$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e302e302f32332d3233203d3e203338373533.roa File: 32372e3133312e302e302f32332d3233203d3e203338373533.roa (raw, json) Hash identifier: W+haTzNqgvNz2qrA/eoEh4D1XIw+kOsH/6ZeB4i/vYc= Subject key identifier: A1:1E:85:32:AD:98:52:18:B7:5C:A0:A4:01:C2:63:9A:48:DD:AA:95 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 3E5E548E94641D8B57C77978C4217B07A9E0A08C Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e302e302f32332d3233203d3e203338373533.roa Signing time: Tue 03 Jun 2025 08:03:23 +0000 ROA not before: Tue 03 Jun 2025 07:58:23 +0000 ROA not after: Tue 02 Jun 2026 08:03:23 +0000 asID: 38753 IP address blocks: 27.131.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 16:29:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:5e:54:8e:94:64:1d:8b:57:c7:79:78:c4:21:7b:07:a9:e0:a0:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Jun 3 07:58:23 2025 GMT Not After : Jun 2 08:03:23 2026 GMT Subject: CN=A11E8532AD985218B75CA0A401C2639A48DDAA95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:8f:29:25:c9:7e:86:9a:bc:ae:e9:65:1d:14: a9:05:dc:d3:a5:9d:9c:69:7d:ee:2c:b6:4f:0f:5c: ec:9b:3e:d4:bd:0f:61:cc:38:89:12:8b:41:69:d2: 30:ad:14:5c:00:31:fa:0a:8a:1b:ad:d7:8e:ba:58: 57:59:87:9e:89:3b:14:1d:f5:25:fb:8d:97:95:f2: 6a:bf:b2:ee:65:9b:8b:9b:b0:92:82:dd:aa:2d:1b: f9:f4:b6:ac:41:88:06:54:10:3b:ad:e7:de:20:47: f7:7d:41:a6:bd:52:fb:1d:8e:03:89:6d:77:47:3c: 66:5e:60:44:15:4f:bf:52:d4:aa:23:f0:47:8a:0d: 3a:64:5e:d0:0a:74:39:29:6e:8f:bd:12:01:a1:40: b0:21:34:79:f1:78:ab:25:4c:e5:c7:22:b7:07:91: 3f:08:67:db:5e:c6:72:37:fc:29:0b:6c:d9:92:11: af:66:99:cb:fb:db:fa:2d:8d:de:78:7d:e2:ba:87: 0e:6e:7c:0b:2b:bf:ba:90:b6:3a:d0:71:57:5e:92: f4:fe:81:94:74:10:b6:22:20:f3:cc:a2:8f:5a:eb: 18:b4:a2:09:00:c3:e4:cb:22:81:04:89:78:cd:d3: 98:7a:d8:40:31:50:18:5b:6f:d5:39:6e:70:a5:88: 38:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:1E:85:32:AD:98:52:18:B7:5C:A0:A4:01:C2:63:9A:48:DD:AA:95 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e302e302f32332d3233203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.0.0/23 Signature Algorithm: sha256WithRSAEncryption 23:dc:e7:c8:11:d0:85:5f:be:2e:0a:e8:af:03:db:f3:45:d0: 8c:bd:b1:76:68:d2:a7:a6:51:c2:86:16:ec:e7:31:c4:95:0c: ae:8e:bf:5f:b9:99:02:2f:37:11:f3:d2:49:5d:23:32:22:e2: 75:30:66:b8:49:c3:2e:77:cc:fa:aa:0a:35:e7:5d:9a:fc:e6: 9c:82:96:fa:0b:3b:a0:2f:13:63:ad:90:fe:5f:8b:20:0c:85: a3:9c:e1:5a:96:54:e3:80:b3:97:dd:b2:53:7c:0e:62:ad:eb: 8a:40:1c:5b:41:b9:50:a2:98:a8:32:70:07:83:69:a9:ef:c5: 1e:ba:aa:89:1b:7d:a9:4e:0e:dd:b8:b2:b7:0a:69:2a:b1:30: 34:02:03:05:01:08:c9:ae:f5:09:7b:89:c2:5e:89:95:ef:57: db:8e:e6:3d:f1:22:e3:44:98:6c:ba:b0:ab:af:cf:03:b0:d1: d7:95:76:b7:b8:77:a0:6c:bb:d1:ce:85:05:d2:08:08:2c:65: 3b:01:eb:39:66:f1:d3:2d:02:e5:f9:09:1c:fa:6d:51:b7:05: c3:5a:41:cd:9a:6c:89:f8:b9:3c:e7:cd:48:44:56:13:96:4f: 0d:1f:ec:0f:c1:6f:5c:9b:63:fd:42:a6:7e:24:71:52:a9:13: 6b:76:a6:80 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUPl5UjpRkHYtXx3l4xCF7B6ngoIwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTA2MDMwNzU4MjNaFw0yNjA2MDIwODAzMjNaMDMxMTAvBgNV BAMTKEExMUU4NTMyQUQ5ODUyMThCNzVDQTBBNDAxQzI2MzlBNDhEREFBOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsjyklyX6Gmryu6WUdFKkF3NOl nZxpfe4stk8PXOybPtS9D2HMOIkSi0Fp0jCtFFwAMfoKihut1466WFdZh56JOxQd 9SX7jZeV8mq/su5lm4ubsJKC3aotG/n0tqxBiAZUEDut594gR/d9Qaa9UvsdjgOJ bXdHPGZeYEQVT79S1Koj8EeKDTpkXtAKdDkpbo+9EgGhQLAhNHnxeKslTOXHIrcH kT8IZ9texnI3/CkLbNmSEa9mmcv72/otjd54feK6hw5ufAsrv7qQtjrQcVdekvT+ gZR0ELYiIPPMoo9a6xi0ogkAw+TLIoEEiXjN05h62EAxUBhbb9U5bnCliDgxAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUoR6FMq2YUhi3XKCkAcJjmkjdqpUwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzMDJlMzAyZjMyMzMyZDMy MzMyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEbgwAwDQYJKoZIhvcNAQEL BQADggEBACPc58gR0IVfvi4K6K8D2/NF0Iy9sXZo0qemUcKGFuznMcSVDK6Ov1+5 mQIvNxHz0kldIzIi4nUwZrhJwy53zPqqCjXnXZr85pyClvoLO6AvE2OtkP5fiyAM haOc4VqWVOOAs5fdslN8DmKt64pAHFtBuVCimKgycAeDaanvxR66qokbfalODt24 srcKaSqxMDQCAwUBCMmu9Ql7icJeiZXvV9uO5j3xIuNEmGy6sKuvzwOw0deVdre4 d6Bsu9HOhQXSCAgsZTsB6zlm8dMtAuX5CRz6bVG3BcNaQc2abIn4uTznzUhEVhOW Tw0f7A/Bb1ybY/1Cpn4kcVKpE2t2poA= -----END CERTIFICATE-----Generated at Sat Jun 7 15:31:00 2025 by rpki-client