$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32302e302f32342d3234203d3e20313431363733.roa File: 3230322e35372e32302e302f32342d3234203d3e20313431363733.roa (raw, json) Hash identifier: RIaxQt2BdMly6jZqFEt6v4+R9ZCRoPt0bRRhz87aHRQ= Subject key identifier: 17:84:E0:4A:ED:62:E0:88:2A:57:E5:32:4C:BD:D6:F5:35:73:D7:FC Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Certificate serial: 3AEDEBC8F5EB6B1305572D7899DBCDFB37B6AF5D Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32302e302f32342d3234203d3e20313431363733.roa Signing time: Sun 08 Dec 2024 03:00:01 +0000 ROA not before: Sun 08 Dec 2024 02:55:01 +0000 ROA not after: Sun 07 Dec 2025 03:00:01 +0000 asID: 141673 IP address blocks: 202.57.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:52:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:ed:eb:c8:f5:eb:6b:13:05:57:2d:78:99:db:cd:fb:37:b6:af:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Validity Not Before: Dec 8 02:55:01 2024 GMT Not After : Dec 7 03:00:01 2025 GMT Subject: CN=1784E04AED62E0882A57E5324CBDD6F53573D7FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:da:d2:41:79:6a:16:93:a7:a5:6b:15:e3:d2: 8c:5b:99:14:6f:0e:f6:2d:e6:47:2f:87:7f:59:1c: 03:eb:81:69:2c:27:95:2d:7b:37:0e:f2:4d:a8:7c: 11:f7:de:93:91:0d:89:96:27:65:92:1b:f7:97:f9: e1:89:a5:5d:5a:87:d3:0e:0f:77:89:d6:b4:ff:b1: d8:13:bb:4e:e8:69:25:1f:82:db:2e:f2:c3:f3:7a: fc:5e:6c:3f:81:5e:7d:6a:f8:53:47:9d:1d:61:81: e3:eb:c5:df:63:5d:0f:0f:0d:28:76:04:d7:60:96: 98:7e:6c:2a:db:14:60:b8:a5:56:25:19:a7:8a:0a: ab:7f:4d:3b:75:6e:29:16:82:1d:dd:7f:54:c7:4f: 20:59:a1:30:5c:7b:0b:15:90:3d:14:41:ba:a2:47: 0e:95:0f:6a:c3:57:7a:69:2c:15:6e:e3:4d:ff:19: a3:cd:ca:5a:83:b2:38:ec:ac:66:28:5a:b9:54:d3: fa:8c:e2:56:62:d4:72:56:37:61:26:14:71:36:67: b4:c4:2d:f3:ef:11:04:0f:7e:4f:14:5d:8a:60:7f: 59:04:94:ce:ea:4b:0c:8e:89:b4:39:da:bb:44:e2: 61:f4:12:11:ed:30:76:d8:e5:5d:e2:24:67:d8:0a: 53:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:84:E0:4A:ED:62:E0:88:2A:57:E5:32:4C:BD:D6:F5:35:73:D7:FC X509v3 Authority Key Identifier: keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32302e302f32342d3234203d3e20313431363733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.20.0/24 Signature Algorithm: sha256WithRSAEncryption bc:e0:b4:ed:5f:f2:13:f4:c4:18:27:ec:94:17:27:44:a7:fb: 73:0d:54:c5:0f:58:ca:50:2c:39:b2:79:ee:99:8b:69:7d:45: 42:be:6b:d5:1b:e0:73:a4:ca:57:c7:51:26:33:51:7e:b4:a8: fb:74:6f:81:76:87:fc:2c:39:79:df:a6:34:5f:34:4d:42:71: 7f:49:ac:74:e0:98:93:c3:37:78:62:f8:34:4b:ec:6a:bc:81: e5:31:c6:4b:91:7f:c2:1e:f0:53:f6:2b:2b:2c:55:0c:5e:69: 8b:ee:26:e5:b8:61:c9:bb:11:3c:34:a5:0f:3d:a1:13:96:83: fd:22:cb:c7:bc:2c:0c:a6:2d:8d:c4:f8:a1:a0:c5:a2:a1:6f: 8e:1b:2c:30:04:cf:47:7f:f1:1f:18:09:d0:bc:60:9e:74:38: 65:2a:54:d7:8c:6b:8f:49:a5:14:dd:16:10:1e:79:92:cf:12: a0:61:87:39:ff:61:72:10:2f:ad:53:34:92:d3:1a:b0:8e:d7: 34:60:05:77:b3:7e:ca:f0:4f:b5:ac:44:37:07:e4:c0:91:f4: 86:52:bf:66:47:76:56:2e:f5:2e:17:66:3e:7d:c0:03:ea:be: 0c:b8:ef:42:77:06:8c:57:af:06:60:55:b1:f4:33:c6:d1:8a: d7:9d:a4:4a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOu3ryPXraxMFVy14mdvN+ze2r10wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3 Qjg1OUJENTAeFw0yNDEyMDgwMjU1MDFaFw0yNTEyMDcwMzAwMDFaMDMxMTAvBgNV BAMTKDE3ODRFMDRBRUQ2MkUwODgyQTU3RTUzMjRDQkRENkY1MzU3M0Q3RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU2tJBeWoWk6elaxXj0oxbmRRv DvYt5kcvh39ZHAPrgWksJ5UtezcO8k2ofBH33pORDYmWJ2WSG/eX+eGJpV1ah9MO D3eJ1rT/sdgTu07oaSUfgtsu8sPzevxebD+BXn1q+FNHnR1hgePrxd9jXQ8PDSh2 BNdglph+bCrbFGC4pVYlGaeKCqt/TTt1bikWgh3df1THTyBZoTBcewsVkD0UQbqi Rw6VD2rDV3ppLBVu403/GaPNylqDsjjsrGYoWrlU0/qM4lZi1HJWN2EmFHE2Z7TE LfPvEQQPfk8UXYpgf1kElM7qSwyOibQ52rtE4mH0EhHtMHbY5V3iJGfYClOTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUF4TgSu1i4IgqV+UyTL3W9TVz1/wwHwYDVR0j BBgwFoAUH5ae6bCDjSIVYRioiLgb8nuFm9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZDNmMDk1Yi03MTMwLTQxMjItYWYyNS03ZDJlN2ExMWIxYjEvMC8xRjk2OUVFOUIw ODM4RDIyMTU2MTE4QTg4OEI4MUJGMjdCODU5QkQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3Qjg1 OUJENS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkM2YwOTViLTcxMzAtNDEyMi1h ZjI1LTdkMmU3YTExYjFiMS8wLzMyMzAzMjJlMzUzNzJlMzIzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo5FDANBgkqhkiG 9w0BAQsFAAOCAQEAvOC07V/yE/TEGCfslBcnRKf7cw1UxQ9YylAsObJ57pmLaX1F Qr5r1Rvgc6TKV8dRJjNRfrSo+3RvgXaH/Cw5ed+mNF80TUJxf0msdOCYk8M3eGL4 NEvsaryB5THGS5F/wh7wU/YrKyxVDF5pi+4m5bhhybsRPDSlDz2hE5aD/SLLx7ws DKYtjcT4oaDFoqFvjhssMATPR3/xHxgJ0LxgnnQ4ZSpU14xrj0mlFN0WEB55ks8S oGGHOf9hchAvrVM0ktMasI7XNGAFd7N+yvBPtaxENwfkwJH0hlK/Zkd2Vi71Lhdm Pn3AA+q+DLjvQncGjFevBmBVsfQzxtGK152kSg== -----END CERTIFICATE-----Generated at Sun Apr 6 08:20:38 2025 by rpki-client