$ rpki-client -vvf repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e203531323032.roa File: 3132322e3132382e32312e302f32342d3234203d3e203531323032.roa (raw, json) Hash identifier: rkVkBOM1gxwGdr/crh5svI3UEvA+KgJo/zG78neJc4s= Subject key identifier: F1:F8:56:32:8D:57:0F:CD:3C:A1:AD:CC:08:4A:1B:59:6B:A2:36:C4 Certificate issuer: /CN=00EE953FD699788668C724460F4D8D420238194F Certificate serial: 02F5F531B3D52D49BC58E6AA82002391E350A5CF Authority key identifier: 00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e203531323032.roa Signing time: Tue 17 Jun 2025 02:00:02 +0000 ROA not before: Tue 17 Jun 2025 01:55:02 +0000 ROA not after: Tue 16 Jun 2026 02:00:02 +0000 asID: 51202 IP address blocks: 122.128.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 20:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:f5:f5:31:b3:d5:2d:49:bc:58:e6:aa:82:00:23:91:e3:50:a5:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00EE953FD699788668C724460F4D8D420238194F Validity Not Before: Jun 17 01:55:02 2025 GMT Not After : Jun 16 02:00:02 2026 GMT Subject: CN=F1F856328D570FCD3CA1ADCC084A1B596BA236C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f2:e1:06:91:d7:81:d4:7c:a3:2a:84:f0:6d: 38:75:f7:09:55:7e:34:fd:80:71:3d:87:0b:50:47: 6b:ec:eb:9d:03:ef:6d:a0:03:e5:ad:80:46:a9:bc: eb:c5:bc:bc:3b:cc:3e:25:a8:58:0c:1c:9b:be:8e: 62:09:16:74:38:42:eb:17:57:1e:40:5f:97:ed:36: ce:48:ef:49:22:71:6f:e6:30:ae:9a:4a:b4:40:3d: a0:57:a4:a8:1b:c4:61:b5:47:e0:6c:c9:65:c6:b1: f3:78:9f:38:28:a5:73:9b:5a:04:ea:24:45:27:e3: 8b:ab:dd:26:c5:91:79:87:7c:98:d2:a2:7a:c6:d2: 2b:9e:0f:a0:bf:8f:89:ac:fc:4a:c9:f1:dd:92:c4: 2e:64:c0:22:01:70:4f:fc:85:c1:16:1b:32:7f:9f: 0b:f4:76:de:24:9c:f3:d0:e2:8d:1f:bb:94:30:b6: f3:be:21:ec:b1:cf:2d:2c:1f:8a:03:66:c2:6b:99: 57:70:ec:9a:ce:1c:b7:80:8a:18:14:3c:5d:17:25: 78:2a:b6:0a:86:86:86:83:b3:ac:e5:64:79:4b:8c: 16:33:91:fc:a4:b8:d7:0c:1f:7c:67:0b:72:f3:27: e8:41:d5:89:a6:bc:a1:14:54:b6:a9:fd:04:d7:f8: 11:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:F8:56:32:8D:57:0F:CD:3C:A1:AD:CC:08:4A:1B:59:6B:A2:36:C4 X509v3 Authority Key Identifier: keyid:00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e203531323032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.21.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:03:44:2e:45:1e:ea:f7:0d:2b:b1:20:fe:e7:19:cb:98:79: ed:0a:3c:9d:eb:d4:9c:64:9e:21:11:02:f8:ad:64:8d:ea:c1: 39:49:ae:ba:f5:aa:ed:d1:8f:c1:0a:81:f4:16:1a:3d:36:c4: 2c:4e:a6:f5:8f:65:b2:3c:7a:6c:3b:3d:48:15:0b:5c:11:3f: e5:0c:ae:bf:13:c3:73:32:d0:ec:81:0f:16:54:53:2f:18:7f: 36:ac:ef:f7:9c:b1:2c:ca:b5:3e:0d:ee:c3:2d:cc:7f:91:97: d5:77:ef:c5:ae:69:9b:fe:b8:56:b5:ea:a5:a9:ee:12:e4:b6: 0b:44:12:64:7b:a3:51:75:c1:99:d6:bc:2f:fc:b6:0b:91:d5: a3:1a:78:b7:09:13:ee:56:a4:5b:bd:4a:98:22:2c:0e:c6:47: fb:0e:54:33:65:f7:36:57:d8:76:70:f8:d6:c3:1b:85:c6:f8: 8d:eb:79:50:ff:c7:99:9e:c6:d6:19:0c:f2:0a:d1:09:61:cb: 6d:06:64:af:ab:b8:a5:84:5d:25:08:b7:96:21:95:08:5d:80: 32:c2:5f:ad:d4:88:3b:1f:1b:4d:71:8e:1b:ab:85:16:53:c5: 48:d9:2b:44:6f:24:d5:d0:f9:1a:58:ff:26:73:2f:37:56:7c: 69:1d:66:32 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAvX1MbPVLUm8WOaqggAjkeNQpc8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIw MjM4MTk0RjAeFw0yNTA2MTcwMTU1MDJaFw0yNjA2MTYwMjAwMDJaMDMxMTAvBgNV BAMTKEYxRjg1NjMyOEQ1NzBGQ0QzQ0ExQURDQzA4NEExQjU5NkJBMjM2QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs8uEGkdeB1HyjKoTwbTh19wlV fjT9gHE9hwtQR2vs650D722gA+WtgEapvOvFvLw7zD4lqFgMHJu+jmIJFnQ4QusX Vx5AX5ftNs5I70kicW/mMK6aSrRAPaBXpKgbxGG1R+BsyWXGsfN4nzgopXObWgTq JEUn44ur3SbFkXmHfJjSonrG0iueD6C/j4ms/ErJ8d2SxC5kwCIBcE/8hcEWGzJ/ nwv0dt4knPPQ4o0fu5QwtvO+Ieyxzy0sH4oDZsJrmVdw7JrOHLeAihgUPF0XJXgq tgqGhoaDs6zlZHlLjBYzkfykuNcMH3xnC3LzJ+hB1YmmvKEUVLap/QTX+BGdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8fhWMo1XD808oa3MCEobWWuiNsQwHwYDVR0j BBgwFoAUAO6VP9aZeIZoxyRGD02NQgI4GU8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODUzZjIyOC0zN2YyLTQ3ZDktYjlmZS00NzZiYWRlMTMzOTMvMC8wMEVFOTUzRkQ2 OTk3ODg2NjhDNzI0NDYwRjREOEQ0MjAyMzgxOTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIwMjM4 MTk0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzMTMyMzAzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAFTANBgkqhkiG 9w0BAQsFAAOCAQEAjgNELkUe6vcNK7Eg/ucZy5h57Qo8nevUnGSeIREC+K1kjerB OUmuuvWq7dGPwQqB9BYaPTbELE6m9Y9lsjx6bDs9SBULXBE/5QyuvxPDczLQ7IEP FlRTLxh/Nqzv95yxLMq1Pg3uwy3Mf5GX1Xfvxa5pm/64VrXqpanuEuS2C0QSZHuj UXXBmda8L/y2C5HVoxp4twkT7lakW71KmCIsDsZH+w5UM2X3NlfYdnD41sMbhcb4 jet5UP/HmZ7G1hkM8grRCWHLbQZkr6u4pYRdJQi3liGVCF2AMsJfrdSIOx8bTXGO G6uFFlPFSNkrRG8k1dD5Glj/JnMvN1Z8aR1mMg== -----END CERTIFICATE-----Generated at Sun Jun 29 16:45:19 2025 by rpki-client