$ rpki-client -vvf repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31362e302f32342d3234203d3e203531323032.roa File: 3132322e3132382e31362e302f32342d3234203d3e203531323032.roa (raw, json) Hash identifier: SFv+wuFNNUXZIPzGgJ8H4FmCqsXvXTtUEEjtGiij04Q= Subject key identifier: CE:B8:B1:17:61:AB:47:D8:3E:C8:B4:7C:0F:4D:9D:16:81:99:A1:03 Certificate issuer: /CN=00EE953FD699788668C724460F4D8D420238194F Certificate serial: 536DB46F9AEF07CE018DF3512683BADEB6D36567 Authority key identifier: 00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31362e302f32342d3234203d3e203531323032.roa Signing time: Tue 17 Jun 2025 02:00:03 +0000 ROA not before: Tue 17 Jun 2025 01:55:03 +0000 ROA not after: Tue 16 Jun 2026 02:00:03 +0000 asID: 51202 IP address blocks: 122.128.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 20:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:6d:b4:6f:9a:ef:07:ce:01:8d:f3:51:26:83:ba:de:b6:d3:65:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00EE953FD699788668C724460F4D8D420238194F Validity Not Before: Jun 17 01:55:03 2025 GMT Not After : Jun 16 02:00:03 2026 GMT Subject: CN=CEB8B11761AB47D83EC8B47C0F4D9D168199A103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ba:0e:c0:e6:2b:ea:e8:e5:95:a2:cd:d3:48: a6:db:e8:45:85:22:3a:ac:2d:52:6f:91:7f:07:1d: 0b:f2:80:fe:bf:63:f0:10:74:13:95:0d:37:ae:70: 47:ab:f2:3b:b9:f5:0a:ac:5b:26:e3:51:46:1b:4f: f2:e0:01:ba:5c:42:38:12:f9:cb:21:72:c1:9f:2f: c4:9e:b0:bb:81:05:c4:76:d5:5e:75:44:a6:c4:8f: c4:5f:a9:f4:56:21:6c:4a:e1:ac:9e:62:57:54:a7: 49:ae:45:e0:cf:a0:02:2d:f4:f7:8e:46:49:f8:fa: 41:d4:f4:1c:e0:29:f5:b7:75:89:49:8e:e0:d8:1c: 15:a0:2a:cc:b5:38:7c:78:41:d3:0a:e1:6c:ea:a4: ae:67:29:d4:58:58:54:2f:8f:26:13:2c:15:6f:b4: 1f:c6:ae:af:6f:aa:c9:1b:a5:fd:5a:87:82:3d:10: b3:0f:2b:b9:2e:ca:38:86:1a:3d:4a:06:f9:2b:58: a7:ac:1c:08:b5:ff:ab:ed:9b:4b:51:c7:be:67:e9: ba:28:3b:24:c7:fe:f1:05:4e:43:03:e2:be:9e:9f: 7a:b6:b8:68:68:df:05:96:a5:ef:df:63:de:a2:5f: 1d:de:89:d0:51:7d:af:74:1a:65:ad:a4:82:54:51: 16:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:B8:B1:17:61:AB:47:D8:3E:C8:B4:7C:0F:4D:9D:16:81:99:A1:03 X509v3 Authority Key Identifier: keyid:00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31362e302f32342d3234203d3e203531323032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.16.0/24 Signature Algorithm: sha256WithRSAEncryption 