$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/32372e3131322e37372e302f32342d3234203d3e20313430343832.roa File: 32372e3131322e37372e302f32342d3234203d3e20313430343832.roa (raw, json) Hash identifier: gFVtcUFWWZdWFm0J2smh588ex3+/T+ET5wQOfsP825A= Subject key identifier: F0:DB:0E:F3:9E:D4:26:21:CF:A2:10:5A:7E:B9:C6:D4:4F:C3:9D:31 Certificate issuer: /CN=0421CA2FC5BF656F8F905B02A3D7EE4648B22045 Certificate serial: 72ECA84B57CED6719C5C5A146F609C7A7E73EFEE Authority key identifier: 04:21:CA:2F:C5:BF:65:6F:8F:90:5B:02:A3:D7:EE:46:48:B2:20:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/32372e3131322e37372e302f32342d3234203d3e20313430343832.roa Signing time: Sun 27 Apr 2025 22:00:02 +0000 ROA not before: Sun 27 Apr 2025 21:55:02 +0000 ROA not after: Sun 26 Apr 2026 22:00:02 +0000 asID: 140482 IP address blocks: 27.112.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.crl rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 02:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:ec:a8:4b:57:ce:d6:71:9c:5c:5a:14:6f:60:9c:7a:7e:73:ef:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0421CA2FC5BF656F8F905B02A3D7EE4648B22045 Validity Not Before: Apr 27 21:55:02 2025 GMT Not After : Apr 26 22:00:02 2026 GMT Subject: CN=F0DB0EF39ED42621CFA2105A7EB9C6D44FC39D31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:46:66:08:49:6b:c9:61:b8:e0:ac:e3:e7:00: 70:5f:8c:ac:a2:1e:32:59:9f:c4:55:59:ed:8d:d6: 91:0e:80:15:03:f4:52:a9:38:fa:50:6d:ac:00:56: b1:24:0a:7e:93:1d:57:17:21:c4:e1:a5:f1:38:fc: 9f:4e:b6:02:85:bc:66:97:0c:57:d3:79:1a:f1:4c: 89:f8:b8:db:87:f0:25:18:eb:39:56:11:1d:3b:d9: e6:76:5e:70:3d:65:eb:f5:c7:1a:3d:79:43:42:d3: 70:08:92:27:ba:ce:2e:f7:77:b6:d1:35:d9:e3:5b: 58:0a:0a:50:14:b1:5d:10:62:60:ab:be:6e:21:16: 48:1f:df:4f:39:e6:a2:d6:ab:f7:93:46:81:73:fd: a5:83:f9:df:c4:4a:42:32:77:9b:e3:23:1e:55:c3: ed:54:99:89:94:e9:f9:97:69:30:9c:85:91:b0:dd: 79:08:6b:12:c8:29:0d:7a:ae:f8:f5:d3:53:8d:20: 64:21:ec:d8:ba:76:8b:35:b5:08:b5:78:14:f8:d4: 51:d1:37:e8:a2:84:96:62:b3:1a:ae:7f:de:c7:70: 5b:1b:b8:6e:bc:a9:95:df:6b:43:7d:cb:46:05:5e: 87:e7:a0:de:4a:42:c0:67:b3:7a:ef:55:72:5d:a1: b5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:DB:0E:F3:9E:D4:26:21:CF:A2:10:5A:7E:B9:C6:D4:4F:C3:9D:31 X509v3 Authority Key Identifier: keyid:04:21:CA:2F:C5:BF:65:6F:8F:90:5B:02:A3:D7:EE:46:48:B2:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/32372e3131322e37372e302f32342d3234203d3e20313430343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.112.77.