$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3132332e3235352e3230302e302f32312d3234203d3e203234353231.roa File: 3132332e3235352e3230302e302f32312d3234203d3e203234353231.roa (raw, json) Hash identifier: 6LyyJJeV4MUKQUmSmy0p8Z51yI1Vj4eAExDWuf2DxM8= Subject key identifier: 1A:AC:B4:E8:60:BF:4F:34:EB:57:96:F1:81:50:63:EB:D2:CD:5A:F2 Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 1F679103E0ED18C54C4B4CC9662762272A0638DA Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3132332e3235352e3230302e302f32312d3234203d3e203234353231.roa Signing time: Mon 02 Jun 2025 02:02:53 +0000 ROA not before: Mon 02 Jun 2025 01:57:53 +0000 ROA not after: Mon 01 Jun 2026 02:02:53 +0000 asID: 24521 IP address blocks: 123.255.200.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 15:58:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:67:91:03:e0:ed:18:c5:4c:4b:4c:c9:66:27:62:27:2a:06:38:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Jun 2 01:57:53 2025 GMT Not After : Jun 1 02:02:53 2026 GMT Subject: CN=1AACB4E860BF4F34EB5796F1815063EBD2CD5AF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0c:8c:d6:af:f3:59:f9:ba:10:d2:0c:fd:d1: 4a:6a:d6:49:04:75:c8:1a:5d:7d:38:9d:54:cb:e2: f1:eb:26:ee:81:8f:83:99:c2:61:0f:55:6d:39:ed: 59:24:8c:d9:2c:6e:59:ba:07:6a:7d:44:af:d0:b5: a4:df:67:ae:14:b2:3a:93:bc:b4:61:f4:4d:7f:28: 68:18:7b:9b:2f:21:ef:e5:aa:69:a6:2b:c1:0f:71: 43:b5:7b:3e:3c:a6:9f:d2:cc:96:a9:92:a5:fc:06: d7:9b:76:2c:76:f9:26:8c:f9:f9:a1:eb:ba:c3:c6: 05:04:80:5c:cb:68:ac:d1:a1:e8:28:d5:1f:6c:56: 29:3d:e1:aa:66:6f:96:8f:5a:87:37:d9:11:5b:74: 7c:fe:a0:4f:4f:27:b7:42:50:eb:19:c3:1d:54:7c: db:a7:6d:aa:1b:c6:5e:b6:91:da:f4:8a:40:f5:18: 5a:65:1a:e1:34:5e:88:1f:cd:95:d4:cb:b7:09:00: 11:22:7c:d8:6e:2b:c9:e6:c2:95:c6:e9:49:d8:95: ee:64:98:a2:63:28:4b:0c:d3:0a:e5:2b:d7:b1:1e: 03:0f:91:f4:d2:56:0b:ea:49:80:39:6f:0c:b5:4c: 3d:5e:49:46:a7:59:74:af:fe:7a:6a:d7:ab:8c:67: dd:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:AC:B4:E8:60:BF:4F:34:EB:57:96:F1:81:50:63:EB:D2:CD:5A:F2 X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3132332e3235352e3230302e302f32312d3234203d3e203234353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.255.200.0/21 Signature Algorithm: sha256WithRSAEncryption 85:aa:f3:a1:72:e4:5a:f0:a0:30:12:d7:ab:27:07:03:06:93: 34:c0:51:4d:49:6b:fe:9e:1f:3d:3b:07:49:a7:9b:9d:08:54: 4b:59:16:07:f5:88:a3:1c:ed:ea:f3:57:21:15:7d:85:e5:0e: 0e:28:e4:e3:0b:e3:1f:08:6c:21:2d:c2:f2:f0:c3:b4:e1:ed: 5f:29:b4:ec:d7:37:b0:d5:95:f5:4a:6e:0f:6a:ee:d1:a7:0d: 03:9e:81:9c:cf:0b:b2:7b:19:20:46:87:86:7b:7a:07:6e:49: 83:9a:af:9a:92:f8:bb:05:fa:df:5f:92:c7:27:8e:3f:e3:d9: 71:fb:92:03:49:db:0d:8e:af:e3:31:fd:46:a7:b8:d8:89:a0: a5:48:fa:7f:30:eb:c8:26:49:47:4a:11:79:68:5d:5d:de:7c: f0:a4:eb:dd:c5:de:17:1e:19:a9:33:1a:11:02:b5:8b:40:21: 57:2b:d3:ee:db:45:7d:06:02:e8:cb:0d:4d:d2:b7:5e:63:a4: 0c:78:21:9d:6d:b0:da:62:df:c6:b6:62:ca:41:ff:d1:e9:70: 9a:80:86:d7:47:92:d7:9f:df:72:08:51:05:bf:48:08:3f:c4: e4:5c:49:71:70:f0:e0:b6:44:cd:e4:f0:76:0b:0c:f8:61:02: 33:e9:e4:78 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUH2eRA+DtGMVMS0zJZidiJyoGONowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yNTA2MDIwMTU3NTNaFw0yNjA2MDEwMjAyNTNaMDMxMTAvBgNV BAMTKDFBQUNCNEU4NjBCRjRGMzRFQjU3OTZGMTgxNTA2M0VCRDJDRDVBRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3DIzWr/NZ+boQ0gz90Upq1kkE dcgaXX04nVTL4vHrJu6Bj4OZwmEPVW057VkkjNksblm6B2p9RK/QtaTfZ64UsjqT vLRh9E1/KGgYe5svIe/lqmmmK8EPcUO1ez48pp/SzJapkqX8Btebdix2+SaM+fmh 67rDxgUEgFzLaKzRoego1R9sVik94apmb5aPWoc32RFbdHz+oE9PJ7dCUOsZwx1U fNunbaobxl62kdr0ikD1GFplGuE0XogfzZXUy7cJABEifNhuK8nmwpXG6UnYle5k mKJjKEsM0wrlK9exHgMPkfTSVgvqSYA5bwy1TD1eSUanWXSv/npq16uMZ93TAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGqy06GC/TzTrV5bxgVBj69LNWvIwHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMxMzIzMzJlMzIzNTM1MmUzMjMwMzAyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMjM0MzUzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDe//IMA0GCSqG SIb3DQEBCwUAA4IBAQCFqvOhcuRa8KAwEterJwcDBpM0wFFNSWv+nh89OwdJp5ud CFRLWRYH9YijHO3q81chFX2F5Q4OKOTjC+MfCGwhLcLy8MO04e1fKbTs1zew1ZX1 Sm4Pau7Rpw0DnoGczwuyexkgRoeGe3oHbkmDmq+akvi7BfrfX5LHJ44/49lx+5ID SdsNjq/jMf1Gp7jYiaClSPp/MOvIJklHShF5aF1d3nzwpOvdxd4XHhmpMxoRArWL QCFXK9Pu20V9BgLoyw1N0rdeY6QMeCGdbbDaYt/GtmLKQf/R6XCagIbXR5LXn99y CFEFv0gIP8TkXElxcPDgtkTN5PB2Cwz4YQIz6eR4 -----END CERTIFICATE-----Generated at Wed Jul 2 16:15:54 2025 by rpki-client