$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e332e302f32342d3234203d3e203338373533.roa File: 32372e3133312e332e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: q3Y4BrPPFOsl+KYWoz07UjToabUEbmm1VTAemn+qiSQ= Subject key identifier: 3B:AC:3A:6F:47:7A:71:0C:CE:F8:82:61:16:75:99:14:5F:57:BF:77 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 53710031C78D8D361FF789A66B076C46467947B5 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e332e302f32342d3234203d3e203338373533.roa Signing time: Fri 02 May 2025 07:00:01 +0000 ROA not before: Fri 02 May 2025 06:55:01 +0000 ROA not after: Fri 01 May 2026 07:00:01 +0000 asID: 38753 IP address blocks: 27.131.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 17:23:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:71:00:31:c7:8d:8d:36:1f:f7:89:a6:6b:07:6c:46:46:79:47:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: May 2 06:55:01 2025 GMT Not After : May 1 07:00:01 2026 GMT Subject: CN=3BAC3A6F477A710CCEF88261167599145F57BF77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a1:ce:54:7a:8e:54:8c:ed:78:7e:36:c4:5a: 5b:e8:a1:1f:34:ba:f1:45:3b:8c:b2:e7:77:2a:7f: 6c:d1:e6:ec:32:a2:5e:19:42:98:11:7e:0d:15:e9: 5b:e1:9c:f9:b8:38:1c:c7:b5:37:af:58:8c:cf:2c: 8b:6c:87:13:5d:69:a3:56:c4:55:5c:f6:22:8a:ac: 4e:f1:65:d3:62:04:8d:fc:66:e1:35:5a:d1:ad:25: 50:1f:22:e9:55:f6:71:91:9c:a0:e5:03:f3:d8:b5: 36:48:dc:cc:a6:7c:0c:08:89:9e:12:e7:2a:0c:ca: 33:b2:4a:61:2e:93:f3:ed:3a:8e:93:6b:33:a7:f0: 79:3d:a6:08:2f:8e:17:98:e0:bb:e6:89:29:a0:a7: 27:87:97:43:99:d7:50:06:68:6f:b3:a0:be:65:97: e0:60:52:d7:32:ab:dc:61:0c:8e:c1:ee:5a:96:61: 1b:dc:2d:3c:09:4a:5d:ca:ce:da:82:16:2d:5a:fa: 39:ae:80:89:4a:2d:48:14:02:2a:98:67:fb:30:3d: 9b:90:3b:4a:b0:7c:08:7f:f9:80:82:08:e6:83:73: e3:43:57:d5:8c:48:8d:5b:9c:f6:60:57:e5:11:1d: fd:08:1c:fa:e6:0a:09:aa:c1:61:45:50:0f:e5:6a: 4e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:AC:3A:6F:47:7A:71:0C:CE:F8:82:61:16:75:99:14:5F:57:BF:77 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e332e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.3.0/24 Signature Algorithm: sha256WithRSAEncryption b1:86:3e:d9:d9:9c:20:b5:47:7e:e8:cb:84:ea:7f:ce:e5:36: ac:86:da:a2:2a:41:4e:1c:d3:f9:b8:e9:c2:1d:e4:fb:00:1c: 03:80:f5:24:67:99:57:69:0d:36:6b:55:76:d4:f7:55:90:a1: fd:fd:ae:82:70:bf:55:3a:0f:b5:d6:a0:5a:bd:34:82:2b:a7: b8:9d:7b:65:02:c4:0d:5f:86:e9:c2:6f:37:2f:01:44:02:55: ce:5b:97:5f:e5:0b:df:f7:4d:60:9d:45:19:b1:36:5c:3a:59: 92:ac:7c:d2:d7:74:69:e5:c0:28:c1:cc:9d:2d:09:15:b3:37: d1:77:1b:45:c4:3c:40:b6:63:e3:7a:3d:e1:34:a7:fa:50:a0: 5f:a2:0f:c3:8a:39:95:a1:80:52:b6:e2:44:75:a4:ac:ad:71: 38:f0:0c:8d:ca:98:1e:80:e0:b9:cf:3f:0b:b9:be:6c:ef:f8: 2e:02:ce:2f:76:ba:3b:c0:c6:fc:71:84:58:65:ba:b2:2b:f0: 7d:32:d6:bb:47:78:50:7e:34:8b:24:79:68:d6:ba:92:fa:e6: 9f:03:37:0d:34:7e:ba:b6:73:19:f5:5f:5f:dd:5d:97:ae:cb: 05:34:57:cb:af:5b:df:75:ce:df:59:d4:dd:79:c5:e7:21:3a: 42:8f:39:e1 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUU3EAMceNjTYf94mmawdsRkZ5R7UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTA1MDIwNjU1MDFaFw0yNjA1MDEwNzAwMDFaMDMxMTAvBgNV BAMTKDNCQUMzQTZGNDc3QTcxMENDRUY4ODI2MTE2NzU5OTE0NUY1N0JGNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCoc5Ueo5UjO14fjbEWlvooR80 uvFFO4yy53cqf2zR5uwyol4ZQpgRfg0V6VvhnPm4OBzHtTevWIzPLItshxNdaaNW xFVc9iKKrE7xZdNiBI38ZuE1WtGtJVAfIulV9nGRnKDlA/PYtTZI3MymfAwIiZ4S 5yoMyjOySmEuk/PtOo6TazOn8Hk9pggvjheY4LvmiSmgpyeHl0OZ11AGaG+zoL5l l+BgUtcyq9xhDI7B7lqWYRvcLTwJSl3KztqCFi1a+jmugIlKLUgUAiqYZ/swPZuQ O0qwfAh/+YCCCOaDc+NDV9WMSI1bnPZgV+URHf0IHPrmCgmqwWFFUA/lak5rAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUO6w6b0d6cQzO+IJhFnWZFF9Xv3cwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzMzJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbgwMwDQYJKoZIhvcNAQEL BQADggEBALGGPtnZnCC1R37oy4Tqf87lNqyG2qIqQU4c0/m46cId5PsAHAOA9SRn mVdpDTZrVXbU91WQof39roJwv1U6D7XWoFq9NIIrp7ide2UCxA1fhunCbzcvAUQC Vc5bl1/lC9/3TWCdRRmxNlw6WZKsfNLXdGnlwCjBzJ0tCRWzN9F3G0XEPEC2Y+N6 PeE0p/pQoF+iD8OKOZWhgFK24kR1pKytcTjwDI3KmB6A4LnPPwu5vmzv+C4Czi92 ujvAxvxxhFhlurIr8H0y1rtHeFB+NIskeWjWupL65p8DNw00frq2cxn1X1/dXZeu ywU0V8uvW991zt9Z1N15xechOkKPOeE= -----END CERTIFICATE-----Generated at Sat May 10 02:18:01 2025 by rpki-client