$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/32372e3131312e33322e302f31392d3234203d3e203234353332.roa File: 32372e3131312e33322e302f31392d3234203d3e203234353332.roa (raw, json) Hash identifier: JSx+5xTx71eWK8GnVgu4sokLS7+0LsCbDYaq7VNDJRQ= Subject key identifier: 35:5C:31:18:50:75:C0:F7:CB:47:0E:DC:89:4B:8F:07:47:23:20:30 Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 2FF9513E7015C9EE94D88A65B56255A64ED0DED8 Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/32372e3131312e33322e302f31392d3234203d3e203234353332.roa Signing time: Mon 02 Jun 2025 02:04:44 +0000 ROA not before: Mon 02 Jun 2025 01:59:44 +0000 ROA not after: Mon 01 Jun 2026 02:04:44 +0000 asID: 24532 IP address blocks: 27.111.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 10:35:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:f9:51:3e:70:15:c9:ee:94:d8:8a:65:b5:62:55:a6:4e:d0:de:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Jun 2 01:59:44 2025 GMT Not After : Jun 1 02:04:44 2026 GMT Subject: CN=355C31185075C0F7CB470EDC894B8F0747232030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:09:de:91:cd:33:27:00:09:a1:e6:91:71:b3: e1:c6:1b:8c:7e:a4:0c:ef:af:a3:d6:d6:66:a2:06: 86:16:08:9c:67:1f:c3:0f:ec:b4:68:91:1e:54:2a: ee:1c:e3:99:c1:7b:d2:97:51:a1:3c:2d:7d:7b:6d: 1c:b6:70:ee:fb:80:2d:06:e9:80:de:ee:8a:c6:ef: 73:c7:56:e9:c9:e0:21:b2:e9:41:22:43:29:b6:36: 23:ba:c3:9d:f9:ca:18:6e:7e:15:b4:12:0d:02:22: e2:42:a8:a3:d8:3c:4f:c1:54:b7:ee:7f:5a:9b:2a: ac:e5:3b:ed:e8:f9:77:4e:55:4b:da:cd:96:a7:1a: 57:04:c0:8c:e7:4f:0f:19:a3:99:9e:9b:87:51:49: 77:ac:38:73:90:c0:b0:c9:9a:87:11:d9:c4:ac:99: 62:f4:a7:18:d7:25:84:58:ff:07:8a:74:76:5c:72: 15:56:7d:0b:44:e9:1b:75:ec:bd:b3:2c:37:1a:41: 55:77:13:b1:b5:92:07:e1:6a:5f:c0:9d:a9:5e:59: d1:c7:b5:13:27:f5:8c:33:f4:66:5f:1c:a9:ce:f4: 53:40:d5:ba:e6:fc:31:7c:35:09:c6:17:d4:80:6a: 98:4d:d4:78:e9:8b:18:94:5f:15:84:9c:fd:73:4e: de:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:5C:31:18:50:75:C0:F7:CB:47:0E:DC:89:4B:8F:07:47:23:20:30 X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/32372e3131312e33322e302f31392d3234203d3e203234353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.111.32.0/19 Signature Algorithm: sha256WithRSAEncryption c6:5f:5b:5e:87:1f:03:4e:94:29:0d:cb:c4:f6:b6:0b:17:34: 89:e7:34:de:4f:ab:df:85:a8:84:3e:89:d8:0c:7c:90:ce:83: 81:4e:d0:e5:9f:32:71:58:ce:35:26:1d:3c:c9:2e:39:ee:62: 61:5c:95:c5:b0:4b:6c:ca:6e:04:35:f1:93:9c:2c:c9:bc:1e: 0d:f7:4e:4c:27:a1:63:cc:e5:91:7f:72:71:c8:4f:f9:bb:09: 10:dc:48:ef:56:67:74:0c:06:e7:fe:20:f8:ec:e2:a8:d3:c6: 7e:91:2b:81:f5:31:62:ca:fb:61:9e:e0:ce:46:38:33:4f:3a: 73:c4:67:7e:a5:1f:63:5f:5c:9d:90:2c:5d:b9:a3:31:1f:bb: e4:eb:6b:7c:d4:a5:84:70:a8:9c:ab:e7:2a:3c:c7:6d:f0:24: bb:da:86:f9:7b:c1:f1:ee:08:fa:e6:4b:5f:69:63:24:c1:ac: 47:cf:46:09:c2:a6:19:3b:1a:e9:9d:ca:fb:3c:17:84:56:bc: 55:68:25:7d:5d:18:ce:07:5e:45:e5:62:20:3f:c2:b7:3e:ae: f6:53:87:a4:cf:f2:09:27:46:74:eb:9a:90:2f:0f:f4:53:ec: 13:de:0e:e2:a4:70:9a:ca:40:fd:09:97:34:e8:c1:da:2b:d2: 75:52:95:37 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUL/lRPnAVye6U2IpltWJVpk7Q3tgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yNTA2MDIwMTU5NDRaFw0yNjA2MDEwMjA0NDRaMDMxMTAvBgNV BAMTKDM1NUMzMTE4NTA3NUMwRjdDQjQ3MEVEQzg5NEI4RjA3NDcyMzIwMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDECd6RzTMnAAmh5pFxs+HGG4x+ pAzvr6PW1maiBoYWCJxnH8MP7LRokR5UKu4c45nBe9KXUaE8LX17bRy2cO77gC0G 6YDe7orG73PHVunJ4CGy6UEiQym2NiO6w535yhhufhW0Eg0CIuJCqKPYPE/BVLfu f1qbKqzlO+3o+XdOVUvazZanGlcEwIznTw8Zo5mem4dRSXesOHOQwLDJmocR2cSs mWL0pxjXJYRY/weKdHZcchVWfQtE6Rt17L2zLDcaQVV3E7G1kgfhal/AnaleWdHH tRMn9Ywz9GZfHKnO9FNA1brm/DF8NQnGF9SAaphN1HjpixiUXxWEnP1zTt4fAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUNVwxGFB1wPfLRw7ciUuPB0cjIDAwHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0M2UyZTY3LWExNzEtNGQ5ZS1h OTM1LTQwNjkwMmIxZTEzYi8wLzMyMzcyZTMxMzEzMTJlMzMzMjJlMzAyZjMxMzky ZDMyMzQyMDNkM2UyMDMyMzQzNTMzMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAUbbyAwDQYJKoZIhvcN AQELBQADggEBAMZfW16HHwNOlCkNy8T2tgsXNInnNN5Pq9+FqIQ+idgMfJDOg4FO 0OWfMnFYzjUmHTzJLjnuYmFclcWwS2zKbgQ18ZOcLMm8Hg33TkwnoWPM5ZF/cnHI T/m7CRDcSO9WZ3QMBuf+IPjs4qjTxn6RK4H1MWLK+2Ge4M5GODNPOnPEZ36lH2Nf XJ2QLF25ozEfu+Tra3zUpYRwqJyr5yo8x23wJLvahvl7wfHuCPrmS19pYyTBrEfP RgnCphk7Gumdyvs8F4RWvFVoJX1dGM4HXkXlYiA/wrc+rvZTh6TP8gknRnTrmpAv D/RT7BPeDuKkcJrKQP0JlzTowdor0nVSlTc= -----END CERTIFICATE-----Generated at Tue Nov 4 23:14:45 2025 by rpki-client