$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139382e302f32342d3234203d3e20313333383431.roa File: 3132332e3233312e3139382e302f32342d3234203d3e20313333383431.roa (raw, json) Hash identifier: FpN8Jey7XA5wVDcxPoOysOMAoef79N6kwpNhgXsmssE= Subject key identifier: 8E:AF:D1:4D:61:97:24:3F:6B:CE:A8:E4:05:01:CF:BE:67:E2:DC:E7 Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 28D341B3FEF895BE30182CDA77AE25DBF1A5B762 Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139382e302f32342d3234203d3e20313333383431.roa Signing time: Mon 02 Jun 2025 02:01:37 +0000 ROA not before: Mon 02 Jun 2025 01:56:37 +0000 ROA not after: Mon 01 Jun 2026 02:01:37 +0000 asID: 133841 IP address blocks: 123.231.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:d3:41:b3:fe:f8:95:be:30:18:2c:da:77:ae:25:db:f1:a5:b7:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jun 2 01:56:37 2025 GMT Not After : Jun 1 02:01:37 2026 GMT Subject: CN=8EAFD14D6197243F6BCEA8E40501CFBE67E2DCE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:67:fd:4e:8e:d4:61:9a:3a:93:87:03:3a:18: 1a:53:d5:a3:89:23:22:87:2e:17:90:e1:ac:c2:c1: 5e:57:bf:85:aa:5b:1d:ef:0e:7c:1f:18:16:93:ac: fe:e7:44:c8:43:94:fd:51:d0:c6:4b:7a:8d:bb:39: 4c:9f:d3:a9:50:ae:96:2d:9b:b8:99:e0:c6:46:64: f8:a5:66:4c:37:7c:05:b9:cb:ec:68:48:c0:ae:ac: b1:9a:61:d0:c7:40:c0:48:80:f1:49:7b:d0:7c:c8: 43:71:96:54:36:57:21:26:d5:cb:88:78:02:fc:f2: 6f:06:28:6c:be:a5:c1:90:1d:22:2f:f2:e4:ce:54: 63:f1:86:02:b9:19:7a:89:aa:b6:bc:15:5b:55:1f: ef:58:ca:5a:e3:04:ae:b4:56:a2:31:da:2d:fc:41: 8e:09:ec:8f:7b:05:4f:52:c9:0b:20:29:e8:69:b9: ba:8a:23:c0:d5:6d:33:f5:fa:e2:e4:19:59:7c:e7: 4e:0e:9d:ff:5f:49:64:38:91:11:69:c2:66:4d:f9: 0c:2e:6d:50:68:fb:70:f3:b4:b5:52:a8:30:4b:9a: ea:f9:11:15:b4:db:64:02:66:4d:00:43:ae:76:d3: 51:b0:50:f3:e5:1a:6d:9c:63:c9:19:bd:e8:65:87: 6c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:AF:D1:4D:61:97:24:3F:6B:CE:A8:E4:05:01:CF:BE:67:E2:DC:E7 X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139382e302f32342d3234203d3e20313333383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.231.198.0/24 Signature Algorithm: sha256WithRSAEncryption 27:14:fa:ef:47:6f:2e:ba:18:9a:5a:d7:45:2f:37:3e:2a:82: 4f:fa:c2:2c:24:37:62:63:1e:e2:b4:29:00:60:3b:96:fc:65: 3b:2e:49:91:63:9a:6c:7a:33:fe:aa:13:31:ae:a6:d2:3b:9a: 07:92:27:e9:0b:7e:4b:cf:d3:1a:13:86:56:7b:09:f9:bb:9c: f3:c2:3b:fe:96:26:72:43:ac:f0:9c:83:02:b4:8a:69:84:87: ba:bc:5b:05:1c:d6:49:03:83:dc:c4:92:0d:d3:22:ae:75:a3: 7b:8c:35:13:d7:72:84:0d:db:fb:02:ec:37:63:31:3d:06:08: 7d:23:78:b0:86:a4:a9:36:7b:7b:54:80:a3:6e:89:c7:5b:ef: 20:2b:88:66:4a:0f:30:58:fe:fd:d7:6f:1e:8e:fc:0a:3c:7c: ac:ce:9d:d1:b6:9d:df:35:f0:e5:2f:02:96:42:2f:e3:bb:85: 79:55:81:e3:ed:5b:04:24:17:e8:f8:94:22:f8:48:9a:ff:8f: 8e:99:9d:0d:b7:70:b2:42:dd:57:2e:29:4b:10:c9:de:36:06: 16:fc:ce:9b:73:bb:89:68:f8:3f:85:f1:a0:ed:7b:40:bf:5d: ae:e8:1f:91:08:63:68:09:94:ab:27:92:78:8c:fa:8f:fb:df: 5c:2e:92:a8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKNNBs/74lb4wGCzad64l2/Glt2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNTA2MDIwMTU2MzdaFw0yNjA2MDEwMjAxMzdaMDMxMTAvBgNV BAMTKDhFQUZEMTRENjE5NzI0M0Y2QkNFQThFNDA1MDFDRkJFNjdFMkRDRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOZ/1OjtRhmjqThwM6GBpT1aOJ IyKHLheQ4azCwV5Xv4WqWx3vDnwfGBaTrP7nRMhDlP1R0MZLeo27OUyf06lQrpYt m7iZ4MZGZPilZkw3fAW5y+xoSMCurLGaYdDHQMBIgPFJe9B8yENxllQ2VyEm1cuI eAL88m8GKGy+pcGQHSIv8uTOVGPxhgK5GXqJqra8FVtVH+9YylrjBK60VqIx2i38 QY4J7I97BU9SyQsgKehpubqKI8DVbTP1+uLkGVl8504Onf9fSWQ4kRFpwmZN+Qwu bVBo+3DztLVSqDBLmur5ERW022QCZk0AQ65201GwUPPlGm2cY8kZvehlh2yLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjq/RTWGXJD9rzqjkBQHPvmfi3OcwHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzMzJlMzIzMzMxMmUzMTM5MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB758YwDQYJ KoZIhvcNAQELBQADggEBACcU+u9Hby66GJpa10UvNz4qgk/6wiwkN2JjHuK0KQBg O5b8ZTsuSZFjmmx6M/6qEzGuptI7mgeSJ+kLfkvP0xoThlZ7Cfm7nPPCO/6WJnJD rPCcgwK0immEh7q8WwUc1kkDg9zEkg3TIq51o3uMNRPXcoQN2/sC7DdjMT0GCH0j eLCGpKk2e3tUgKNuicdb7yAriGZKDzBY/v3Xbx6O/Ao8fKzOndG2nd818OUvApZC L+O7hXlVgePtWwQkF+j4lCL4SJr/j46ZnQ23cLJC3VcuKUsQyd42Bhb8zptzu4lo +D+F8aDte0C/Xa7oH5EIY2gJlKsnkniM+o/731wukqg= -----END CERTIFICATE-----Generated at Thu Jun 5 19:19:12 2025 by rpki-client