$ rpki-client -vvf repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e39302e302f32332d3234203d3e20313339343630.roa File: 3230332e3137332e39302e302f32332d3234203d3e20313339343630.roa (raw, json) Hash identifier: 23+gG2DOC+ur5eVWAZvoHWGDnxOhWjXAjjErKhmGrS4= Subject key identifier: 0D:3A:E6:95:68:7A:67:39:D5:F1:6A:19:46:5B:09:0B:0E:62:C6:B5 Certificate issuer: /CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Certificate serial: 25A86ACB7A694661C7F1FB3F1EB45CF366E4613F Authority key identifier: C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e39302e302f32332d3234203d3e20313339343630.roa Signing time: Fri 31 Jan 2025 07:00:00 +0000 ROA not before: Fri 31 Jan 2025 06:55:00 +0000 ROA not after: Fri 30 Jan 2026 07:00:00 +0000 asID: 139460 IP address blocks: 203.173.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 04:46:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:a8:6a:cb:7a:69:46:61:c7:f1:fb:3f:1e:b4:5c:f3:66:e4:61:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Validity Not Before: Jan 31 06:55:00 2025 GMT Not After : Jan 30 07:00:00 2026 GMT Subject: CN=0D3AE695687A6739D5F16A19465B090B0E62C6B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:be:84:0e:ad:a9:31:6f:85:a2:82:42:78:a4: 65:79:f1:78:8d:33:f8:e2:23:be:7c:59:75:54:d1: 6d:15:35:81:57:1c:75:7a:63:24:88:45:a0:42:08: 24:20:9d:8a:ab:61:74:a4:24:17:04:d2:72:0b:dc: 97:83:8c:61:7a:a7:6b:03:ec:59:19:e9:8f:75:b4: 5a:12:a2:b9:e4:e8:3c:72:fe:0e:3f:ca:91:f6:2b: 10:a5:78:b3:32:c1:ca:92:24:0a:ae:72:52:a8:dc: a6:fa:18:14:78:8a:c7:8b:13:e7:ed:ed:30:de:b8: 9f:36:6d:74:a0:32:8d:1e:a7:7a:81:13:90:01:5d: d3:5d:6f:3b:40:5e:c6:a8:c7:72:f4:a9:2b:1b:a1: 2c:7e:7f:10:6c:72:6c:b2:c3:7e:3f:00:fa:7c:ec: 45:98:86:b7:2d:82:cb:33:80:fb:09:db:24:b6:af: 2d:b1:87:09:2e:39:18:27:f1:f1:ea:00:ba:97:d6: cc:b4:f7:7b:b0:15:36:7c:a7:dd:20:7c:ef:78:62: 77:16:dc:68:b3:0b:e9:42:5f:44:ca:ca:5b:2d:90: de:b9:d8:76:b4:59:73:03:d2:6c:dc:32:9e:4b:f0: 85:9c:36:7b:0a:ad:dd:8f:c9:87:14:a5:35:7c:84: ac:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:3A:E6:95:68:7A:67:39:D5:F1:6A:19:46:5B:09:0B:0E:62:C6:B5 X509v3 Authority Key Identifier: keyid:C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e39302e302f32332d3234203d3e20313339343630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.173.90.0/23 Signature Algorithm: sha256WithRSAEncryption 93:ac:a9:43:22:3e:06:12:97:6d:e7:31:00:ac:ad:4d:c9:d0: