$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e3136322e3230382e302f32302d3234203d3e2039333431.roa File: 3230322e3136322e3230382e302f32302d3234203d3e2039333431.roa (raw, json) Hash identifier: xhN89QW+FAhRvsMHtazJ5OsoEkBwklZJR/MXGweS/IM= Subject key identifier: 20:21:48:56:26:06:DE:99:44:A6:BE:0F:B8:B6:AC:68:84:0D:67:FB Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 7CD7F03C447B0E5FD33FCE00DFBE729C58E6F351 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e3136322e3230382e302f32302d3234203d3e2039333431.roa Signing time: Tue 25 Mar 2025 03:00:01 +0000 ROA not before: Tue 25 Mar 2025 02:55:01 +0000 ROA not after: Tue 24 Mar 2026 03:00:01 +0000 asID: 9341 IP address blocks: 202.162.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:d7:f0:3c:44:7b:0e:5f:d3:3f:ce:00:df:be:72:9c:58:e6:f3:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Mar 25 02:55:01 2025 GMT Not After : Mar 24 03:00:01 2026 GMT Subject: CN=202148562606DE9944A6BE0FB8B6AC68840D67FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:94:27:bc:c6:22:c9:ab:2f:3b:0b:2e:84:95: cb:da:8d:dd:6b:21:98:d3:ef:6e:8c:d3:ee:0a:ae: 30:65:63:43:a0:9b:0a:36:21:03:e0:36:4f:24:39: 62:4f:81:9e:85:be:5a:8d:6c:9b:46:3b:5f:a0:f1: e4:3e:c8:fd:2f:f3:98:10:dd:26:34:da:ff:51:aa: d2:7d:1e:d7:90:9c:77:94:5c:04:c2:d4:e7:f2:4b: 49:d1:1d:5a:30:94:db:a0:d3:9d:d7:65:91:6b:62: 5f:06:d8:bc:6a:14:e5:aa:05:d5:50:03:68:8a:1b: c8:14:08:28:8e:9e:b8:35:d3:fe:a1:0a:88:f1:48: d1:03:3d:00:ad:b8:9d:70:95:2d:26:0f:05:75:ca: 8f:f1:1c:df:39:a6:ec:c4:6f:c6:da:d5:b6:e2:db: ec:05:36:7b:18:0f:a0:50:66:d1:ff:92:88:f8:72: 05:95:b8:1c:19:a1:50:b6:92:41:5d:69:f3:e3:a3: 16:c6:e2:04:d8:09:cf:43:bc:81:7f:b5:a9:6f:f1: 33:98:44:35:61:09:c8:c8:3a:75:28:7f:f4:6c:98: 00:cf:35:c5:c8:50:32:1e:71:4e:e4:be:f4:18:d1: 0a:9a:a6:8a:3c:33:1c:87:e2:45:5b:3e:8a:a2:da: 4b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:21:48:56:26:06:DE:99:44:A6:BE:0F:B8:B6:AC:68:84:0D:67:FB X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e3136322e3230382e302f32302d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.208.0/20 Signature Algorithm: sha256WithRSAEncryption 00:cf:e4:b2:59:da:0e:8a:de:dd:ca:07:41:38:a7:d0:41:c3: bc:38:43:86:df:b5:3f:e2:79:9e:7c:a2:f2:be:de:74:9a:9a: aa:96:55:56:4b:7f:d0:bc:fb:fc:45:33:17:1e:55:c3:cb:63: 7b:e8:59:49:60:d8:08:15:8c:cb:e8:a7:5a:b1:d3:78:bf:56: 2a:ba:b2:a4:60:2d:47:5a:56:51:de:5f:46:54:17:ab:60:75: d7:e7:20:29:86:40:99:18:a4:d2:8c:3c:c4:1a:24:25:a1:99: 3c:81:fb:a3:42:f6:49:02:9f:36:c5:57:37:1d:2f:c2:af:4d: 4c:fa:f8:67:a2:4a:1d:ce:8e:cc:3d:f5:c5:4e:78:1c:02:41: 5c:0b:5c:1a:06:04:91:9c:60:c5:b8:7c:69:7f:3a:1c:fd:c1: 0a:02:f2:94:62:00:05:61:53:3f:31:69:cc:28:ea:47:b6:c3: 98:ae:20:1b:d4:ca:88:9d:e4:39:bc:b9:52:c2:2b:52:25:4e: 6d:5c:1a:07:d6:79:7a:bf:7d:e6:b9:82:f1:83:a9:85:8f:c0: 9d:19:07:54:0b:21:23:50:61:79:68:b6:39:3a:98:12:e9:5a: 28:57:ba:7f:0e:78:d0:a9:34:df:5d:87:4a:94:27:39:6d:a2: d5:f5:37:d9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfNfwPER7Dl/TP84A375ynFjm81EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNTAzMjUwMjU1MDFaFw0yNjAzMjQwMzAwMDFaMDMxMTAvBgNV BAMTKDIwMjE0ODU2MjYwNkRFOTk0NEE2QkUwRkI4QjZBQzY4ODQwRDY3RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnlCe8xiLJqy87Cy6Elcvajd1r IZjT726M0+4KrjBlY0Ogmwo2IQPgNk8kOWJPgZ6FvlqNbJtGO1+g8eQ+yP0v85gQ 3SY02v9RqtJ9HteQnHeUXATC1OfyS0nRHVowlNug053XZZFrYl8G2LxqFOWqBdVQ A2iKG8gUCCiOnrg10/6hCojxSNEDPQCtuJ1wlS0mDwV1yo/xHN85puzEb8ba1bbi 2+wFNnsYD6BQZtH/koj4cgWVuBwZoVC2kkFdafPjoxbG4gTYCc9DvIF/talv8TOY RDVhCcjIOnUof/RsmADPNcXIUDIecU7kvvQY0Qqapoo8MxyH4kVbPoqi2kuZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUICFIViYG3plEpr4PuLasaIQNZ/swHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzgyZTMwMmYz MjMwMmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMqi0DANBgkqhkiG 9w0BAQsFAAOCAQEAAM/kslnaDore3coHQTin0EHDvDhDht+1P+J5nnyi8r7edJqa qpZVVkt/0Lz7/EUzFx5Vw8tje+hZSWDYCBWMy+inWrHTeL9WKrqypGAtR1pWUd5f RlQXq2B11+cgKYZAmRik0ow8xBokJaGZPIH7o0L2SQKfNsVXNx0vwq9NTPr4Z6JK Hc6OzD31xU54HAJBXAtcGgYEkZxgxbh8aX86HP3BCgLylGIABWFTPzFpzCjqR7bD mK4gG9TKiJ3kOby5UsIrUiVObVwaB9Z5er995rmC8YOphY/AnRkHVAshI1BheWi2 OTqYEulaKFe6fw540Kk0312HSpQnOW2i1fU32Q== -----END CERTIFICATE-----Generated at Sat Apr 5 16:44:27 2025 by rpki-client