$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130352e302f32342d3234203d3e2034383231.roa File: 3232332e32352e3130352e302f32342d3234203d3e2034383231.roa (raw, json) Hash identifier: 8gu4g1bdcjin/i0TEIycNgxzwZksIdfr4ERNzQVV1jI= Subject key identifier: E5:A3:86:0C:4C:45:2E:EB:E4:83:0A:55:7E:E5:F7:D2:3F:F6:AC:60 Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Certificate serial: 37D4AB5C9C891674FB8BFAEC0F89406BC09A86CF Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130352e302f32342d3234203d3e2034383231.roa Signing time: Mon 02 Jun 2025 02:04:09 +0000 ROA not before: Mon 02 Jun 2025 01:59:09 +0000 ROA not after: Mon 01 Jun 2026 02:04:09 +0000 asID: 4821 IP address blocks: 223.25.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 17:58:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:d4:ab:5c:9c:89:16:74:fb:8b:fa:ec:0f:89:40:6b:c0:9a:86:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Validity Not Before: Jun 2 01:59:09 2025 GMT Not After : Jun 1 02:04:09 2026 GMT Subject: CN=E5A3860C4C452EEBE4830A557EE5F7D23FF6AC60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f1:b8:1a:5d:91:c4:25:88:5c:d4:3c:8a:fc: 67:80:7f:3d:2f:03:ee:64:3f:9e:4a:ed:eb:79:67: ca:ab:70:2d:02:05:7f:b2:8f:d6:d8:c7:80:bf:79: c2:7f:28:c1:55:54:4d:73:33:63:aa:61:92:8c:06: 53:bf:65:d0:5e:d9:d1:fd:b8:82:96:e7:5b:cf:9f: 8f:7c:60:a2:d7:3b:a8:bb:09:a7:18:64:a7:7b:77: 5a:b4:db:ff:f8:f8:20:9e:3b:a6:f7:aa:c5:8a:e6: a0:32:c4:f9:cf:4e:e7:eb:d7:d6:e7:8d:f4:ff:cf: 7f:d0:e8:aa:2a:8e:9c:91:f2:41:f4:d9:ba:eb:f0: 05:c8:5d:4a:90:63:34:36:09:1a:38:54:6b:e3:3d: d9:e4:7b:0c:99:f0:89:ad:93:86:56:8d:81:a2:c0: f4:18:62:d7:0d:ff:98:c8:ad:a3:aa:f3:4b:fc:dc: ea:7b:45:31:87:91:ed:ba:cf:6b:f8:a3:48:2f:36: 2a:2a:d8:0f:18:25:e7:f7:09:db:9e:96:1d:a8:40: 62:86:0a:df:66:66:e3:5e:6d:ea:43:0c:03:b1:a5: 86:76:0d:23:7e:4b:e0:64:90:8e:66:97:27:20:15: 40:e8:e8:d9:2e:60:4a:7d:07:cd:ff:d5:99:99:49: 28:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:A3:86:0C:4C:45:2E:EB:E4:83:0A:55:7E:E5:F7:D2:3F:F6:AC:60 X509v3 Authority Key Identifier: keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130352e302f32342d3234203d3e2034383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.25.105.0/24 Signature Algorithm: sha256WithRSAEncryption 57:bc:d5:d0:11:9b:9d:73:bb:07:06:93:2f:1b:63:ea:f0:90: af:37:66:9f:03:ec:98:92:54:a7:a6:af:ae:e0:d8:b5:dc:75: 