$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130382e302f32342d3234203d3e2034383231.roa File: 3232332e32352e3130382e302f32342d3234203d3e2034383231.roa (raw, json) Hash identifier: kXwkhbJ+oGBQpIPdrmdbXU4UMfG2qJFbyPtaW45RBFo= Subject key identifier: BA:81:E3:92:D3:42:43:BB:72:1D:06:01:41:DF:31:18:3E:17:9F:3F Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Certificate serial: 2C503A14B28F1AB4B2A6C9354C90C088567973EB Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130382e302f32342d3234203d3e2034383231.roa Signing time: Mon 02 Jun 2025 02:04:09 +0000 ROA not before: Mon 02 Jun 2025 01:59:09 +0000 ROA not after: Mon 01 Jun 2026 02:04:09 +0000 asID: 4821 IP address blocks: 223.25.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:50:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:50:3a:14:b2:8f:1a:b4:b2:a6:c9:35:4c:90:c0:88:56:79:73:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Validity Not Before: Jun 2 01:59:09 2025 GMT Not After : Jun 1 02:04:09 2026 GMT Subject: CN=BA81E392D34243BB721D060141DF31183E179F3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:34:84:89:99:3a:1d:94:4d:2b:fa:44:cd:34: 0d:3e:8f:ec:f4:b6:7c:58:5f:47:e5:d9:b6:40:50: 37:56:68:12:4b:5a:2c:9d:34:88:e6:29:be:64:08: ca:43:bc:18:c5:fb:ab:dd:ba:0b:bc:46:71:0c:17: db:c2:34:02:b0:d7:39:84:42:86:da:11:ee:bf:bc: 5b:a6:49:d5:a6:2d:be:58:23:f1:00:57:7f:08:54: 67:6d:80:9b:c4:54:7c:25:0d:e9:34:ef:33:ec:ff: b2:6e:7c:a7:6b:cd:49:5c:72:19:ee:7a:cd:fc:7a: 4e:c6:84:2f:3f:4b:f5:dd:74:54:32:0f:94:d8:47: 15:f8:85:3d:1e:bd:85:6b:85:a9:1f:c1:e2:43:42: 88:1a:3f:d8:4a:60:94:29:0a:0a:dc:04:51:2f:00: 71:75:4e:74:4a:bc:26:d0:1f:32:4e:89:92:40:e6: 21:92:f6:fb:63:ca:05:c9:53:19:66:47:21:79:4d: dd:88:65:5d:2c:58:6c:7a:11:18:af:c2:a0:fa:2c: 55:15:24:a9:e6:86:db:26:96:97:00:0d:03:3f:21: 08:2e:aa:63:c7:f1:29:20:5d:f4:b2:45:5c:76:6a: fe:f4:25:43:f8:10:13:01:f3:dc:ec:70:13:dd:6c: 2c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:81:E3:92:D3:42:43:BB:72:1D:06:01:41:DF:31:18:3E:17:9F:3F X509v3 Authority Key Identifier: keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130382e302f32342d3234203d3e2034383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.25.108.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:fd:6e:f5:79:bb:ed:e0:7d:6b:41:da:9a:c4:4a:c7:59:75: 48:2c:d9:4e:72:ad:ff:1d:74:18:71:2b:b8:7e:74:6f:b4:59: 90:75:fd:98:52:01:20:5a:fe:bd:2b:c9:f5:5c:c1:49:1c:03: 88:f0:5c:bc:2b:8a:8a:55:8e:d8:90:6a:fd:d9:2a:d1:17:0f: 62:2c:30:f4:66:da:9c:be:7a:61:dd:fc:4e:68:72:73:a0:4c: 8e:ea:ee:db:2d:8d:98:cd:7d:3f:d8:d0:9b:56:2d:43:f7:90: dd:a9:1a:2d:39:78:ab:f6:e5:52:e1:9f:ec:16:fc:f7:56:8a: 44:6a:c3:dd:b3:d6:48:52:8c:46:28:55:ff:92:b5:8f:d2:46: c7:46:bf:9d:f4:a9:3a:0f:c7:9a:66:10:a2:36:af:f8:1b:1b: f2:45:4e:22:71:38:4f:38:99:65:4c:d4:85:0d:59:fe:3c:a4: b5:5f:22:53:ae:c3:6f:7d:82:68:a5:6b:f8:38:b6:a3:0b:b2: 8f:08:ec:58:06:aa:73:c5:c6:80:3a:88:54:14:cc:7e:21:08: ec:b0:be:c2:52:a8:20:1b:4d:3e:a8:07:07:55:24:8a:d7:8f: b0:d1:17:a0:c2:4a:40:4d:41:80:a6:5d:a5:80:52:f3:1f:21: 9f:02:3a:d1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIULFA6FLKPGrSypsk1TJDAiFZ5c+swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3 RkMzODc4NzAeFw0yNTA2MDIwMTU5MDlaFw0yNjA2MDEwMjA0MDlaMDMxMTAvBgNV BAMTKEJBODFFMzkyRDM0MjQzQkI3MjFEMDYwMTQxREYzMTE4M0UxNzlGM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvNISJmTodlE0r+kTNNA0+j+z0 tnxYX0fl2bZAUDdWaBJLWiydNIjmKb5kCMpDvBjF+6vdugu8RnEMF9vCNAKw1zmE QobaEe6/vFumSdWmLb5YI/EAV38IVGdtgJvEVHwlDek07zPs/7JufKdrzUlcchnu es38ek7GhC8/S/XddFQyD5TYRxX4hT0evYVrhakfweJDQogaP9hKYJQpCgrcBFEv AHF1TnRKvCbQHzJOiZJA5iGS9vtjygXJUxlmRyF5Td2IZV0sWGx6ERivwqD6LFUV JKnmhtsmlpcADQM/IQguqmPH8SkgXfSyRVx2av70JUP4EBMB89zscBPdbCwrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUuoHjktNCQ7tyHQYBQd8xGD4Xnz8wHwYDVR0j BBgwFoAUS/HcwLzFsaS2vlJqdf8zOX/Dh4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDI1NDQxOS01M2JlLTRhZDQtYmY3Zi0yOWY4OTEyNTIzZDAvMC80QkYxRENDMEJD QzVCMUE0QjZCRTUyNkE3NUZGMzMzOTdGQzM4Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3RkMz ODc4Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMjU0NDE5LTUzYmUtNGFkNC1i ZjdmLTI5Zjg5MTI1MjNkMC8wLzMyMzIzMzJlMzIzNTJlMzEzMDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADfGWwwDQYJKoZIhvcN AQELBQADggEBAC/9bvV5u+3gfWtB2prESsdZdUgs2U5yrf8ddBhxK7h+dG+0WZB1 /ZhSASBa/r0ryfVcwUkcA4jwXLwriopVjtiQav3ZKtEXD2IsMPRm2py+emHd/E5o cnOgTI7q7tstjZjNfT/Y0JtWLUP3kN2pGi05eKv25VLhn+wW/PdWikRqw92z1khS jEYoVf+StY/SRsdGv530qToPx5pmEKI2r/gbG/JFTiJxOE84mWVM1IUNWf48pLVf IlOuw299gmila/g4tqMLso8I7FgGqnPFxoA6iFQUzH4hCOywvsJSqCAbTT6oBwdV JIrXj7DRF6DCSkBNQYCmXaWAUvMfIZ8COtE= -----END CERTIFICATE-----Generated at Sat Jun 7 17:18:40 2025 by rpki-client