$ rpki-client -vvf repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31392e302f32342d3234203d3e203436303435.roa File: 3132322e3132382e31392e302f32342d3234203d3e203436303435.roa (raw, json) Hash identifier: +0IYJt+ldEx6hRx5/LkWzdAnyMowfs90g5flb4WhwNI= Subject key identifier: C5:40:E9:9D:CD:DC:FE:D5:CF:61:AE:66:6C:6F:B9:08:C1:80:D4:E8 Certificate issuer: /CN=00EE953FD699788668C724460F4D8D420238194F Certificate serial: 0ECAF3B34DE50E8056B14461519BDE72E64E179C Authority key identifier: 00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31392e302f32342d3234203d3e203436303435.roa Signing time: Tue 20 May 2025 07:02:59 +0000 ROA not before: Tue 20 May 2025 06:57:59 +0000 ROA not after: Tue 19 May 2026 07:02:59 +0000 asID: 46045 IP address blocks: 122.128.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ca:f3:b3:4d:e5:0e:80:56:b1:44:61:51:9b:de:72:e6:4e:17:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00EE953FD699788668C724460F4D8D420238194F Validity Not Before: May 20 06:57:59 2025 GMT Not After : May 19 07:02:59 2026 GMT Subject: CN=C540E99DCDDCFED5CF61AE666C6FB908C180D4E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:51:fd:db:2d:d5:01:c5:94:a3:ab:b4:aa:af: ef:af:ea:70:45:c8:72:80:e0:0e:4b:6e:22:02:ae: 1f:15:35:25:52:e6:95:14:c7:4b:4a:cf:d4:8a:61: 27:f1:dc:cf:2e:ba:c8:39:2b:f1:6c:da:19:f4:7f: 76:8c:8a:d4:8b:93:20:b7:0b:d4:82:0f:5a:3b:b5: 8f:96:9f:22:3e:b5:b2:e6:07:33:a4:8a:dd:4f:23: 3e:74:05:6a:e7:fd:4b:7a:96:71:4b:f7:82:41:ff: 6f:10:d4:0c:1b:21:1c:ea:c7:68:0c:f0:dd:99:fe: c6:e5:45:7f:db:32:3b:d3:af:0d:50:fa:6c:5a:f6: db:b1:62:66:38:02:ae:c1:5d:71:b8:a3:ef:1a:fb: 48:6e:c7:f6:44:f3:84:48:24:ad:fc:c5:3b:6e:1e: 95:72:23:54:91:c5:00:7b:60:fd:0c:77:19:dd:37: 21:23:e8:38:4c:82:f1:3b:25:41:5b:66:44:79:8a: e1:67:60:1c:93:8d:f3:58:15:1e:68:b8:07:e1:01: c4:83:9b:fd:6f:dd:a7:0a:3c:bd:42:97:4d:4b:de: fc:49:18:73:b5:60:a1:dd:e2:01:3c:fb:fb:e6:48: eb:2b:22:1a:c8:dc:1b:a6:42:ea:bc:15:00:aa:85: 37:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:40:E9:9D:CD:DC:FE:D5:CF:61:AE:66:6C:6F:B9:08:C1:80:D4:E8 X509v3 Authority Key Identifier: keyid:00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31392e302f32342d3234203d3e203436303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.19.0/24 Signature Algorithm: sha256WithRSAEncryption 