04:1b:8d:5c:09:a5:63:ca:cc:23:c9:0d:f2:de:7a:b1:2b:90: bf:03:1b:4a:9c:f0:33:85:84:a2:2b:6c:a1:96:78:59:10:4e: a2:fe:93:03:51:4f:2e:db:59:e3:c7:cb:6e:00:6b:17:3c:c6: 06:e5:a9:71:a7:2b:10:bc:56:d1:f4:29:58:6e:3d:0d:a6:88: ae:9e:3e:b2:92:8a:1d:ef:11:f6:88:15:47:b9:44:62:10:4b: fe:87:89:25:39:43:12:2b:73:36:98:8d:68:c3:82:0d:48:16: f7:55:43:dd:d9:2d:19:ef:37:12:20:a1:a2:5e:ad:4d:9b:c2: c4:28:c0:25:2a:3c:9c:5d:8d:d7:5e:67:1a:6a:62:49:ac:11: 82:3e:9c:c6:b8:97:bc:d9:16:79:7f:11:e4:37:cb:aa:bb:a0: 6f:40:ec:7f:f4:a1:c5:aa:25:5d:f9:30:72:0c:43:fd:3b:f7: 90:dd:93:d7:bd:ad:17:6c:10:7f:f7:68:16:4e:1d:6f:c0:69: a5:7e:63:60:c3:7a:3a:b0:9e:96:34:b0:99:7e:d5:d9:2f:1b: af:3a:0b:c6 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUN9SrXJyJFnT7i/rsD4lAa8Cahs8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3 RkMzODc4NzAeFw0yNTA2MDIwMTU5MDlaFw0yNjA2MDEwMjA0MDlaMDMxMTAvBgNV BAMTKEU1QTM4NjBDNEM0NTJFRUJFNDgzMEE1NTdFRTVGN0QyM0ZGNkFDNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv8bgaXZHEJYhc1DyK/GeAfz0v A+5kP55K7et5Z8qrcC0CBX+yj9bYx4C/ecJ/KMFVVE1zM2OqYZKMBlO/ZdBe2dH9 uIKW51vPn498YKLXO6i7CacYZKd7d1q02//4+CCeO6b3qsWK5qAyxPnPTufr19bn jfT/z3/Q6KoqjpyR8kH02brr8AXIXUqQYzQ2CRo4VGvjPdnkewyZ8Imtk4ZWjYGi wPQYYtcN/5jIraOq80v83Op7RTGHke26z2v4o0gvNioq2A8YJef3Cduelh2oQGKG Ct9mZuNebepDDAOxpYZ2DSN+S+BkkI5mlycgFUDo6NkuYEp9B83/1ZmZSSihAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU5aOGDExFLuvkgwpVfuX30j/2rGAwHwYDVR0j BBgwFoAUS/HcwLzFsaS2vlJqdf8zOX/Dh4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDI1NDQxOS01M2JlLTRhZDQtYmY3Zi0yOWY4OTEyNTIzZDAvMC80QkYxRENDMEJD QzVCMUE0QjZCRTUyNkE3NUZGMzMzOTdGQzM4Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3RkMz ODc4Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMjU0NDE5LTUzYmUtNGFkNC1i ZjdmLTI5Zjg5MTI1MjNkMC8wLzMyMzIzMzJlMzIzNTJlMzEzMDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADfGWkwDQYJKoZIhvcN AQELBQADggEBAFe81dARm51zuwcGky8bY+rwkK83Zp8D7JiSVKemr67g2LXcdQQb jVwJpWPKzCPJDfLeerErkL8DG0qc8DOFhKIrbKGWeFkQTqL+kwNRTy7bWePHy24A axc8xgblqXGnKxC8VtH0KVhuPQ2miK6ePrKSih3vEfaIFUe5RGIQS/6HiSU5QxIr czaYjWjDgg1IFvdVQ93ZLRnvNxIgoaJerU2bwsQowCUqPJxdjddeZxpqYkmsEYI+ nMa4l7zZFnl/EeQ3y6q7oG9A7H/0ocWqJV35MHIMQ/0795Ddk9e9rRdsEH/3aBZO HW/AaaV+Y2DDejqwnpY0sJl+1dkvG686C8Y= -----END CERTIFICATE-----Generated at Mon Jun 30 16:52:26 2025 by rpki-client