$ rpki-client -vvf repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31362e302f32312d3231203d3e203436303435.roa File: 3132322e3132382e31362e302f32312d3231203d3e203436303435.roa (raw, json) Hash identifier: /6F+dCYfhj8nILz7NzSN2rSqER4M9P3bFQ45j14GuDI= Subject key identifier: EA:43:EE:4A:D3:D3:EC:9C:32:58:09:94:DC:3D:86:C5:93:C4:56:E4 Certificate issuer: /CN=00EE953FD699788668C724460F4D8D420238194F Certificate serial: 3E275A92BED1A98479705831F6A265D657B4A8DE Authority key identifier: 00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31362e302f32312d3231203d3e203436303435.roa Signing time: Tue 20 May 2025 07:02:59 +0000 ROA not before: Tue 20 May 2025 06:57:59 +0000 ROA not after: Tue 19 May 2026 07:02:59 +0000 asID: 46045 IP address blocks: 122.128.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:27:5a:92:be:d1:a9:84:79:70:58:31:f6:a2:65:d6:57:b4:a8:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00EE953FD699788668C724460F4D8D420238194F Validity Not Before: May 20 06:57:59 2025 GMT Not After : May 19 07:02:59 2026 GMT Subject: CN=EA43EE4AD3D3EC9C32580994DC3D86C593C456E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:75:a5:50:9f:8c:56:57:dc:58:da:de:2f:72: 16:23:37:82:cf:c2:a9:d0:93:97:9a:90:74:d0:0a: 90:cc:06:9b:85:91:1c:3f:ee:bc:78:e4:1a:f2:78: 50:b8:69:c6:61:f2:20:5d:dc:15:88:f7:81:b4:2b: 4c:6e:c0:15:2b:38:6e:a8:86:5a:3f:67:b4:9f:e6: 22:06:d3:2c:7c:2d:80:d5:82:b0:19:ee:e9:cb:40: 0a:26:55:cd:c9:b9:b2:99:3e:c5:29:e8:18:06:4a: bd:42:38:80:14:3a:91:d7:36:b3:2d:f0:17:dd:7f: 99:3c:ca:66:9b:14:06:47:a1:cf:70:8c:cc:67:19: 1e:f3:a2:0e:2a:cc:31:e9:15:69:d9:a0:ea:a9:c8: 26:6e:32:8a:b4:1c:0b:b0:98:dd:13:b5:1c:24:11: a5:96:18:84:2a:9a:5e:e9:1d:40:2d:76:8b:42:2e: 98:ca:19:09:0a:be:a4:57:ba:ea:56:bd:6b:c5:e0: 77:64:0d:bd:dd:32:6a:e3:fe:21:e8:02:60:fe:52: 02:95:24:6b:d4:e3:71:1d:ac:74:7a:f4:a6:2a:75: 7a:20:f5:92:44:8f:d1:0e:84:fc:c4:0e:a1:f3:16: a2:64:7c:d7:e4:53:8b:db:fd:1c:37:ad:4d:4c:34: 6e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:43:EE:4A:D3:D3:EC:9C:32:58:09:94:DC:3D:86:C5:93:C4:56:E4 X509v3 Authority Key Identifier: keyid:00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31362e302f32312d3231203d3e203436303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.16.0/21 Signature Algorithm: sha256WithRSAEncryption 7b:ee:83:8a:55:5b:69:63:e4:ed:47:f8:7f:f3:6e:63:e3:b9: 