$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234392e302f32342d3234203d3e203338313530.roa File: 3138302e3231342e3234392e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: ktBqyZQvnsVWZJg0o8QMMym54n+sUY8BtLk1pA6WS3M= Subject key identifier: 40:BE:E5:F5:B6:16:14:83:C2:E9:5F:F6:E3:73:24:D5:EF:18:AA:63 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 4577FB1D16CB4344C75225C324E6E721DD076302 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234392e302f32342d3234203d3e203338313530.roa Signing time: Mon 02 Jun 2025 02:02:32 +0000 ROA not before: Mon 02 Jun 2025 01:57:32 +0000 ROA not after: Mon 01 Jun 2026 02:02:32 +0000 asID: 38150 IP address blocks: 180.214.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:77:fb:1d:16:cb:43:44:c7:52:25:c3:24:e6:e7:21:dd:07:63:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jun 2 01:57:32 2025 GMT Not After : Jun 1 02:02:32 2026 GMT Subject: CN=40BEE5F5B6161483C2E95FF6E37324D5EF18AA63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:55:4a:5b:a3:73:c1:e6:36:c9:33:93:00:4b: 78:a5:84:99:35:52:5c:55:6b:3f:1d:ae:09:db:df: 00:50:6d:7f:ac:c2:d9:e5:10:0d:e2:0b:eb:84:84: 98:8b:a8:a4:3a:98:5c:1c:53:1b:49:dc:99:88:dd: 08:c3:dc:fb:7a:f4:13:2e:37:aa:c7:77:ce:f3:72: 01:38:1b:2f:a4:bb:88:53:d3:cb:b2:4e:a9:b8:24: 1c:a2:51:2b:9c:3d:97:83:9f:9b:88:40:46:07:2e: c6:f8:10:e7:68:fc:7a:5d:d9:24:c4:42:41:c6:5e: 21:bb:66:fa:18:cf:56:be:ad:39:c9:a6:d3:bf:9f: 39:f8:cb:75:44:cd:95:65:60:31:2f:af:b6:fb:de: d3:ca:4b:fc:cc:1f:f7:4e:c8:b2:55:b1:fd:60:ed: 7f:18:00:e7:ac:25:6a:d0:cb:00:f1:43:09:2e:97: 9b:a3:f8:52:40:28:0f:33:b4:ab:5b:ef:f4:6d:04: e1:1b:c2:fc:2b:59:0a:c8:18:82:f8:7d:27:4e:55: 2e:7b:d3:18:c4:ce:cb:ad:22:d8:0c:43:bb:ab:6c: b8:8a:19:ce:f3:6f:cd:e7:4a:08:5d:04:fe:03:03: e7:94:b2:ac:f8:8d:9f:c0:0b:df:57:a0:20:ee:1b: 3a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:BE:E5:F5:B6:16:14:83:C2:E9:5F:F6:E3:73:24:D5:EF:18:AA:63 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234392e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.214.249.0/24 Signature Algorithm: sha256WithRSAEncryption 33:be:b5:13:01:a1:d8:ee:e6:aa:3e:f5:4d:0a:9e:88:f6:26: 75:0a:3b:fa:4d:86:ac:6f:77:ae:cb:a1:46:2c:0c:53:a9:5d: 3b:12:81:77:d4:1c:52:bb:fc:0a:28:6f:64:7b:00:b4:b4:f9: 3d:1c:43:68:35:ec:76:c2:34:98:8f:a4:37:4b:85:c1:02:c6: f4:41:af:4e:89:b4:fd:00:05:b0:89:8a:c9:2b:1b:b6:a8:5e: 10:84:2d:8e:35:eb:ab:c9:f8:57:8f:76:d6:86:d0:40:18:f5: 3d:b0:d0:53:78:dd:ff:3b:5c:56:41:a0:fc:62:41:ab:37:1d: 96:60:bc:25:03:5a:50:73:e1:5f:36:46:b4:38:0a:6e:db:64: e3:e6:a6:f3:64:25:5b:38:c8:11:2a:4a:d3:7c:dd:dc:78:38: ec:1e:33:d0:e6:37:2e:cf:68:66:98:3b:e2:f0:a2:68:cb:64: 0f:dd:80:5c:cc:64:f3:5f:55:fa:f2:d2:55:67:ff:36:38:15: 17:a7:16:3c:e4:8a:12:4d:33:62:af:a5:ec:38:58:e7:7c:ff: 11:ca:15:53:eb:ee:f3:e9:da:d7:b7:db:0e:4e:7b:59:3a:7c: fa:b4:87:74:f6:9d:30:72:b2:17:a3:7d:03:d5:dd:98:b2:42: 32:fb:64:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURXf7HRbLQ0THUiXDJObnId0HYwIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNTA2MDIwMTU3MzJaFw0yNjA2MDEwMjAyMzJaMDMxMTAvBgNV BAMTKDQwQkVFNUY1QjYxNjE0ODNDMkU5NUZGNkUzNzMyNEQ1RUYxOEFBNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7VUpbo3PB5jbJM5MAS3ilhJk1 UlxVaz8drgnb3wBQbX+swtnlEA3iC+uEhJiLqKQ6mFwcUxtJ3JmI3QjD3Pt69BMu N6rHd87zcgE4Gy+ku4hT08uyTqm4JByiUSucPZeDn5uIQEYHLsb4EOdo/Hpd2STE QkHGXiG7ZvoYz1a+rTnJptO/nzn4y3VEzZVlYDEvr7b73tPKS/zMH/dOyLJVsf1g 7X8YAOesJWrQywDxQwkul5uj+FJAKA8ztKtb7/RtBOEbwvwrWQrIGIL4fSdOVS57 0xjEzsutItgMQ7urbLiKGc7zb83nSghdBP4DA+eUsqz4jZ/AC99XoCDuGzqfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQL7l9bYWFIPC6V/243Mk1e8YqmMwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMxMzgzMDJlMzIzMTM0MmUzMjM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtNb5MA0GCSqG SIb3DQEBCwUAA4IBAQAzvrUTAaHY7uaqPvVNCp6I9iZ1Cjv6TYasb3euy6FGLAxT qV07EoF31BxSu/wKKG9kewC0tPk9HENoNex2wjSYj6Q3S4XBAsb0Qa9OibT9AAWw iYrJKxu2qF4QhC2ONeuryfhXj3bWhtBAGPU9sNBTeN3/O1xWQaD8YkGrNx2WYLwl A1pQc+FfNka0OApu22Tj5qbzZCVbOMgRKkrTfN3ceDjsHjPQ5jcuz2hmmDvi8KJo y2QP3YBczGTzX1X68tJVZ/82OBUXpxY85IoSTTNir6XsOFjnfP8RyhVT6+7z6drX t9sOTntZOnz6tId09p0wcrIXo30D1d2YskIy+2R8 -----END CERTIFICATE-----Generated at Fri Jun 6 16:40:30 2025 by rpki-client