$ rpki-client -vvf repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/32372e3132342e37342e302f32342d3234203d3e20313532303532.roa File: 32372e3132342e37342e302f32342d3234203d3e20313532303532.roa (raw, json) Hash identifier: 6mgkKY9kBfU7sAQ5w8Wubk22DIAe6sIX9Uol4iEtsCA= Subject key identifier: 82:0B:30:BD:73:F4:8C:61:8B:8C:18:95:38:59:67:90:95:F9:E9:A1 Certificate issuer: /CN=29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A Certificate serial: 40502329A9FC3CDB257C65B5398495D33CDCDF32 Authority key identifier: 29:C0:64:0D:D9:07:6D:C0:4C:F8:A3:90:EA:73:DF:C0:E0:E7:CF:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/32372e3132342e37342e302f32342d3234203d3e20313532303532.roa Signing time: Fri 02 May 2025 14:00:00 +0000 ROA not before: Fri 02 May 2025 13:55:00 +0000 ROA not after: Fri 01 May 2026 14:00:00 +0000 asID: 152052 IP address blocks: 27.124.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.crl rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 07:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:50:23:29:a9:fc:3c:db:25:7c:65:b5:39:84:95:d3:3c:dc:df:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A Validity Not Before: May 2 13:55:00 2025 GMT Not After : May 1 14:00:00 2026 GMT Subject: CN=820B30BD73F48C618B8C18953859679095F9E9A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c7:29:cc:e2:3c:2d:f6:4e:a0:0e:78:ef:3a: 13:97:0c:d5:1c:92:d2:8b:42:ac:94:37:3d:19:ae: 74:ff:97:7e:92:16:3e:36:69:2a:69:20:45:1c:46: f6:4a:38:c6:11:6b:df:fb:d6:fe:c6:c6:3b:d3:e2: 78:a6:be:74:de:e6:40:40:58:be:a0:d1:fe:20:51: d0:57:71:41:1a:56:8f:d5:c5:a3:5d:f5:c5:dc:19: 0d:57:0b:57:5b:0d:42:36:42:ec:9e:07:ba:82:a5: 7b:43:1b:ce:36:9d:4e:9a:82:00:08:cd:94:8d:a8: ea:a2:87:dd:a3:c9:f2:30:d2:4d:c8:93:c2:4e:7a: e2:74:d4:f9:04:27:41:f1:ab:ad:28:8b:dd:37:a9: 17:70:c6:ed:fd:53:e3:8b:ac:54:a2:2f:99:dd:10: 32:15:a1:37:c5:f4:31:eb:6b:9b:71:af:01:cb:89: c7:92:8f:51:0f:a7:ab:3e:fc:23:a0:f6:0f:7d:69: 98:d3:59:21:c2:aa:2d:17:2b:78:30:90:a4:70:69: 81:c2:ef:e4:f0:f3:b0:f1:1a:bc:fb:97:1e:18:0a: 97:cb:59:a8:f5:ed:1b:a9:3c:4a:f0:46:71:9b:b1: 50:00:11:e3:2b:8b:23:48:7a:89:b0:e0:e5:8c:b7: 66:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:0B:30:BD:73:F4:8C:61:8B:8C:18:95:38:59:67:90:95:F9:E9:A1 X509v3 Authority Key Identifier: keyid:29:C0:64:0D:D9:07:6D:C0:4C:F8:A3:90:EA:73:DF:C0:E0:E7:CF:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/32372e3132342e37342e302f32342d3234203d3e20313532303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.74.