$ rpki-client -vvf repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32332e302f32342d3234203d3e203436303435.roa File: 3132322e3132382e32332e302f32342d3234203d3e203436303435.roa (raw, json) Hash identifier: jtfCyTfV0URchGl+wzEZEXq1ZK6wyh3Rdim0gK9JxbY= Subject key identifier: 9C:AB:69:9C:1B:94:3F:E0:43:A0:76:B3:02:8E:AD:7D:00:27:9D:9B Certificate issuer: /CN=00EE953FD699788668C724460F4D8D420238194F Certificate serial: 610B7B5AE755F1A766E94CA7201C46B956AB7C5F Authority key identifier: 00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32332e302f32342d3234203d3e203436303435.roa Signing time: Tue 20 May 2025 07:02:59 +0000 ROA not before: Tue 20 May 2025 06:57:59 +0000 ROA not after: Tue 19 May 2026 07:02:59 +0000 asID: 46045 IP address blocks: 122.128.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:0b:7b:5a:e7:55:f1:a7:66:e9:4c:a7:20:1c:46:b9:56:ab:7c:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00EE953FD699788668C724460F4D8D420238194F Validity Not Before: May 20 06:57:59 2025 GMT Not After : May 19 07:02:59 2026 GMT Subject: CN=9CAB699C1B943FE043A076B3028EAD7D00279D9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:79:00:bd:c6:e7:ff:0b:06:4d:ea:0e:18:5f: 5c:db:c1:89:b8:65:84:17:4c:37:e1:be:53:68:b9: 45:84:be:f1:e5:18:6c:4a:83:ac:74:66:eb:ac:29: 64:53:65:87:39:e3:3b:3e:79:0c:5d:5d:de:7e:7e: d5:68:ee:16:2a:15:a8:ad:32:00:75:62:42:03:4b: cc:06:25:a7:87:38:8c:02:93:1f:12:c1:6e:28:ad: e4:7d:06:09:b2:9b:23:22:37:33:cc:01:ad:39:fb: 4d:6a:b9:cf:0c:f5:b0:bb:10:c2:77:7a:1d:8d:5c: 0a:91:57:b1:3c:5d:ad:6e:c4:36:1d:92:35:dc:8e: 52:85:02:5a:db:00:29:56:d0:f1:45:89:39:20:c7: 16:fe:61:86:f3:a0:dc:c4:63:14:9e:93:5a:0d:dd: 54:f0:52:9a:b5:63:57:5f:00:2d:c8:ac:2c:73:4b: f0:70:b3:7e:17:a4:03:5e:62:b6:67:75:1f:96:cc: ba:ee:3f:04:30:7a:61:b8:81:f9:25:60:6e:65:56: 08:b3:6f:b9:7c:e4:f9:df:b2:30:bb:c6:ac:99:08: 70:b2:ff:d9:86:6a:7e:9e:8c:e8:ab:48:16:e3:c0: ae:f7:de:90:65:8c:75:3b:47:81:3a:35:5d:d4:26: b1:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:AB:69:9C:1B:94:3F:E0:43:A0:76:B3:02:8E:AD:7D:00:27:9D:9B X509v3 Authority Key Identifier: keyid:00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32332e302f32342d3234203d3e203436303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.23.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:01:62:ab:09:a6:86:34:f1:7e:6c:8d:de:56:da:88:77:c9: e0:b4:af:0c:73:eb:bf:7a:9f:3b:a0:a9:5a:67:75:9c:01:6e: d5:74:33:a6:dd:3c:32:e8:c1:62:3e:03:b8:02:67:16:31:55: eb:cb:84:7c:a4:ed:9a:53:12:f3:48:e9:b6:b1:83:f1:58:25: 51:21:d4:9b:76:85:b4:e3:cd:f3:d2:eb:27:04:90:3c:b6:42: 07:5d:b6:8b:a9:74:15:a7:ed:5a:f1:a1:27:68:b4:88:96:54: e7:d7:68:3a:5b:17:e0:49:7e:c0:78:c0:a4:7e:a7:09:73:de: c0:12:dc:55:ee:b9:fb:41:d0:af:e5:2e:d2:87:0e:b7:90:24: 0a:dc:2b:7b:d4:e0:95:0d:49:29:38:71:47:a5:c5:2a:ef:16: 70:ef:c8:f3:0a:43:d3:4e:e8:e8:d2:9d:d1:20:37:b8:00:36: 21:1e:af:4d:17:14:75:8d:4f:82:f8:9e:fc:f1:6d:27:f4:28: 97:a8:3d:78:57:bd:6f:d5:c5:6a:19:a1:da:e5:11:23:94:4b: 45:66:c5:02:4e:1c:ee:22:98:5d:0b:b3:7b:cb:7f:19:f2:ff: 65:63:14:b7:78:7e:d8:58:73:a0:ca:b3:a5:5d:30:e0:cb:0a: fe:50:76:0a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYQt7WudV8adm6UynIBxGuVarfF8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIw MjM4MTk0RjAeFw0yNTA1MjAwNjU3NTlaFw0yNjA1MTkwNzAyNTlaMDMxMTAvBgNV BAMTKDlDQUI2OTlDMUI5NDNGRTA0M0EwNzZCMzAyOEVBRDdEMDAyNzlEOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCreQC9xuf/CwZN6g4YX1zbwYm4 ZYQXTDfhvlNouUWEvvHlGGxKg6x0ZuusKWRTZYc54zs+eQxdXd5+ftVo7hYqFait MgB1YkIDS8wGJaeHOIwCkx8SwW4oreR9BgmymyMiNzPMAa05+01quc8M9bC7EMJ3 eh2NXAqRV7E8Xa1uxDYdkjXcjlKFAlrbAClW0PFFiTkgxxb+YYbzoNzEYxSek1oN 3VTwUpq1Y1dfAC3IrCxzS/Bws34XpANeYrZndR+WzLruPwQwemG4gfklYG5lVgiz b7l85PnfsjC7xqyZCHCy/9mGan6ejOirSBbjwK733pBljHU7R4E6NV3UJrHvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnKtpnBuUP+BDoHazAo6tfQAnnZswHwYDVR0j BBgwFoAUAO6VP9aZeIZoxyRGD02NQgI4GU8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODUzZjIyOC0zN2YyLTQ3ZDktYjlmZS00NzZiYWRlMTMzOTMvMC8wMEVFOTUzRkQ2 OTk3ODg2NjhDNzI0NDYwRjREOEQ0MjAyMzgxOTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIwMjM4 MTk0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAFzANBgkqhkiG 9w0BAQsFAAOCAQEAewFiqwmmhjTxfmyN3lbaiHfJ4LSvDHPrv3qfO6CpWmd1nAFu 1XQzpt08MujBYj4DuAJnFjFV68uEfKTtmlMS80jptrGD8VglUSHUm3aFtOPN89Lr JwSQPLZCB122i6l0FaftWvGhJ2i0iJZU59doOlsX4El+wHjApH6nCXPewBLcVe65 +0HQr+Uu0ocOt5AkCtwre9TglQ1JKThxR6XFKu8WcO/I8wpD007o6NKd0SA3uAA2 IR6vTRcUdY1Pgvie/PFtJ/Qol6g9eFe9b9XFahmh2uURI5RLRWbFAk4c7iKYXQuz e8t/GfL/ZWMUt3h+2FhzoMqzpV0w4MsK/lB2Cg== -----END CERTIFICATE-----Generated at Thu Jun 5 18:26:21 2025 by rpki-client