$ rpki-client -vvf repo-rpki.idnic.net/repo/caecb002-24a4-4955-a333-002fdb74553f/0/3132332e3235332e3235322e302f32322d3234203d3e20313339333937.roa File: 3132332e3235332e3235322e302f32322d3234203d3e20313339333937.roa (raw, json) Hash identifier: 1PlLZ70/l1XO167EbfOMkFAS5NVNN52M28JEV2n5Nfw= Subject key identifier: BC:D3:34:E1:CE:52:2D:0D:90:89:90:48:C1:ED:61:0B:D4:9F:38:48 Certificate issuer: /CN=2E83B1793FA2E18A4137A66A092163F5DABD45F0 Certificate serial: 1E990BC1A29D2615C283677CDDAF27546208F163 Authority key identifier: 2E:83:B1:79:3F:A2:E1:8A:41:37:A6:6A:09:21:63:F5:DA:BD:45:F0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E83B1793FA2E18A4137A66A092163F5DABD45F0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/caecb002-24a4-4955-a333-002fdb74553f/0/3132332e3235332e3235322e302f32322d3234203d3e20313339333937.roa Signing time: Tue 04 Mar 2025 04:00:00 +0000 ROA not before: Tue 04 Mar 2025 03:55:00 +0000 ROA not after: Tue 03 Mar 2026 04:00:00 +0000 asID: 139397 IP address blocks: 123.253.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/caecb002-24a4-4955-a333-002fdb74553f/0/2E83B1793FA2E18A4137A66A092163F5DABD45F0.crl rsync://repo-rpki.idnic.net/repo/caecb002-24a4-4955-a333-002fdb74553f/0/2E83B1793FA2E18A4137A66A092163F5DABD45F0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E83B1793FA2E18A4137A66A092163F5DABD45F0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 09:51:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:99:0b:c1:a2:9d:26:15:c2:83:67:7c:dd:af:27:54:62:08:f1:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E83B1793FA2E18A4137A66A092163F5DABD45F0 Validity Not Before: Mar 4 03:55:00 2025 GMT Not After : Mar 3 04:00:00 2026 GMT Subject: CN=BCD334E1CE522D0D90899048C1ED610BD49F3848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:40:f3:ea:f7:9c:41:ac:f8:4a:7e:02:20:73: ea:b5:27:87:cb:f7:bb:fe:79:a4:7a:53:fd:c0:53: e6:ec:44:5a:ad:b8:e4:b7:e9:06:ae:3b:df:00:b1: f7:ae:4f:23:59:94:33:74:b6:e7:fe:61:4c:90:74: e2:6a:c3:28:7a:99:1b:5e:e1:b7:d7:44:00:bc:f0: 30:ee:e8:24:b2:cb:70:ca:6d:01:8d:a1:b4:f3:e2: 63:99:d9:59:eb:54:6e:33:68:ce:b2:20:60:e4:95: 17:81:c7:97:86:93:f6:da:6f:70:1e:84:b3:4f:a4: eb:23:c0:94:9e:c3:91:f7:a7:69:57:1d:ee:18:8e: 5c:01:65:82:6e:fa:33:54:7e:81:54:9e:1b:8b:2b: 77:d8:bf:25:47:eb:13:f3:f9:74:95:11:78:02:ef: fa:3e:3a:ce:c4:20:ee:3b:4c:c9:31:b0:c6:69:a2: fc:ce:aa:5d:5d:33:ed:56:84:95:ce:9f:41:a5:3a: 59:51:eb:aa:7a:29:63:2c:6c:d4:b2:f8:4e:d0:af: 24:63:38:6a:38:f7:a6:df:30:eb:16:8d:f5:fb:8e: ea:37:e4:ed:9c:53:36:df:46:04:6b:ee:31:ca:39: eb:92:b3:63:89:e0:bf:c1:f4:34:6d:f4:d2:66:17: b8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D3:34:E1:CE:52:2D:0D:90:89:90:48:C1:ED:61:0B:D4:9F:38:48 X509v3 Authority Key Identifier: