$ rpki-client -vvf repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e203436303435.roa File: 3132322e3132382e32312e302f32342d3234203d3e203436303435.roa (raw, json) Hash identifier: YWPfLwfnjAzwyRdQ8HMatujMpctNGsrqPWB+mJd3o7c= Subject key identifier: C1:11:29:FE:3D:29:56:F1:A9:CC:B5:F4:16:34:ED:48:A1:36:E7:FE Certificate issuer: /CN=00EE953FD699788668C724460F4D8D420238194F Certificate serial: 35C89203C3D9B8D14AF59558DBF770DF9A29C5B3 Authority key identifier: 00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e203436303435.roa Signing time: Tue 20 May 2025 07:02:58 +0000 ROA not before: Tue 20 May 2025 06:57:58 +0000 ROA not after: Tue 19 May 2026 07:02:58 +0000 asID: 46045 IP address blocks: 122.128.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:c8:92:03:c3:d9:b8:d1:4a:f5:95:58:db:f7:70:df:9a:29:c5:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00EE953FD699788668C724460F4D8D420238194F Validity Not Before: May 20 06:57:58 2025 GMT Not After : May 19 07:02:58 2026 GMT Subject: CN=C11129FE3D2956F1A9CCB5F41634ED48A136E7FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:70:1f:86:4f:66:34:93:a1:03:2c:6a:6b:48: 5e:3c:d8:af:2d:89:39:66:87:34:a7:05:cf:cd:c3: 32:1a:ad:a9:c9:7e:23:1f:01:93:e3:ac:50:c8:7a: 49:39:6a:55:37:9d:22:7f:46:70:6e:cd:20:63:c1: 44:c7:be:83:fe:d2:e0:e6:ce:1d:2d:12:7b:4a:44: 5e:1a:53:36:e1:f6:2f:70:0b:93:27:1e:1f:3c:44: 8f:b2:d8:df:fe:9c:f6:8a:9d:1b:61:3f:ef:bb:b8: 9b:3d:90:d0:8e:8e:86:c7:39:bf:9f:dd:a2:f0:4e: 2c:02:ce:e0:61:60:1c:2f:14:13:56:af:c2:37:67: 6a:6b:e3:76:53:d9:69:df:71:fe:3c:34:de:ff:48: d4:58:55:1a:27:57:02:66:b4:a3:d2:a6:40:cb:0f: 57:33:7b:75:e7:70:41:0e:a8:07:39:12:5e:fb:ab: 44:9c:85:20:56:27:b9:7e:6b:78:61:67:4d:7f:78: 4f:23:98:60:8f:4b:e6:2f:41:2b:d4:4b:ea:93:e2: eb:3b:5d:46:1e:89:72:47:58:46:04:82:c5:a2:04: 32:98:af:a1:d0:3a:e7:df:24:42:2c:57:c0:f1:79: b9:d4:c8:3a:76:11:82:91:6d:71:e6:2d:77:30:46: 74:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:11:29:FE:3D:29:56:F1:A9:CC:B5:F4:16:34:ED:48:A1:36:E7:FE X509v3 Authority Key Identifier: keyid:00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e203436303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.21.0/24 Signature Algorithm: sha256WithRSAEncryption 99:05:c8:6f:3c:ff:74:3c:66:16:6a:35:cd:1a:98:89:ac:a2: 95:70:c1:c5:16:0f:3c:5b:03:62:b1:d2:b6:a4:b8:6d:ff:ef: b6:e9:dc:14:09:5a:7b:e8:47:cd:12:cc:56:54:db:b8:21:7b: 2e:a4:57:02:08:65:a5:a8:95:80:cc:37:3d:b8:2b:aa:df:b4: d2:da:18:be:4c:ee:f4:96:30:a2:6b:ca:b1:03:8e:aa:d1:fc: 49:62:c6:69:62:88:7a:5f:f5:21:e7:a3:de:36:6c:84:1d:41: f6:be:da:02:ef:8f:4d:69:21:14:79:55:a3:e5:e1:51:ad:03: 98:8f:e3:46:82:65:da:55:8d:2d:a0:e8:50:72:3d:6f:c1:3f: a6:ec:85:74:98:42:67:6a:f4:d0:36:2a:76:37:00:91:b3:d6: 72:a1:3a:f2:22:14:48:97:5d:e7:f6:2d:89:98:77:e4:8f:f3: 03:95:05:e5:83:6f:cc:16:b7:b1:94:b6:5e:32:c8:ed:e5:cb: f3:e6:0a:4f:99:c7:92:24:a8:0f:30:4a:40:6b:be:91:03:4e: cd:88:5d:5f:15:e6:87:6b:94:96:6f:05:f9:e3:ea:a0:23:c1: 1d:56:50:61:c0:e7:b8:08:f5:71:11:f1:97:69:af:11:dd:23: a8:b8:e7:d0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNciSA8PZuNFK9ZVY2/dw35opxbMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIw MjM4MTk0RjAeFw0yNTA1MjAwNjU3NThaFw0yNjA1MTkwNzAyNThaMDMxMTAvBgNV BAMTKEMxMTEyOUZFM0QyOTU2RjFBOUNDQjVGNDE2MzRFRDQ4QTEzNkU3RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhcB+GT2Y0k6EDLGprSF482K8t iTlmhzSnBc/NwzIaranJfiMfAZPjrFDIekk5alU3nSJ/RnBuzSBjwUTHvoP+0uDm zh0tEntKRF4aUzbh9i9wC5MnHh88RI+y2N/+nPaKnRthP++7uJs9kNCOjobHOb+f 3aLwTiwCzuBhYBwvFBNWr8I3Z2pr43ZT2Wnfcf48NN7/SNRYVRonVwJmtKPSpkDL D1cze3XncEEOqAc5El77q0SchSBWJ7l+a3hhZ01/eE8jmGCPS+YvQSvUS+qT4us7 XUYeiXJHWEYEgsWiBDKYr6HQOuffJEIsV8DxebnUyDp2EYKRbXHmLXcwRnTDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwREp/j0pVvGpzLX0FjTtSKE25/4wHwYDVR0j BBgwFoAUAO6VP9aZeIZoxyRGD02NQgI4GU8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODUzZjIyOC0zN2YyLTQ3ZDktYjlmZS00NzZiYWRlMTMzOTMvMC8wMEVFOTUzRkQ2 OTk3ODg2NjhDNzI0NDYwRjREOEQ0MjAyMzgxOTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIwMjM4 MTk0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAFTANBgkqhkiG 9w0BAQsFAAOCAQEAmQXIbzz/dDxmFmo1zRqYiayilXDBxRYPPFsDYrHStqS4bf/v tuncFAlae+hHzRLMVlTbuCF7LqRXAghlpaiVgMw3Pbgrqt+00toYvkzu9JYwomvK sQOOqtH8SWLGaWKIel/1Ieej3jZshB1B9r7aAu+PTWkhFHlVo+XhUa0DmI/jRoJl 2lWNLaDoUHI9b8E/puyFdJhCZ2r00DYqdjcAkbPWcqE68iIUSJdd5/YtiZh35I/z A5UF5YNvzBa3sZS2XjLI7eXL8+YKT5nHkiSoDzBKQGu+kQNOzYhdXxXmh2uUlm8F +ePqoCPBHVZQYcDnuAj1cRHxl2mvEd0jqLjn0A== -----END CERTIFICATE-----Generated at Thu Jun 5 18:24:55 2025 by rpki-client