$ rpki-client -vvf repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e20323632393239.roa File: 3132322e3132382e32312e302f32342d3234203d3e20323632393239.roa (raw, json) Hash identifier: oOdkzUMhWiV8RYKVpP+DjzstiVGxbGTPIWzG22cdnjM= Subject key identifier: F2:A3:33:93:87:3E:9A:B0:49:BA:28:63:68:43:F4:D9:38:B2:1A:B0 Certificate issuer: /CN=00EE953FD699788668C724460F4D8D420238194F Certificate serial: 5F8D61195669B66517FFAA8C306E262E0DC0EFE3 Authority key identifier: 00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e20323632393239.roa Signing time: Tue 17 Jun 2025 02:00:02 +0000 ROA not before: Tue 17 Jun 2025 01:55:02 +0000 ROA not after: Tue 16 Jun 2026 02:00:02 +0000 asID: 262929 IP address blocks: 122.128.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 20:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:8d:61:19:56:69:b6:65:17:ff:aa:8c:30:6e:26:2e:0d:c0:ef:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00EE953FD699788668C724460F4D8D420238194F Validity Not Before: Jun 17 01:55:02 2025 GMT Not After : Jun 16 02:00:02 2026 GMT Subject: CN=F2A33393873E9AB049BA28636843F4D938B21AB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:22:4e:e8:fc:01:b9:84:cb:d8:10:32:0b:d1: 03:4a:cd:50:03:09:bd:a7:0f:1a:15:dd:50:9f:a5: a5:a7:15:a0:5e:3b:98:a3:24:af:59:da:b9:14:48: 31:21:79:02:9a:3c:26:30:f2:23:81:31:3b:70:e1: 1d:d0:17:69:24:09:9f:aa:26:15:56:6e:e1:85:45: d7:0a:15:75:13:2b:6b:a9:55:28:6f:4f:13:92:27: 24:01:ec:9e:d4:fc:ea:c5:b3:d8:ab:63:d0:e2:6a: 5e:bc:f9:0e:f0:09:05:e6:d9:03:94:e1:6c:60:40: ef:00:e8:4e:78:74:9b:c2:21:7b:5b:c6:33:b9:65: 84:96:48:5b:11:19:d5:d7:99:b2:39:38:7e:bc:e2: 5b:50:4f:6e:b2:26:f0:cd:27:d9:fd:11:5d:05:7d: 0d:43:aa:a6:e2:8f:fa:dc:05:75:46:01:6f:4f:fc: 01:7f:cc:78:1c:49:43:01:a7:9d:42:11:1e:d6:17: 02:8b:11:b1:5d:0f:f5:08:f8:c5:3b:4b:8a:61:d4: a6:21:f7:5d:ee:5b:79:de:a8:7c:14:ef:d0:48:6d: c3:6a:10:b8:91:7d:20:77:53:f7:7e:cf:76:91:66: 87:3e:0d:0f:65:9d:9b:2a:5b:80:10:de:1b:24:e0: e2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:A3:33:93:87:3E:9A:B0:49:BA:28:63:68:43:F4:D9:38:B2:1A:B0 X509v3 Authority Key Identifier: keyid:00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e20323632393239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.21.0/24 Signature Algorithm: sha256WithRSAEncryption 37:d0:82:37:b9:c9:d1:2b:6d:6a:69:db:c8:8a:a5:71:05:40: a3:ae:1e:fc:94:4b:17:25:9f:21:bb:35:7a:75:9c:4a:20:c1: 50:23:c1:7e:d1:f4:01:79:6a:3f:f6:6d:fa:f9:17:6f:93:a5: 7d:e3:25:06:78:9d:50:d6:97:dd:24:09:e6:f8:c5:2a:f6:41: 01:d5:ef:75:21:47:24:b8:a2:2c:22:c5:7b:f8:47:6d:14:cb: 74:51:eb:ff:e7:7f:c1:00:10:9b:a3:82:5b:b3:7d:88:94:af: 1b:15:1d:8a:17:a8:7c:54:1d:a1:eb:67:7d:61:3a:da:1c:67: 7c:55:92:ae:7a:03:5c:86:70:e9:b6:4a:56:fe:ae:58:79:ca: d7:da:28:51:27:a6:07:36:94:ab:82:31:df:20:9f:c5:f2:f0: c1:dc:d1:c1:fb:70:0e:19:63:0b:a2:04:aa:f3:db:d0:0a:d5: b9:7a:f2:9f:a2:91:e0:a5:aa:b5:dc:9a:91:69:c5:72:8d:1f: 03:f2:9e:db:9d:6a:2f:58:35:3b:05:8d:b4:10:bb:0b:3b:41: f7:e8:8d:56:31:b6:9b:c5:5a:5e:22:38:4f:b6:95:5a:ab:39: 98:75:c9:d1:98:4b:6f:9d:b3:dc:62:8c:5a:1d:67:fd:d6:49: b3:cc:08:10 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUX41hGVZptmUX/6qMMG4mLg3A7+MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIw MjM4MTk0RjAeFw0yNTA2MTcwMTU1MDJaFw0yNjA2MTYwMjAwMDJaMDMxMTAvBgNV BAMTKEYyQTMzMzkzODczRTlBQjA0OUJBMjg2MzY4NDNGNEQ5MzhCMjFBQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQIk7o/AG5hMvYEDIL0QNKzVAD Cb2nDxoV3VCfpaWnFaBeO5ijJK9Z2rkUSDEheQKaPCYw8iOBMTtw4R3QF2kkCZ+q JhVWbuGFRdcKFXUTK2upVShvTxOSJyQB7J7U/OrFs9irY9Dial68+Q7wCQXm2QOU 4WxgQO8A6E54dJvCIXtbxjO5ZYSWSFsRGdXXmbI5OH684ltQT26yJvDNJ9n9EV0F fQ1Dqqbij/rcBXVGAW9P/AF/zHgcSUMBp51CER7WFwKLEbFdD/UI+MU7S4ph1KYh 913uW3neqHwU79BIbcNqELiRfSB3U/d+z3aRZoc+DQ9lnZsqW4AQ3hsk4OJfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8qMzk4c+mrBJuihjaEP02TiyGrAwHwYDVR0j BBgwFoAUAO6VP9aZeIZoxyRGD02NQgI4GU8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODUzZjIyOC0zN2YyLTQ3ZDktYjlmZS00NzZiYWRlMTMzOTMvMC8wMEVFOTUzRkQ2 OTk3ODg2NjhDNzI0NDYwRjREOEQ0MjAyMzgxOTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIwMjM4 MTk0Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNjMyMzkzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeoAVMA0GCSqG SIb3DQEBCwUAA4IBAQA30II3ucnRK21qadvIiqVxBUCjrh78lEsXJZ8huzV6dZxK IMFQI8F+0fQBeWo/9m36+Rdvk6V94yUGeJ1Q1pfdJAnm+MUq9kEB1e91IUckuKIs IsV7+EdtFMt0Uev/53/BABCbo4Jbs32IlK8bFR2KF6h8VB2h62d9YTraHGd8VZKu egNchnDptkpW/q5YecrX2ihRJ6YHNpSrgjHfIJ/F8vDB3NHB+3AOGWMLogSq89vQ CtW5evKfopHgpaq13JqRacVyjR8D8p7bnWovWDU7BY20ELsLO0H36I1WMbabxVpe IjhPtpVaqzmYdcnRmEtvnbPcYoxaHWf91kmzzAgQ -----END CERTIFICATE-----Generated at Mon Jun 30 16:54:02 2025 by rpki-client