$ rpki-client -vvf repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31382e302f32342d3234203d3e203436303435.roa File: 3132322e3132382e31382e302f32342d3234203d3e203436303435.roa (raw, json) Hash identifier: bvNupIpWmDhaL8rFDaTnVFDhI5fuAg0k+27/VGkzYJs= Subject key identifier: 37:C6:D2:79:A8:2B:E8:D2:B3:C5:C0:63:A9:BC:EA:D7:60:07:DA:10 Certificate issuer: /CN=00EE953FD699788668C724460F4D8D420238194F Certificate serial: 098C8004BF2002F96BD3A54DEDE215B9A5FAF25F Authority key identifier: 00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31382e302f32342d3234203d3e203436303435.roa Signing time: Tue 20 May 2025 05:02:23 +0000 ROA not before: Tue 20 May 2025 04:57:23 +0000 ROA not after: Tue 19 May 2026 05:02:23 +0000 asID: 46045 IP address blocks: 122.128.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:8c:80:04:bf:20:02:f9:6b:d3:a5:4d:ed:e2:15:b9:a5:fa:f2:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00EE953FD699788668C724460F4D8D420238194F Validity Not Before: May 20 04:57:23 2025 GMT Not After : May 19 05:02:23 2026 GMT Subject: CN=37C6D279A82BE8D2B3C5C063A9BCEAD76007DA10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:69:dc:28:98:c2:aa:44:87:02:e1:98:77:8d: b0:d3:2b:ae:44:26:02:7c:9f:f4:de:fd:e3:4f:ec: 0f:31:1b:5b:08:2c:07:6a:54:58:85:e3:52:4b:40: b1:1d:00:0f:2f:82:6e:bf:bf:c3:b2:6b:9c:4b:f7: 3d:aa:7f:6a:36:4a:a6:61:43:2e:e5:db:ba:b7:6d: 6b:2a:12:14:2c:d2:b4:20:bd:62:54:7e:14:35:2d: 29:0c:62:e1:c3:6e:2d:1f:8f:8c:ac:d3:c2:06:0e: 51:b6:1b:69:f4:59:b9:f0:af:a5:ea:7e:31:b5:9b: ab:94:d5:48:d3:aa:fd:04:74:09:39:c1:01:a0:e5: 31:33:14:d9:eb:a0:a5:b4:9c:c4:db:8d:bb:99:1d: 54:87:53:f5:4a:32:78:71:d4:14:9c:13:50:10:1c: bf:e1:ea:75:34:80:75:2b:72:8d:95:e4:71:b8:a3: f0:a6:d2:55:5f:e6:f8:af:0b:e1:b9:f1:75:95:14: 8e:cc:1b:53:e8:f6:ee:4e:a9:d1:48:22:83:e3:bb: 0b:ba:83:6d:b3:25:4a:4d:d6:1b:c4:68:fd:90:85: 22:a2:e1:0d:0e:c5:77:f8:b3:14:85:3a:fd:fe:12: 08:43:d4:76:fd:6b:ba:d9:fd:2e:a3:65:e1:eb:ec: 3f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:C6:D2:79:A8:2B:E8:D2:B3:C5:C0:63:A9:BC:EA:D7:60:07:DA:10 X509v3 Authority Key Identifier: keyid:00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31382e302f32342d3234203d3e203436303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.18.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:e2:0d:74:c7:32:b8:24:66:46:26:0a:67:f8:08:2a:46:9e: 66:b9:9c:f3:93:68:e8:4c:a8:4e:fe:ad:86:f4:e2:35:ac:ee: 23:78:e3:20:0f:e7:a2:ab:0d:8d:8d:24:c4:3a:f1:3c:02:2a: 4f:99:9c:37:14:41:a7:75:be:be:32:94:0f:09:b4:7f:ac:92: b1:8d:a8:7c:0a:6c:e2:68:48:6c:c9:32:67:27:e6:e5:f5:95: c3:63:98:71:f3:c7:be:d5:97:b9:8f:4b:60:09:1f:5b:24:6f: 2a:16:22:f5:85:75:30:49:f9:6e:2d:c7:81:6e:c5:e0:b0:69: 19:3f:20:b7:37:77:6e:47:32:58:db:08:87:7a:33:6d:33:75: b3:f0:27:b3:29:e5:06:60:4f:73:63:9b:13:c0:5c:57:66:71: 45:35:12:90:fd:0f:9b:c8:42:e5:63:30:aa:9a:e0:6a:83:30: 0a:ce:e1:29:50:cb:cc:f9:65:ce:d8:70:f4:9e:fa:c3:65:81: 11:79:81:3b:49:be:42:8b:e6:4c:65:49:0a:06:da:ab:81:21: 31:a0:a9:e6:77:8e:cc:6d:34:de:62:e8:2a:b8:c0:26:ce:81: dc:f7:0a:d1:7f:08:07:71:61:06:45:5c:70:a3:02:29:b1:1a: b8:8e:d3:13 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCYyABL8gAvlr06VN7eIVuaX68l8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIw MjM4MTk0RjAeFw0yNTA1MjAwNDU3MjNaFw0yNjA1MTkwNTAyMjNaMDMxMTAvBgNV BAMTKDM3QzZEMjc5QTgyQkU4RDJCM0M1QzA2M0E5QkNFQUQ3NjAwN0RBMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOadwomMKqRIcC4Zh3jbDTK65E JgJ8n/Te/eNP7A8xG1sILAdqVFiF41JLQLEdAA8vgm6/v8Oya5xL9z2qf2o2SqZh Qy7l27q3bWsqEhQs0rQgvWJUfhQ1LSkMYuHDbi0fj4ys08IGDlG2G2n0Wbnwr6Xq fjG1m6uU1UjTqv0EdAk5wQGg5TEzFNnroKW0nMTbjbuZHVSHU/VKMnhx1BScE1AQ HL/h6nU0gHUrco2V5HG4o/Cm0lVf5vivC+G58XWVFI7MG1Po9u5OqdFIIoPjuwu6 g22zJUpN1hvEaP2QhSKi4Q0OxXf4sxSFOv3+EghD1Hb9a7rZ/S6jZeHr7D8TAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUN8bSeagr6NKzxcBjqbzq12AH2hAwHwYDVR0j BBgwFoAUAO6VP9aZeIZoxyRGD02NQgI4GU8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODUzZjIyOC0zN2YyLTQ3ZDktYjlmZS00NzZiYWRlMTMzOTMvMC8wMEVFOTUzRkQ2 OTk3ODg2NjhDNzI0NDYwRjREOEQ0MjAyMzgxOTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIwMjM4 MTk0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAEjANBgkqhkiG 9w0BAQsFAAOCAQEAXOINdMcyuCRmRiYKZ/gIKkaeZrmc85No6EyoTv6thvTiNazu I3jjIA/noqsNjY0kxDrxPAIqT5mcNxRBp3W+vjKUDwm0f6ySsY2ofAps4mhIbMky Zyfm5fWVw2OYcfPHvtWXuY9LYAkfWyRvKhYi9YV1MEn5bi3HgW7F4LBpGT8gtzd3 bkcyWNsIh3ozbTN1s/AnsynlBmBPc2ObE8BcV2ZxRTUSkP0Pm8hC5WMwqprgaoMw Cs7hKVDLzPllzthw9J76w2WBEXmBO0m+QovmTGVJCgbaq4EhMaCp5neOzG003mLo KrjAJs6B3PcK0X8IB3FhBkVccKMCKbEauI7TEw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:27:44 2025 by rpki-client