bb:03:b0:b4:37:58:3f:7e:83:5d:b6:53:92:4e:77:23:e1:d0: ee:0a:cf:f8:8e:ec:71:21:19:7c:77:e9:d6:fb:0d:60:f6:4a: 0e:71:6f:31:2b:67:30:1a:cb:ac:d9:3e:29:18:61:b1:d0:13: 7b:46:63:5e:a2:b6:e0:ae:c7:18:11:50:6b:0b:5a:44:42:69: 1c:ab:ee:9a:9d:18:78:a7:1b:23:d7:2f:52:97:ae:82:ff:85: 80:0b:e9:a5:99:a4:cd:45:cc:9f:b4:75:10:17:38:1a:a7:cc: e3:1b:c7:1d:ed:40:21:a1:d6:b8:14:ea:07:84:05:36:92:15: 1c:03:35:c8:42:25:e7:cd:6b:35:88:d3:82:bb:ef:d2:a3:a2: 2c:6d:b2:26:b2:8a:ff:ca:12:6e:13:cc:e4:bc:71:56:fe:9f: 88:24:65:79:0d:35:eb:81:f2:54:da:b1:54:4e:03:9f:73:12: 29:ff:6d:96:b2:2f:bf:a1:2d:6c:05:53:76:40:40:67:04:75: 72:73:2c:92:f7:c2:04:d7:c0:2d:49:c6:b3:57:86:97:91:65: 0a:3a:4a:51:91:0c:53:d8:ea:0b:02:38:28:6e:93:64:5e:94: 86:8c:6b:bb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJahqy3ppRmHH8fs/HrRc82bkYT8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMz MUY4MDJFMTAeFw0yNTAxMzEwNjU1MDBaFw0yNjAxMzAwNzAwMDBaMDMxMTAvBgNV BAMTKDBEM0FFNjk1Njg3QTY3MzlENUYxNkExOTQ2NUIwOTBCMEU2MkM2QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDivoQOrakxb4WigkJ4pGV58XiN M/jiI758WXVU0W0VNYFXHHV6YySIRaBCCCQgnYqrYXSkJBcE0nIL3JeDjGF6p2sD 7FkZ6Y91tFoSornk6Dxy/g4/ypH2KxCleLMywcqSJAquclKo3Kb6GBR4iseLE+ft 7TDeuJ82bXSgMo0ep3qBE5ABXdNdbztAXsaox3L0qSsboSx+fxBscmyyw34/APp8 7EWYhrctgsszgPsJ2yS2ry2xhwkuORgn8fHqALqX1sy093uwFTZ8p90gfO94YncW 3GizC+lCX0TKylstkN652Ha0WXMD0mzcMp5L8IWcNnsKrd2PyYcUpTV8hKxfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDTrmlWh6ZznV8WoZRlsJCw5ixrUwHwYDVR0j BBgwFoAUyN1dhPr6v36vYrOw9ORaIzH4AuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTQ1Yjg2ZS0wODk1LTQ3NTktYTc3Yy1hMDZjZTE0ZTI0M2MvMC9DOERENUQ4NEZB RkFCRjdFQUY2MkIzQjBGNEU0NUEyMzMxRjgwMkUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMzMUY4 MDJFMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5NDViODZlLTA4OTUtNDc1OS1h NzdjLWEwNmNlMTRlMjQzYy8wLzMyMzAzMzJlMzEzNzMzMmUzOTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy61aMA0GCSqG SIb3DQEBCwUAA4IBAQCTrKlDIj4GEpdt5zEArK1NydC7A7C0N1g/foNdtlOSTncj 4dDuCs/4juxxIRl8d+nW+w1g9koOcW8xK2cwGsus2T4pGGGx0BN7RmNeorbgrscY EVBrC1pEQmkcq+6anRh4pxsj1y9Sl66C/4WAC+mlmaTNRcyftHUQFzgap8zjG8cd 7UAhoda4FOoHhAU2khUcAzXIQiXnzWs1iNOCu+/So6IsbbImsor/yhJuE8zkvHFW /p+IJGV5DTXrgfJU2rFUTgOfcxIp/22Wsi+/oS1sBVN2QEBnBHVycyyS98IE18At ScazV4aXkWUKOkpRkQxT2OoLAjgobpNkXpSGjGu7 -----END CERTIFICATE-----Generated at Thu Apr 10 05:07:18 2025 by rpki-client