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:21:10:ff:80:8b:f8:55:d4:56:91:21:91:25:02:d9:1d:c6: c3:12:a0:64:45:3d:39:81:87:34:db:30:f5:a4:1c:25:a2:a0: f2:4d:b2:81:4c:4a:c5:76:5e:55:5a:29:0e:d3:6e:cb:03:48: d6:61:34:38:9b:6f:32:8a:1e:93:60:d9:c5:b7:ea:19:bf:6c: 2f:5a:ea:de:e8:73:de:b1:69:98:94:80:69:0f:c1:9c:ef:c7: cd:86:3c:f8:5f:dd:d4:95:1f:c3:ec:2b:4b:f0:32:a2:7c:4b: 11:15:e5:8e:05:9c:fa:07:47:7f:23:81:f9:c9:50:53:38:8c: f9:f6:d5:36:db:d3:0e:78:6f:69:d8:06:f5:6a:76:a7:48:2f: 77:42:88:27:87:6f:00:01:30:ba:97:b6:d8:21:fe:4c:9f:2e: cc:ad:61:a6:2c:31:2a:6d:24:33:1b:f7:b0:fd:3b:15:74:50: cd:44:e9:06:5c:a6:a5:b8:bd:04:09:10:c5:3f:07:8b:7d:4e: a4:86:b5:e5:a4:38:a4:92:32:1e:dd:5c:d1:e5:ea:a5:04:e1: 3a:12:e0:83:05:86:7b:9f:6e:b3:a8:44:88:64:48:c4:62:49: b0:c1:9b:ff:fd:9d:cb:ef:ef:4f:19:8c:9f:bf:24:c9:72:c4: 93:10:13:5f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQFAjKan8PNslfGW1OYSV0zzc3zIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlDMDY0MEREOTA3NkRDMDRDRjhBMzkwRUE3M0RGQzBF MEU3Q0Y5QTAeFw0yNTA1MDIxMzU1MDBaFw0yNjA1MDExNDAwMDBaMDMxMTAvBgNV BAMTKDgyMEIzMEJENzNGNDhDNjE4QjhDMTg5NTM4NTk2NzkwOTVGOUU5QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxxynM4jwt9k6gDnjvOhOXDNUc ktKLQqyUNz0ZrnT/l36SFj42aSppIEUcRvZKOMYRa9/71v7GxjvT4nimvnTe5kBA WL6g0f4gUdBXcUEaVo/VxaNd9cXcGQ1XC1dbDUI2QuyeB7qCpXtDG842nU6aggAI zZSNqOqih92jyfIw0k3Ik8JOeuJ01PkEJ0Hxq60oi903qRdwxu39U+OLrFSiL5nd EDIVoTfF9DHra5txrwHLiceSj1EPp6s+/COg9g99aZjTWSHCqi0XK3gwkKRwaYHC 7+Tw87DxGrz7lx4YCpfLWaj17RupPErwRnGbsVAAEeMriyNIeomw4OWMt2alAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUggswvXP0jGGLjBiVOFlnkJX56aEwHwYDVR0j BBgwFoAUKcBkDdkHbcBM+KOQ6nPfwODnz5owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZGFmOWYwZi00ZmIxLTQwYzAtYjM4MC01OWEzOGRiYzlhMTYvMC8yOUMwNjQwREQ5 MDc2REMwNENGOEEzOTBFQTczREZDMEUwRTdDRjlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlDMDY0MEREOTA3NkRDMDRDRjhBMzkwRUE3M0RGQzBFMEU3 Q0Y5QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkYWY5ZjBmLTRmYjEtNDBjMC1i MzgwLTU5YTM4ZGJjOWExNi8wLzMyMzcyZTMxMzIzNDJlMzczNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABt8SjANBgkqhkiG 9w0BAQsFAAOCAQEAjCEQ/4CL+FXUVpEhkSUC2R3GwxKgZEU9OYGHNNsw9aQcJaKg 8k2ygUxKxXZeVVopDtNuywNI1mE0OJtvMooek2DZxbfqGb9sL1rq3uhz3rFpmJSA aQ/BnO/HzYY8+F/d1JUfw+wrS/AyonxLERXljgWc+gdHfyOB+clQUziM+fbVNtvT DnhvadgG9Wp2p0gvd0KIJ4dvAAEwupe22CH+TJ8uzK1hpiwxKm0kMxv3sP07FXRQ zUTpBlympbi9BAkQxT8Hi31OpIa15aQ4pJIyHt1c0eXqpQThOhLggwWGe59us6hE iGRIxGJJsMGb//2dy+/vTxmMn78kyXLEkxATXw== -----END CERTIFICATE-----Generated at Wed May 7 13:50:29 2025 by rpki-client