$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e39362e302f32312d3234203d3e2039333431.roa File: 3232332e32352e39362e302f32312d3234203d3e2039333431.roa (raw, json) Hash identifier: Qjv/mGfQRB5AB46dWcHhxxNcs3aS1PJFtKLeGoBkxi0= Subject key identifier: 0D:28:EF:08:28:82:43:90:6B:94:A3:4C:E9:CA:69:47:1B:3A:F7:C6 Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Certificate serial: 2BC58D7472D41027297032F70EF0C4D53345F361 Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e39362e302f32312d3234203d3e2039333431.roa Signing time: Tue 13 May 2025 12:00:02 +0000 ROA not before: Tue 13 May 2025 11:55:02 +0000 ROA not after: Tue 12 May 2026 12:00:02 +0000 asID: 9341 IP address blocks: 223.25.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:c5:8d:74:72:d4:10:27:29:70:32:f7:0e:f0:c4:d5:33:45:f3:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Validity Not Before: May 13 11:55:02 2025 GMT Not After : May 12 12:00:02 2026 GMT Subject: CN=0D28EF08288243906B94A34CE9CA69471B3AF7C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:44:b2:9d:ec:91:32:3d:77:52:44:d0:4c:f1: 1c:c2:47:9f:44:1e:e5:f0:2c:44:9b:93:a7:1e:ee: f2:69:ba:a5:27:fa:1f:86:a5:cc:cf:cb:69:50:ca: 03:7e:46:b2:c5:02:15:ac:7c:1a:e9:20:1f:bb:9b: 6f:85:61:3f:f8:72:a4:ba:87:7e:1c:f9:2f:dc:57: 27:ab:8e:ae:f0:c0:c9:f7:fa:1b:09:e0:f8:80:c0: 9f:91:44:b0:45:a9:09:dc:d9:52:89:1a:e8:56:9d: 60:5f:2d:92:6c:54:ec:52:b7:b2:88:7c:7e:58:03: 56:02:c8:c5:f5:e0:e5:2b:ff:34:11:03:44:e0:f4: c2:27:3e:9b:30:fd:14:86:e1:2c:9b:90:29:eb:aa: 9b:6f:da:12:e0:94:e8:a7:01:76:ce:ad:44:29:c8: 31:60:04:21:54:5a:ed:62:2d:c1:b7:17:76:88:e3: f4:16:2e:dc:04:b4:04:30:fb:af:9a:51:90:f9:7d: de:bd:30:53:41:dd:d3:53:eb:87:80:39:a4:15:21: c4:11:bd:61:f2:aa:8a:1c:5d:c9:1e:4e:bb:3f:89: 6e:09:86:06:ba:ff:9a:eb:45:97:ea:5b:04:2f:47: 0b:0f:ae:09:81:a4:0b:a6:c2:0f:12:cf:4b:b2:95: 6b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:28:EF:08:28:82:43:90:6B:94:A3:4C:E9:CA:69:47:1B:3A:F7:C6 X509v3 Authority Key Identifier: keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e39362e302f32312d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.25.96.0/21 Signature Algorithm: sha256WithRSAEncryption 6c:6e:ec:4d:3b:98:4d:0d:ea:46:a7:c0:af:2f:af:40:74:f4: 0e:21:31:d9:b5:da:b9:31:d8:4e:2c:d8:d4:9d:1a:31:ce:32: b3:f6:2e:06:7f:c7:7b:12:2a:82:ca:b3:6b:a0:0e:db:ed:51: f3:5a:f0:69:eb:ea:82:03:e8:d5:27:22:60:ce:96:39:d0:71: c8:bf:0d:6c:31:84:32:c0:f8:5b:a6:af:50:0c:93:cd:0a:7c: 60:42:ab:1a:8c:05:18:e7:27:a6:14:d7:b0:f5:02:b9:f9:6a: ec:fa:41:20:1a:ed:fe:db:27:d2:02:7c:8b:d0:a6:d4:97:37: 3a:b3:26:4a:1e:81:cc:8a:1a:59:f9:5c:4e:8b:8c:d4:2c:9d: 15:43:18:ba:de:4e:30:f2:7e:ca:8f:98:78:36:f8:6b:0f:48: 16:da:d8:1d:f5:c4:6e:a1:cb:01:e9:43:50:79:bf:4f:50:29: 2a:7e:d2:20:0d:a8:86:2c:71:e8:b4:57:2f:44:b4:65:63:6a: f3:e7:c4:79:ec:05:1e:7c:87:e4:cd:cf:fc:9d:85:62:eb:6a: 04:62:62:a5:a2:78:35:b3:66:e9:02:58:89:15:24:1c:bc:78: d4:1d:39:48:cc:a8:00:50:31:ac:79:42:1e:1f:43:3b:17:be: a8:44:c7:50 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUK8WNdHLUECcpcDL3DvDE1TNF82EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3 RkMzODc4NzAeFw0yNTA1MTMxMTU1MDJaFw0yNjA1MTIxMjAwMDJaMDMxMTAvBgNV BAMTKDBEMjhFRjA4Mjg4MjQzOTA2Qjk0QTM0Q0U5Q0E2OTQ3MUIzQUY3QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuRLKd7JEyPXdSRNBM8RzCR59E HuXwLESbk6ce7vJpuqUn+h+GpczPy2lQygN+RrLFAhWsfBrpIB+7m2+FYT/4cqS6 h34c+S/cVyerjq7wwMn3+hsJ4PiAwJ+RRLBFqQnc2VKJGuhWnWBfLZJsVOxSt7KI fH5YA1YCyMX14OUr/zQRA0Tg9MInPpsw/RSG4SybkCnrqptv2hLglOinAXbOrUQp yDFgBCFUWu1iLcG3F3aI4/QWLtwEtAQw+6+aUZD5fd69MFNB3dNT64eAOaQVIcQR vWHyqoocXckeTrs/iW4Jhga6/5rrRZfqWwQvRwsPrgmBpAumwg8Sz0uylWuVAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUDSjvCCiCQ5BrlKNM6cppRxs698YwHwYDVR0j BBgwFoAUS/HcwLzFsaS2vlJqdf8zOX/Dh4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDI1NDQxOS01M2JlLTRhZDQtYmY3Zi0yOWY4OTEyNTIzZDAvMC80QkYxRENDMEJD QzVCMUE0QjZCRTUyNkE3NUZGMzMzOTdGQzM4Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3RkMz ODc4Ny5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGQyNTQ0MTktNTNiZS00YWQ0LWJm N2YtMjlmODkxMjUyM2QwLzAvMzIzMjMzMmUzMjM1MmUzOTM2MmUzMDJmMzIzMTJk MzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPfGWAwDQYJKoZIhvcNAQEL BQADggEBAGxu7E07mE0N6kanwK8vr0B09A4hMdm12rkx2E4s2NSdGjHOMrP2LgZ/ x3sSKoLKs2ugDtvtUfNa8Gnr6oID6NUnImDOljnQcci/DWwxhDLA+Fumr1AMk80K fGBCqxqMBRjnJ6YU17D1Arn5auz6QSAa7f7bJ9ICfIvQptSXNzqzJkoegcyKGln5 XE6LjNQsnRVDGLreTjDyfsqPmHg2+GsPSBba2B31xG6hywHpQ1B5v09QKSp+0iAN qIYscei0Vy9EtGVjavPnxHnsBR58h+TNz/ydhWLragRiYqWieDWzZukCWIkVJBy8 eNQdOUjMqABQMax5Qh4fQzsXvqhEx1A= -----END CERTIFICATE-----Generated at Thu Jun 5 18:35:00 2025 by rpki-client