$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e35372e32322e302f32332d3234203d3e2039333431.roa File: 3230322e35372e32322e302f32332d3234203d3e2039333431.roa (raw, json) Hash identifier: cbdzoZu+hXc9zAhjoLtq+jBqNK3go8zaAoMoeR3HnX0= Subject key identifier: 8B:37:F9:92:61:8F:E8:70:CB:F0:64:EE:67:00:23:0D:4B:7D:2F:01 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 173290DEDE4ED4D2D88333A1A7F878346C83BB13 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e35372e32322e302f32332d3234203d3e2039333431.roa Signing time: Wed 02 Apr 2025 08:02:25 +0000 ROA not before: Wed 02 Apr 2025 07:57:25 +0000 ROA not after: Wed 01 Apr 2026 08:02:25 +0000 asID: 9341 IP address blocks: 202.57.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:32:90:de:de:4e:d4:d2:d8:83:33:a1:a7:f8:78:34:6c:83:bb:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Apr 2 07:57:25 2025 GMT Not After : Apr 1 08:02:25 2026 GMT Subject: CN=8B37F992618FE870CBF064EE6700230D4B7D2F01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a3:89:57:af:ea:82:83:b3:f5:93:20:ec:bc: 91:76:73:e7:b9:2f:60:53:9c:33:2e:0c:64:33:c1: 35:c7:81:82:7a:76:4a:f0:c9:88:f2:d8:52:1c:37: 53:43:b7:f2:bc:a3:14:2c:fc:82:a5:ca:ec:32:54: 6f:94:2c:12:2e:be:ac:1d:bc:a0:a0:fa:21:47:33: bb:af:a1:c6:8b:b0:85:b9:bf:18:14:b2:02:25:07: b2:a5:1f:a2:43:ac:81:72:76:58:50:82:40:72:c0: 69:63:09:b6:06:51:a1:ba:e9:39:9f:df:3e:c1:6f: 51:15:55:d0:99:4b:00:f7:8d:6c:dc:40:de:dc:fc: af:0d:06:e6:68:41:cb:fc:a7:fe:8e:75:9c:37:6a: 05:6c:ca:d8:c2:8e:64:eb:14:7e:de:fc:05:bb:7c: 06:6a:96:83:b6:62:42:91:bd:42:b0:b5:f6:c6:f1: 88:42:37:0e:9d:33:39:29:c4:f8:36:e3:e6:e4:76: a1:9f:0b:18:94:9c:a6:b8:a9:12:26:b9:32:cd:bb: 4e:fd:2b:c5:f9:35:81:19:3d:ee:dc:72:4f:77:94: 5e:28:5b:ca:55:55:f0:ff:25:62:21:41:4a:17:49: 16:8f:d4:ff:03:eb:eb:04:15:98:e7:93:1d:45:09: 4f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:37:F9:92:61:8F:E8:70:CB:F0:64:EE:67:00:23:0D:4B:7D:2F:01 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e35372e32322e302f32332d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.22.0/23 Signature Algorithm: sha256WithRSAEncryption 10:cf:a9:83:76:24:c7:24:b9:fc:14:2f:06:aa:e1:1d:02:9e: b9:e1:63:e6:a1:b8:cf:8a:72:40:3a:3f:eb:30:b2:a9:8b:3e: 04:4c:70:1e:b6:69:07:ae:ae:11:00:cb:ff:fc:e6:9e:d0:6d: 22:7c:5d:8b:14:90:b6:8e:c1:f4:b7:09:0f:ba:75:8a:77:44: f5:ec:55:ee:54:d1:aa:80:6d:75:19:8b:56:74:98:bc:01:70: e0:85:b5:4f:56:77:b3:80:5e:2b:cf:6b:86:94:6a:da:40:5c: 07:cb:c2:0e:58:a6:db:d8:74:1b:ee:7c:98:6a:9b:c4:41:77: a3:e8:08:e9:12:04:54:36:64:1e:9a:6a:ca:2e:e4:88:d6:31: c9:60:28:00:00:a3:8e:c4:9b:37:97:3e:40:2d:75:50:bb:bf: 74:a1:25:68:a0:b8:4b:43:71:eb:76:98:ec:b0:96:a6:e8:c8: 49:d7:fe:6c:d2:36:8a:44:1e:da:b9:32:6a:dd:35:e4:93:4c: 7d:b3:07:b3:7a:2a:7b:63:40:db:24:57:10:a3:2b:69:fa:7f: 46:e5:6a:4e:fc:52:b7:c9:38:b6:71:a0:3b:aa:85:40:3f:45: cd:fb:99:97:3b:23:1e:e1:d3:86:37:13:4b:ab:8b:07:cc:cf: 86:1f:ff:3d -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUFzKQ3t5O1NLYgzOhp/h4NGyDuxMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNTA0MDIwNzU3MjVaFw0yNjA0MDEwODAyMjVaMDMxMTAvBgNV BAMTKDhCMzdGOTkyNjE4RkU4NzBDQkYwNjRFRTY3MDAyMzBENEI3RDJGMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxo4lXr+qCg7P1kyDsvJF2c+e5 L2BTnDMuDGQzwTXHgYJ6dkrwyYjy2FIcN1NDt/K8oxQs/IKlyuwyVG+ULBIuvqwd vKCg+iFHM7uvocaLsIW5vxgUsgIlB7KlH6JDrIFydlhQgkBywGljCbYGUaG66Tmf 3z7Bb1EVVdCZSwD3jWzcQN7c/K8NBuZoQcv8p/6OdZw3agVsytjCjmTrFH7e/AW7 fAZqloO2YkKRvUKwtfbG8YhCNw6dMzkpxPg24+bkdqGfCxiUnKa4qRImuTLNu079 K8X5NYEZPe7cck93lF4oW8pVVfD/JWIhQUoXSRaP1P8D6+sEFZjnkx1FCU+PAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUizf5kmGP6HDL8GTuZwAjDUt9LwEwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzNiZGNiYWUtMmU5ZC00ZjNmLThh YjktMzQyNGU0NDg0ODRlLzAvMzIzMDMyMmUzNTM3MmUzMjMyMmUzMDJmMzIzMzJk MzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKORYwDQYJKoZIhvcNAQEL BQADggEBABDPqYN2JMckufwULwaq4R0CnrnhY+ahuM+KckA6P+swsqmLPgRMcB62 aQeurhEAy//85p7QbSJ8XYsUkLaOwfS3CQ+6dYp3RPXsVe5U0aqAbXUZi1Z0mLwB cOCFtU9Wd7OAXivPa4aUatpAXAfLwg5YptvYdBvufJhqm8RBd6PoCOkSBFQ2ZB6a asou5IjWMclgKAAAo47EmzeXPkAtdVC7v3ShJWiguEtDcet2mOywlqboyEnX/mzS NopEHtq5MmrdNeSTTH2zB7N6KntjQNskVxCjK2n6f0blak78UrfJOLZxoDuqhUA/ Rc37mZc7Ix7h04Y3E0uriwfMz4Yf/z0= -----END CERTIFICATE-----Generated at Sat Apr 5 16:42:34 2025 by rpki-client