$ rpki-client -vvf repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/32372e3132342e37342e302f32332d3234203d3e20313532303532.roa File: 32372e3132342e37342e302f32332d3234203d3e20313532303532.roa (raw, json) Hash identifier: 3Di6pAbEyZCpXZLge7Vqx+6QVFgcVq47/UIjvzmKJsw= Subject key identifier: 61:2A:99:3C:CC:33:68:8B:22:7B:AD:8F:CE:3C:B1:22:46:BA:17:43 Certificate issuer: /CN=29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A Certificate serial: 79D67331B63BB8F27B57599EBAD64AA20053EB39 Authority key identifier: 29:C0:64:0D:D9:07:6D:C0:4C:F8:A3:90:EA:73:DF:C0:E0:E7:CF:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/32372e3132342e37342e302f32332d3234203d3e20313532303532.roa Signing time: Fri 02 May 2025 14:00:00 +0000 ROA not before: Fri 02 May 2025 13:55:00 +0000 ROA not after: Fri 01 May 2026 14:00:00 +0000 asID: 152052 IP address blocks: 27.124.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.crl rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 15:11:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:d6:73:31:b6:3b:b8:f2:7b:57:59:9e:ba:d6:4a:a2:00:53:eb:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A Validity Not Before: May 2 13:55:00 2025 GMT Not After : May 1 14:00:00 2026 GMT Subject: CN=612A993CCC33688B227BAD8FCE3CB12246BA1743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:49:aa:4a:9b:2c:50:2c:a0:11:47:26:71:a6: be:89:bf:30:20:d5:6b:9b:f6:4c:21:17:e8:17:a2: 70:4f:c8:95:f4:7a:18:cb:d7:90:18:b2:ce:ca:93: 6d:b2:4f:53:0c:b7:26:f7:01:35:e0:f8:71:96:88: c8:a4:db:55:d5:b6:2f:c5:4b:1d:33:a4:32:a0:60: 22:23:10:a9:5b:5f:cd:fe:4f:97:21:e8:81:b8:f3: 6c:e3:0c:f8:cc:48:de:10:c6:e8:12:83:1c:6f:b4: fb:5a:ac:d8:44:c3:6f:13:6f:eb:5a:45:8c:2c:cc: 51:a4:02:46:24:d6:c3:f5:87:c9:58:53:b6:81:0a: 95:34:f5:0d:e9:6b:8e:54:0c:91:4b:89:e0:4f:82: ac:1a:fe:1d:44:41:2c:0e:4d:dc:04:a6:3c:fb:53: cd:ed:52:b4:1b:87:ac:87:16:d2:80:d0:da:e5:5a: 47:cb:0a:7d:8b:b0:b9:d0:b3:bb:88:2d:6b:3c:91: 54:12:73:5b:65:0a:4f:f2:37:83:55:40:02:32:b5: 32:6d:90:6a:3f:ea:a6:02:e4:35:49:f8:b1:71:73: cc:cb:c0:7c:c4:e0:11:a4:ef:8b:30:24:09:70:07: 72:b8:0e:26:3a:21:ef:b5:bf:64:bd:14:5b:02:31: 47:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:2A:99:3C:CC:33:68:8B:22:7B:AD:8F:CE:3C:B1:22:46:BA:17:43 X509v3 Authority Key Identifier: keyid:29:C0:64:0D:D9:07:6D:C0:4C:F8:A3:90:EA:73:DF:C0:E0:E7:CF:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/32372e3132342e37342e302f32332d3234203d3e20313532303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.74.