$ rpki-client -vvf repo-rpki.idnic.net/repo/07f8f6a4-8d87-4ef3-b4dc-52c25cb577c2/0/34322e36322e3137362e302f32342d3234203d3e203535363930.roa File: 34322e36322e3137362e302f32342d3234203d3e203535363930.roa (raw, json) Hash identifier: dHv2E74rvnbHn93zKNwQZCdDaqywUU0cyjyj8Kme6Kk= Subject key identifier: D2:17:0A:01:A2:3A:7A:92:E9:B1:A1:93:BA:3E:15:63:D2:8F:7C:56 Certificate issuer: /CN=A0DE21A035CF601BCBD9D5C98BD47DD95F993464 Certificate serial: 382BC17D4A96264FBCFFB3CA19E5F13E9D6EB76D Authority key identifier: A0:DE:21:A0:35:CF:60:1B:CB:D9:D5:C9:8B:D4:7D:D9:5F:99:34:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0DE21A035CF601BCBD9D5C98BD47DD95F993464.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07f8f6a4-8d87-4ef3-b4dc-52c25cb577c2/0/34322e36322e3137362e302f32342d3234203d3e203535363930.roa Signing time: Tue 11 Mar 2025 11:02:23 +0000 ROA not before: Tue 11 Mar 2025 10:57:23 +0000 ROA not after: Tue 10 Mar 2026 11:02:23 +0000 asID: 55690 IP address blocks: 42.62.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07f8f6a4-8d87-4ef3-b4dc-52c25cb577c2/0/A0DE21A035CF601BCBD9D5C98BD47DD95F993464.crl rsync://repo-rpki.idnic.net/repo/07f8f6a4-8d87-4ef3-b4dc-52c25cb577c2/0/A0DE21A035CF601BCBD9D5C98BD47DD95F993464.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0DE21A035CF601BCBD9D5C98BD47DD95F993464.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 03:16:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:2b:c1:7d:4a:96:26:4f:bc:ff:b3:ca:19:e5:f1:3e:9d:6e:b7:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0DE21A035CF601BCBD9D5C98BD47DD95F993464 Validity Not Before: Mar 11 10:57:23 2025 GMT Not After : Mar 10 11:02:23 2026 GMT Subject: CN=D2170A01A23A7A92E9B1A193BA3E1563D28F7C56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d4:b2:56:05:64:2a:c7:5c:6e:b6:ba:51:32: c1:22:27:f5:c8:c7:b2:f5:c1:65:8a:3f:54:1f:9a: 4f:c7:76:f7:8d:d1:12:74:da:a8:ee:25:34:96:81: 05:92:22:0e:de:b9:cb:25:57:15:f0:10:d4:4b:34: cd:d1:48:88:4f:cd:15:ef:a0:d8:df:f0:fa:70:2d: 97:bd:b1:92:8d:e3:20:2e:52:b3:22:13:5c:ad:28: 47:36:40:4b:67:2c:dd:25:12:53:9e:f4:a3:dc:61: c4:9e:aa:85:e5:23:07:6f:36:fe:14:49:78:64:1d: f5:fa:bb:21:93:56:16:e3:12:31:f0:1d:5b:42:c0: 0d:16:6d:e5:b3:0d:02:13:36:e7:90:c7:41:5e:68: 9a:bb:cc:0c:8a:db:95:01:b9:07:89:31:fa:b3:8a: ff:a7:d6:32:f3:64:df:bd:f3:30:2b:05:82:58:03: 14:e6:b2:47:f5:16:c8:12:dc:1c:7b:e8:cb:31:20: 9a:47:74:d8:8e:d9:e0:13:cd:b9:76:8a:ba:41:8e: c0:0e:4d:05:b4:ff:0b:cc:e5:03:36:95:f9:e6:9f: a3:1d:a5:b3:e8:b0:a2:a9:b7:d0:49:af:7c:66:34: 1a:76:b7:6b:83:44:e2:21:1f:27:3f:22:22:17:a4: 37:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:17:0A:01:A2:3A:7A:92:E9:B1:A1:93:BA:3E:15:63:D2:8F:7C:56 X509v3 Authority Key Identifier: keyid:A0:DE:21:A0:35:CF:60:1B:CB:D9:D5:C9:8B:D4:7D:D9:5F:99:34:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07f8f6a4-8d87-4ef3-b4dc-52c25cb577c2/0/A0DE21A035CF601BCBD9D5C98BD47DD95F993464.