$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234372e302f32342d3234203d3e203338313530.roa File: 3138302e3231342e3234372e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: 7CnLEJTxSmV5XmK1oL/nqrOB4/valIkxzWgpmSqfSL0= Subject key identifier: E7:F4:0E:7B:81:84:1C:65:A5:E4:A0:7A:83:96:5E:9B:8C:B5:42:B3 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 6B84077F127A0CDB992B28E336B193F17B90854E Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234372e302f32342d3234203d3e203338313530.roa Signing time: Mon 02 Jun 2025 02:02:33 +0000 ROA not before: Mon 02 Jun 2025 01:57:33 +0000 ROA not after: Mon 01 Jun 2026 02:02:33 +0000 asID: 38150 IP address blocks: 180.214.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:84:07:7f:12:7a:0c:db:99:2b:28:e3:36:b1:93:f1:7b:90:85:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jun 2 01:57:33 2025 GMT Not After : Jun 1 02:02:33 2026 GMT Subject: CN=E7F40E7B81841C65A5E4A07A83965E9B8CB542B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5e:44:d0:f7:14:35:ae:f5:b1:19:a9:20:02: ec:bc:f4:58:9d:de:0f:94:92:8d:ae:2a:c8:25:d4: 64:d2:c1:9e:7b:1e:05:da:6d:1c:b1:71:0e:f5:24: 77:4d:33:6e:d9:07:ff:ad:76:e4:db:78:54:81:69: 6d:1b:3f:36:9a:46:28:63:ff:0c:26:61:81:57:ea: 95:90:5e:f6:cc:bc:73:c3:1f:c1:b8:42:44:4f:f7: 51:6a:64:9a:e1:ad:05:21:e6:e4:a3:28:70:60:90: d6:91:c1:e7:a0:89:c2:2d:61:63:69:79:32:e4:4b: dd:e1:7d:0a:bf:2f:5f:76:59:d3:71:25:77:35:8d: e0:e6:d8:8a:a3:5c:43:96:9c:76:8d:dd:eb:0a:95: 8c:38:ad:3e:6a:24:05:32:02:69:5f:49:ec:58:1b: 54:3e:11:0c:39:70:63:16:c8:1c:0b:99:c8:5e:63: 08:ca:b9:50:cc:24:49:4e:07:fd:b6:d0:15:22:cf: a8:f5:6f:09:4a:fa:9a:5b:a7:c0:fa:5f:8f:33:bc: 0c:f9:fb:a1:f7:5d:65:3a:1c:ee:50:7a:fb:16:3b: ee:30:56:4a:c9:67:3f:9e:34:39:57:59:62:9e:bc: 77:c4:0e:ea:07:f5:61:0e:86:c0:c3:74:a5:9a:26: ac:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:F4:0E:7B:81:84:1C:65:A5:E4:A0:7A:83:96:5E:9B:8C:B5:42:B3 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234372e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.214.247.0/24 Signature Algorithm: sha256WithRSAEncryption a7:b1:cf:9e:84:a5:8d:d7:6b:d8:24:71:ce:4f:e6:6d:f7:35: 9e:e6:9c:76:42:16:14:6f:fb:70:6b:c6:d6:2a:01:18:e7:fb: 87:be:d0:2c:50:8b:1e:e2:f6:3b:0a:cf:d0:e6:49:79:8c:48: 11:27:48:03:96:1c:b8:4e:ea:1c:d6:73:8d:86:8d:73:2b:85: c5:16:31:01:b6:ab:cc:29:6d:9a:e1:cf:f2:ca:55:dd:4b:d8: 29:58:8a:2a:e8:0d:76:94:3e:3e:78:45:0f:7a:cd:08:6e:ee: 05:0d:8f:52:1e:b4:55:ab:31:76:3b:f4:1d:ed:7c:7f:fb:76: f4:c3:81:cb:01:6d:19:45:fe:37:c0:f6:e3:26:c3:76:28:b4: cf:3a:b1:4e:b9:c0:4c:ef:c5:da:8c:54:7a:f1:03:51:ac:95: 17:ac:b9:6c:d0:47:7a:f4:fb:6d:f0:09:f4:4d:d4:92:15:b6: ad:89:ce:55:df:88:95:e1:67:72:fd:d4:c7:27:59:bb:42:fe: 92:52:76:80:5f:3f:23:c5:5f:fb:84:53:2d:bb:0b:73:1a:b6: f2:0c:c7:37:1c:dc:b0:1c:3f:27:de:a4:fc:83:24:d6:0b:c7: 13:11:46:e2:a2:20:5d:a6:00:d6:94:1f:fa:be:11:98:64:61: bd:d4:c5:70 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUa4QHfxJ6DNuZKyjjNrGT8XuQhU4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNTA2MDIwMTU3MzNaFw0yNjA2MDEwMjAyMzNaMDMxMTAvBgNV BAMTKEU3RjQwRTdCODE4NDFDNjVBNUU0QTA3QTgzOTY1RTlCOENCNTQyQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDXkTQ9xQ1rvWxGakgAuy89Fid 3g+Uko2uKsgl1GTSwZ57HgXabRyxcQ71JHdNM27ZB/+tduTbeFSBaW0bPzaaRihj /wwmYYFX6pWQXvbMvHPDH8G4QkRP91FqZJrhrQUh5uSjKHBgkNaRweegicItYWNp eTLkS93hfQq/L192WdNxJXc1jeDm2IqjXEOWnHaN3esKlYw4rT5qJAUyAmlfSexY G1Q+EQw5cGMWyBwLmcheYwjKuVDMJElOB/220BUiz6j1bwlK+ppbp8D6X48zvAz5 +6H3XWU6HO5QevsWO+4wVkrJZz+eNDlXWWKevHfEDuoH9WEOhsDDdKWaJqyJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5/QOe4GEHGWl5KB6g5Zem4y1QrMwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMxMzgzMDJlMzIzMTM0MmUzMjM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtNb3MA0GCSqG SIb3DQEBCwUAA4IBAQCnsc+ehKWN12vYJHHOT+Zt9zWe5px2QhYUb/twa8bWKgEY 5/uHvtAsUIse4vY7Cs/Q5kl5jEgRJ0gDlhy4Tuoc1nONho1zK4XFFjEBtqvMKW2a 4c/yylXdS9gpWIoq6A12lD4+eEUPes0Ibu4FDY9SHrRVqzF2O/Qd7Xx/+3b0w4HL AW0ZRf43wPbjJsN2KLTPOrFOucBM78XajFR68QNRrJUXrLls0Ed69Ptt8An0TdSS Fbatic5V34iV4Wdy/dTHJ1m7Qv6SUnaAXz8jxV/7hFMtuwtzGrbyDMc3HNywHD8n 3qT8gyTWC8cTEUbioiBdpgDWlB/6vhGYZGG91MVw -----END CERTIFICATE-----Generated at Thu Jun 5 18:40:27 2025 by rpki-client