$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36342e302f32322d3232203d3e20313333373939.roa File: 3132332e3130382e36342e302f32322d3232203d3e20313333373939.roa (raw, json) Hash identifier: abJz0HXL4r3WKDjsYu+oZiEGGhSowngdRONlkzkes1A= Subject key identifier: 8A:D7:60:24:AC:3F:D1:E9:B4:45:36:9A:D1:64:18:2D:A0:67:C3:CE Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Certificate serial: 233A59E9C76D687CD9E48BD8F7D1F923721BA90C Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36342e302f32322d3232203d3e20313333373939.roa Signing time: Sat 05 Apr 2025 17:00:01 +0000 ROA not before: Sat 05 Apr 2025 16:55:01 +0000 ROA not after: Sat 04 Apr 2026 17:00:01 +0000 asID: 133799 IP address blocks: 123.108.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 01:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:3a:59:e9:c7:6d:68:7c:d9:e4:8b:d8:f7:d1:f9:23:72:1b:a9:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Validity Not Before: Apr 5 16:55:01 2025 GMT Not After : Apr 4 17:00:01 2026 GMT Subject: CN=8AD76024AC3FD1E9B445369AD164182DA067C3CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:69:8c:bc:2a:83:31:22:5e:98:53:9f:39:42: 4c:97:c1:9b:7b:28:b9:c7:22:86:22:2d:b0:8f:6c: 27:a7:6e:8c:da:af:89:28:31:4f:69:10:5a:de:60: 06:0f:49:ca:8c:60:f6:f7:66:48:63:02:75:da:86: 2e:34:09:86:80:04:22:d1:8d:a0:ce:35:7c:b6:f7: 74:3d:1a:91:c6:c6:83:45:5f:7b:39:0a:f1:3b:28: f9:a8:43:cd:49:5a:3e:12:00:0b:9e:b4:e9:80:44: 56:20:99:dd:f8:3c:bc:3b:1c:bc:d1:00:3a:16:f5: 4e:b7:5a:19:24:8d:bc:d9:32:0f:21:23:c2:07:c0: 17:98:13:3b:18:00:e1:49:1f:fb:9c:11:2b:2b:52: 80:40:57:a7:39:18:02:fe:3a:87:de:45:f2:8c:d7: 60:76:78:31:65:40:79:f9:c4:95:50:47:57:e3:6c: 4a:96:3d:17:75:37:25:19:98:94:0e:df:69:bb:70: 06:9d:ab:5a:20:d6:cd:32:7b:db:5f:19:f1:fc:98: 29:a6:ea:d4:30:e5:f2:24:bc:22:a3:79:36:df:d2: 4c:cb:ba:ee:f2:c6:c4:91:6a:47:67:58:2b:45:25: b0:90:b0:5d:52:02:d0:50:38:90:6a:32:55:d2:15: df:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D7:60:24:AC:3F:D1:E9:B4:45:36:9A:D1:64:18:2D:A0:67:C3:CE X509v3 Authority Key Identifier: keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36342e302f32322d3232203d3e20313333373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.108.64.0/22 Signature Algorithm: sha256WithRSAEncryption d5:2b:19:4b:7d:45:0c:1d:41:a1:40:e2:81:05:65:a9:86:c4: 6c:97:44:07:a7:36:8e:d5:1b:0f:75:e4:b3:c9:4d:cd:11:03: 8f:09:bb:a4:c6:ac:47:ac:6b:2c:12:10:49:53:2b:6e:6e:ab: 2f:d4:14:bc:95:43:f3:2d:8b:b5:74:75:ec:9a:f5:22:b2:58: 8e:32:90:85:eb:5e:83:74:ea:74:51:20:f1:ec:64:d5:ce:07: 8c:1c:fc:cd:78:90:7a:2f:34:62:0b:89:25:46:17:d1:eb:03: fe:1f:ef:92:ab:2e:ef:a4:97:72:89:f5:29:69:f1:82:2d:20: 51:72:21:d4:09:95:79:8b:cf:00:01:92:0e:da:a1:51:cb:0d: 8f:67:22:f2:99:de:2e:3f:cb:4b:92:1a:6b:a2:79:78:82:b5: 14:4b:cc:1d:dd:22:8f:68:e1:40:74:0b:8b:76:01:1e:3a:2d: 7e:f8:6a:42:86:70:0c:78:85:c2:b4:54:9f:7b:2a:0f:27:a8: a7:a5:fa:68:55:20:fd:23:c4:4e:84:42:c7:86:a3:fc:f2:2d: cc:22:2d:72:c2:29:81:54:94:f3:4f:a9:77:80:12:41:24:b9: 60:a7:a3:b5:ee:ea:ba:9b:17:3e:06:d5:53:03:7d:4e:2f:ba: ee:0b:29:ad -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIzpZ6cdtaHzZ5IvY99H5I3IbqQwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZD MTIwMjg1MzAeFw0yNTA0MDUxNjU1MDFaFw0yNjA0MDQxNzAwMDFaMDMxMTAvBgNV BAMTKDhBRDc2MDI0QUMzRkQxRTlCNDQ1MzY5QUQxNjQxODJEQTA2N0MzQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLaYy8KoMxIl6YU585QkyXwZt7 KLnHIoYiLbCPbCenbozar4koMU9pEFreYAYPScqMYPb3ZkhjAnXahi40CYaABCLR jaDONXy293Q9GpHGxoNFX3s5CvE7KPmoQ81JWj4SAAuetOmARFYgmd34PLw7HLzR ADoW9U63WhkkjbzZMg8hI8IHwBeYEzsYAOFJH/ucESsrUoBAV6c5GAL+OofeRfKM 12B2eDFlQHn5xJVQR1fjbEqWPRd1NyUZmJQO32m7cAadq1og1s0ye9tfGfH8mCmm 6tQw5fIkvCKjeTbf0kzLuu7yxsSRakdnWCtFJbCQsF1SAtBQOJBqMlXSFd8ZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUitdgJKw/0em0RTaa0WQYLaBnw84wHwYDVR0j BBgwFoAUEIJhsrWh88yCjvKlMu2U38EgKFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjYzZjc3MS1hOTVmLTRiNTMtODdiYy04YmZmNTA0ZGExZjQvMC8xMDgyNjFCMkI1 QTFGM0NDODI4RUYyQTUzMkVEOTRERkMxMjAyODUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZDMTIw Mjg1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcxLWE5NWYtNGI1My04 N2JjLThiZmY1MDRkYTFmNC8wLzMxMzIzMzJlMzEzMDM4MmUzNjM0MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzMzMzczOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCe2xAMA0GCSqG SIb3DQEBCwUAA4IBAQDVKxlLfUUMHUGhQOKBBWWphsRsl0QHpzaO1RsPdeSzyU3N EQOPCbukxqxHrGssEhBJUytubqsv1BS8lUPzLYu1dHXsmvUisliOMpCF616DdOp0 USDx7GTVzgeMHPzNeJB6LzRiC4klRhfR6wP+H++Sqy7vpJdyifUpafGCLSBRciHU CZV5i88AAZIO2qFRyw2PZyLymd4uP8tLkhpronl4grUUS8wd3SKPaOFAdAuLdgEe Oi1++GpChnAMeIXCtFSfeyoPJ6inpfpoVSD9I8ROhELHhqP88i3MIi1ywimBVJTz T6l3gBJBJLlgp6O17uq6mxc+BtVTA31OL7ruCymt -----END CERTIFICATE-----Generated at Sun Apr 6 14:49:30 2025 by rpki-client