$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e342e302f32332d3233203d3e203338373533.roa File: 32372e3133312e342e302f32332d3233203d3e203338373533.roa (raw, json) Hash identifier: 5fNTIg7YTE2LAubtcnkV2bzMFwDB3tfkuzlP7/lDyWs= Subject key identifier: 0E:74:8F:8F:35:03:09:F2:3B:6C:19:A6:0F:78:99:07:4F:83:C7:5F Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 7010FF8E7FD621C28EE73758633FC9810EF49328 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e342e302f32332d3233203d3e203338373533.roa Signing time: Tue 03 Jun 2025 08:03:24 +0000 ROA not before: Tue 03 Jun 2025 07:58:24 +0000 ROA not after: Tue 02 Jun 2026 08:03:24 +0000 asID: 38753 IP address blocks: 27.131.4.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 16:29:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:10:ff:8e:7f:d6:21:c2:8e:e7:37:58:63:3f:c9:81:0e:f4:93:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Jun 3 07:58:24 2025 GMT Not After : Jun 2 08:03:24 2026 GMT Subject: CN=0E748F8F350309F23B6C19A60F7899074F83C75F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ae:38:15:0c:a8:81:da:88:bb:4e:54:dc:16: 0c:5c:c7:66:31:1d:8d:5d:ed:0f:74:2c:3f:6c:81: d9:e1:88:92:cf:07:bf:b5:65:b5:1c:dd:c5:bc:c6: d5:21:17:e4:00:11:7e:e3:51:61:b2:3c:bf:b5:02: f7:d3:75:c1:30:cc:68:dc:bd:1d:bd:ad:c7:72:fc: 3f:d3:f3:74:09:22:b9:14:cb:28:78:06:17:0b:37: dd:5c:e0:62:8b:4d:f9:a3:bb:77:c8:49:4d:34:a3: 68:71:f0:c6:6b:73:78:c5:15:af:c5:0f:bc:20:bc: fb:4d:c5:d3:ac:d2:c7:3b:a8:28:2b:49:1e:35:fd: 19:26:67:94:70:b4:cf:ab:69:6f:96:28:1e:91:a3: 1e:90:87:dc:33:b1:14:be:5a:18:26:8d:ca:2a:80: f3:7e:3d:28:24:cb:df:db:e5:47:68:4b:60:f9:e0: 9c:f2:d6:1d:bf:f7:cb:34:db:85:e0:43:22:07:00: 2f:0f:30:f0:c6:3a:1f:25:bc:b9:50:88:4b:d6:2f: 8c:59:05:06:d6:e1:28:8b:de:08:84:84:23:7a:da: 68:9f:71:a4:f7:d8:80:ce:25:e7:91:b5:35:66:f5: 9f:12:26:69:f2:8e:4e:83:7a:b6:7f:8a:b9:01:33: ab:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:74:8F:8F:35:03:09:F2:3B:6C:19:A6:0F:78:99:07:4F:83:C7:5F X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e342e302f32332d3233203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.4.0/23 Signature Algorithm: sha256WithRSAEncryption af:fd:be:b9:ba:17:ff:33:65:37:81:b3:d7:7d:91:6c:8c:8b: 88:89:19:a0:24:6e:d5:1d:49:fd:d2:d0:d3:96:8d:9d:bb:73: 83:34:5e:b2:33:52:17:3b:c0:64:51:49:2b:31:38:b0:83:6f: 84:05:bd:80:6f:10:b3:24:bb:46:d1:3b:ab:86:da:29:4d:e9: ef:ec:5e:0f:ad:d6:af:c9:46:0d:af:dd:44:5a:14:d2:c8:c5: 0e:97:f3:a3:06:79:57:fb:c8:49:ff:22:e8:dd:36:35:3d:4e: fe:1d:5e:b5:19:b5:47:3e:a5:92:e6:46:06:bf:57:a6:a2:1e: 71:5b:03:10:c0:60:f7:5e:aa:b9:4a:2f:f3:d2:7d:84:68:9e: ee:97:27:74:1d:4f:ae:ff:f8:59:f0:2b:d2:4b:f4:ee:22:e2: 50:36:7e:cd:64:af:5d:3c:58:f4:33:b9:c5:fa:cd:52:79:be: 71:96:08:7e:75:b2:b7:6a:c0:74:28:28:75:cb:4a:98:e6:24: bf:3d:79:cc:aa:75:e7:ac:b7:f2:b3:16:0f:e0:af:e9:18:1e: cb:61:b2:33:eb:63:52:52:be:ef:fc:c7:e8:55:b7:5f:a2:52: c3:22:3e:05:a3:a2:2f:b1:2e:8e:8a:37:cb:ef:46:65:c7:c4: 71:89:54:94 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUcBD/jn/WIcKO5zdYYz/JgQ70kygwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTA2MDMwNzU4MjRaFw0yNjA2MDIwODAzMjRaMDMxMTAvBgNV BAMTKDBFNzQ4RjhGMzUwMzA5RjIzQjZDMTlBNjBGNzg5OTA3NEY4M0M3NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCorjgVDKiB2oi7TlTcFgxcx2Yx HY1d7Q90LD9sgdnhiJLPB7+1ZbUc3cW8xtUhF+QAEX7jUWGyPL+1AvfTdcEwzGjc vR29rcdy/D/T83QJIrkUyyh4BhcLN91c4GKLTfmju3fISU00o2hx8MZrc3jFFa/F D7wgvPtNxdOs0sc7qCgrSR41/RkmZ5RwtM+raW+WKB6Rox6Qh9wzsRS+Whgmjcoq gPN+PSgky9/b5UdoS2D54Jzy1h2/98s024XgQyIHAC8PMPDGOh8lvLlQiEvWL4xZ BQbW4SiL3giEhCN62mifcaT32IDOJeeRtTVm9Z8SJmnyjk6DerZ/irkBM6v7AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUDnSPjzUDCfI7bBmmD3iZB0+Dx18wHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzNDJlMzAyZjMyMzMyZDMy MzMyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEbgwQwDQYJKoZIhvcNAQEL BQADggEBAK/9vrm6F/8zZTeBs9d9kWyMi4iJGaAkbtUdSf3S0NOWjZ27c4M0XrIz Uhc7wGRRSSsxOLCDb4QFvYBvELMku0bRO6uG2ilN6e/sXg+t1q/JRg2v3URaFNLI xQ6X86MGeVf7yEn/IujdNjU9Tv4dXrUZtUc+pZLmRga/V6aiHnFbAxDAYPdeqrlK L/PSfYRonu6XJ3QdT67/+FnwK9JL9O4i4lA2fs1kr108WPQzucX6zVJ5vnGWCH51 srdqwHQoKHXLSpjmJL89ecyqdeest/KzFg/gr+kYHsthsjPrY1JSvu/8x+hVt1+i UsMiPgWjoi+xLo6KN8vvRmXHxHGJVJQ= -----END CERTIFICATE-----Generated at Sat Jun 7 14:49:52 2025 by rpki-client