$ rpki-client -vvf repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232362e302f32332d3233203d3e203435373033.roa File: 3230332e3131342e3232362e302f32332d3233203d3e203435373033.roa (raw, json) Hash identifier: UNWcrqMVPII2nZgBgi4GoZC81KPxNlA5wkzFAvBkC14= Subject key identifier: 27:69:75:FF:1D:BE:B9:F4:75:E2:18:1C:9F:2B:0D:CA:F8:FA:42:44 Certificate issuer: /CN=B7959E04EF090801395CE53E099D09F7AF2EF81B Certificate serial: 29F42A4907840F8F7FC9A2B9450A520F96C89F6D Authority key identifier: B7:95:9E:04:EF:09:08:01:39:5C:E5:3E:09:9D:09:F7:AF:2E:F8:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232362e302f32332d3233203d3e203435373033.roa Signing time: Fri 14 Jun 2024 04:00:00 +0000 ROA not before: Fri 14 Jun 2024 03:55:00 +0000 ROA not after: Fri 13 Jun 2025 04:00:00 +0000 asID: 45703 IP address blocks: 203.114.226.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.crl rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Mar 2025 21:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:f4:2a:49:07:84:0f:8f:7f:c9:a2:b9:45:0a:52:0f:96:c8:9f:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7959E04EF090801395CE53E099D09F7AF2EF81B Validity Not Before: Jun 14 03:55:00 2024 GMT Not After : Jun 13 04:00:00 2025 GMT Subject: CN=276975FF1DBEB9F475E2181C9F2B0DCAF8FA4244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:52:8c:49:99:04:2c:62:0e:d9:4e:cc:65:66: a7:89:f7:c1:9a:d5:63:4c:16:3e:99:a1:e3:87:85: 0d:f2:91:43:62:98:81:f7:eb:16:ac:6e:f1:7e:dd: 8b:f7:7d:42:53:56:13:33:8c:d5:0d:77:6a:e9:e1: e1:5d:68:50:31:51:08:74:bb:24:ee:b4:10:03:59: c5:9e:e6:56:c0:51:b4:09:51:af:42:07:d0:ce:04: 85:67:f3:00:4b:51:1c:78:56:de:dc:14:f5:b5:0f: 42:fd:5c:14:16:e1:54:e2:9b:9d:f8:8c:30:6f:40: a0:7a:09:cf:bb:8b:2b:1c:03:b3:32:ae:73:38:2d: 82:b5:97:8a:9d:a7:ad:c6:ba:3c:30:ef:ea:43:9a: 64:39:34:09:a5:cb:e3:b9:99:20:09:27:df:32:43: c8:f9:1c:07:05:2b:73:a0:34:a1:fe:4e:23:bc:c0: 5b:08:63:3d:43:79:43:81:aa:bf:47:73:e5:ac:1f: 21:98:b4:21:6a:40:b1:37:fd:c8:3c:e3:a6:c1:dc: 21:58:95:eb:cc:6d:a2:fe:aa:62:12:3d:b6:a0:87: 65:59:cd:1b:74:17:6d:93:7c:16:fa:87:36:e7:9b: 31:5c:7c:46:1d:3b:70:ae:1c:96:bd:ab:71:e5:81: f3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:69:75:FF:1D:BE:B9:F4:75:E2:18:1C:9F:2B:0D:CA:F8:FA:42:44 X509v3 Authority Key Identifier: keyid:B7:95:9E:04:EF:09:08:01:39:5C:E5:3E:09:9D:09:F7:AF:2E:F8:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232362e302f32332d3233203d3e203435373033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.114.226.0/23 Signature Algorithm: sha256WithRSAEncryption