$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e342e302f32342d3234203d3e203338373533.roa File: 32372e3133312e342e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: yK9js0Za9g0CYaU92xRmsaC/y3JiDfzVc1kxsipt5uo= Subject key identifier: EB:5C:10:BC:11:29:84:07:DC:5E:21:85:98:5C:EA:13:3A:71:D3:BA Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 4644F6113581BB3E658740B606AA7C5853551EEF Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e342e302f32342d3234203d3e203338373533.roa Signing time: Fri 02 May 2025 07:00:01 +0000 ROA not before: Fri 02 May 2025 06:55:01 +0000 ROA not after: Fri 01 May 2026 07:00:01 +0000 asID: 38753 IP address blocks: 27.131.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 17:23:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:44:f6:11:35:81:bb:3e:65:87:40:b6:06:aa:7c:58:53:55:1e:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: May 2 06:55:01 2025 GMT Not After : May 1 07:00:01 2026 GMT Subject: CN=EB5C10BC11298407DC5E2185985CEA133A71D3BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b5:7a:be:7d:4f:11:1d:87:a9:34:4d:47:ef: 36:33:90:74:24:fe:ab:81:dc:67:aa:53:13:33:d7: 66:1a:30:86:ed:05:af:d3:0a:1e:22:76:4e:cb:e2: 94:e3:69:c8:23:45:74:57:29:15:a4:08:86:52:18: aa:a0:09:89:78:64:6b:06:2a:c9:50:24:0a:fc:ac: 2a:f2:6f:64:99:63:28:01:c8:61:a8:45:9f:29:26: 49:c6:fc:bd:9e:35:f7:67:de:9a:c0:f9:e9:90:6d: 49:2f:5f:94:80:c7:fe:04:33:4c:98:c2:3e:e2:47: b5:f6:a0:b0:d9:e4:7f:b7:f7:60:3d:db:39:c4:77: b6:a4:87:31:7a:d2:6f:4d:5c:ac:73:e5:b4:e5:61: c8:fb:d8:2f:8b:ae:4b:2c:c2:64:77:57:14:22:1e: 5c:64:d8:06:4f:ae:2b:54:bc:9d:5b:2d:79:5e:d9: f0:08:fd:d4:e3:47:2f:bd:e9:f2:cb:b1:5c:79:5b: 9f:0c:79:20:67:90:48:30:fc:fe:81:18:bd:de:32: 26:72:c9:1f:4d:56:ff:c3:ff:a7:dc:d9:ed:46:12: 43:40:22:95:a0:e0:84:16:f7:d0:b3:9a:ee:98:22: 2d:7c:d9:11:76:15:db:f4:82:5f:af:14:e0:8f:81: 16:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:5C:10:BC:11:29:84:07:DC:5E:21:85:98:5C:EA:13:3A:71:D3:BA X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e342e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.4.0/24 Signature Algorithm: sha256WithRSAEncryption 59:5e:e6:ba:8e:f5:e9:bb:16:00:51:2d:de:06:71:cf:e6:26: 69:d4:f4:8f:ad:19:0c:2a:b4:8b:54:55:5f:de:eb:3e:a1:e7: 86:d0:ee:31:15:98:21:ba:c7:eb:e1:50:e3:fe:9e:71:71:7f: 15:b9:b0:23:2d:f6:8d:1b:3b:08:3b:a6:5e:3b:3b:92:6e:dc: b9:ef:fb:c1:0e:1d:01:2d:aa:cd:ec:7d:06:c1:f0:14:c9:03: 6d:8d:38:6f:04:b3:83:99:3d:c8:81:5d:bc:90:b3:01:3e:2b: dc:fa:1d:f2:c9:ce:18:05:aa:df:52:3d:6d:9a:7b:e5:96:b6: aa:ae:42:9a:0f:48:69:f5:b1:e1:bb:28:4a:5f:30:12:89:5d: 40:48:f6:90:01:5a:45:e7:c6:01:6e:ff:70:f5:fd:58:3b:4b: aa:8e:28:a8:88:4d:51:0a:a7:4e:84:cb:4d:9e:71:80:53:1e: 09:9a:7a:66:cc:3b:2f:44:8a:f3:5d:73:5b:bf:10:0b:22:cd: 92:dc:c0:70:6a:5c:43:ec:71:40:ac:3f:4a:78:54:63:c3:71: 99:e4:f6:2c:85:24:c4:1a:aa:36:36:b4:d6:fa:2e:78:10:9c: a4:39:33:95:d4:e8:7b:28:af:73:3d:d5:f5:a7:5a:15:71:69: 0c:76:b2:1f -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIURkT2ETWBuz5lh0C2Bqp8WFNVHu8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTA1MDIwNjU1MDFaFw0yNjA1MDEwNzAwMDFaMDMxMTAvBgNV BAMTKEVCNUMxMEJDMTEyOTg0MDdEQzVFMjE4NTk4NUNFQTEzM0E3MUQzQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDtXq+fU8RHYepNE1H7zYzkHQk /quB3GeqUxMz12YaMIbtBa/TCh4idk7L4pTjacgjRXRXKRWkCIZSGKqgCYl4ZGsG KslQJAr8rCryb2SZYygByGGoRZ8pJknG/L2eNfdn3prA+emQbUkvX5SAx/4EM0yY wj7iR7X2oLDZ5H+392A92znEd7akhzF60m9NXKxz5bTlYcj72C+LrksswmR3VxQi Hlxk2AZPritUvJ1bLXle2fAI/dTjRy+96fLLsVx5W58MeSBnkEgw/P6BGL3eMiZy yR9NVv/D/6fc2e1GEkNAIpWg4IQW99Czmu6YIi182RF2Fdv0gl+vFOCPgRbhAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU61wQvBEphAfcXiGFmFzqEzpx07owHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzNDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbgwQwDQYJKoZIhvcNAQEL BQADggEBAFle5rqO9em7FgBRLd4Gcc/mJmnU9I+tGQwqtItUVV/e6z6h54bQ7jEV mCG6x+vhUOP+nnFxfxW5sCMt9o0bOwg7pl47O5Ju3Lnv+8EOHQEtqs3sfQbB8BTJ A22NOG8Es4OZPciBXbyQswE+K9z6HfLJzhgFqt9SPW2ae+WWtqquQpoPSGn1seG7 KEpfMBKJXUBI9pABWkXnxgFu/3D1/Vg7S6qOKKiITVEKp06Ey02ecYBTHgmaembM Oy9EivNdc1u/EAsizZLcwHBqXEPscUCsP0p4VGPDcZnk9iyFJMQaqjY2tNb6LngQ nKQ5M5XU6Hsor3M91fWnWhVxaQx2sh8= -----END CERTIFICATE-----Generated at Sat May 10 02:16:59 2025 by rpki-client