$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139342e302f32342d3234203d3e20313333383431.roa File: 3132332e3233312e3139342e302f32342d3234203d3e20313333383431.roa (raw, json) Hash identifier: py5ONbbsbaSt1Kwq1a+teRBASWbXLRsvTpydQr1yO3Q= Subject key identifier: D5:71:E9:7E:BB:9E:71:39:F0:13:E0:88:80:2F:A7:4A:69:03:75:D7 Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 158948397C8C0FE6370BE7B9CFE3F20A64074DD2 Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139342e302f32342d3234203d3e20313333383431.roa Signing time: Mon 02 Jun 2025 01:03:20 +0000 ROA not before: Mon 02 Jun 2025 00:58:20 +0000 ROA not after: Mon 01 Jun 2026 01:03:20 +0000 asID: 133841 IP address blocks: 123.231.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:89:48:39:7c:8c:0f:e6:37:0b:e7:b9:cf:e3:f2:0a:64:07:4d:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jun 2 00:58:20 2025 GMT Not After : Jun 1 01:03:20 2026 GMT Subject: CN=D571E97EBB9E7139F013E088802FA74A690375D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d3:b6:6b:06:ed:ff:73:50:bd:4d:c3:0a:bf: c4:8f:23:e9:d9:99:ad:19:6f:34:46:9e:f5:28:8f: 3c:f0:4d:ae:0e:c5:ad:f5:ce:30:96:69:48:71:99: 5f:b5:73:6d:96:c1:25:cc:db:3c:fa:47:5c:7a:f5: 5e:79:26:80:10:19:cd:30:1e:12:ed:0a:58:3c:7c: 08:bf:2f:d6:35:8f:a1:dd:64:03:e4:52:3b:00:54: d9:f8:ec:05:2c:82:00:e1:2a:66:85:e7:3f:6c:11: a8:f6:1e:b5:d5:7d:2d:8d:ee:3d:d0:57:a3:e6:be: 78:f8:56:9a:48:f3:11:ba:8f:cf:2b:89:87:99:29: f3:b6:04:f1:05:78:db:62:95:b6:bd:7e:bd:ef:af: 1c:6d:1f:61:39:51:35:a4:26:2e:eb:c8:b1:49:20: 27:13:b6:df:ab:c0:4d:16:6d:81:cd:6d:ac:05:eb: a8:97:6e:86:90:22:2c:43:0e:ca:71:f7:e9:bc:de: 59:9a:e9:2b:61:71:74:70:09:c6:a0:dc:df:c0:17: db:94:04:df:55:de:69:96:ea:6e:de:3a:13:a9:52: 59:74:f3:9e:c9:76:52:7a:4d:77:ce:46:85:50:09: be:23:40:6d:d6:8d:01:6a:fc:6f:c1:72:1e:9d:aa: 70:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:71:E9:7E:BB:9E:71:39:F0:13:E0:88:80:2F:A7:4A:69:03:75:D7 X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139342e302f32342d3234203d3e20313333383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.231.194.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:41:3a:07:df:fb:02:8d:f0:0d:de:97:46:5a:97:d3:40:4c: 02:11:7c:91:2f:73:4a:bb:00:0e:d6:85:23:f3:dd:9d:9d:df: 3f:9d:d6:cf:37:05:2a:d2:a1:86:a9:d8:ae:eb:64:ba:35:b2: e3:09:20:20:56:68:11:98:ba:83:a7:0c:b3:83:83:31:9a:7c: e9:19:94:59:1d:3c:06:5e:c7:0a:51:a1:ae:e3:16:a8:6d:45: 42:3a:23:39:4d:e8:22:10:f8:6b:fa:d4:d0:32:83:20:f2:45: 97:65:e9:9b:ae:0d:71:07:a1:c9:28:b9:aa:05:73:20:97:5f: d1:bc:f5:a1:61:81:9b:c5:e4:bb:fc:48:a2:05:61:f2:86:32: 8a:c0:dc:40:a7:40:42:e2:27:49:4d:12:0a:1a:16:84:b6:59: 1d:71:b7:d7:4f:c0:23:ad:09:79:ad:5f:95:40:79:11:18:78: 86:72:61:8f:a3:8b:36:a3:9d:7e:af:51:87:c6:2e:d4:07:aa: a4:23:34:08:0a:d5:73:0b:4f:01:aa:e8:f2:78:a0:22:86:45: ea:5d:9b:52:34:5b:52:02:85:eb:0b:ab:02:68:ec:8d:45:78: 98:2d:2c:0d:69:7b:96:08:70:44:a5:c8:c1:9c:4f:06:e6:d4: 13:a2:09:fc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFYlIOXyMD+Y3C+e5z+PyCmQHTdIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNTA2MDIwMDU4MjBaFw0yNjA2MDEwMTAzMjBaMDMxMTAvBgNV BAMTKEQ1NzFFOTdFQkI5RTcxMzlGMDEzRTA4ODgwMkZBNzRBNjkwMzc1RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv07ZrBu3/c1C9TcMKv8SPI+nZ ma0ZbzRGnvUojzzwTa4Oxa31zjCWaUhxmV+1c22WwSXM2zz6R1x69V55JoAQGc0w HhLtClg8fAi/L9Y1j6HdZAPkUjsAVNn47AUsggDhKmaF5z9sEaj2HrXVfS2N7j3Q V6Pmvnj4VppI8xG6j88riYeZKfO2BPEFeNtilba9fr3vrxxtH2E5UTWkJi7ryLFJ ICcTtt+rwE0WbYHNbawF66iXboaQIixDDspx9+m83lma6SthcXRwCcag3N/AF9uU BN9V3mmW6m7eOhOpUll0857JdlJ6TXfORoVQCb4jQG3WjQFq/G/Bch6dqnChAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1XHpfruecTnwE+CIgC+nSmkDddcwHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzMzJlMzIzMzMxMmUzMTM5MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB758IwDQYJ KoZIhvcNAQELBQADggEBAI5BOgff+wKN8A3el0Zal9NATAIRfJEvc0q7AA7WhSPz 3Z2d3z+d1s83BSrSoYap2K7rZLo1suMJICBWaBGYuoOnDLODgzGafOkZlFkdPAZe xwpRoa7jFqhtRUI6IzlN6CIQ+Gv61NAygyDyRZdl6ZuuDXEHockouaoFcyCXX9G8 9aFhgZvF5Lv8SKIFYfKGMorA3ECnQELiJ0lNEgoaFoS2WR1xt9dPwCOtCXmtX5VA eREYeIZyYY+jizajnX6vUYfGLtQHqqQjNAgK1XMLTwGq6PJ4oCKGRepdm1I0W1IC hesLqwJo7I1FeJgtLA1pe5YIcESlyMGcTwbm1BOiCfw= -----END CERTIFICATE-----Generated at Thu Jun 5 19:18:09 2025 by rpki-client