$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e322e302f32332d3233203d3e203338373533.roa File: 32372e3133312e322e302f32332d3233203d3e203338373533.roa (raw, json) Hash identifier: HrCJcI2x/VbUs3+1x2S4nRJKMTf6F0cTaPvOvUGMmVI= Subject key identifier: FD:C9:42:33:33:B8:E2:DF:F0:C9:DE:85:DA:5A:0A:F5:32:B7:09:08 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 1247A36035DCC00F6C25BDF66472D9B5F4D0C82C Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e322e302f32332d3233203d3e203338373533.roa Signing time: Tue 03 Jun 2025 08:03:23 +0000 ROA not before: Tue 03 Jun 2025 07:58:23 +0000 ROA not after: Tue 02 Jun 2026 08:03:23 +0000 asID: 38753 IP address blocks: 27.131.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 16:29:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:47:a3:60:35:dc:c0:0f:6c:25:bd:f6:64:72:d9:b5:f4:d0:c8:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Jun 3 07:58:23 2025 GMT Not After : Jun 2 08:03:23 2026 GMT Subject: CN=FDC9423333B8E2DFF0C9DE85DA5A0AF532B70908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:87:57:a1:57:d3:c9:27:6c:2e:d6:86:71:c7: f0:e8:66:1e:55:fc:65:99:9e:f1:f0:d0:4c:37:88: 38:e4:c5:32:90:c5:9f:9a:07:2e:93:17:75:e8:66: 19:3a:d9:df:54:59:b3:20:24:f2:c3:4e:47:e0:1a: 11:47:f5:0f:bf:e1:2b:ad:52:e6:f9:88:ff:48:7d: 3e:3d:11:1f:4c:0b:3c:ca:9b:ce:cc:ba:c8:d8:32: 5d:d6:06:70:56:dd:a3:80:44:be:b4:be:08:98:b9: 72:68:6d:29:5f:2a:30:d1:78:bc:a6:58:9d:63:0b: 08:e8:de:f0:13:31:67:7a:c7:4e:94:bd:8a:f9:f4: 89:51:7a:cd:18:ae:8b:60:30:ec:32:6b:5d:62:38: 25:73:8b:94:dd:33:81:9e:9c:c7:ef:75:d1:84:8f: d6:f3:cb:ae:2a:b9:f7:f3:96:e9:72:bb:98:94:c7: ce:4c:33:ae:92:25:a8:33:55:7b:e8:8e:c2:9f:6c: ea:f0:13:33:9f:90:9f:f7:ec:a9:03:d1:5b:dd:4f: 18:3f:f2:af:a3:ae:89:b9:1c:0e:d1:38:af:5e:59: d4:d2:f0:06:5d:a2:e7:19:e5:14:4a:ce:20:2b:ff: 7c:4e:d6:3a:68:0f:b5:97:cd:6a:e5:55:09:b7:a8: f1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:C9:42:33:33:B8:E2:DF:F0:C9:DE:85:DA:5A:0A:F5:32:B7:09:08 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e322e302f32332d3233203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.2.0/23 Signature Algorithm: sha256WithRSAEncryption 95:8d:52:73:a9:b8:85:59:53:3e:ad:f7:20:19:85:36:27:04: 07:f5:aa:cf:0d:70:3f:34:70:76:87:85:91:4d:3a:ea:41:5f: 98:8e:fe:df:78:4b:29:82:39:51:5b:1c:ad:b5:9d:b2:40:ec: 9b:40:14:6c:1e:fe:7f:f7:57:a9:f9:cc:bf:51:e5:20:b6:77: fb:74:81:d0:e6:4d:b3:25:7a:e9:95:a9:1e:a2:e6:f2:32:4b: d6:e1:52:5f:49:e2:1c:ef:b8:98:db:87:92:fe:64:9a:cb:fb: 6c:a5:0d:0b:d1:fb:76:5c:c4:64:f3:8b:44:5f:3f:c3:93:ab: d8:a8:fd:f3:d9:71:0a:17:19:0a:89:8f:27:35:57:75:d7:6e: be:42:8b:16:e0:3b:6c:1d:68:50:32:69:59:d7:32:03:fd:c7: ec:6a:8f:9d:21:ac:15:61:7f:78:82:3e:37:c2:ef:d0:5e:09: 29:8e:f9:74:ce:c4:a2:24:99:35:73:fa:34:4c:8c:f9:69:3e: 98:0c:c7:45:c8:b5:8d:f6:a6:8c:c4:3a:df:6f:46:75:31:c6: f8:7f:44:3c:0f:65:c0:68:2d:a4:0b:3d:0c:87:cb:d6:fd:ff: 81:85:3a:e1:6a:73:9d:a0:1b:67:be:e0:c2:29:d8:81:57:b9: 6b:b2:70:40 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUEkejYDXcwA9sJb32ZHLZtfTQyCwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTA2MDMwNzU4MjNaFw0yNjA2MDIwODAzMjNaMDMxMTAvBgNV BAMTKEZEQzk0MjMzMzNCOEUyREZGMEM5REU4NURBNUEwQUY1MzJCNzA5MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/h1ehV9PJJ2wu1oZxx/DoZh5V /GWZnvHw0Ew3iDjkxTKQxZ+aBy6TF3XoZhk62d9UWbMgJPLDTkfgGhFH9Q+/4Sut Uub5iP9IfT49ER9MCzzKm87MusjYMl3WBnBW3aOARL60vgiYuXJobSlfKjDReLym WJ1jCwjo3vATMWd6x06UvYr59IlRes0YrotgMOwya11iOCVzi5TdM4GenMfvddGE j9bzy64quffzlulyu5iUx85MM66SJagzVXvojsKfbOrwEzOfkJ/37KkD0VvdTxg/ 8q+jrom5HA7ROK9eWdTS8AZdoucZ5RRKziAr/3xO1jpoD7WXzWrlVQm3qPG7AgMB AAGjggItMIICKTAdBgNVHQ4EFgQU/clCMzO44t/wyd6F2loK9TK3CQgwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzMjJlMzAyZjMyMzMyZDMy MzMyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEbgwIwDQYJKoZIhvcNAQEL BQADggEBAJWNUnOpuIVZUz6t9yAZhTYnBAf1qs8NcD80cHaHhZFNOupBX5iO/t94 SymCOVFbHK21nbJA7JtAFGwe/n/3V6n5zL9R5SC2d/t0gdDmTbMleumVqR6i5vIy S9bhUl9J4hzvuJjbh5L+ZJrL+2ylDQvR+3ZcxGTzi0RfP8OTq9io/fPZcQoXGQqJ jyc1V3XXbr5CixbgO2wdaFAyaVnXMgP9x+xqj50hrBVhf3iCPjfC79BeCSmO+XTO xKIkmTVz+jRMjPlpPpgMx0XItY32pozEOt9vRnUxxvh/RDwPZcBoLaQLPQyHy9b9 /4GFOuFqc52gG2e+4MIp2IFXuWuycEA= -----END CERTIFICATE-----Generated at Sat Jun 7 14:46:34 2025 by rpki-client