$ rpki-client -vvf repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/3132332e3137362e3132322e302f32332d3234203d3e20313336313036.roa File: 3132332e3137362e3132322e302f32332d3234203d3e20313336313036.roa (raw, json) Hash identifier: Qqydprq+T6tGx6UbkdFBKhUoMWw1XVLFLpfXK4/VaNc= Subject key identifier: 4E:60:97:79:2F:9A:FE:FF:E3:C7:86:57:21:E4:E5:8E:67:31:DE:55 Certificate issuer: /CN=55FE929F3DF18E4B5BC4309769AA6C72AFF634CC Certificate serial: 086ADEAFD08EE8478B1C3E5AD6EC974EDF0A44F3 Authority key identifier: 55:FE:92:9F:3D:F1:8E:4B:5B:C4:30:97:69:AA:6C:72:AF:F6:34:CC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/3132332e3137362e3132322e302f32332d3234203d3e20313336313036.roa Signing time: Wed 16 Apr 2025 09:02:24 +0000 ROA not before: Wed 16 Apr 2025 08:57:24 +0000 ROA not after: Wed 15 Apr 2026 09:02:24 +0000 asID: 136106 IP address blocks: 123.176.122.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.crl rsync://repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 06:24:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:6a:de:af:d0:8e:e8:47:8b:1c:3e:5a:d6:ec:97:4e:df:0a:44:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=55FE929F3DF18E4B5BC4309769AA6C72AFF634CC Validity Not Before: Apr 16 08:57:24 2025 GMT Not After : Apr 15 09:02:24 2026 GMT Subject: CN=4E6097792F9AFEFFE3C7865721E4E58E6731DE55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:42:91:b5:d8:03:26:99:97:34:f4:4e:f2:f4: 48:1d:d1:7d:65:50:9c:a8:c1:b4:ba:bd:04:0e:e0: 26:f2:f7:ac:80:18:3e:38:ce:12:f2:42:33:60:c6: 00:60:97:c5:d2:9a:63:e5:75:8c:af:2f:69:a8:81: ae:fc:5d:14:87:c4:85:b5:19:d2:8f:c0:80:45:3e: 28:33:37:df:fe:18:26:0b:92:db:61:7e:22:ba:cd: 15:e3:ba:57:c2:94:00:9d:2a:c1:5a:e0:37:aa:2b: 23:e1:43:89:86:88:b4:bc:1f:4c:51:b3:9e:5d:2d: 53:40:57:fd:4b:71:70:bf:bb:ca:70:b2:81:1f:20: cb:58:4f:6d:2e:bc:98:91:01:97:bf:87:d6:01:bf: 05:70:20:cf:b0:77:f4:d1:25:7d:15:84:cc:e4:b5: 91:8e:99:3f:8f:70:0a:0c:44:bf:63:03:08:71:26: 05:f6:74:f2:66:b9:b4:c6:ec:2a:1e:52:d1:b6:84: fd:76:1e:24:51:55:6f:26:e2:4a:7a:02:27:8c:f7: 8b:06:a5:08:3e:14:fd:e3:cf:3e:d3:8f:c3:ac:b3: e3:34:e7:25:fa:b1:a6:fc:e3:7d:e1:d4:df:1a:e0: 55:d4:e9:78:c0:2a:0b:a2:48:65:b4:ea:57:6a:01: f4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:60:97:79:2F:9A:FE:FF:E3:C7:86:57:21:E4:E5:8E:67:31:DE:55 X509v3 Authority Key Identifier: keyid:55:FE:92:9F:3D:F1:8E:4B:5B:C4:30:97:69:AA:6C:72:AF:F6:34:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/3132332e3137362e3132322e302f32332d3234203d3e20313336313036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.176.122.0/23 Signature Algorithm: sha256WithRSAEncryption ba:7a:63:59:15:95:0e:bc:97:8d:8e:cc:2d:f1:fd:b7:39:0b: 66:1c:1e:48:0b:0e:9e:67:ca:f5:0c:93:39:d0:24:b4:12:77: 22:74:26:f7:94:d0:dc:ed:12:99:37:c0:66:34:fd:85:c2:6f: 88:8d:c4:e1:87:ab:f2:91:f9:13:25:68:3f:de:77:30:c5:43: c1:89:c2:44:5d:2f:29:9c:4b:d6:d2:a1:0d:9e:bc:0b:e0:fd: 94:a4:54:9c:89:44:78:fb:d9:80:7f:e4:63:bb:f5:52:51:33: f4:aa:eb:d4:73:16:04:04:e2:88:f0:6f:5f:a3:67:f7:6a:8a: e9:cd:6e:c5:13:07:cc:6d:5f:66:75:aa:c0:c7:89:1c:e0:8f: 33:a1:29:f8:8b:61:12:50:78:a1:ea:40:25:0c:06:c2:15:c0: 48:0d:19:ac:65:1b:d2:fe:ec:ec:1f:4b:3d:1b:43:e4:06:72: 90:e3:57:25:b7:7f:57:13:f7:79:3a:b9:45:36:e0:d7:67:0e: 91:5e:28:fa:31:a5:f4:1c:aa:7e:02:6c:2b:d8:da:e1:ee:9b: 91:c8:42:af:38:96:94:af:8b:7f:89:01:84:b2:9e:8e:b1:94: 2d:4b:e3:b7:5a:0d:fc:0d:81:2c:8f:dd:fd:61:75:dd:9d:dc: 4c:31:5a:ea -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCGrer9CO6EeLHD5a1uyXTt8KRPMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTVGRTkyOUYzREYxOEU0QjVCQzQzMDk3NjlBQTZDNzJB RkY2MzRDQzAeFw0yNTA0MTYwODU3MjRaFw0yNjA0MTUwOTAyMjRaMDMxMTAvBgNV BAMTKDRFNjA5Nzc5MkY5QUZFRkZFM0M3ODY1NzIxRTRFNThFNjczMURFNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuQpG12AMmmZc09E7y9Egd0X1l UJyowbS6vQQO4Cby96yAGD44zhLyQjNgxgBgl8XSmmPldYyvL2moga78XRSHxIW1 GdKPwIBFPigzN9/+GCYLktthfiK6zRXjulfClACdKsFa4DeqKyPhQ4mGiLS8H0xR s55dLVNAV/1LcXC/u8pwsoEfIMtYT20uvJiRAZe/h9YBvwVwIM+wd/TRJX0VhMzk tZGOmT+PcAoMRL9jAwhxJgX2dPJmubTG7CoeUtG2hP12HiRRVW8m4kp6AieM94sG pQg+FP3jzz7Tj8Oss+M05yX6sab8433h1N8a4FXU6XjAKguiSGW06ldqAfT3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTmCXeS+a/v/jx4ZXIeTljmcx3lUwHwYDVR0j BBgwFoAUVf6Snz3xjktbxDCXaapscq/2NMwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Yzk3NmVjNS1iMDVhLTQ4MGYtODZkYS1kNTU3Zjg0YTIzNjQvMC81NUZFOTI5RjNE RjE4RTRCNUJDNDMwOTc2OUFBNkM3MkFGRjYzNENDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTVGRTkyOUYzREYxOEU0QjVCQzQzMDk3NjlBQTZDNzJBRkY2 MzRDQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjOTc2ZWM1LWIwNWEtNDgwZi04 NmRhLWQ1NTdmODRhMjM2NC8wLzMxMzIzMzJlMzEzNzM2MmUzMTMyMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzYzMTMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF7sHowDQYJ KoZIhvcNAQELBQADggEBALp6Y1kVlQ68l42OzC3x/bc5C2YcHkgLDp5nyvUMkznQ JLQSdyJ0JveU0NztEpk3wGY0/YXCb4iNxOGHq/KR+RMlaD/edzDFQ8GJwkRdLymc S9bSoQ2evAvg/ZSkVJyJRHj72YB/5GO79VJRM/Sq69RzFgQE4ojwb1+jZ/dqiunN bsUTB8xtX2Z1qsDHiRzgjzOhKfiLYRJQeKHqQCUMBsIVwEgNGaxlG9L+7OwfSz0b Q+QGcpDjVyW3f1cT93k6uUU24NdnDpFeKPoxpfQcqn4CbCvY2uHum5HIQq84lpSv i3+JAYSyno6xlC1L47daDfwNgSyP3f1hdd2d3EwxWuo= -----END CERTIFICATE-----Generated at Sat Apr 26 20:23:05 2025 by rpki-client