$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230392e302f32342d3234203d3e20313333383431.roa File: 3132332e3233312e3230392e302f32342d3234203d3e20313333383431.roa (raw, json) Hash identifier: mTNAoCP72AwV+h1zgiO6dvwHV4zPC2RiU7GrQlcAnWU= Subject key identifier: DF:7A:0C:0D:3E:B8:02:CD:2B:77:B7:F5:A2:BF:E8:11:78:E0:D0:35 Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 6FCD4A833BEF88D67F94A412D3A15A6D6E898F2A Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230392e302f32342d3234203d3e20313333383431.roa Signing time: Mon 02 Jun 2025 01:03:22 +0000 ROA not before: Mon 02 Jun 2025 00:58:22 +0000 ROA not after: Mon 01 Jun 2026 01:03:22 +0000 asID: 133841 IP address blocks: 123.231.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:cd:4a:83:3b:ef:88:d6:7f:94:a4:12:d3:a1:5a:6d:6e:89:8f:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jun 2 00:58:22 2025 GMT Not After : Jun 1 01:03:22 2026 GMT Subject: CN=DF7A0C0D3EB802CD2B77B7F5A2BFE81178E0D035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ba:5e:c7:bd:99:4c:1d:30:22:e9:0e:60:a0: 98:fa:3f:fa:71:02:f4:94:7d:62:cc:a7:f7:e7:94: e9:cb:a6:11:dd:9d:a9:17:5a:33:b2:03:f5:24:72: 05:25:55:b0:18:7f:76:75:e0:e1:92:5b:84:b4:00: 89:b4:69:44:6d:82:10:67:ea:d8:8e:39:76:df:ac: 63:24:23:06:b3:f3:e1:06:aa:37:12:3b:98:bc:05: f1:85:c0:11:41:62:57:48:ac:0b:7a:72:09:3d:00: b9:1d:a7:da:fa:10:18:9d:f9:03:84:a6:5e:64:c1: 2a:80:74:5a:5c:7c:08:1d:02:83:d2:68:6b:3b:87: 54:21:d3:55:35:02:63:7e:a4:21:5f:c9:4c:dc:ba: 4b:78:ca:a9:79:ed:f9:a7:48:00:2f:12:d3:8d:36: c5:85:86:72:20:ce:5b:6a:93:d2:27:04:68:49:f3: 16:9c:3a:49:a9:7e:ad:b0:db:e3:ab:d6:25:06:4a: ac:73:47:9c:34:0a:e4:59:bc:84:2a:9c:ab:c6:48: c0:77:07:9d:fc:7e:47:c9:f9:bf:92:8c:c4:ee:ad: 05:14:33:d9:2a:fe:ea:a6:4a:0c:74:a8:db:61:9d: ad:7e:9b:b4:32:96:de:b0:3c:c2:6e:d6:50:82:a4: 7a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:7A:0C:0D:3E:B8:02:CD:2B:77:B7:F5:A2:BF:E8:11:78:E0:D0:35 X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230392e302f32342d3234203d3e20313333383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.231.209.0/24 Signature Algorithm: sha256WithRSAEncryption af:f8:85:a0:a7:b5:a3:fc:7e:54:45:e4:60:e3:f1:67:93:ab: ea:d2:bc:a4:5c:0c:d2:2e:18:61:28:2c:9e:a1:54:6d:ff:c2: 97:03:23:c0:ad:31:0e:65:ae:f0:f6:af:e5:27:53:2d:65:e4: f5:e9:9a:f5:80:17:5c:33:92:b5:e2:cb:24:61:cf:4e:a3:e4: 25:07:ce:ca:74:72:40:1e:ca:95:51:62:99:dc:57:7d:35:03: 81:26:a1:8b:aa:ee:74:f0:ff:7d:1a:d7:f8:29:da:36:ef:ca: b4:a4:da:f8:3b:7d:e5:73:64:ae:0f:19:11:74:19:ba:2c:a5: f2:0b:db:8a:82:54:1f:5c:bf:37:bb:83:08:95:06:e5:7c:be: 44:29:8d:77:5c:94:c5:99:2a:2f:f0:12:ae:5d:99:97:f7:c5: b4:6c:2d:68:f2:d9:86:c0:ce:94:f0:d6:af:a3:26:bb:b5:4f: 05:78:04:df:bd:7f:22:10:9d:9a:41:2e:68:4b:7e:85:91:7c: eb:26:3f:73:6b:a9:cd:62:1f:5d:22:b6:2d:94:0f:50:5e:e4: d1:90:ae:f3:20:20:f3:79:68:df:e7:10:2c:cd:66:df:89:25: 66:72:50:6c:8c:cd:d7:7f:fd:84:7f:3b:79:57:6f:19:b8:4a: d8:90:c5:71 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUb81KgzvviNZ/lKQS06FabW6JjyowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNTA2MDIwMDU4MjJaFw0yNjA2MDEwMTAzMjJaMDMxMTAvBgNV BAMTKERGN0EwQzBEM0VCODAyQ0QyQjc3QjdGNUEyQkZFODExNzhFMEQwMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClul7HvZlMHTAi6Q5goJj6P/px AvSUfWLMp/fnlOnLphHdnakXWjOyA/UkcgUlVbAYf3Z14OGSW4S0AIm0aURtghBn 6tiOOXbfrGMkIwaz8+EGqjcSO5i8BfGFwBFBYldIrAt6cgk9ALkdp9r6EBid+QOE pl5kwSqAdFpcfAgdAoPSaGs7h1Qh01U1AmN+pCFfyUzcukt4yql57fmnSAAvEtON NsWFhnIgzltqk9InBGhJ8xacOkmpfq2w2+Or1iUGSqxzR5w0CuRZvIQqnKvGSMB3 B538fkfJ+b+SjMTurQUUM9kq/uqmSgx0qNthna1+m7Qylt6wPMJu1lCCpHqfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU33oMDT64As0rd7f1or/oEXjg0DUwHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzMzJlMzIzMzMxMmUzMjMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB759EwDQYJ KoZIhvcNAQELBQADggEBAK/4haCntaP8flRF5GDj8WeTq+rSvKRcDNIuGGEoLJ6h VG3/wpcDI8CtMQ5lrvD2r+UnUy1l5PXpmvWAF1wzkrXiyyRhz06j5CUHzsp0ckAe ypVRYpncV301A4EmoYuq7nTw/30a1/gp2jbvyrSk2vg7feVzZK4PGRF0GbospfIL 24qCVB9cvze7gwiVBuV8vkQpjXdclMWZKi/wEq5dmZf3xbRsLWjy2YbAzpTw1q+j Jru1TwV4BN+9fyIQnZpBLmhLfoWRfOsmP3Nrqc1iH10iti2UD1Be5NGQrvMgIPN5 aN/nECzNZt+JJWZyUGyMzdd//YR/O3lXbxm4StiQxXE= -----END CERTIFICATE-----Generated at Thu Jun 5 19:19:57 2025 by rpki-client