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:6a:8f:97:46:8b:bb:36:d5:35:d9:dd:c1:13:22:d0:61:03: 91:5d:fb:b4:11:59:ef:88:2d:7d:cf:14:d3:1e:ec:0d:c2:fc: 83:b3:ce:0b:60:8d:cb:69:46:fa:23:24:5a:95:b6:98:3d:0d: 08:bc:86:f3:1c:3a:46:f9:73:46:15:94:50:57:ec:30:5b:72: 9e:11:78:ae:34:ba:34:bb:11:60:11:87:e5:6b:0c:80:96:7d: ae:d4:b7:c8:aa:c4:af:86:13:d5:10:66:f6:cf:3a:a7:64:f7: 06:f0:93:e9:38:23:d0:3f:a3:43:b2:13:be:20:10:a1:c8:30: 99:ca:ea:dd:57:64:5a:e3:ae:f9:8d:30:69:4e:0d:37:bd:d8: f2:f5:de:4f:42:24:c6:36:09:1f:4d:25:8c:ad:ce:1d:21:d8: 4c:25:4c:55:ca:44:06:e8:31:67:55:8a:9c:c3:a9:41:b9:58: 08:bb:07:9b:f2:c9:d0:e1:36:ca:ea:1a:79:60:ce:7e:d6:e5: 49:14:53:e2:1f:56:06:81:ea:84:c4:a6:1f:98:3a:2e:bb:29: d0:dd:f2:56:8e:87:1e:6a:1d:59:ed:62:93:6a:cd:fe:a5:dd: 6a:d7:60:db:92:65:1e:df:f2:15:81:a7:e9:4e:b4:a2:05:31: ef:b7:a8:b6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUedZzMbY7uPJ7V1meutZKogBT6zkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlDMDY0MEREOTA3NkRDMDRDRjhBMzkwRUE3M0RGQzBF MEU3Q0Y5QTAeFw0yNTA1MDIxMzU1MDBaFw0yNjA1MDExNDAwMDBaMDMxMTAvBgNV BAMTKDYxMkE5OTNDQ0MzMzY4OEIyMjdCQUQ4RkNFM0NCMTIyNDZCQTE3NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDASapKmyxQLKARRyZxpr6JvzAg 1Wub9kwhF+gXonBPyJX0ehjL15AYss7Kk22yT1MMtyb3ATXg+HGWiMik21XVti/F Sx0zpDKgYCIjEKlbX83+T5ch6IG482zjDPjMSN4QxugSgxxvtPtarNhEw28Tb+ta RYwszFGkAkYk1sP1h8lYU7aBCpU09Q3pa45UDJFLieBPgqwa/h1EQSwOTdwEpjz7 U83tUrQbh6yHFtKA0NrlWkfLCn2LsLnQs7uILWs8kVQSc1tlCk/yN4NVQAIytTJt kGo/6qYC5DVJ+LFxc8zLwHzE4BGk74swJAlwB3K4DiY6Ie+1v2S9FFsCMUfBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYSqZPMwzaIsie62PzjyxIka6F0MwHwYDVR0j BBgwFoAUKcBkDdkHbcBM+KOQ6nPfwODnz5owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZGFmOWYwZi00ZmIxLTQwYzAtYjM4MC01OWEzOGRiYzlhMTYvMC8yOUMwNjQwREQ5 MDc2REMwNENGOEEzOTBFQTczREZDMEUwRTdDRjlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlDMDY0MEREOTA3NkRDMDRDRjhBMzkwRUE3M0RGQzBFMEU3 Q0Y5QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkYWY5ZjBmLTRmYjEtNDBjMC1i MzgwLTU5YTM4ZGJjOWExNi8wLzMyMzcyZTMxMzIzNDJlMzczNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEARt8SjANBgkqhkiG 9w0BAQsFAAOCAQEAnGqPl0aLuzbVNdndwRMi0GEDkV37tBFZ74gtfc8U0x7sDcL8 g7POC2CNy2lG+iMkWpW2mD0NCLyG8xw6RvlzRhWUUFfsMFtynhF4rjS6NLsRYBGH 5WsMgJZ9rtS3yKrEr4YT1RBm9s86p2T3BvCT6Tgj0D+jQ7ITviAQocgwmcrq3Vdk WuOu+Y0waU4NN73Y8vXeT0IkxjYJH00ljK3OHSHYTCVMVcpEBugxZ1WKnMOpQblY CLsHm/LJ0OE2yuoaeWDOftblSRRT4h9WBoHqhMSmH5g6Lrsp0N3yVo6HHmodWe1i k2rN/qXdatdg25JlHt/yFYGn6U60ogUx77eotg== -----END CERTIFICATE-----Generated at Thu May 8 00:13:39 2025 by rpki-client