$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132352e3231332e3133302e302f32342d3234203d3e203338353133.roa File: 3132352e3231332e3133302e302f32342d3234203d3e203338353133.roa (raw, json) Hash identifier: ApP+/RedRCyAfwP3cWW2IxjqBXX1b1wU2OOxV9QCuvo= Subject key identifier: 27:DB:80:60:9E:D4:28:63:29:F6:A2:E5:88:A4:28:B8:70:0F:4A:52 Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 599A2006083E05E11960815BD18E465136CFEDE3 Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132352e3231332e3133302e302f32342d3234203d3e203338353133.roa Signing time: Wed 19 Mar 2025 05:00:00 +0000 ROA not before: Wed 19 Mar 2025 04:55:00 +0000 ROA not after: Wed 18 Mar 2026 05:00:00 +0000 asID: 38513 IP address blocks: 125.213.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 19:34:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:9a:20:06:08:3e:05:e1:19:60:81:5b:d1:8e:46:51:36:cf:ed:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Mar 19 04:55:00 2025 GMT Not After : Mar 18 05:00:00 2026 GMT Subject: CN=27DB80609ED4286329F6A2E588A428B8700F4A52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:45:c5:9d:d6:92:36:d8:04:53:32:c5:69:4d: 66:ad:c9:9a:50:b8:03:fe:d7:66:dd:eb:96:d0:1e: a4:e4:39:7f:37:27:ab:60:0b:14:03:30:18:a6:5d: a9:d2:3f:68:88:ce:47:f6:d2:5e:2d:cb:5d:0a:c3: 49:a0:19:9c:77:5c:c0:12:df:21:7b:07:93:5a:a6: 4f:e3:b4:1e:b3:fb:96:b5:8c:3d:ac:a8:d1:d9:4e: c9:0b:23:ed:3b:cc:23:fc:9a:25:e1:bd:dd:13:ad: 83:ab:c5:01:0d:3d:c9:17:a7:1d:9c:02:1a:ba:43: cc:cf:c0:aa:9a:82:0e:f3:f5:d4:28:4e:de:c4:1b: 9b:5b:4c:b4:70:1d:9d:fc:e6:ab:0a:ed:ca:7f:c6: b8:f7:27:76:b3:08:fb:50:85:b2:d9:26:10:d4:b2: d6:0f:3a:6a:5d:c0:ae:ba:0e:4f:07:25:b5:f4:25: 1f:86:40:0c:5d:ba:b8:d7:43:1b:6a:d5:53:b5:9a: c4:65:88:9d:8e:3f:f4:e7:ae:f8:30:b1:fc:bb:7a: 6b:e8:bb:4b:e7:64:bd:83:9b:75:73:4e:60:8b:96: 86:bf:74:2a:7f:38:af:c9:09:33:23:0d:ba:d9:83: c7:00:ab:d7:a3:4e:b0:80:8b:a0:ac:ee:11:e5:a8: 63:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:DB:80:60:9E:D4:28:63:29:F6:A2:E5:88:A4:28:B8:70:0F:4A:52 X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132352e3231332e3133302e302f32342d3234203d3e203338353133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.213.130.0/24 Signature Algorithm: sha256WithRSAEncryption 89:bc:27:7f:b7:5c:1f:89:75:17:5f:92:77:c1:e3:b2:9c:ed: 0e:02:c8:22:ed:7e:10:11:7f:72:4f:dc:3d:59:e0:2f:02:37: 08:1d:83:8c:ee:06:69:f5:b6:81:bf:25:f7:89:65:2d:4b:bd: 03:e4:8c:fa:d6:bf:db:f8:ce:a6:19:02:12:8c:7a:73:bc:06: 9b:62:7b:c0:76:83:58:df:80:3d:b6:49:83:a0:5d:6c:5e:16: 8e:e8:97:70:35:a1:ae:4b:11:ad:e4:ba:3a:78:04:1e:b0:5e: b4:d7:a6:4c:19:ad:ef:ae:90:64:d7:8d:62:19:59:b1:e2:66: 2d:5d:8c:ff:c4:4a:73:db:2c:a7:f5:bf:31:5d:32:96:4a:f3: 97:76:29:19:32:aa:4c:9a:af:0e:d9:cb:6e:53:96:45:20:75: 60:7a:df:75:4d:27:4a:1e:9b:86:e6:4d:74:bb:0d:f8:57:26: 8e:a4:fb:3d:5c:e0:5f:f0:dd:a7:33:fc:cf:d6:db:a4:99:a3: 50:51:2a:a3:04:ac:0d:26:e0:e3:5e:56:c5:45:54:c0:85:45: b7:22:9c:1d:b4:76:60:67:ff:6a:4d:54:b7:de:6a:f4:ef:e2: bf:52:59:82:a0:1b:6a:5f:9c:28:9e:d7:42:f0:30:c2:c0:c6: 5c:a9:78:bf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWZogBgg+BeEZYIFb0Y5GUTbP7eMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNTAzMTkwNDU1MDBaFw0yNjAzMTgwNTAwMDBaMDMxMTAvBgNV BAMTKDI3REI4MDYwOUVENDI4NjMyOUY2QTJFNTg4QTQyOEI4NzAwRjRBNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMRcWd1pI22ARTMsVpTWatyZpQ uAP+12bd65bQHqTkOX83J6tgCxQDMBimXanSP2iIzkf20l4ty10Kw0mgGZx3XMAS 3yF7B5Napk/jtB6z+5a1jD2sqNHZTskLI+07zCP8miXhvd0TrYOrxQENPckXpx2c Ahq6Q8zPwKqagg7z9dQoTt7EG5tbTLRwHZ385qsK7cp/xrj3J3azCPtQhbLZJhDU stYPOmpdwK66Dk8HJbX0JR+GQAxdurjXQxtq1VO1msRliJ2OP/Tnrvgwsfy7emvo u0vnZL2Dm3VzTmCLloa/dCp/OK/JCTMjDbrZg8cAq9ejTrCAi6Cs7hHlqGOpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJ9uAYJ7UKGMp9qLliKQouHAPSlIwHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzNTJlMzIzMTMzMmUzMTMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzUzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAfdWCMA0GCSqG SIb3DQEBCwUAA4IBAQCJvCd/t1wfiXUXX5J3weOynO0OAsgi7X4QEX9yT9w9WeAv AjcIHYOM7gZp9baBvyX3iWUtS70D5Iz61r/b+M6mGQISjHpzvAabYnvAdoNY34A9 tkmDoF1sXhaO6JdwNaGuSxGt5Lo6eAQesF6016ZMGa3vrpBk141iGVmx4mYtXYz/ xEpz2yyn9b8xXTKWSvOXdikZMqpMmq8O2ctuU5ZFIHVget91TSdKHpuG5k10uw34 VyaOpPs9XOBf8N2nM/zP1tukmaNQUSqjBKwNJuDjXlbFRVTAhUW3IpwdtHZgZ/9q TVS33mr07+K/UlmCoBtqX5wontdC8DDCwMZcqXi/ -----END CERTIFICATE-----Generated at Sun Apr 6 18:34:45 2025 by rpki-client