34:91:71:eb:39:04:e4:84:0f:65:67:2e:a5:e1:ea:84:b3:d6: 22:8f:25:0a:06:c0:5e:d3:c1:2f:b3:b4:a6:38:14:1a:a6:1a: 3c:59:33:9e:6d:00:8b:11:16:eb:16:38:be:03:38:13:c8:c3: 1d:a6:b7:97:a0:75:24:d5:fb:3c:3d:11:5d:e8:8b:ff:15:ca: 5f:34:f9:4e:c1:6c:4e:c0:c6:2e:aa:e9:48:5d:17:a4:d3:6b: cb:d6:db:ff:e0:b2:a7:c7:cf:dc:28:4c:d7:ce:ff:56:9e:75: 00:8a:37:05:19:e4:f7:61:10:31:45:84:71:15:b9:8b:b3:c0: 5a:ca:8c:91:08:86:c1:11:6f:bf:df:49:39:79:ad:66:22:db: bd:33:28:ee:90:bd:6f:99:79:b8:3f:78:df:60:cf:ae:7f:f8: 8e:a0:89:d6:7a:17:31:f4:85:12:38:e0:72:68:72:57:1b:1f: 1d:de:77:47:5a:9d:e4:9f:0a:eb:d6:5f:69:c3:52:07:bd:46: 29:06:52:70:c8:4b:70:38:25:fe:0b:c7:83:9d:2c:f7:24:2b: 7e:e7:32:78:4c:56:c0:8f:36:80:9e:5c:84:f1:d6:3d:57:e9: 5c:d1:1d:f8:33:0f:d8:c8:1b:92:ff:58:8f:10:bd:28:d4:19: 12:a3:dc:d5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDsrzs03lDoBWsURhUZvecuZOF5wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIw MjM4MTk0RjAeFw0yNTA1MjAwNjU3NTlaFw0yNjA1MTkwNzAyNTlaMDMxMTAvBgNV BAMTKEM1NDBFOTlEQ0REQ0ZFRDVDRjYxQUU2NjZDNkZCOTA4QzE4MEQ0RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrUf3bLdUBxZSjq7Sqr++v6nBF yHKA4A5LbiICrh8VNSVS5pUUx0tKz9SKYSfx3M8uusg5K/Fs2hn0f3aMitSLkyC3 C9SCD1o7tY+WnyI+tbLmBzOkit1PIz50BWrn/Ut6lnFL94JB/28Q1AwbIRzqx2gM 8N2Z/sblRX/bMjvTrw1Q+mxa9tuxYmY4Aq7BXXG4o+8a+0hux/ZE84RIJK38xTtu HpVyI1SRxQB7YP0MdxndNyEj6DhMgvE7JUFbZkR5iuFnYByTjfNYFR5ouAfhAcSD m/1v3acKPL1Cl01L3vxJGHO1YKHd4gE8+/vmSOsrIhrI3BumQuq8FQCqhTddAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxUDpnc3c/tXPYa5mbG+5CMGA1OgwHwYDVR0j BBgwFoAUAO6VP9aZeIZoxyRGD02NQgI4GU8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODUzZjIyOC0zN2YyLTQ3ZDktYjlmZS00NzZiYWRlMTMzOTMvMC8wMEVFOTUzRkQ2 OTk3ODg2NjhDNzI0NDYwRjREOEQ0MjAyMzgxOTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIwMjM4 MTk0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAEzANBgkqhkiG 9w0BAQsFAAOCAQEANJFx6zkE5IQPZWcupeHqhLPWIo8lCgbAXtPBL7O0pjgUGqYa PFkznm0AixEW6xY4vgM4E8jDHaa3l6B1JNX7PD0RXeiL/xXKXzT5TsFsTsDGLqrp SF0XpNNry9bb/+Cyp8fP3ChM187/Vp51AIo3BRnk92EQMUWEcRW5i7PAWsqMkQiG wRFvv99JOXmtZiLbvTMo7pC9b5l5uD9432DPrn/4jqCJ1noXMfSFEjjgcmhyVxsf Hd53R1qd5J8K69ZfacNSB71GKQZScMhLcDgl/gvHg50s9yQrfucyeExWwI82gJ5c hPHWPVfpXNEd+DMP2Mgbkv9YjxC9KNQZEqPc1Q== -----END CERTIFICATE-----Generated at Thu Jun 5 18:28:55 2025 by rpki-client