$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132352e3231332e3132382e302f32342d3234203d3e203338353133.roa File: 3132352e3231332e3132382e302f32342d3234203d3e203338353133.roa (raw, json) Hash identifier: Ia5i3Fj5ltUvNpnL0g39IgkMhSV16l9oqTFoC59pAk8= Subject key identifier: 56:66:07:CE:BB:8F:24:C9:21:46:EF:E2:2B:DF:E2:92:A2:CC:64:65 Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 67F925B66EED2653708F773968D09CD7E8302406 Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132352e3231332e3132382e302f32342d3234203d3e203338353133.roa Signing time: Mon 01 Jul 2024 01:03:22 +0000 ROA not before: Mon 01 Jul 2024 00:58:22 +0000 ROA not after: Mon 30 Jun 2025 01:03:22 +0000 asID: 38513 IP address blocks: 125.213.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 00:03:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:f9:25:b6:6e:ed:26:53:70:8f:77:39:68:d0:9c:d7:e8:30:24:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jul 1 00:58:22 2024 GMT Not After : Jun 30 01:03:22 2025 GMT Subject: CN=566607CEBB8F24C92146EFE22BDFE292A2CC6465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:3b:4a:84:e7:32:f0:6e:ca:2b:d9:3b:1b:77: b3:3b:6d:44:e9:7d:d3:bb:dd:25:90:9b:67:cd:60: d6:2f:33:b6:57:36:29:71:ef:17:23:6c:0d:a3:65: 8a:2d:e1:36:63:a7:54:1c:92:3b:63:88:76:32:60: de:76:2e:1e:49:39:bd:fe:f4:fe:85:bf:95:56:26: 0d:96:bb:41:50:88:9a:66:9c:04:2b:1f:12:8b:c3: c5:eb:26:45:23:51:a4:a8:dc:04:3b:51:25:44:74: 91:4c:f8:75:e0:f6:88:2b:da:32:c6:6d:80:77:74: a7:39:cd:96:43:df:2a:de:02:86:29:90:92:7b:62: b7:ed:5b:1e:eb:0c:6d:75:da:50:4a:4c:a5:4d:82: c3:d3:f8:d8:57:d2:07:48:23:0f:ec:c5:3a:94:dd: 38:ce:fa:f1:34:ed:08:90:32:1c:4c:c3:e5:d2:b4: 82:e0:5f:0d:6f:57:34:ac:90:20:06:fc:04:d7:71: f0:32:a5:c3:04:b6:41:b1:df:6a:15:59:3f:64:80: ec:df:06:7f:44:10:b7:4c:9e:75:da:f3:4f:8d:45: 2d:e7:1b:52:92:c7:62:79:52:dd:6a:35:27:64:1e: 1c:ee:fa:c0:b7:9f:5f:f9:77:a3:d6:ee:dd:ff:ea: dd:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:66:07:CE:BB:8F:24:C9:21:46:EF:E2:2B:DF:E2:92:A2:CC:64:65 X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132352e3231332e3132382e302f32342d3234203d3e203338353133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.213.128.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:d6:61:f4:94:22:a0:fd:5d:76:42:2b:5e:7c:03:84:8d:9b: 80:65:96:aa:a2:80:31:94:71:9c:2d:c2:f5:57:96:4d:d0:9d: 65:a8:cd:d7:c9:32:55:b5:d6:25:26:ea:2f:a1:83:b4:f4:43: 24:19:d6:25:fa:f5:d8:69:42:8a:8c:0b:fd:18:47:ac:13:84: c2:02:8b:7e:76:7e:b5:cf:e1:b7:66:c3:fb:9d:15:10:e0:64: 9e:a1:7f:a5:b3:98:08:f8:55:d3:f4:d8:70:a8:54:26:9f:9f: 16:2e:50:b1:1b:2c:78:dc:0d:9b:c0:2a:71:f9:c7:64:81:26: e6:a0:0a:5e:f2:85:49:8e:f5:b5:74:b2:17:a9:28:05:6c:98: 4b:cc:2e:e0:98:ae:01:6b:f0:5e:6c:5d:8a:39:c7:16:52:13: f3:57:75:6f:b6:5d:c7:45:36:b8:20:cf:53:00:ca:33:eb:86: 19:13:a1:99:ec:b2:c2:ef:09:41:49:ed:1c:0f:78:bb:12:db: 60:32:36:62:21:35:51:24:e3:4c:0e:aa:00:1e:7f:b8:3f:98: b6:54:07:36:8c:9d:1e:c3:cc:20:ea:e4:9e:ff:01:f9:d6:d6: 63:ae:60:b9:60:77:dc:db:ac:cc:84:b6:3e:89:ab:b2:e4:d9: d6:3e:3c:69 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ/kltm7tJlNwj3c5aNCc1+gwJAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNDA3MDEwMDU4MjJaFw0yNTA2MzAwMTAzMjJaMDMxMTAvBgNV BAMTKDU2NjYwN0NFQkI4RjI0QzkyMTQ2RUZFMjJCREZFMjkyQTJDQzY0NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmO0qE5zLwbsor2Tsbd7M7bUTp fdO73SWQm2fNYNYvM7ZXNilx7xcjbA2jZYot4TZjp1QckjtjiHYyYN52Lh5JOb3+ 9P6Fv5VWJg2Wu0FQiJpmnAQrHxKLw8XrJkUjUaSo3AQ7USVEdJFM+HXg9ogr2jLG bYB3dKc5zZZD3yreAoYpkJJ7YrftWx7rDG112lBKTKVNgsPT+NhX0gdIIw/sxTqU 3TjO+vE07QiQMhxMw+XStILgXw1vVzSskCAG/ATXcfAypcMEtkGx32oVWT9kgOzf Bn9EELdMnnXa80+NRS3nG1KSx2J5Ut1qNSdkHhzu+sC3n1/5d6PW7t3/6t1XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVmYHzruPJMkhRu/iK9/ikqLMZGUwHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzNTJlMzIzMTMzMmUzMTMyMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzUzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAfdWAMA0GCSqG SIb3DQEBCwUAA4IBAQA71mH0lCKg/V12QitefAOEjZuAZZaqooAxlHGcLcL1V5ZN 0J1lqM3XyTJVtdYlJuovoYO09EMkGdYl+vXYaUKKjAv9GEesE4TCAot+dn61z+G3 ZsP7nRUQ4GSeoX+ls5gI+FXT9NhwqFQmn58WLlCxGyx43A2bwCpx+cdkgSbmoApe 8oVJjvW1dLIXqSgFbJhLzC7gmK4Ba/BebF2KOccWUhPzV3Vvtl3HRTa4IM9TAMoz 64YZE6GZ7LLC7wlBSe0cD3i7EttgMjZiITVRJONMDqoAHn+4P5i2VAc2jJ0ew8wg 6uSe/wH51tZjrmC5YHfc26zMhLY+iauy5NnWPjxp -----END CERTIFICATE-----Generated at Tue Mar 11 05:04:48 2025 by rpki-client