$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32362e302f32332d3233203d3e20313430343639.roa File: 3230322e35372e32362e302f32332d3233203d3e20313430343639.roa (raw, json) Hash identifier: I2GxvF+hElG1yAh007aM/yMEViDm+JYfJmwRWj1ftM0= Subject key identifier: AB:01:2E:E3:86:48:6C:60:35:A2:56:BE:B4:E0:B0:AE:B1:74:9B:7F Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Certificate serial: 0B7F046C0C3279D6B6C5E56E9AB907A1A4AF980E Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32362e302f32332d3233203d3e20313430343639.roa Signing time: Tue 18 Feb 2025 06:00:01 +0000 ROA not before: Tue 18 Feb 2025 05:55:01 +0000 ROA not after: Tue 17 Feb 2026 06:00:01 +0000 asID: 140469 IP address blocks: 202.57.26.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 09:28:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:7f:04:6c:0c:32:79:d6:b6:c5:e5:6e:9a:b9:07:a1:a4:af:98:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Validity Not Before: Feb 18 05:55:01 2025 GMT Not After : Feb 17 06:00:01 2026 GMT Subject: CN=AB012EE386486C6035A256BEB4E0B0AEB1749B7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1c:f6:0b:77:a7:90:7a:f2:d0:5f:96:82:e2: 5c:d7:95:95:9b:18:30:38:c5:2a:35:d3:f1:86:96: 39:2d:16:e3:dc:83:35:04:6d:0e:87:98:e2:bc:42: 5d:43:0f:6b:ba:c6:da:c1:ab:f5:c7:d9:a1:7b:53: fe:c8:86:03:71:20:1c:45:2f:a2:9a:6f:b8:82:da: 6c:d2:88:f7:6c:0b:3c:ba:bc:9a:16:41:7a:2f:bc: da:d1:3e:dd:0e:fa:7c:11:dd:28:4e:67:82:63:ed: b5:ee:fd:ad:6e:4a:42:ea:92:80:2f:3c:d2:d7:4b: b5:3d:53:4c:3e:c7:7f:ec:ce:ab:53:32:be:dc:f6: 7f:55:58:75:24:d3:f6:e1:fd:b4:fa:66:87:be:ec: 5f:d3:5f:f4:4b:97:d8:e3:28:9c:57:c4:d4:ea:d9: 2a:09:98:53:e0:a0:3b:b2:cb:4b:e4:d9:fb:ea:af: f5:d2:94:f1:32:aa:42:0f:c8:6e:2a:84:7c:b2:49: e1:af:b0:d4:aa:46:72:08:56:f3:e0:8e:fd:44:df: fa:6d:ae:4c:f2:59:f4:81:77:a7:56:c3:77:eb:5c: be:c2:3a:b5:59:25:5b:a0:15:3e:c5:cf:5d:1d:21: e9:20:75:43:e4:d1:9f:99:87:ed:46:af:cb:d2:61: c2:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:01:2E:E3:86:48:6C:60:35:A2:56:BE:B4:E0:B0:AE:B1:74:9B:7F X509v3 Authority Key Identifier: keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32362e302f32332d3233203d3e20313430343639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.26.0/23 Signature Algorithm: sha256WithRSAEncryption 21:83:3a:b5:78:fa:ed:4a:e9:54:18:ea:63:0f:65:d4:f2:20: 11:f1:4e:0e:a7:82:d8:2f:a6:3b:fe:6a:13:96:cc:ae:c4:f8: 