keyid:2E:83:B1:79:3F:A2:E1:8A:41:37:A6:6A:09:21:63:F5:DA:BD:45:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/caecb002-24a4-4955-a333-002fdb74553f/0/2E83B1793FA2E18A4137A66A092163F5DABD45F0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E83B1793FA2E18A4137A66A092163F5DABD45F0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/caecb002-24a4-4955-a333-002fdb74553f/0/3132332e3235332e3235322e302f32322d3234203d3e20313339333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.253.252.0/22 Signature Algorithm: sha256WithRSAEncryption 29:c4:31:b3:f8:a3:72:76:b8:16:d5:9a:b6:ad:ac:49:c3:ef: b0:c4:60:b4:da:7e:00:a8:c5:fc:af:98:d5:5c:34:6b:e3:2e: 5b:f2:a9:83:88:7b:f9:10:97:fb:42:1c:78:ae:2c:fc:1b:5a: 51:df:18:98:e7:53:4e:4f:bf:3b:62:39:1e:3c:47:60:06:de: 88:dd:a0:43:f5:55:de:08:bd:ca:be:42:c4:8f:c0:33:1a:73: 47:9e:3d:cf:90:30:73:92:ba:1a:e5:cc:e3:a8:80:d5:2e:60: 3f:10:d4:db:ff:b1:d3:c1:a3:2b:76:ee:f3:6b:b5:18:85:b0: 71:2b:e0:8e:ab:2c:4e:63:e8:9e:01:b7:bc:e5:fb:ab:10:a1: ab:72:b8:72:f1:1e:a9:4e:dd:c9:33:d4:e8:7a:4c:04:7b:b8: a7:16:de:de:13:86:49:82:e8:27:74:da:4b:26:7f:e1:81:5b: b1:6f:2c:55:a8:6c:f9:78:73:47:38:81:4d:2b:5f:ff:93:f6: 38:4f:33:93:9e:09:86:7f:a4:7b:f1:3c:be:6a:f1:bb:90:be: 60:18:33:74:87:aa:14:4f:66:a1:bc:d6:9d:d0:40:f5:27:a5: 72:4b:af:2d:76:a7:57:6b:54:f9:3f:6d:48:85:d1:8c:54:08: fd:c8:47:c2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHpkLwaKdJhXCg2d83a8nVGII8WMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkU4M0IxNzkzRkEyRTE4QTQxMzdBNjZBMDkyMTYzRjVE QUJENDVGMDAeFw0yNTAzMDQwMzU1MDBaFw0yNjAzMDMwNDAwMDBaMDMxMTAvBgNV BAMTKEJDRDMzNEUxQ0U1MjJEMEQ5MDg5OTA0OEMxRUQ2MTBCRDQ5RjM4NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/QPPq95xBrPhKfgIgc+q1J4fL 97v+eaR6U/3AU+bsRFqtuOS36QauO98AsfeuTyNZlDN0tuf+YUyQdOJqwyh6mRte 4bfXRAC88DDu6CSyy3DKbQGNobTz4mOZ2VnrVG4zaM6yIGDklReBx5eGk/bab3Ae hLNPpOsjwJSew5H3p2lXHe4YjlwBZYJu+jNUfoFUnhuLK3fYvyVH6xPz+XSVEXgC 7/o+Os7EIO47TMkxsMZpovzOql1dM+1WhJXOn0GlOllR66p6KWMsbNSy+E7QryRj OGo496bfMOsWjfX7juo35O2cUzbfRgRr7jHKOeuSs2OJ4L/B9DRt9NJmF7jNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUvNM04c5SLQ2QiZBIwe1hC9SfOEgwHwYDVR0j BBgwFoAULoOxeT+i4YpBN6ZqCSFj9dq9RfAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YWVjYjAwMi0yNGE0LTQ5NTUtYTMzMy0wMDJmZGI3NDU1M2YvMC8yRTgzQjE3OTNG QTJFMThBNDEzN0E2NkEwOTIxNjNGNURBQkQ0NUYwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkU4M0IxNzkzRkEyRTE4QTQxMzdBNjZBMDkyMTYzRjVEQUJE NDVGMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhZWNiMDAyLTI0YTQtNDk1NS1h MzMzLTAwMmZkYjc0NTUzZi8wLzMxMzIzMzJlMzIzNTMzMmUzMjM1MzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM5Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7/fwwDQYJ KoZIhvcNAQELBQADggEBACnEMbP4o3J2uBbVmratrEnD77DEYLTafgCoxfyvmNVc NGvjLlvyqYOIe/kQl/tCHHiuLPwbWlHfGJjnU05PvztiOR48R2AG3ojdoEP1Vd4I vcq+QsSPwDMac0eePc+QMHOSuhrlzOOogNUuYD8Q1Nv/sdPBoyt27vNrtRiFsHEr 4I6rLE5j6J4Bt7zl+6sQoatyuHLxHqlO3ckz1Oh6TAR7uKcW3t4ThkmC6Cd02ksm f+GBW7FvLFWobPl4c0c4gU0rX/+T9jhPM5OeCYZ/pHvxPL5q8buQvmAYM3SHqhRP ZqG81p3QQPUnpXJLry12p1drVPk/bUiF0YxUCP3IR8I= -----END CERTIFICATE-----Generated at Mon Apr 7 19:16:17 2025 by rpki-client