$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230332e302f32342d3234203d3e20313333383431.roa File: 3132332e3233312e3230332e302f32342d3234203d3e20313333383431.roa (raw, json) Hash identifier: x9ytpBb2F4eYevn3+FgYrlPGhPRDYWmWiihsvCW1O9Q= Subject key identifier: 8A:C3:E6:1D:38:57:76:E6:08:60:47:33:4F:18:11:20:1A:DF:C3:B9 Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 20CB56AE4BF21DD06D25FD0819BCFE4288EACF26 Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230332e302f32342d3234203d3e20313333383431.roa Signing time: Mon 02 Jun 2025 01:03:19 +0000 ROA not before: Mon 02 Jun 2025 00:58:19 +0000 ROA not after: Mon 01 Jun 2026 01:03:19 +0000 asID: 133841 IP address blocks: 123.231.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:cb:56:ae:4b:f2:1d:d0:6d:25:fd:08:19:bc:fe:42:88:ea:cf:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jun 2 00:58:19 2025 GMT Not After : Jun 1 01:03:19 2026 GMT Subject: CN=8AC3E61D385776E6086047334F1811201ADFC3B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:21:24:f3:88:ab:26:c5:72:a1:23:60:0a:2e: 31:a5:03:e1:e3:a2:e2:c0:54:c0:b0:b4:97:3c:06: a6:f4:13:63:4c:92:13:3b:86:58:3d:1f:a7:e7:8d: 37:1a:29:90:7a:ea:59:09:13:74:7a:cf:15:3d:46: e9:a5:e7:f1:44:bf:c6:f0:fb:65:2a:94:96:24:7b: d2:aa:6a:b4:8b:14:62:09:5a:f8:d9:e8:b5:cb:f5: 89:48:a8:25:4b:f0:41:ce:87:51:de:47:14:17:18: 44:71:b1:6e:97:b3:76:1b:6e:86:e9:6a:cd:42:43: 2a:f7:2e:56:e2:69:29:58:93:9f:e2:eb:9a:9a:82: 39:01:53:be:3c:1c:0e:97:3e:f2:fe:cf:e0:ac:0e: c7:3d:8f:03:dc:52:2f:4f:73:a5:a1:b6:f4:a5:32: 95:52:64:47:59:b4:46:7d:41:0e:7a:42:d3:4a:d3: a6:30:71:19:69:a8:0d:2e:2b:68:d7:9d:70:9b:86: 72:f2:9e:63:a0:f4:10:41:41:5d:24:46:69:e7:45: 59:f6:d7:4f:10:fd:a9:6b:5b:66:e7:e1:02:ae:7e: 73:39:ff:59:8b:8c:a2:53:bf:6f:7a:5a:2a:a7:0f: dc:29:79:c0:ac:8c:fe:e7:49:47:e0:4b:d1:85:88: cb:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:C3:E6:1D:38:57:76:E6:08:60:47:33:4F:18:11:20:1A:DF:C3:B9 X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230332e302f32342d3234203d3e20313333383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.231.203.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:a2:6d:81:b9:55:d0:fa:43:0b:96:b2:dc:f7:36:34:10:9d: 06:ae:17:18:a2:11:2c:49:42:75:06:b7:5d:7c:4f:28:06:87: ee:8d:65:79:aa:6e:b3:3d:12:95:ea:fa:a8:e3:2c:67:3c:f9: f7:f6:0c:f9:63:ef:1b:82:c1:41:db:0d:10:ad:80:bd:85:3e: ad:02:9f:8b:49:c8:d3:cd:23:dd:10:c0:e2:7c:59:7e:27:92: fa:ea:77:57:6d:df:02:11:f6:28:79:12:f9:69:a1:de:fc:29: e8:24:9e:67:e2:11:2d:35:0b:1f:41:e3:a0:64:31:ae:b5:86: 27:cf:ef:aa:d1:2c:06:5a:82:1e:89:b6:65:65:d4:4d:ad:a1: 8c:a8:02:f0:c2:79:b2:f7:82:f2:3f:c5:42:76:c7:2e:bf:00: cd:59:c5:6d:92:d3:88:ef:ba:95:bc:46:09:97:b1:12:a1:51: 9c:c1:2b:2c:04:d1:ef:15:47:f8:18:88:60:92:d2:75:6b:17: ba:50:82:be:dc:41:d5:fb:38:dd:15:5e:0a:a6:52:76:fe:7e: c6:88:a1:f0:45:57:80:d3:97:76:b1:9a:12:4f:91:33:6b:d3: d7:46:9a:6c:16:d7:21:e3:54:61:b8:d8:7b:df:9b:ac:37:73: a4:a2:3e:15 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIMtWrkvyHdBtJf0IGbz+QojqzyYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNTA2MDIwMDU4MTlaFw0yNjA2MDEwMTAzMTlaMDMxMTAvBgNV BAMTKDhBQzNFNjFEMzg1Nzc2RTYwODYwNDczMzRGMTgxMTIwMUFERkMzQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3ISTziKsmxXKhI2AKLjGlA+Hj ouLAVMCwtJc8Bqb0E2NMkhM7hlg9H6fnjTcaKZB66lkJE3R6zxU9Ruml5/FEv8bw +2UqlJYke9KqarSLFGIJWvjZ6LXL9YlIqCVL8EHOh1HeRxQXGERxsW6Xs3Ybbobp as1CQyr3LlbiaSlYk5/i65qagjkBU748HA6XPvL+z+CsDsc9jwPcUi9Pc6WhtvSl MpVSZEdZtEZ9QQ56QtNK06YwcRlpqA0uK2jXnXCbhnLynmOg9BBBQV0kRmnnRVn2 108Q/alrW2bn4QKufnM5/1mLjKJTv296WiqnD9wpecCsjP7nSUfgS9GFiMsFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUisPmHThXduYIYEczTxgRIBrfw7kwHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzMzJlMzIzMzMxMmUzMjMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB758swDQYJ KoZIhvcNAQELBQADggEBAJ+ibYG5VdD6QwuWstz3NjQQnQauFxiiESxJQnUGt118 TygGh+6NZXmqbrM9EpXq+qjjLGc8+ff2DPlj7xuCwUHbDRCtgL2FPq0Cn4tJyNPN I90QwOJ8WX4nkvrqd1dt3wIR9ih5Evlpod78KegknmfiES01Cx9B46BkMa61hifP 76rRLAZagh6JtmVl1E2toYyoAvDCebL3gvI/xUJ2xy6/AM1ZxW2S04jvupW8RgmX sRKhUZzBKywE0e8VR/gYiGCS0nVrF7pQgr7cQdX7ON0VXgqmUnb+fsaIofBFV4DT l3axmhJPkTNr09dGmmwW1yHjVGG42Hvfm6w3c6SiPhU= -----END CERTIFICATE-----Generated at Thu Jun 5 19:19:58 2025 by rpki-client