$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e322e302f32342d3234203d3e203338373533.roa File: 32372e3133312e322e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: wshumI9mgN3UjxRKMrKs4BHGeNuO8tLyPjhhR2o9cBA= Subject key identifier: 9E:70:C3:FF:3D:39:82:93:C6:1B:52:E0:71:88:22:54:44:78:5A:2C Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 23D9FFB1A59021F17969BC1CB2D21FC32EB0ABB4 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e322e302f32342d3234203d3e203338373533.roa Signing time: Tue 05 Aug 2025 07:01:10 +0000 ROA not before: Tue 05 Aug 2025 06:56:10 +0000 ROA not after: Tue 04 Aug 2026 07:01:10 +0000 asID: 38753 IP address blocks: 27.131.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 14:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:d9:ff:b1:a5:90:21:f1:79:69:bc:1c:b2:d2:1f:c3:2e:b0:ab:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Aug 5 06:56:10 2025 GMT Not After : Aug 4 07:01:10 2026 GMT Subject: CN=9E70C3FF3D398293C61B52E07188225444785A2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3e:d9:53:5d:e4:43:05:dd:57:2b:64:61:ce: a2:b5:1b:d2:18:4d:a0:b8:dc:f4:1a:12:b9:82:2d: 7f:ce:21:d5:d7:52:6e:0a:c4:a1:0b:a5:da:2c:04: 83:dd:cc:f7:5b:c4:4b:cd:09:c2:a6:5d:52:4d:8e: 97:ec:de:06:86:46:f8:05:62:54:7f:b0:5e:0b:af: 3c:da:e5:e2:0b:46:fc:25:b5:82:7f:2a:7c:16:0b: 31:0e:c3:d9:da:25:f2:dc:09:84:dd:c7:88:43:8b: ec:7f:7b:5a:07:d2:ed:5f:39:63:00:3f:ab:9f:d7: 5d:c2:54:af:9c:00:1d:b1:4c:78:e2:3f:e7:b3:68: d9:4e:46:d2:c4:f1:03:bd:d0:c4:b5:90:f9:0c:e1: 3e:cb:f9:1e:9d:40:1c:3a:a9:71:3b:e3:e3:15:a9: 88:40:fa:b2:72:2a:74:77:8d:e8:07:95:b8:5e:09: 19:78:8c:36:d5:56:03:d8:98:d5:4f:76:10:88:9d: 97:b1:0d:78:67:ba:7c:e6:b4:e3:45:ae:e9:dc:8e: 35:56:c6:e1:21:14:5d:40:7e:a4:58:f5:62:9d:97: de:a3:d4:25:05:03:6a:9d:36:69:8f:20:b5:30:ba: cb:bb:f8:2e:b8:56:bb:60:33:3d:00:70:da:d4:28: b0:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:70:C3:FF:3D:39:82:93:C6:1B:52:E0:71:88:22:54:44:78:5A:2C X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e322e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.2.0/24 Signature Algorithm: sha256WithRSAEncryption 18:47:91:a3:ca:72:34:c9:3e:ce:89:9d:86:59:63:82:ff:8e: 46:8d:14:70:e0:d8:bb:2a:76:61:11:34:09:cd:78:21:19:9e: 11:03:74:71:40:eb:d6:28:92:74:20:93:43:3e:07:fc:8f:80: b6:80:a1:25:f6:4f:a1:59:81:e3:cf:5c:3d:a9:05:f3:38:24: 2f:1a:a0:79:da:20:37:a6:47:d9:d1:6d:c5:6f:43:ed:7a:5b: 39:41:b7:e2:72:77:22:9e:ba:78:36:97:6a:82:45:a8:d1:53: 61:c7:64:c8:2d:9e:ac:e0:93:ac:dc:a9:a9:49:47:b6:79:20: 1f:91:3b:0f:f2:d2:c8:08:dd:01:35:77:bf:02:b8:e3:b3:55: d3:8d:5b:50:d3:b2:a4:9e:38:10:32:47:40:10:ca:02:3f:81: 36:0f:89:aa:8f:b0:3a:16:4a:d3:aa:f3:db:ce:7a:e8:d1:88: fa:ee:44:3f:57:2e:43:02:ed:54:be:49:26:7b:88:69:64:ba: 91:b4:59:54:9e:db:fe:49:12:b1:34:1e:40:33:88:6f:2f:bf: 5c:2a:9f:c5:9c:86:c4:c6:a0:39:a5:a1:40:29:23:f8:b4:6e: 0c:b4:a4:99:3f:8c:83:c4:09:d3:00:21:fd:ad:0d:4b:b8:4b: 0f:34:95:6c -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUI9n/saWQIfF5abwcstIfwy6wq7QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTA4MDUwNjU2MTBaFw0yNjA4MDQwNzAxMTBaMDMxMTAvBgNV BAMTKDlFNzBDM0ZGM0QzOTgyOTNDNjFCNTJFMDcxODgyMjU0NDQ3ODVBMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKPtlTXeRDBd1XK2RhzqK1G9IY TaC43PQaErmCLX/OIdXXUm4KxKELpdosBIPdzPdbxEvNCcKmXVJNjpfs3gaGRvgF YlR/sF4Lrzza5eILRvwltYJ/KnwWCzEOw9naJfLcCYTdx4hDi+x/e1oH0u1fOWMA P6uf113CVK+cAB2xTHjiP+ezaNlORtLE8QO90MS1kPkM4T7L+R6dQBw6qXE74+MV qYhA+rJyKnR3jegHlbheCRl4jDbVVgPYmNVPdhCInZexDXhnunzmtONFruncjjVW xuEhFF1AfqRY9WKdl96j1CUFA2qdNmmPILUwusu7+C64VrtgMz0AcNrUKLDFAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUnnDD/z05gpPGG1LgcYgiVER4WiwwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzMjJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbgwIwDQYJKoZIhvcNAQEL BQADggEBABhHkaPKcjTJPs6JnYZZY4L/jkaNFHDg2LsqdmERNAnNeCEZnhEDdHFA 69YoknQgk0M+B/yPgLaAoSX2T6FZgePPXD2pBfM4JC8aoHnaIDemR9nRbcVvQ+16 WzlBt+JydyKeung2l2qCRajRU2HHZMgtnqzgk6zcqalJR7Z5IB+ROw/y0sgI3QE1 d78CuOOzVdONW1DTsqSeOBAyR0AQygI/gTYPiaqPsDoWStOq89vOeujRiPruRD9X LkMC7VS+SSZ7iGlkupG0WVSe2/5JErE0HkAziG8vv1wqn8WchsTGoDmloUApI/i0 bgy0pJk/jIPECdMAIf2tDUu4Sw80lWw= -----END CERTIFICATE-----Generated at Sat Aug 9 14:15:52 2025 by rpki-client