73: 36:20:89:42:c0:50:3b:4d:fb:a7:02:f2:4b:c3:4f: ab:89:b4:6f:b0:e1:df:63:ad:8e:0e:94:d2:96:ae: 1f:1f:ba:c3:19:26:62:42:39:6f:25:67:9a:35:05: 99:e8:ca:20:0c:af:2a:93:e5:45:ce:e9:79:f5:c2: 5d:af:af:9e:23:a9:db:68:69:e7:b6:02:37:9d:64: b3:2f:02:d5:aa:57:ba:88:d9:b8:d0:35:78:d5:29: 7c:c4:bc:36:0e:7d:47:2d:77:98:2f:b0:98:92:fe: b5:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:AA:CA:B7:42:AB:16:CC:67:89:C5:97:A9:EE:0B:AB:B9:BE:C1:93 X509v3 Authority Key Identifier: keyid:52:FA:38:C2:2C:A0:98:7C:E4:8A:3B:D5:19:1F:FD:A2:AD:39:DB:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/31224247-347f-4a57-a79a-cb2c21c9170e/0/52FA38C22CA0987CE48A3BD5191FFDA2AD39DB3B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52FA38C22CA0987CE48A3BD5191FFDA2AD39DB3B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/31224247-347f-4a57-a79a-cb2c21c9170e/0/3231302e38372e3132332e302f32342d3234203d3e20313532303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.87.123.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:e9:3d:3d:cf:b5:1f:e9:36:7f:ad:28:53:2a:62:c2:78:5a: 32:9a:35:20:15:a9:eb:6b:5c:bb:c1:f5:13:ed:6c:bb:8b:f6: 91:95:a8:96:07:0e:f7:bd:ca:b0:5d:8d:2e:86:44:4f:5a:d4: ee:19:7e:85:32:9d:41:bd:26:d9:dc:44:55:3b:f5:78:9f:bb: 7f:dc:3a:ec:ca:94:4f:5b:19:a6:98:2f:7c:ed:0b:24:9a:81: 71:f4:00:c5:cd:86:c8:45:76:38:bc:ae:bc:de:91:d3:77:9d: c3:31:0b:cb:46:3a:8e:70:af:9a:b8:6f:d8:3a:d9:01:f8:82: d8:17:9e:4c:38:27:65:87:c3:f6:d4:08:55:c8:2e:b0:5d:6a: ee:48:b6:82:d6:13:58:13:2e:ab:c3:50:cf:10:ad:8b:4f:c3: 82:66:75:b5:f8:f9:1c:04:57:7d:f1:3e:6d:27:81:88:77:81: ff:c8:d4:12:3a:8b:e3:4f:99:9e:01:58:b3:3b:2f:30:7d:85: 45:c0:a3:3e:58:71:54:3c:28:24:11:99:41:49:26:f6:76:10: f1:3a:85:1e:f2:a0:a5:a7:e8:54:84:0d:10:b8:bb:37:a0:e9: e4:b4:de:fe:f0:8d:eb:f4:ba:88:e2:98:85:e0:93:98:25:60: e8:af:c0:e6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFl5FIqVNZGIsGlU7UPBjQqo2a3QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJGQTM4QzIyQ0EwOTg3Q0U0OEEzQkQ1MTkxRkZEQTJB RDM5REIzQjAeFw0yNTA2MDEwNzU1MDBaFw0yNjA1MzEwODAwMDBaMDMxMTAvBgNV BAMTKEYyQUFDQUI3NDJBQjE2Q0M2Nzg5QzU5N0E5RUUwQkFCQjlCRUMxOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpq+53wWVeEmpgCUyy/rWoc0bx emQpzfIBAtOdre41IWpT/6VnnSCsbZDYAkfmiYZd2J7Mo5ElOdfBjcYJXzuSvZu6 j/gApYpCcF9P4MwxBCd1U4jzKJvPXyv2AH/5V+/O7ZvlrLVCODPLU48dlvK3QVRW QgZbwxbK0gN2KGHHTLqp/g7VOksBCmYUncP/1QVl56vyczYgiULAUDtN+6cC8kvD T6uJtG+w4d9jrY4OlNKWrh8fusMZJmJCOW8lZ5o1BZnoyiAMryqT5UXO6Xn1wl2v r54jqdtoaee2AjedZLMvAtWqV7qI2bjQNXjVKXzEvDYOfUctd5gvsJiS/rU5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8qrKt0KrFsxnicWXqe4Lq7m+wZMwHwYDVR0j BBgwFoAUUvo4wiygmHzkijvVGR/9oq052zswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTIyNDI0Ny0zNDdmLTRhNTctYTc5YS1jYjJjMjFjOTE3MGUvMC81MkZBMzhDMjJD QTA5ODdDRTQ4QTNCRDUxOTFGRkRBMkFEMzlEQjNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTJGQTM4QzIyQ0EwOTg3Q0U0OEEzQkQ1MTkxRkZEQTJBRDM5 REIzQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxMjI0MjQ3LTM0N2YtNGE1Ny1h NzlhLWNiMmMyMWM5MTcwZS8wLzMyMzEzMDJlMzgzNzJlMzEzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0ld7MA0GCSqG SIb3DQEBCwUAA4IBAQB96T09z7Uf6TZ/rShTKmLCeFoymjUgFanra1y7wfUT7Wy7 i/aRlaiWBw73vcqwXY0uhkRPWtTuGX6FMp1BvSbZ3ERVO/V4n7t/3DrsypRPWxmm mC987QskmoFx9ADFzYbIRXY4vK683pHTd53DMQvLRjqOcK+auG/YOtkB+ILYF55M OCdlh8P21AhVyC6wXWruSLaC1hNYEy6rw1DPEK2LT8OCZnW1+PkcBFd98T5tJ4GI d4H/yNQSOovjT5meAVizOy8wfYVFwKM+WHFUPCgkEZlBSSb2dhDxOoUe8qClp+hU hA0QuLs3oOnktN7+8I3r9LqI4piF4JOYJWDor8Dm -----END CERTIFICATE-----Generated at Sat Jun 7 12:33:33 2025 by rpki-client