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0DE21A035CF601BCBD9D5C98BD47DD95F993464.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07f8f6a4-8d87-4ef3-b4dc-52c25cb577c2/0/34322e36322e3137362e302f32342d3234203d3e203535363930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 42.62.176.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:10:fc:11:e1:6d:15:0c:91:e9:89:43:21:cc:65:9d:67:37: 03:64:0f:0c:d1:1e:de:58:2d:42:23:79:48:48:a8:3f:d3:72: 14:7d:ed:bf:eb:99:b0:cc:27:fe:ab:2f:12:e2:53:ac:8b:0f: 97:dc:e8:56:e8:c9:64:70:e4:0f:0b:7e:4d:e4:d8:19:b5:f5: 69:cb:6c:28:91:98:32:71:29:2d:3d:ec:9b:52:3d:8d:84:4f: 28:74:35:6d:80:b6:3b:c7:3e:e5:16:bb:ca:b6:e4:c9:56:c7: 77:78:bf:5e:b5:9c:d1:b7:ea:c8:e4:d8:64:db:1a:50:0c:fa: ae:0d:fa:82:5f:eb:5e:e4:2a:98:05:aa:f6:69:7c:a0:45:9b: af:f7:0c:ef:3d:d3:bc:40:41:ab:54:11:13:a6:09:a1:c9:9d: 07:8b:02:45:19:68:3b:9f:94:00:b3:eb:e1:29:6a:62:5e:99: b1:5a:93:8e:b3:60:d4:0e:3f:f6:05:8a:73:73:65:6a:5d:8d: 5c:2e:e2:59:23:15:51:23:40:2f:61:46:26:1a:d0:cd:13:90: dc:11:ff:08:5e:db:f8:f7:ce:87:c0:fa:47:d7:f3:b4:bb:b6: 48:6f:7a:b3:25:6c:14:6e:d4:0b:cc:d1:6c:1d:70:b0:be:b3: 32:06:c2:3b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOCvBfUqWJk+8/7PKGeXxPp1ut20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBERTIxQTAzNUNGNjAxQkNCRDlENUM5OEJENDdERDk1 Rjk5MzQ2NDAeFw0yNTAzMTExMDU3MjNaFw0yNjAzMTAxMTAyMjNaMDMxMTAvBgNV BAMTKEQyMTcwQTAxQTIzQTdBOTJFOUIxQTE5M0JBM0UxNTYzRDI4RjdDNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh1LJWBWQqx1xutrpRMsEiJ/XI x7L1wWWKP1Qfmk/HdveN0RJ02qjuJTSWgQWSIg7eucslVxXwENRLNM3RSIhPzRXv oNjf8PpwLZe9sZKN4yAuUrMiE1ytKEc2QEtnLN0lElOe9KPcYcSeqoXlIwdvNv4U SXhkHfX6uyGTVhbjEjHwHVtCwA0WbeWzDQITNueQx0FeaJq7zAyK25UBuQeJMfqz iv+n1jLzZN+98zArBYJYAxTmskf1FsgS3Bx76MsxIJpHdNiO2eATzbl2irpBjsAO TQW0/wvM5QM2lfnmn6MdpbPosKKpt9BJr3xmNBp2t2uDROIhHyc/IiIXpDexAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU0hcKAaI6epLpsaGTuj4VY9KPfFYwHwYDVR0j BBgwFoAUoN4hoDXPYBvL2dXJi9R92V+ZNGQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w N2Y4ZjZhNC04ZDg3LTRlZjMtYjRkYy01MmMyNWNiNTc3YzIvMC9BMERFMjFBMDM1 Q0Y2MDFCQ0JEOUQ1Qzk4QkQ0N0REOTVGOTkzNDY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBERTIxQTAzNUNGNjAxQkNCRDlENUM5OEJENDdERDk1Rjk5 MzQ2NC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA3ZjhmNmE0LThkODctNGVmMy1i NGRjLTUyYzI1Y2I1NzdjMi8wLzM0MzIyZTM2MzIyZTMxMzczNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM5MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAqPrAwDQYJKoZIhvcN AQELBQADggEBAIwQ/BHhbRUMkemJQyHMZZ1nNwNkDwzRHt5YLUIjeUhIqD/TchR9 7b/rmbDMJ/6rLxLiU6yLD5fc6FboyWRw5A8Lfk3k2Bm19WnLbCiRmDJxKS097JtS PY2ETyh0NW2AtjvHPuUWu8q25MlWx3d4v161nNG36sjk2GTbGlAM+q4N+oJf617k KpgFqvZpfKBFm6/3DO8907xAQatUEROmCaHJnQeLAkUZaDuflACz6+EpamJembFa k46zYNQOP/YFinNzZWpdjVwu4lkjFVEjQC9hRiYa0M0TkNwR/whe2/j3zofA+kfX 87S7tkhverMlbBRu1AvM0WwdcLC+szIGwjs= -----END CERTIFICATE-----Generated at Sun Apr 6 18:12:06 2025 by rpki-client