$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139322e302f32342d3234203d3e20313333383431.roa File: 3132332e3233312e3139322e302f32342d3234203d3e20313333383431.roa (raw, json) Hash identifier: WjpOiJIWbIdvAagtgD0K2S1U0FFuS1Brb+nYKr0z534= Subject key identifier: 4D:B0:CE:A1:94:EC:36:0F:70:B2:A7:CB:48:C7:8C:43:12:78:43:09 Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 48719B59552C26AB0D7E01DA44FCB368D75AE8B0 Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139322e302f32342d3234203d3e20313333383431.roa Signing time: Mon 02 Jun 2025 02:01:38 +0000 ROA not before: Mon 02 Jun 2025 01:56:38 +0000 ROA not after: Mon 01 Jun 2026 02:01:38 +0000 asID: 133841 IP address blocks: 123.231.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:71:9b:59:55:2c:26:ab:0d:7e:01:da:44:fc:b3:68:d7:5a:e8:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jun 2 01:56:38 2025 GMT Not After : Jun 1 02:01:38 2026 GMT Subject: CN=4DB0CEA194EC360F70B2A7CB48C78C4312784309 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a3:0a:00:42:77:00:e1:92:10:e3:02:b7:37: 80:d3:66:3f:87:63:bc:1f:31:7f:e0:99:89:6d:65: 39:18:cc:6c:c6:ec:91:9a:6c:c1:9a:3d:ce:76:48: d6:27:e9:06:d1:84:60:da:d5:fc:bf:a3:5b:3a:91: 60:fa:cd:90:7f:2c:e6:68:23:c2:94:93:b4:5e:b7: dc:21:dd:81:2f:d9:1e:2d:05:a7:04:05:c7:96:5a: 3c:ee:fa:7e:3a:63:47:34:b9:bc:fd:85:e2:27:a6: d8:53:bb:f2:53:fc:b9:0f:07:54:6d:3c:f9:81:06: 9f:68:77:bb:20:1d:86:b6:94:ed:80:ff:e3:fb:d7: ac:4d:e0:6e:2b:c3:d2:7c:61:2f:83:77:2c:f2:81: 51:f7:af:cd:a7:8d:47:4f:6d:33:f5:61:e8:4f:f0: 9c:fa:a1:72:1c:db:57:83:45:3a:78:8b:df:f4:d8: e5:b8:fc:78:98:3a:79:10:6f:b8:b8:ec:99:6b:b9: 7f:2f:84:4f:d6:be:00:4c:f1:f2:67:65:1f:2b:aa: ba:a4:80:b1:37:43:8c:f7:d8:8f:77:67:80:1a:f7: 54:d0:91:85:9c:30:ee:ab:2a:ed:ba:d7:78:e4:ab: 2b:13:d3:6e:d1:89:eb:1f:34:e5:ec:27:d1:c8:da: 27:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B0:CE:A1:94:EC:36:0F:70:B2:A7:CB:48:C7:8C:43:12:78:43:09 X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139322e302f32342d3234203d3e20313333383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.231.192.0/24 Signature Algorithm: sha256WithRSAEncryption a5:dd:f1:8c:63:55:e6:5f:dd:a7:4b:fd:f5:62:75:6f:9b:bf: b1:60:26:0b:d2:5e:d5:a4:a7:c2:2e:da:f0:25:2f:5f:9f:af: 29:50:19:11:a3:91:3a:79:3d:fc:78:4d:9c:0c:f6:f9:e1:36: 97:1d:94:9b:5b:b2:8e:fd:c7:4a:36:34:c3:35:df:e1:4a:5f: 01:04:c7:a5:6f:fc:d6:a1:1d:78:10:ef:37:76:45:36:e1:ad: dd:19:cb:ae:a9:a0:b4:1d:f2:fc:1d:36:87:f9:8e:73:14:9c: 35:e6:cc:e3:fe:9a:c2:9e:76:7e:1b:98:cd:db:ad:04:b6:08: 8e:d3:bf:49:70:bd:5e:04:aa:ec:1b:c9:cd:c1:bf:2a:4c:22: 2b:32:b1:61:a7:14:8e:d6:8d:55:a5:5d:5a:61:98:79:7c:e8: 25:29:c2:89:14:6a:bb:5e:59:46:ab:83:9f:3d:d2:77:99:aa: ee:fc:d5:72:1d:a4:b0:eb:9f:33:2f:ee:84:8f:19:22:b0:ff: de:ff:7d:20:d2:a0:61:d0:68:1a:3b:d8:c8:bb:bd:9b:8d:00: 01:2d:97:bd:c9:26:48:d2:43:97:11:c6:10:af:ee:0c:ab:08: 08:47:e2:d2:19:32:48:e0:a3:c0:cc:64:c4:2b:f2:3a:c1:ce: 05:ad:86:84 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSHGbWVUsJqsNfgHaRPyzaNda6LAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNTA2MDIwMTU2MzhaFw0yNjA2MDEwMjAxMzhaMDMxMTAvBgNV BAMTKDREQjBDRUExOTRFQzM2MEY3MEIyQTdDQjQ4Qzc4QzQzMTI3ODQzMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOowoAQncA4ZIQ4wK3N4DTZj+H Y7wfMX/gmYltZTkYzGzG7JGabMGaPc52SNYn6QbRhGDa1fy/o1s6kWD6zZB/LOZo I8KUk7Ret9wh3YEv2R4tBacEBceWWjzu+n46Y0c0ubz9heInpthTu/JT/LkPB1Rt PPmBBp9od7sgHYa2lO2A/+P716xN4G4rw9J8YS+DdyzygVH3r82njUdPbTP1YehP 8Jz6oXIc21eDRTp4i9/02OW4/HiYOnkQb7i47JlruX8vhE/WvgBM8fJnZR8rqrqk gLE3Q4z32I93Z4Aa91TQkYWcMO6rKu2613jkqysT027RiesfNOXsJ9HI2ie3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTbDOoZTsNg9wsqfLSMeMQxJ4QwkwHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzMzJlMzIzMzMxMmUzMTM5MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB758AwDQYJ KoZIhvcNAQELBQADggEBAKXd8YxjVeZf3adL/fVidW+bv7FgJgvSXtWkp8Iu2vAl L1+frylQGRGjkTp5Pfx4TZwM9vnhNpcdlJtbso79x0o2NMM13+FKXwEEx6Vv/Nah HXgQ7zd2RTbhrd0Zy66poLQd8vwdNof5jnMUnDXmzOP+msKedn4bmM3brQS2CI7T v0lwvV4Equwbyc3BvypMIisysWGnFI7WjVWlXVphmHl86CUpwokUarteWUarg589 0neZqu781XIdpLDrnzMv7oSPGSKw/97/fSDSoGHQaBo72Mi7vZuNAAEtl73JJkjS Q5cRxhCv7gyrCAhH4tIZMkjgo8DMZMQr8jrBzgWthoQ= -----END CERTIFICATE-----Generated at Thu Jun 5 19:14:53 2025 by rpki-client