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:e9:1f:6e:ea:2c:21:d8:24:24:32:7b:39:02:26:c5:3d:e3: 5b:1e:77:25:1c:9a:42:c1:37:22:6b:b7:a4:06:56:82:13:9f: 24:8f:30:35:2e:a6:95:2a:00:cd:ef:4b:97:73:11:cb:f5:c3: 1c:b4:88:e0:47:3e:0c:87:1a:ee:df:d8:7b:6c:2f:3b:92:24: 87:96:24:a9:41:c3:42:b1:50:ad:60:fa:e7:b8:a7:64:a8:13: bb:0f:41:77:8c:64:8e:2a:25:a5:62:5e:03:d7:8a:57:93:c7: d6:cc:d6:c3:bc:2a:0e:a9:bf:d1:35:77:30:81:27:20:ec:8d: ab:c8:c9:a5:b4:a2:5e:71:23:0e:03:e2:34:e9:0c:17:96:1c: ce:3c:96:ec:82:6b:e0:52:1d:81:2c:c5:32:11:8d:fd:31:fa: 4f:d3:10:c3:06:f7:ed:4e:17:6a:3c:8e:26:da:b2:57:99:80: f7:61:35:ec:30:6f:32:10:3b:97:fd:37:b2:b8:c0:fc:2b:b9: 46:e2:3f:2d:3f:0f:c7:05:f0:60:ac:98:c3:70:72:e7:dd:2b: ee:9b:ee:f6:83:b9:74:73:d6:2d:80:ea:3e:1c:6e:d5:1f:59: 2a:9f:c7:70:02:c2:91:0b:ff:b0:e4:92:b8:02:da:ff:45:ac: b4:eb:ff:a4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcuyoS1fO1nGcXFoUb2Ccen5z7+4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQyMUNBMkZDNUJGNjU2RjhGOTA1QjAyQTNEN0VFNDY0 OEIyMjA0NTAeFw0yNTA0MjcyMTU1MDJaFw0yNjA0MjYyMjAwMDJaMDMxMTAvBgNV BAMTKEYwREIwRUYzOUVENDI2MjFDRkEyMTA1QTdFQjlDNkQ0NEZDMzlEMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvRmYISWvJYbjgrOPnAHBfjKyi HjJZn8RVWe2N1pEOgBUD9FKpOPpQbawAVrEkCn6THVcXIcThpfE4/J9OtgKFvGaX DFfTeRrxTIn4uNuH8CUY6zlWER072eZ2XnA9Zev1xxo9eUNC03AIkie6zi73d7bR NdnjW1gKClAUsV0QYmCrvm4hFkgf30855qLWq/eTRoFz/aWD+d/ESkIyd5vjIx5V w+1UmYmU6fmXaTCchZGw3XkIaxLIKQ16rvj101ONIGQh7Ni6dos1tQi1eBT41FHR N+iihJZisxquf97HcFsbuG68qZXfa0N9y0YFXofnoN5KQsBns3rvVXJdobWJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8NsO857UJiHPohBafrnG1E/DnTEwHwYDVR0j BBgwFoAUBCHKL8W/ZW+PkFsCo9fuRkiyIEUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZmZjM4ZC1lNTQ3LTRmNzMtYmIzMC0yYjE0YzA4Yzg5ZmIvMC8wNDIxQ0EyRkM1 QkY2NTZGOEY5MDVCMDJBM0Q3RUU0NjQ4QjIyMDQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDQyMUNBMkZDNUJGNjU2RjhGOTA1QjAyQTNEN0VFNDY0OEIy MjA0NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmZmMzhkLWU1NDctNGY3My1i YjMwLTJiMTRjMDhjODlmYi8wLzMyMzcyZTMxMzEzMjJlMzczNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABtwTTANBgkqhkiG 9w0BAQsFAAOCAQEAnukfbuosIdgkJDJ7OQImxT3jWx53JRyaQsE3Imu3pAZWghOf JI8wNS6mlSoAze9Ll3MRy/XDHLSI4Ec+DIca7t/Ye2wvO5Ikh5YkqUHDQrFQrWD6 57inZKgTuw9Bd4xkjiolpWJeA9eKV5PH1szWw7wqDqm/0TV3MIEnIOyNq8jJpbSi XnEjDgPiNOkMF5YczjyW7IJr4FIdgSzFMhGN/TH6T9MQwwb37U4XajyOJtqyV5mA 92E17DBvMhA7l/03srjA/Cu5RuI/LT8PxwXwYKyYw3By590r7pvu9oO5dHPWLYDq Phxu1R9ZKp/HcALCkQv/sOSSuALa/0WstOv/pA== -----END CERTIFICATE-----Generated at Sun May 11 08:22:01 2025 by rpki-client