$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235332e302f32342d3234203d3e203338313530.roa File: 3138302e3231342e3235332e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: vVu41fldo66s3GTiO3p70Y9WjrS6PJn4ErhvMTYrL+0= Subject key identifier: A3:08:33:54:A8:91:EE:75:3D:3B:8E:13:1A:96:BF:94:18:3B:82:1B Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 220AC4276F84D4C145DD74E2EDEBCF0BFB3C23E4 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235332e302f32342d3234203d3e203338313530.roa Signing time: Mon 02 Jun 2025 02:02:31 +0000 ROA not before: Mon 02 Jun 2025 01:57:31 +0000 ROA not after: Mon 01 Jun 2026 02:02:31 +0000 asID: 38150 IP address blocks: 180.214.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:0a:c4:27:6f:84:d4:c1:45:dd:74:e2:ed:eb:cf:0b:fb:3c:23:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jun 2 01:57:31 2025 GMT Not After : Jun 1 02:02:31 2026 GMT Subject: CN=A3083354A891EE753D3B8E131A96BF94183B821B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:da:0d:51:d2:30:5e:86:3e:c3:24:f5:1a:ac: 8c:6a:79:f2:7d:5e:47:5d:44:a2:c5:57:e2:5c:c3: 86:39:6a:cb:a1:90:f8:14:09:29:7f:14:c8:05:1c: ff:ca:28:6e:fd:09:60:cf:9b:5c:c6:82:00:8a:cf: 6a:ea:37:d7:b9:0d:d1:b0:3b:58:f9:06:5f:e7:9f: 3f:df:82:b9:f5:ec:1f:20:72:82:49:08:f2:31:11: 10:3a:dc:bd:7a:81:4f:1d:ad:0f:c3:7e:14:23:b8: 38:b5:8b:ed:e0:73:9e:05:f7:a5:46:3b:0b:00:f1: 2b:66:d3:37:73:de:ba:bd:e0:57:0b:5a:82:d6:36: cd:6f:58:11:59:d8:b2:0b:3d:dd:6e:c0:88:9c:f0: 50:51:d0:b2:d7:b2:b5:70:91:87:8e:79:c7:c9:4b: b4:8f:c7:10:3e:c5:3f:4a:a7:86:0b:36:3e:90:1d: 10:0b:ba:44:18:eb:9e:f7:c4:2e:06:65:a4:91:fe: bc:65:e1:03:10:59:77:c7:94:99:b1:99:f0:af:80: 23:b4:6e:d3:83:e4:88:3f:44:ec:c2:06:d1:78:bb: 04:d1:88:ad:56:a0:d6:e1:b6:ff:b4:62:da:67:54: 59:ef:31:cb:6a:37:6c:cd:f0:fb:bd:c9:2c:f1:ac: d6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:08:33:54:A8:91:EE:75:3D:3B:8E:13:1A:96:BF:94:18:3B:82:1B X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235332e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.214.253.0/24 Signature Algorithm: sha256WithRSAEncryption 52:b6:c7:b0:1a:af:bd:73:cf:0b:3d:fd:70:eb:53:6a:de:cb: 5d:a2:19:f1:48:69:b7:ea:96:11:fc:3a:07:77:0d:aa:b2:03: 3e:34:f0:3c:e3:71:70:1f:40:a2:f7:5e:02:72:11:e3:33:10: 63:e6:94:af:95:96:b9:71:b6:ef:22:8f:24:24:fb:5f:6a:c3: 4c:b8:31:5d:4a:96:70:0c:b9:3f:48:a5:1c:f2:e8:eb:4f:f2: 1c:fd:cf:d9:d4:02:fa:ee:5c:fd:42:01:79:58:1e:ca:5d:a0: 80:6d:39:23:d0:9f:69:eb:a2:82:96:7d:0c:e2:9d:a7:ef:0f: 2d:dc:b5:a7:3c:fd:2f:3b:d8:77:ee:82:1f:52:51:c7:26:c2: 82:db:47:16:bb:31:8e:65:47:49:8a:3e:de:34:83:28:e6:a9: 40:54:81:70:e7:00:4d:8f:1c:06:b6:93:58:79:0a:5e:8b:ad: 47:5f:a2:27:5e:ad:2d:5f:f7:db:72:00:43:84:24:4e:7b:2f: d3:b5:7d:d0:ca:0d:ed:69:55:22:04:3b:e1:b7:e1:51:e5:d4: 87:41:3f:08:9f:33:f5:c6:47:47:a2:a6:db:01:8e:39:f7:35: b3:d5:e5:1a:e6:6b:dc:45:91:5b:ac:db:5d:ec:f1:08:40:34: d4:8e:9b:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIgrEJ2+E1MFF3XTi7evPC/s8I+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNTA2MDIwMTU3MzFaFw0yNjA2MDEwMjAyMzFaMDMxMTAvBgNV BAMTKEEzMDgzMzU0QTg5MUVFNzUzRDNCOEUxMzFBOTZCRjk0MTgzQjgyMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN2g1R0jBehj7DJPUarIxqefJ9 XkddRKLFV+Jcw4Y5asuhkPgUCSl/FMgFHP/KKG79CWDPm1zGggCKz2rqN9e5DdGw O1j5Bl/nnz/fgrn17B8gcoJJCPIxERA63L16gU8drQ/DfhQjuDi1i+3gc54F96VG OwsA8Stm0zdz3rq94FcLWoLWNs1vWBFZ2LILPd1uwIic8FBR0LLXsrVwkYeOecfJ S7SPxxA+xT9Kp4YLNj6QHRALukQY6573xC4GZaSR/rxl4QMQWXfHlJmxmfCvgCO0 btOD5Ig/ROzCBtF4uwTRiK1WoNbhtv+0YtpnVFnvMctqN2zN8Pu9ySzxrNapAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUowgzVKiR7nU9O44TGpa/lBg7ghswHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMxMzgzMDJlMzIzMTM0MmUzMjM1MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtNb9MA0GCSqG SIb3DQEBCwUAA4IBAQBStsewGq+9c88LPf1w61Nq3stdohnxSGm36pYR/DoHdw2q sgM+NPA843FwH0Ci914CchHjMxBj5pSvlZa5cbbvIo8kJPtfasNMuDFdSpZwDLk/ SKUc8ujrT/Ic/c/Z1AL67lz9QgF5WB7KXaCAbTkj0J9p66KCln0M4p2n7w8t3LWn PP0vO9h37oIfUlHHJsKC20cWuzGOZUdJij7eNIMo5qlAVIFw5wBNjxwGtpNYeQpe i61HX6InXq0tX/fbcgBDhCROey/TtX3Qyg3taVUiBDvht+FR5dSHQT8InzP1xkdH oqbbAY459zWz1eUa5mvcRZFbrNtd7PEIQDTUjptk -----END CERTIFICATE-----Generated at Thu Jun 5 18:41:40 2025 by rpki-client