12:33:fa:40:f3:1d:b7:08:c3:43:f2:83:e5:0f:26:02:b9:a9: f0:b9:22:d8:5c:ab:fc:34:cb:c1:35:68:4c:da:14:1b:46:72: df:f3:c4:33:2d:e9:de:cd:73:c4:f9:7e:e0:ce:bf:26:6b:53: 41:98:d2:d9:f1:49:03:27:47:11:7d:d2:03:f1:9e:71:99:80: aa:0f:95:84:16:ca:26:c1:01:5c:c5:ea:bc:ac:8a:a6:be:45: 9c:b9:58:90:fd:77:34:48:96:53:14:ea:4a:aa:82:49:5f:b1: fe:7e:46:d0:3c:f6:ea:91:45:9a:b4:11:c9:a3:7c:55:11:61: 5c:70:c4:48:dd:0b:38:83:82:27:8d:eb:0b:20:c2:9f:e0:05: ea:4e:76:d5:92:30:78:ba:69:51:4b:0e:cc:4d:ed:c6:d3:da: d7:1e:45:d4:a9:70:b4:74:6d:32:2c:c9:6f:f3:df:5a:c6:c3: e1:67:9a:6f:e7:9b:89:42:98:61:d9:8d:67:4c:87:7a:4d:3b: 36:fa:01:1f:85:61:8a:a9:a4:98:a9:b9:1d:a6:0c:e4:5a:16: d9:93:6a:14:d3:e1:8f:0f:be:27:f5:38:cd:94:7f:ec:f8:a4: 07:78:53:e7:fe:2e:0e:e4:21:43:3d:fc:e5:a3:ea:35:b8:00: f5:78:5f:cf -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUU220b5rvB84BjfNRJoO63rbTZWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIw MjM4MTk0RjAeFw0yNTA2MTcwMTU1MDNaFw0yNjA2MTYwMjAwMDNaMDMxMTAvBgNV BAMTKENFQjhCMTE3NjFBQjQ3RDgzRUM4QjQ3QzBGNEQ5RDE2ODE5OUExMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0ug7A5ivq6OWVos3TSKbb6EWF IjqsLVJvkX8HHQvygP6/Y/AQdBOVDTeucEer8ju59QqsWybjUUYbT/LgAbpcQjgS +cshcsGfL8SesLuBBcR21V51RKbEj8RfqfRWIWxK4ayeYldUp0muReDPoAIt9PeO Rkn4+kHU9BzgKfW3dYlJjuDYHBWgKsy1OHx4QdMK4WzqpK5nKdRYWFQvjyYTLBVv tB/Grq9vqskbpf1ah4I9ELMPK7kuyjiGGj1KBvkrWKesHAi1/6vtm0tRx75n6boo OyTH/vEFTkMD4r6en3q2uGho3wWWpe/fY96iXx3eidBRfa90GmWtpIJUURY/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzrixF2GrR9g+yLR8D02dFoGZoQMwHwYDVR0j BBgwFoAUAO6VP9aZeIZoxyRGD02NQgI4GU8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODUzZjIyOC0zN2YyLTQ3ZDktYjlmZS00NzZiYWRlMTMzOTMvMC8wMEVFOTUzRkQ2 OTk3ODg2NjhDNzI0NDYwRjREOEQ0MjAyMzgxOTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIwMjM4 MTk0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzMTMyMzAzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAEDANBgkqhkiG 9w0BAQsFAAOCAQEAEjP6QPMdtwjDQ/KD5Q8mArmp8Lki2Fyr/DTLwTVoTNoUG0Zy 3/PEMy3p3s1zxPl+4M6/JmtTQZjS2fFJAydHEX3SA/GecZmAqg+VhBbKJsEBXMXq vKyKpr5FnLlYkP13NEiWUxTqSqqCSV+x/n5G0Dz26pFFmrQRyaN8VRFhXHDESN0L OIOCJ43rCyDCn+AF6k521ZIweLppUUsOzE3txtPa1x5F1KlwtHRtMizJb/PfWsbD 4Weab+ebiUKYYdmNZ0yHek07NvoBH4VhiqmkmKm5HaYM5FoW2ZNqFNPhjw++J/U4 zZR/7PikB3hT5/4uDuQhQz385aPqNbgA9Xhfzw== -----END CERTIFICATE-----Generated at Sun Jun 29 17:03:36 2025 by rpki-client