$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3132342e3135382e3137362e302f32302d3234203d3e203535363835.roa File: 3132342e3135382e3137362e302f32302d3234203d3e203535363835.roa (raw, json) Hash identifier: NFPSfJyEFRiWHDrzKYJlUm2R8xLI4335UdnCumFdky8= Subject key identifier: EC:59:94:5A:BA:EF:1C:0F:05:9C:CC:30:57:A9:C9:DB:45:47:C0:FA Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 5EBA5D906791BCE9E458FB261317C73AF30A3F2F Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3132342e3135382e3137362e302f32302d3234203d3e203535363835.roa Signing time: Mon 02 Jun 2025 02:04:47 +0000 ROA not before: Mon 02 Jun 2025 01:59:47 +0000 ROA not after: Mon 01 Jun 2026 02:04:47 +0000 asID: 55685 IP address blocks: 124.158.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ba:5d:90:67:91:bc:e9:e4:58:fb:26:13:17:c7:3a:f3:0a:3f:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jun 2 01:59:47 2025 GMT Not After : Jun 1 02:04:47 2026 GMT Subject: CN=EC59945ABAEF1C0F059CCC3057A9C9DB4547C0FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:e1:26:fe:83:2e:da:a7:3f:db:48:7e:e6:21: b9:43:d4:cb:cd:2e:ef:20:40:db:f4:7b:42:95:15: 83:a6:82:c5:26:9a:93:0e:6d:c9:bc:89:e8:58:99: 86:01:6f:82:d5:aa:f3:74:00:56:87:a9:69:d5:75: 88:24:8c:46:fe:81:7a:52:9c:f8:aa:46:30:6a:0c: 6f:3d:8d:a4:d1:33:49:57:ba:9c:d0:30:2e:1d:06: 84:32:bb:60:ac:d3:ea:bc:b4:6f:1e:60:f1:04:82: d6:52:3a:d1:35:48:4a:44:40:0b:0a:3a:50:b6:4f: c1:22:24:19:70:20:32:3e:1f:27:25:a2:54:5f:cb: e7:27:33:00:d4:1a:c6:24:1d:5e:f8:90:84:68:fa: 91:f0:c7:d4:08:f5:6d:dd:b5:e0:d7:a8:ba:19:b5: ea:0b:9d:f9:37:72:c8:0a:5d:37:bd:ad:78:14:d7: 43:9e:6b:e2:cf:a6:9b:21:bc:d7:ad:7c:6c:9c:e2: 7c:a7:a3:8b:3b:c0:c0:82:45:40:31:62:d5:ab:80: b6:a1:3c:34:55:07:cf:e4:85:cc:45:86:85:2e:13: bf:3f:e6:a8:04:6e:88:a5:e4:57:b0:5d:03:90:59: 02:e6:c5:71:e2:a4:87:cd:70:7b:66:f1:3f:1e:c0: ff:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:59:94:5A:BA:EF:1C:0F:05:9C:CC:30:57:A9:C9:DB:45:47:C0:FA X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3132342e3135382e3137362e302f32302d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.158.176.0/20 Signature Algorithm: sha256WithRSAEncryption 4a:db:4a:53:de:7b:2e:04:ff:81:45:08:7c:11:08:e4:a8:cf: 67:aa:05:98:35:03:88:e4:5b:6c:e1:95:ee:76:2f:b3:fd:a3: cb:86:15:48:fe:7d:0a:e4:db:50:b4:f9:6e:18:b9:a7:2e:12: f6:15:2b:e7:26:a5:30:cb:90:a1:8d:88:ca:f0:81:dd:0c:1d: d4:c7:5e:97:4b:0c:be:8e:f3:e1:01:fd:41:12:fe:f5:56:88: b7:f9:88:4e:7e:16:44:63:35:cc:d6:f7:61:f0:5f:88:76:0d: a1:4d:13:95:c1:35:dd:bb:82:80:1b:5d:11:29:f1:33:86:eb: d0:e5:3b:d9:dd:c4:5c:fb:48:66:79:74:68:29:a3:ac:40:b5: 72:7e:fd:84:92:35:ea:0b:8f:b6:4e:88:28:46:26:07:75:fa: 4a:4c:94:32:12:ef:a5:89:1f:31:06:41:10:dc:fb:a6:e5:f3: 2d:fb:2c:46:f3:5a:23:3f:08:04:a7:98:46:d7:29:54:cc:6c: 4a:9b:11:b0:28:00:51:8a:4b:22:aa:85:2c:ac:a6:96:1b:5c: d9:fb:c8:3f:4e:7a:c4:89:87:82:49:32:44:b1:6a:e2:d1:5e: c0:7c:16:0a:02:46:b4:02:8e:9f:47:50:df:51:53:91:6e:db: 14:ec:fa:fc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXrpdkGeRvOnkWPsmExfHOvMKPy8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA2MDIwMTU5NDdaFw0yNjA2MDEwMjA0NDdaMDMxMTAvBgNV BAMTKEVDNTk5NDVBQkFFRjFDMEYwNTlDQ0MzMDU3QTlDOURCNDU0N0MwRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDy4Sb+gy7apz/bSH7mIblD1MvN Lu8gQNv0e0KVFYOmgsUmmpMObcm8iehYmYYBb4LVqvN0AFaHqWnVdYgkjEb+gXpS nPiqRjBqDG89jaTRM0lXupzQMC4dBoQyu2Cs0+q8tG8eYPEEgtZSOtE1SEpEQAsK OlC2T8EiJBlwIDI+HyclolRfy+cnMwDUGsYkHV74kIRo+pHwx9QI9W3dteDXqLoZ teoLnfk3csgKXTe9rXgU10Oea+LPppshvNetfGyc4nyno4s7wMCCRUAxYtWrgLah PDRVB8/khcxFhoUuE78/5qgEboil5FewXQOQWQLmxXHipIfNcHtm8T8ewP8zAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7FmUWrrvHA8FnMwwV6nJ20VHwPowHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzIzNDJlMzEzNTM4MmUzMTM3MzYyZTMwMmYz MjMwMmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEfJ6wMA0GCSqG SIb3DQEBCwUAA4IBAQBK20pT3nsuBP+BRQh8EQjkqM9nqgWYNQOI5Fts4ZXudi+z /aPLhhVI/n0K5NtQtPluGLmnLhL2FSvnJqUwy5ChjYjK8IHdDB3Ux16XSwy+jvPh Af1BEv71Voi3+YhOfhZEYzXM1vdh8F+Idg2hTROVwTXdu4KAG10RKfEzhuvQ5TvZ 3cRc+0hmeXRoKaOsQLVyfv2EkjXqC4+2TogoRiYHdfpKTJQyEu+liR8xBkEQ3Pum 5fMt+yxG81ojPwgEp5hG1ylUzGxKmxGwKABRiksiqoUsrKaWG1zZ+8g/TnrEiYeC STJEsWri0V7AfBYKAka0Ao6fR1DfUVORbtsU7Pr8 -----END CERTIFICATE-----Generated at Sun Jun 8 07:47:00 2025 by rpki-client