$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235322e302f32342d3234203d3e203338313530.roa File: 3138302e3231342e3235322e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: oOJaEiRPwPQflN2dss15Y4scB4IK0srdXT4sQ+7Afow= Subject key identifier: F7:DE:B3:F4:57:91:05:F8:80:D3:27:BB:A4:3B:C0:DB:80:CE:09:65 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 5107052A8ED5ABB20384BDEBBE6B9AD0A8693B5D Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235322e302f32342d3234203d3e203338313530.roa Signing time: Mon 02 Jun 2025 02:02:32 +0000 ROA not before: Mon 02 Jun 2025 01:57:32 +0000 ROA not after: Mon 01 Jun 2026 02:02:32 +0000 asID: 38150 IP address blocks: 180.214.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:07:05:2a:8e:d5:ab:b2:03:84:bd:eb:be:6b:9a:d0:a8:69:3b:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jun 2 01:57:32 2025 GMT Not After : Jun 1 02:02:32 2026 GMT Subject: CN=F7DEB3F4579105F880D327BBA43BC0DB80CE0965 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8c:ef:98:d1:d2:0b:81:c3:9d:c7:df:71:0b: 70:a5:ed:cc:0f:2d:ef:6f:07:21:34:2c:3a:e0:67: f7:11:32:63:05:c2:a8:99:7f:07:37:86:82:ed:e6: e4:13:66:ad:b8:37:30:8f:2c:18:bc:51:b9:6a:1d: b8:e7:22:e9:b4:be:23:15:09:2b:94:5c:e0:25:ad: 69:7d:9c:e9:3f:9f:13:27:32:72:70:24:4b:46:59: ae:c2:96:b9:9b:8f:4a:b9:4c:f0:18:5c:07:ad:6d: e1:ce:62:28:61:9e:c8:4f:53:e3:bf:05:14:4d:8d: c8:6f:06:bf:0c:03:75:61:27:1e:06:27:e4:a1:2b: 26:c7:b2:f4:47:66:b5:dd:f5:9f:c3:ea:de:1a:8a: 5f:f5:84:29:65:9d:e0:ab:ed:d2:87:0e:08:82:fa: ff:b7:44:6b:38:8d:c3:93:b0:da:78:ff:50:f8:79: 35:c3:01:03:92:5f:0c:19:ec:05:8c:1f:c6:67:00: a1:f8:28:ef:14:12:62:7e:4f:82:4b:c8:f5:c0:ec: db:2e:c6:87:2f:9d:0f:31:41:a5:21:69:05:6c:74: a3:8c:b7:eb:8f:1f:48:94:17:e2:7f:f5:0d:59:0a: af:36:a3:7d:47:88:2e:5b:7d:e7:05:91:b2:73:aa: eb:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:DE:B3:F4:57:91:05:F8:80:D3:27:BB:A4:3B:C0:DB:80:CE:09:65 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235322e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.214.252.0/24 Signature Algorithm: sha256WithRSAEncryption 69:04:39:ab:87:a3:ec:c7:32:d9:5c:4e:cd:b7:a5:e9:d3:6e: 99:f0:f6:5b:eb:4a:05:ea:ea:93:c3:97:1b:fa:73:4d:ff:66: 0f:de:4f:36:20:e6:e6:6f:8f:83:6b:6b:6c:db:a3:be:90:c7: 5d:51:36:9b:a4:25:be:a0:18:44:27:5a:e9:65:08:de:08:08: b8:b0:60:e7:8c:3a:38:3a:26:33:d0:21:ff:22:86:f6:02:52: 7d:b4:7c:fc:a7:80:cc:1b:0f:a2:4e:fa:c8:fb:89:44:aa:1f: 25:79:1e:2d:1b:f2:a3:9f:36:5b:c4:e8:2a:28:3c:07:49:89: e5:0e:5b:83:cc:db:84:45:94:5b:ed:a2:5d:f8:44:6e:76:f1: 6d:a4:f5:6d:c0:db:79:79:54:60:73:54:a1:4b:b5:b6:ab:2c: 1f:2b:c2:55:42:17:d2:71:bc:d7:9d:60:8f:ae:68:e4:90:63: e0:39:1f:45:0e:e7:95:0b:8b:7f:53:42:31:24:79:c6:74:4f: 0e:81:7d:2d:d4:67:2e:e6:f9:ac:8c:83:9c:7a:91:21:b9:89: 5d:dc:16:5b:d1:1c:ca:75:f3:22:c0:c3:d0:b6:63:72:5f:fc: d0:7b:bf:9c:06:bd:11:f4:cb:e9:d3:ba:fc:91:72:a3:08:7b: 8c:9e:0a:b1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUQcFKo7Vq7IDhL3rvmua0KhpO10wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNTA2MDIwMTU3MzJaFw0yNjA2MDEwMjAyMzJaMDMxMTAvBgNV BAMTKEY3REVCM0Y0NTc5MTA1Rjg4MEQzMjdCQkE0M0JDMERCODBDRTA5NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsjO+Y0dILgcOdx99xC3Cl7cwP Le9vByE0LDrgZ/cRMmMFwqiZfwc3hoLt5uQTZq24NzCPLBi8UblqHbjnIum0viMV CSuUXOAlrWl9nOk/nxMnMnJwJEtGWa7Clrmbj0q5TPAYXAetbeHOYihhnshPU+O/ BRRNjchvBr8MA3VhJx4GJ+ShKybHsvRHZrXd9Z/D6t4ail/1hCllneCr7dKHDgiC +v+3RGs4jcOTsNp4/1D4eTXDAQOSXwwZ7AWMH8ZnAKH4KO8UEmJ+T4JLyPXA7Nsu xocvnQ8xQaUhaQVsdKOMt+uPH0iUF+J/9Q1ZCq82o31HiC5bfecFkbJzqusDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU996z9FeRBfiA0ye7pDvA24DOCWUwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMxMzgzMDJlMzIzMTM0MmUzMjM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtNb8MA0GCSqG SIb3DQEBCwUAA4IBAQBpBDmrh6PsxzLZXE7Nt6Xp026Z8PZb60oF6uqTw5cb+nNN /2YP3k82IObmb4+Da2ts26O+kMddUTabpCW+oBhEJ1rpZQjeCAi4sGDnjDo4OiYz 0CH/Iob2AlJ9tHz8p4DMGw+iTvrI+4lEqh8leR4tG/KjnzZbxOgqKDwHSYnlDluD zNuERZRb7aJd+ERudvFtpPVtwNt5eVRgc1ShS7W2qywfK8JVQhfScbzXnWCPrmjk kGPgOR9FDueVC4t/U0IxJHnGdE8OgX0t1Gcu5vmsjIOcepEhuYld3BZb0RzKdfMi wMPQtmNyX/zQe7+cBr0R9Mvp07r8kXKjCHuMngqx -----END CERTIFICATE-----Generated at Thu Jun 5 18:41:12 2025 by rpki-client