83:52:ce:97:2c:d3:e0:cb:6b:9f:94:53:3d:19:5d:f0:19:89: b8:ac:b9:9c:f7:d5:7c:57:3e:ca:56:33:a3:a3:fa:02:77:a9: 06:0a:a1:8e:ec:c3:63:cf:4d:80:31:5c:ee:cc:0d:84:ee:98: 3e:c2:e3:e4:c3:5a:16:e0:ec:6d:5d:7e:59:f1:69:e8:c7:97: 1b:08:c1:19:1d:39:90:f4:40:91:80:97:be:48:ba:a2:29:79: 3c:36:ca:fc:b5:82:0c:5d:61:be:b8:f7:d8:5f:b8:50:32:5c: 7e:ac:5f:a5:9b:f0:79:11:ea:1e:5b:43:1e:9f:4a:90:db:ee: 79:71:51:80:6d:fb:50:5a:71:22:5e:ae:54:ad:28:d3:84:20: 72:6f:6d:27:04:b5:66:9e:e2:f6:fa:ce:2a:a6:ec:bf:fd:35: 74:ff:eb:11:a6:a1:ee:ea:9d:d0:0f:f6:e9:98:6a:42:54:59: 27:8e:e4:4b:7c:80:0d:a4:4e:68:73:dd:40:1e:30:0a:aa:28: 34:aa:1a:56:ec:17:bd:75:79:06:ae:d4:c2:65:f9:07:fe:d9: 5d:77:e8:ce:ef:2e:0e:49:20:59:0c:da:4a:40:ef:8d:ff:6e: 23:39:b2:f6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPidakr7RqYR5cFgx9qJl1le0qN4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIw MjM4MTk0RjAeFw0yNTA1MjAwNjU3NTlaFw0yNjA1MTkwNzAyNTlaMDMxMTAvBgNV BAMTKEVBNDNFRTRBRDNEM0VDOUMzMjU4MDk5NERDM0Q4NkM1OTNDNDU2RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYdaVQn4xWV9xY2t4vchYjN4LP wqnQk5eakHTQCpDMBpuFkRw/7rx45BryeFC4acZh8iBd3BWI94G0K0xuwBUrOG6o hlo/Z7Sf5iIG0yx8LYDVgrAZ7unLQAomVc3JubKZPsUp6BgGSr1COIAUOpHXNrMt 8Bfdf5k8ymabFAZHoc9wjMxnGR7zog4qzDHpFWnZoOqpyCZuMoq0HAuwmN0TtRwk EaWWGIQqml7pHUAtdotCLpjKGQkKvqRXuupWvWvF4HdkDb3dMmrj/iHoAmD+UgKV JGvU43EdrHR69KYqdXog9ZJEj9EOhPzEDqHzFqJkfNfkU4vb/Rw3rU1MNG7lAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6kPuStPT7JwyWAmU3D2GxZPEVuQwHwYDVR0j BBgwFoAUAO6VP9aZeIZoxyRGD02NQgI4GU8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODUzZjIyOC0zN2YyLTQ3ZDktYjlmZS00NzZiYWRlMTMzOTMvMC8wMEVFOTUzRkQ2 OTk3ODg2NjhDNzI0NDYwRjREOEQ0MjAyMzgxOTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIwMjM4 MTk0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMTM2MmUzMDJmMzIz MTJkMzIzMTIwM2QzZTIwMzQzNjMwMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3qAEDANBgkqhkiG 9w0BAQsFAAOCAQEAe+6DilVbaWPk7Uf4f/NuY+O5g1LOlyzT4Mtrn5RTPRld8BmJ uKy5nPfVfFc+ylYzo6P6AnepBgqhjuzDY89NgDFc7swNhO6YPsLj5MNaFuDsbV1+ WfFp6MeXGwjBGR05kPRAkYCXvki6oil5PDbK/LWCDF1hvrj32F+4UDJcfqxfpZvw eRHqHltDHp9KkNvueXFRgG37UFpxIl6uVK0o04Qgcm9tJwS1Zp7i9vrOKqbsv/01 dP/rEaah7uqd0A/26ZhqQlRZJ47kS3yADaROaHPdQB4wCqooNKoaVuwXvXV5Bq7U wmX5B/7ZXXfozu8uDkkgWQzaSkDvjf9uIzmy9g== -----END CERTIFICATE-----Generated at Thu Jun 5 18:22:04 2025 by rpki-client