$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234342e302f32342d3234203d3e203338313530.roa File: 3138302e3231342e3234342e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: t73bJSev/MnTBxda4w51EgtY3s6q8wQKW/7viVMLk2M= Subject key identifier: 51:09:15:B8:A8:94:92:42:78:9F:BE:1C:69:A9:85:8A:DE:50:72:EB Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 24D1712ADECC4F06F6D717DAD0512511DDB86857 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234342e302f32342d3234203d3e203338313530.roa Signing time: Mon 02 Jun 2025 02:02:34 +0000 ROA not before: Mon 02 Jun 2025 01:57:34 +0000 ROA not after: Mon 01 Jun 2026 02:02:34 +0000 asID: 38150 IP address blocks: 180.214.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:d1:71:2a:de:cc:4f:06:f6:d7:17:da:d0:51:25:11:dd:b8:68:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jun 2 01:57:34 2025 GMT Not After : Jun 1 02:02:34 2026 GMT Subject: CN=510915B8A8949242789FBE1C69A9858ADE5072EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:00:a9:5c:81:e2:d6:3f:24:a4:34:63:cb:89: 37:4f:f3:9f:06:04:9d:a7:c3:5e:2d:a1:af:56:41: 60:d9:b5:cf:b1:3c:89:63:bf:aa:8f:98:79:d1:c8: ac:d8:81:d4:a2:d6:62:25:f6:fb:c2:01:45:6b:03: d2:cd:a8:f6:f0:e1:5c:62:37:c3:3c:b5:f8:e3:18: 28:47:1a:a6:90:20:5d:f7:d9:88:2b:4b:dd:37:bf: 95:05:7e:13:54:c3:eb:2c:ff:05:ee:67:5a:79:a6: 08:2b:f3:63:5f:64:22:e1:b4:e2:10:c0:33:10:b5: 39:ad:fa:e7:e4:e4:58:43:2b:8a:a2:68:75:00:6c: 91:ef:a6:96:2b:af:15:3d:99:08:5f:35:b0:18:65: a3:91:22:21:3f:f7:87:97:c2:dd:2a:e7:1e:b8:62: 75:11:84:ee:24:f5:2e:b7:34:bd:8f:0f:2c:28:22: d0:5d:40:c6:9c:fb:36:52:39:f1:1d:95:d7:38:d4: 7b:30:4b:ba:73:71:7f:aa:e1:ac:15:ef:69:4e:8b: a8:57:1d:87:0b:92:cf:cf:ab:8b:a0:03:37:3f:04: 88:16:42:e8:b5:76:c4:5b:fb:67:33:70:4b:e9:71: 39:4c:2f:ba:b5:d0:37:31:f9:17:e5:69:dc:d9:97: e9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:09:15:B8:A8:94:92:42:78:9F:BE:1C:69:A9:85:8A:DE:50:72:EB X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234342e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.214.244.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:2c:c7:18:88:ac:63:c3:3c:a8:18:2c:8c:f4:48:5d:a4:7a: ec:2b:6d:89:ea:8f:89:b4:c3:19:50:18:18:1f:19:39:9e:f9: 50:13:44:7d:13:cd:96:7f:bb:34:5a:cc:f4:46:e0:75:6d:89: 88:4a:05:e4:9f:26:bb:23:3d:1c:1f:ad:00:ab:2e:9e:12:b6: dc:8d:76:c8:ea:be:30:ad:1f:7b:d2:58:7c:2e:ec:48:72:d9: 9c:03:76:a1:54:70:20:cd:4e:b3:12:48:b1:9f:c2:ce:5f:57: ec:b1:e2:95:de:9e:45:c9:07:42:c2:92:65:26:66:f3:2b:21: ef:82:99:0f:18:1b:8b:5b:a8:15:a5:e4:85:ce:23:0b:ea:3a: 7c:ac:b0:f9:a2:29:3b:f1:21:08:da:9e:41:66:d0:3e:f4:af: 34:40:20:f7:1c:2b:81:cb:87:7f:83:f0:df:94:b9:66:1d:46: d3:11:fb:b8:a1:0a:84:c0:4a:b7:d9:45:d5:ea:fb:0d:ee:6b: a4:ea:38:89:cf:d3:cf:97:2a:fe:39:48:3a:63:6f:58:58:0b: 41:2c:67:25:da:22:0c:00:90:32:63:7f:61:cd:13:79:67:49: 12:74:01:fb:ba:c8:82:1b:f1:5d:9f:b5:fc:70:cc:1a:22:11: 2d:78:bf:9e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJNFxKt7MTwb21xfa0FElEd24aFcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNTA2MDIwMTU3MzRaFw0yNjA2MDEwMjAyMzRaMDMxMTAvBgNV BAMTKDUxMDkxNUI4QTg5NDkyNDI3ODlGQkUxQzY5QTk4NThBREU1MDcyRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0AKlcgeLWPySkNGPLiTdP858G BJ2nw14toa9WQWDZtc+xPIljv6qPmHnRyKzYgdSi1mIl9vvCAUVrA9LNqPbw4Vxi N8M8tfjjGChHGqaQIF332YgrS903v5UFfhNUw+ss/wXuZ1p5pggr82NfZCLhtOIQ wDMQtTmt+ufk5FhDK4qiaHUAbJHvppYrrxU9mQhfNbAYZaORIiE/94eXwt0q5x64 YnURhO4k9S63NL2PDywoItBdQMac+zZSOfEdldc41HswS7pzcX+q4awV72lOi6hX HYcLks/Pq4ugAzc/BIgWQui1dsRb+2czcEvpcTlML7q10Dcx+RfladzZl+m5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUQkVuKiUkkJ4n74caamFit5QcuswHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMxMzgzMDJlMzIzMTM0MmUzMjM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtNb0MA0GCSqG SIb3DQEBCwUAA4IBAQBrLMcYiKxjwzyoGCyM9EhdpHrsK22J6o+JtMMZUBgYHxk5 nvlQE0R9E82Wf7s0Wsz0RuB1bYmISgXknya7Iz0cH60Aqy6eErbcjXbI6r4wrR97 0lh8LuxIctmcA3ahVHAgzU6zEkixn8LOX1fsseKV3p5FyQdCwpJlJmbzKyHvgpkP GBuLW6gVpeSFziML6jp8rLD5oik78SEI2p5BZtA+9K80QCD3HCuBy4d/g/DflLlm HUbTEfu4oQqEwEq32UXV6vsN7muk6jiJz9PPlyr+OUg6Y29YWAtBLGcl2iIMAJAy Y39hzRN5Z0kSdAH7usiCG/Fdn7X8cMwaIhEteL+e -----END CERTIFICATE-----Generated at Thu Jun 5 18:38:28 2025 by rpki-client