$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32342d3234203d3e20313338313238.roa File: 3232332e3133302e32302e302f32342d3234203d3e20313338313238.roa (raw, json) Hash identifier: 0qgtJcGFp2PSnsHTLVJD3e7NXsCz70cPkWqnqoXUWi0= Subject key identifier: 44:2B:84:FF:CD:D7:CD:64:C0:81:3F:36:73:84:B3:93:FB:A4:67:D8 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 27B47B15E345238071526BE2C6D1333972B5CCF6 Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32342d3234203d3e20313338313238.roa Signing time: Wed 02 Apr 2025 03:00:47 +0000 ROA not before: Wed 02 Apr 2025 02:55:47 +0000 ROA not after: Wed 01 Apr 2026 03:00:47 +0000 asID: 138128 IP address blocks: 223.130.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:b4:7b:15:e3:45:23:80:71:52:6b:e2:c6:d1:33:39:72:b5:cc:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Apr 2 02:55:47 2025 GMT Not After : Apr 1 03:00:47 2026 GMT Subject: CN=442B84FFCDD7CD64C0813F367384B393FBA467D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4c:60:0e:1d:7d:3d:6f:e5:7e:8b:db:ef:c3: 16:3f:30:f4:ab:5f:87:91:7e:71:66:f0:e9:f0:4e: bb:95:ad:59:ad:9a:54:74:d3:07:65:a0:f4:f3:1c: 91:6b:4e:d2:e3:89:3b:da:4d:03:92:f9:00:37:69: 64:5f:9a:72:f0:a2:b5:5d:c8:34:7d:2c:5e:eb:d1: 89:2c:86:46:a9:8c:15:56:bf:2d:d8:b3:be:fa:70: 3d:6e:92:46:9f:da:73:33:b4:55:18:c4:ca:d0:0b: 4a:ce:d1:48:d8:c8:cb:92:a1:a8:4e:3a:61:e3:e1: e9:9a:06:f0:f9:60:48:ed:c5:7e:3f:5c:62:18:4a: dc:64:c2:c3:ee:79:d8:f7:2a:b3:a2:b4:29:0f:0d: b4:df:f4:8e:44:43:26:e0:43:fc:f2:74:56:71:3e: 26:25:bb:1b:c0:f3:15:c9:e8:1f:f0:28:26:9d:87: 72:4b:e1:ed:3a:51:ec:20:37:f0:94:1e:43:87:be: 4b:0d:de:5e:53:29:1f:76:82:a5:14:34:58:03:c7: 7e:ee:eb:89:1e:5c:2f:fb:db:32:52:a9:7a:4b:2d: 6a:4b:96:49:f7:88:79:3b:c3:fb:10:ea:69:81:93: 9a:ba:37:b1:9d:77:9d:1b:08:9c:01:08:dd:65:e5: 1b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:2B:84:FF:CD:D7:CD:64:C0:81:3F:36:73:84:B3:93:FB:A4:67:D8 X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32342d3234203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.130.20.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:26:6a:66:b0:1a:49:31:6f:74:7e:23:c4:45:5f:f1:e6:0b: a8:85:32:ec:6d:92:0d:13:ca:ab:97:25:a9:61:6c:14:a0:f6: 59:f7:d7:04:ef:96:06:f8:3b:81:51:c7:67:af:4f:ce:dc:73: 85:ab:76:1e:ea:d8:7f:70:f5:9c:cb:c5:7e:2c:07:04:e9:1f: a2:e2:fc:f3:f1:db:42:3d:3d:73:9c:d7:d3:70:54:fb:8c:a2: 06:7d:fc:4a:f6:69:76:80:68:a3:8a:a5:be:2b:81:4f:15:cf: 32:d3:b8:66:f3:2d:be:d4:ee:49:84:f5:58:9c:2c:8c:f4:65: e6:33:c7:f9:05:8e:ad:01:c7:ff:d5:13:cf:74:c8:4c:1d:12: b5:b8:a2:0c:1a:23:4a:e2:ab:51:fb:c2:8f:0d:1a:78:8d:ae: ac:2d:d9:f4:94:c1:41:50:af:42:5d:f8:dd:71:f6:a1:46:e3: bc:b0:8d:88:98:5e:cf:22:8f:d9:5a:c1:39:aa:ad:5d:e9:f2: 60:f9:9d:c6:1a:b8:5c:98:68:0e:e5:2b:1a:e6:84:01:bd:fc: be:dd:2e:fa:b5:cd:2a:27:03:38:84:fe:10:b8:7d:95:ba:d2: 0e:5f:e4:5d:a5:14:ce:5f:c3:9a:5c:da:5f:ed:e4:75:3c:a9: e4:6a:84:f8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ7R7FeNFI4BxUmvixtEzOXK1zPYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNTA0MDIwMjU1NDdaFw0yNjA0MDEwMzAwNDdaMDMxMTAvBgNV BAMTKDQ0MkI4NEZGQ0REN0NENjRDMDgxM0YzNjczODRCMzkzRkJBNDY3RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7TGAOHX09b+V+i9vvwxY/MPSr X4eRfnFm8OnwTruVrVmtmlR00wdloPTzHJFrTtLjiTvaTQOS+QA3aWRfmnLworVd yDR9LF7r0YkshkapjBVWvy3Ys776cD1ukkaf2nMztFUYxMrQC0rO0UjYyMuSoahO OmHj4emaBvD5YEjtxX4/XGIYStxkwsPuedj3KrOitCkPDbTf9I5EQybgQ/zydFZx PiYluxvA8xXJ6B/wKCadh3JL4e06UewgN/CUHkOHvksN3l5TKR92gqUUNFgDx37u 64keXC/72zJSqXpLLWpLlkn3iHk7w/sQ6mmBk5q6N7Gdd50bCJwBCN1l5RvVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURCuE/83XzWTAgT82c4Szk/ukZ9gwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzIzMzJlMzEzMzMwMmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA34IUMA0GCSqG SIb3DQEBCwUAA4IBAQAtJmpmsBpJMW90fiPERV/x5guohTLsbZINE8qrlyWpYWwU oPZZ99cE75YG+DuBUcdnr0/O3HOFq3Ye6th/cPWcy8V+LAcE6R+i4vzz8dtCPT1z nNfTcFT7jKIGffxK9ml2gGijiqW+K4FPFc8y07hm8y2+1O5JhPVYnCyM9GXmM8f5 BY6tAcf/1RPPdMhMHRK1uKIMGiNK4qtR+8KPDRp4ja6sLdn0lMFBUK9CXfjdcfah RuO8sI2ImF7PIo/ZWsE5qq1d6fJg+Z3GGrhcmGgO5Ssa5oQBvfy+3S76tc0qJwM4 hP4QuH2VutIOX+RdpRTOX8OaXNpf7eR1PKnkaoT4 -----END CERTIFICATE-----Generated at Thu Apr 24 18:01:26 2025 by rpki-client on console.sobornost.net