$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e302e302f32342d3234203d3e203338373533.roa File: 32372e3133312e302e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: rwexCzY/uDomcp/J/MkA/1gBpeIeGe5xmjpv6fRZzXU= Subject key identifier: A6:74:CC:F6:BE:DB:96:68:B1:95:00:78:6F:6C:08:1E:BC:BC:52:85 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 7329B01993F5109345DC43057C37DDA3E7EA59B9 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e302e302f32342d3234203d3e203338373533.roa Signing time: Tue 20 May 2025 03:00:01 +0000 ROA not before: Tue 20 May 2025 02:55:01 +0000 ROA not after: Tue 19 May 2026 03:00:01 +0000 asID: 38753 IP address blocks: 27.131.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 01:31:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:29:b0:19:93:f5:10:93:45:dc:43:05:7c:37:dd:a3:e7:ea:59:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: May 20 02:55:01 2025 GMT Not After : May 19 03:00:01 2026 GMT Subject: CN=A674CCF6BEDB9668B19500786F6C081EBCBC5285 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b4:7d:60:6f:17:e6:d0:72:22:88:a6:63:4b: 7a:39:1c:7c:e4:ae:e0:a9:52:4c:4d:4d:1b:86:a9: 24:db:55:05:33:63:d5:9e:6e:f9:8c:35:1e:39:b2: 8b:c7:c8:e4:00:b9:b3:cf:12:fe:64:19:3f:d3:6e: ce:f9:17:a3:a3:03:fa:9c:ec:00:89:b0:06:09:ec: af:64:e1:96:88:97:85:b2:46:d1:75:f5:4c:67:e2: 2d:8e:14:a6:32:ae:fb:1d:b7:17:c9:63:76:1a:2e: ef:51:9b:a3:04:5f:aa:ec:cd:a5:0b:36:89:f7:fc: 2c:b7:2a:12:56:28:b4:27:f8:d2:03:ef:ab:15:ab: 0b:17:d3:46:84:96:31:1e:de:90:9c:56:34:72:58: 08:f3:8e:bf:29:29:2b:89:0a:b9:29:8c:da:ba:3f: bb:b4:c1:f3:ee:14:b5:9b:4e:bb:d5:b2:5e:3c:72: c1:ce:83:9a:46:13:b0:fa:45:ee:b9:c7:f3:06:ed: b9:a2:4f:13:04:e3:f8:57:a0:b0:e5:e7:5c:54:77: 30:a9:62:e4:59:bb:5b:a0:10:d0:c7:53:7b:c9:42: 9e:6b:47:7f:f9:07:1a:68:68:17:82:63:64:c0:07: 05:72:f9:44:49:ab:9b:4a:06:e4:d0:80:5a:15:12: 8b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:74:CC:F6:BE:DB:96:68:B1:95:00:78:6F:6C:08:1E:BC:BC:52:85 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e302e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.0.0/24 Signature Algorithm: sha256WithRSAEncryption 69:4e:e2:be:fa:a8:49:be:41:b5:f3:07:5d:7c:75:41:50:70: 11:81:db:35:5c:58:19:85:a3:89:ae:f9:36:d0:b7:94:5b:b4: d7:44:93:6b:12:67:b6:a3:a6:c9:d0:55:0e:5a:83:0d:6e:f6: ab:38:01:0e:99:9f:9d:c9:d6:95:d7:eb:2d:6e:0f:03:5d:81: b6:94:f6:db:48:f6:bd:cf:c1:d1:78:f5:89:5e:19:8f:57:58: 9d:a6:71:9a:4d:3f:cf:b6:69:27:4d:42:ef:74:53:39:d2:4b: 29:8c:85:e1:67:f4:cf:5b:04:ba:b5:c5:78:4f:8a:f3:21:a5: 10:58:9c:83:c2:2f:da:39:ab:19:5a:61:91:7f:e8:b2:c2:d2: 7a:2f:31:7a:10:c9:38:c4:61:c8:33:7f:98:67:d6:df:f7:7c: 02:3f:b5:07:70:4f:33:37:c9:10:59:42:df:49:f5:07:e2:ac: 36:a7:95:6b:0c:d5:8f:d3:bd:15:a8:db:75:78:8d:38:7d:d7: fd:11:3a:65:6b:4e:c3:e3:7f:73:57:73:67:f3:9f:09:b0:9d: a4:ba:c4:0f:e2:26:32:ae:f8:8d:9e:5d:fe:9b:c3:18:31:50: 85:08:f3:45:c9:21:74:29:2d:1e:d4:d2:13:2a:e2:bb:3a:56: 9d:14:36:f7 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUcymwGZP1EJNF3EMFfDfdo+fqWbkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTA1MjAwMjU1MDFaFw0yNjA1MTkwMzAwMDFaMDMxMTAvBgNV BAMTKEE2NzRDQ0Y2QkVEQjk2NjhCMTk1MDA3ODZGNkMwODFFQkNCQzUyODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqtH1gbxfm0HIiiKZjS3o5HHzk ruCpUkxNTRuGqSTbVQUzY9WebvmMNR45sovHyOQAubPPEv5kGT/Tbs75F6OjA/qc 7ACJsAYJ7K9k4ZaIl4WyRtF19Uxn4i2OFKYyrvsdtxfJY3YaLu9Rm6MEX6rszaUL Non3/Cy3KhJWKLQn+NID76sVqwsX00aEljEe3pCcVjRyWAjzjr8pKSuJCrkpjNq6 P7u0wfPuFLWbTrvVsl48csHOg5pGE7D6Re65x/MG7bmiTxME4/hXoLDl51xUdzCp YuRZu1ugENDHU3vJQp5rR3/5BxpoaBeCY2TABwVy+URJq5tKBuTQgFoVEovhAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUpnTM9r7blmixlQB4b2wIHry8UoUwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzMDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbgwAwDQYJKoZIhvcNAQEL BQADggEBAGlO4r76qEm+QbXzB118dUFQcBGB2zVcWBmFo4mu+TbQt5RbtNdEk2sS Z7ajpsnQVQ5agw1u9qs4AQ6Zn53J1pXX6y1uDwNdgbaU9ttI9r3PwdF49YleGY9X WJ2mcZpNP8+2aSdNQu90UznSSymMheFn9M9bBLq1xXhPivMhpRBYnIPCL9o5qxla YZF/6LLC0novMXoQyTjEYcgzf5hn1t/3fAI/tQdwTzM3yRBZQt9J9QfirDanlWsM 1Y/TvRWo23V4jTh91/0ROmVrTsPjf3NXc2fznwmwnaS6xA/iJjKu+I2eXf6bwxgx UIUI80XJIXQpLR7U0hMq4rs6Vp0UNvc= -----END CERTIFICATE-----Generated at Sun Jun 8 06:33:16 2025 by rpki-client