46:b4:47:93:be:6f:d4:de:71:35:42:6e:77:42:f2:c3:71:4f: 67:ad:b3:75:b7:7c:1a:a3:68:70:30:18:02:fb:9c:a2:a6:a6: c2:c6:be:6b:08:98:04:cf:1f:fa:63:b0:d7:af:24:b3:c6:4b: 9d:f4:e0:9a:64:22:16:45:5d:8d:73:46:39:af:6e:c4:8c:94: 20:98:ac:59:b3:54:d7:99:b7:6e:eb:c0:d1:4d:2d:92:ff:28: 45:12:f2:d4:f3:9c:d0:d4:ec:ed:16:4d:97:ce:18:15:24:cc: b2:64:92:f3:6f:a0:dd:f6:51:65:11:2f:ba:a9:b9:92:6a:c2: 4f:01:36:78:25:a0:3a:28:e6:d4:07:44:42:3e:9a:18:1b:b3: d2:92:c4:96:7d:88:aa:ad:76:9f:4e:82:6a:84:89:d6:2e:d7: f4:92:9d:19:73:7c:4c:e8:ab:27:d2:69:6f:a9:08:e0:60:5e: 7d:5b:10:11:d8:ff:49:d2:a8:c9:5e:66:55:f4:05:66:ec:db: 10:5a:7d:f1:50:4f:82:a6:2b:a8:bd:f1:f5:91:bf:c6:0d:f9: 2d:18:bf:a0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUC38EbAwyeda2xeVumrkHoaSvmA4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3 Qjg1OUJENTAeFw0yNTAyMTgwNTU1MDFaFw0yNjAyMTcwNjAwMDFaMDMxMTAvBgNV BAMTKEFCMDEyRUUzODY0ODZDNjAzNUEyNTZCRUI0RTBCMEFFQjE3NDlCN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAHPYLd6eQevLQX5aC4lzXlZWb GDA4xSo10/GGljktFuPcgzUEbQ6HmOK8Ql1DD2u6xtrBq/XH2aF7U/7IhgNxIBxF L6Kab7iC2mzSiPdsCzy6vJoWQXovvNrRPt0O+nwR3ShOZ4Jj7bXu/a1uSkLqkoAv PNLXS7U9U0w+x3/szqtTMr7c9n9VWHUk0/bh/bT6Zoe+7F/TX/RLl9jjKJxXxNTq 2SoJmFPgoDuyy0vk2fvqr/XSlPEyqkIPyG4qhHyySeGvsNSqRnIIVvPgjv1E3/pt rkzyWfSBd6dWw3frXL7COrVZJVugFT7Fz10dIekgdUPk0Z+Zh+1Gr8vSYcLRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqwEu44ZIbGA1ola+tOCwrrF0m38wHwYDVR0j BBgwFoAUH5ae6bCDjSIVYRioiLgb8nuFm9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZDNmMDk1Yi03MTMwLTQxMjItYWYyNS03ZDJlN2ExMWIxYjEvMC8xRjk2OUVFOUIw ODM4RDIyMTU2MTE4QTg4OEI4MUJGMjdCODU5QkQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3Qjg1 OUJENS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkM2YwOTViLTcxMzAtNDEyMi1h ZjI1LTdkMmU3YTExYjFiMS8wLzMyMzAzMjJlMzUzNzJlMzIzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzQzMDM0MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAco5GjANBgkqhkiG 9w0BAQsFAAOCAQEAIYM6tXj67UrpVBjqYw9l1PIgEfFODqeC2C+mO/5qE5bMrsT4 RrRHk75v1N5xNUJud0Lyw3FPZ62zdbd8GqNocDAYAvucoqamwsa+awiYBM8f+mOw 168ks8ZLnfTgmmQiFkVdjXNGOa9uxIyUIJisWbNU15m3buvA0U0tkv8oRRLy1POc 0NTs7RZNl84YFSTMsmSS82+g3fZRZREvuqm5kmrCTwE2eCWgOijm1AdEQj6aGBuz 0pLEln2Iqq12n06CaoSJ1i7X9JKdGXN8TOirJ9Jpb6kI4GBefVsQEdj/SdKoyV5m VfQFZuzbEFp98VBPgqYrqL3x9ZG/xg35LRi/oA== -----END CERTIFICATE-----Generated at Sun Apr 6 13:24:14 2025 by rpki-client