c0:ac:3a:cd:ca:87:29:1c:90:bf:6d:ad:8b:04:a0:c4:16:a4: 8c:df:d1:cc:63:3d:39:93:d2:4b:31:8c:6c:c6:b9:83:fc:d4: dc:af:c1:7b:9b:5f:40:67:7e:d7:3b:05:64:ea:e5:f8:6f:86: f6:c8:f8:e6:89:fe:24:65:42:59:25:f0:a9:52:c9:35:3b:00: 72:59:bf:cf:d6:b6:80:60:26:1b:f6:a3:a2:ee:42:37:3e:ca: e0:f7:b1:67:02:fe:63:f3:f5:47:36:a5:bd:78:c3:df:23:ee: 3e:00:0e:0a:c2:f3:db:76:37:e9:5c:92:a5:3e:c1:d8:15:49: ed:ca:c1:3f:6b:02:18:ce:2d:89:e1:8d:db:c7:22:e1:16:a3: 66:c4:5d:dd:4e:66:c5:6c:e0:66:a0:c9:5e:b7:0d:1e:0d:c5: 92:ee:ad:fe:4c:d8:07:d4:f8:c3:ad:81:a3:a6:ee:b8:91:76: b9:92:47:dd:29:ce:9a:20:fc:66:fa:e0:02:d5:71:af:b4:9f: 30:aa:c1:48:79:68:5f:ab:a3:8d:58:f4:e0:50:02:be:72:1d: 2c:5b:a2:28:ad:12:bf:94:e9:a2:ef:f8:e6:d7:3f:c4:54:f2: ce:bc:e9:ee:20:4d:6c:3c:9e:cb:a6:52:f6:be:2e:e4:41:8c: 4a:3c:71:ca -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKfQqSQeED49/yaK5RQpSD5bIn20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc5NTlFMDRFRjA5MDgwMTM5NUNFNTNFMDk5RDA5RjdB RjJFRjgxQjAeFw0yNDA2MTQwMzU1MDBaFw0yNTA2MTMwNDAwMDBaMDMxMTAvBgNV BAMTKDI3Njk3NUZGMURCRUI5RjQ3NUUyMTgxQzlGMkIwRENBRjhGQTQyNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7UoxJmQQsYg7ZTsxlZqeJ98Ga 1WNMFj6ZoeOHhQ3ykUNimIH36xasbvF+3Yv3fUJTVhMzjNUNd2rp4eFdaFAxUQh0 uyTutBADWcWe5lbAUbQJUa9CB9DOBIVn8wBLURx4Vt7cFPW1D0L9XBQW4VTim534 jDBvQKB6Cc+7iyscA7MyrnM4LYK1l4qdp63Gujww7+pDmmQ5NAmly+O5mSAJJ98y Q8j5HAcFK3OgNKH+TiO8wFsIYz1DeUOBqr9Hc+WsHyGYtCFqQLE3/cg846bB3CFY levMbaL+qmISPbagh2VZzRt0F22TfBb6hzbnmzFcfEYdO3CuHJa9q3HlgfPZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJ2l1/x2+ufR14hgcnysNyvj6QkQwHwYDVR0j BBgwFoAUt5WeBO8JCAE5XOU+CZ0J968u+BswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDYzYWU3Yy1hNmZmLTRmZDgtOTZmMi0wYmExODgwMTMzYzcvMC9CNzk1OUUwNEVG MDkwODAxMzk1Q0U1M0UwOTlEMDlGN0FGMkVGODFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjc5NTlFMDRFRjA5MDgwMTM5NUNFNTNFMDk5RDA5RjdBRjJF RjgxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NjNhZTdjLWE2ZmYtNGZkOC05 NmYyLTBiYTE4ODAxMzNjNy8wLzMyMzAzMzJlMzEzMTM0MmUzMjMyMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNDM1MzczMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy3LiMA0GCSqG SIb3DQEBCwUAA4IBAQDArDrNyocpHJC/ba2LBKDEFqSM39HMYz05k9JLMYxsxrmD /NTcr8F7m19AZ37XOwVk6uX4b4b2yPjmif4kZUJZJfCpUsk1OwByWb/P1raAYCYb 9qOi7kI3Psrg97FnAv5j8/VHNqW9eMPfI+4+AA4KwvPbdjfpXJKlPsHYFUntysE/ awIYzi2J4Y3bxyLhFqNmxF3dTmbFbOBmoMletw0eDcWS7q3+TNgH1PjDrYGjpu64 kXa5kkfdKc6aIPxm+uAC1XGvtJ8wqsFIeWhfq6ONWPTgUAK+ch0sW6IorRK/lOmi 7/jm1z/EVPLOvOnuIE1sPJ7LplL2vi7kQYxKPHHK -----END CERTIFICATE-----Generated at Fri Mar 14 00:04:44 2025 by rpki-client