$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139372e302f32342d3234203d3e20313333383431.roa File: 3132332e3233312e3139372e302f32342d3234203d3e20313333383431.roa (raw, json) Hash identifier: a5sCrCdkyRrLuK5T/2bYvppFDAELfToHxDTL9FHUhlE= Subject key identifier: 86:A4:59:0E:C9:EF:22:1D:96:9B:F7:C7:43:EF:D3:80:C7:DA:FF:72 Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 18B2334E6453D49F9B10E1906B6DB06868F6B4D4 Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139372e302f32342d3234203d3e20313333383431.roa Signing time: Mon 02 Jun 2025 01:03:21 +0000 ROA not before: Mon 02 Jun 2025 00:58:21 +0000 ROA not after: Mon 01 Jun 2026 01:03:21 +0000 asID: 133841 IP address blocks: 123.231.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 21:32:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:b2:33:4e:64:53:d4:9f:9b:10:e1:90:6b:6d:b0:68:68:f6:b4:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jun 2 00:58:21 2025 GMT Not After : Jun 1 01:03:21 2026 GMT Subject: CN=86A4590EC9EF221D969BF7C743EFD380C7DAFF72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:71:b1:2b:24:80:49:70:ef:c2:3d:d9:3e:9c: a5:ba:5a:1b:01:94:a2:03:8d:ee:e9:56:85:19:1b: ac:e9:b1:c2:58:48:01:7f:56:a6:ad:c5:c9:7e:76: 3d:b2:29:d0:b7:bc:0d:fa:ee:22:c1:2f:84:97:3a: 3d:8c:fa:ba:70:83:d8:b8:4a:66:f4:3d:0c:f5:0a: 55:29:d5:3f:c8:ad:1e:0b:cb:09:44:aa:19:75:6d: 60:4b:49:fc:9c:09:1d:17:75:40:dc:3c:4a:13:0e: c4:44:aa:a7:bd:ae:5f:3c:ef:94:bb:6d:1c:b4:f7: 39:ab:76:1a:38:22:88:bd:65:63:c6:39:6f:ca:40: 41:85:d9:f7:56:7d:c9:f3:6c:58:47:08:39:ca:f2: 5a:d8:f4:cc:76:80:ed:dc:07:66:82:80:2b:38:a7: 91:aa:b2:67:7e:b5:db:b9:80:94:28:f6:db:47:c8: 00:d1:a5:0f:a7:2e:d1:12:de:a4:f5:07:e7:8a:67: 23:ec:7e:77:a9:4b:da:e8:e8:c8:85:87:6a:87:9e: 9a:23:eb:50:0d:5d:bd:bf:17:06:31:6f:48:eb:92: b2:1a:2e:75:43:58:78:c7:22:5d:37:80:4e:84:ee: c3:5b:70:0b:fb:39:f9:d0:cf:bb:92:c9:1d:bc:3f: 82:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:A4:59:0E:C9:EF:22:1D:96:9B:F7:C7:43:EF:D3:80:C7:DA:FF:72 X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139372e302f32342d3234203d3e20313333383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.231.197.0/24 Signature Algorithm: sha256WithRSAEncryption 52:02:0f:8c:e9:a9:c2:8e:00:9a:16:03:3e:b5:16:70:22:31: f5:a7:f1:01:17:85:52:c6:d4:8c:e0:3e:46:3d:7a:8f:57:6b: f8:20:e7:65:2a:ac:6b:8b:09:bd:65:79:a2:7b:93:dc:e5:2d: 27:d7:91:aa:ed:71:f2:42:cc:61:c3:7c:72:cc:47:71:71:28: 37:d3:36:42:43:a7:d7:67:59:52:22:89:63:ed:f5:f4:57:ea: f0:d7:da:e0:1f:27:f0:e2:e7:01:20:36:e5:fe:7d:52:38:3e: 8c:83:46:7b:3f:66:58:0b:9f:21:5c:c7:bb:f4:cc:72:5c:4c: a1:a2:62:9f:a7:2e:41:f9:7a:5b:a0:58:49:8b:5f:06:e7:89: d3:38:27:db:f4:60:e4:0f:c3:27:cb:f1:07:81:8c:2d:e3:c8: 63:52:bd:29:79:f7:7e:cd:2a:5e:57:7f:01:f0:70:f7:b8:19: 3f:d3:f3:be:b9:48:ab:ec:16:06:32:68:5c:1e:7c:ef:18:75: b4:d8:fe:04:52:4c:94:18:1b:13:ae:6a:1b:b0:10:ae:d3:31: bb:c2:75:95:4b:bd:66:f8:0f:57:e9:6f:18:a8:c2:93:97:9b: 77:d5:de:10:48:36:84:a5:10:43:3a:4e:ea:26:ce:8e:c1:68: 2c:67:ea:b0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGLIzTmRT1J+bEOGQa22waGj2tNQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNTA2MDIwMDU4MjFaFw0yNjA2MDEwMTAzMjFaMDMxMTAvBgNV BAMTKDg2QTQ1OTBFQzlFRjIyMUQ5NjlCRjdDNzQzRUZEMzgwQzdEQUZGNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgcbErJIBJcO/CPdk+nKW6WhsB lKIDje7pVoUZG6zpscJYSAF/Vqatxcl+dj2yKdC3vA367iLBL4SXOj2M+rpwg9i4 Smb0PQz1ClUp1T/IrR4LywlEqhl1bWBLSfycCR0XdUDcPEoTDsREqqe9rl8875S7 bRy09zmrdho4Ioi9ZWPGOW/KQEGF2fdWfcnzbFhHCDnK8lrY9Mx2gO3cB2aCgCs4 p5Gqsmd+tdu5gJQo9ttHyADRpQ+nLtES3qT1B+eKZyPsfnepS9ro6MiFh2qHnpoj 61ANXb2/FwYxb0jrkrIaLnVDWHjHIl03gE6E7sNbcAv7OfnQz7uSyR28P4KPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhqRZDsnvIh2Wm/fHQ+/TgMfa/3IwHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzMzJlMzIzMzMxMmUzMTM5MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB758UwDQYJ KoZIhvcNAQELBQADggEBAFICD4zpqcKOAJoWAz61FnAiMfWn8QEXhVLG1IzgPkY9 eo9Xa/gg52UqrGuLCb1leaJ7k9zlLSfXkartcfJCzGHDfHLMR3FxKDfTNkJDp9dn WVIiiWPt9fRX6vDX2uAfJ/Di5wEgNuX+fVI4PoyDRns/ZlgLnyFcx7v0zHJcTKGi Yp+nLkH5elugWEmLXwbnidM4J9v0YOQPwyfL8QeBjC3jyGNSvSl5937NKl5XfwHw cPe4GT/T8765SKvsFgYyaFwefO8YdbTY/gRSTJQYGxOuahuwEK7TMbvCdZVLvWb4 D1fpbxiowpOXm3fV3hBINoSlEEM6Tuomzo7BaCxn6rA= -----END CERTIFICATE-----Generated at Thu Jun 19 21:28:18 2025 by rpki-client