$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235352e302f32342d3234203d3e203338313530.roa File: 3138302e3231342e3235352e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: 9DRtavO7TXPRRO9r4nJOU2l6z0jZDLCjiuHMpKPIfJU= Subject key identifier: 7D:37:2A:19:05:83:F8:AB:00:34:50:CC:9F:9F:A5:B5:6F:13:BE:EC Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 24235EF407B59C9BF1D1CD9B7A2F9A314926F8BE Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235352e302f32342d3234203d3e203338313530.roa Signing time: Mon 02 Jun 2025 02:02:30 +0000 ROA not before: Mon 02 Jun 2025 01:57:30 +0000 ROA not after: Mon 01 Jun 2026 02:02:30 +0000 asID: 38150 IP address blocks: 180.214.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:23:5e:f4:07:b5:9c:9b:f1:d1:cd:9b:7a:2f:9a:31:49:26:f8:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jun 2 01:57:30 2025 GMT Not After : Jun 1 02:02:30 2026 GMT Subject: CN=7D372A190583F8AB003450CC9F9FA5B56F13BEEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:63:40:87:f8:bf:5f:5b:a8:b4:ed:0b:d4:37: bf:95:a1:1c:fa:fd:34:48:60:a8:97:74:f3:d9:83: 17:1d:63:79:5e:1d:1e:4a:df:66:e0:33:e1:ea:c1: eb:3f:4a:95:d0:90:18:86:92:ec:18:65:05:f9:7f: 40:70:da:3d:e3:b6:53:f3:88:c3:e3:3e:34:64:41: 66:dc:c5:f9:86:30:a8:78:08:b1:80:95:d9:22:ba: 3e:13:45:b5:67:8d:ec:0f:2e:29:9a:5a:a6:53:ca: 0c:98:aa:51:cd:b9:3c:9b:54:18:82:c9:d9:10:ee: 9f:de:7e:cf:cb:ec:de:f9:8f:62:b9:c3:3a:f8:21: f0:dd:33:5d:f8:aa:53:3f:80:ad:77:86:4d:f2:2e: 13:a3:08:cc:6a:8b:55:55:d5:96:db:45:d2:1d:0f: 6f:73:58:77:1b:31:61:9a:dc:35:57:0a:d1:ee:5c: b2:ae:d4:23:f3:d8:3d:79:5b:37:7c:81:fe:d4:68: 57:a9:63:c8:85:d9:91:ef:de:62:0b:9b:c4:8f:b7: 29:ff:e4:0b:61:64:49:2b:2e:5b:11:44:e3:7b:5b: 3e:ac:33:8e:1a:5a:13:99:71:87:bd:e9:d2:d2:ea: 00:4b:d4:ae:b2:57:34:2b:28:33:74:d8:7a:a1:32: 2f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:37:2A:19:05:83:F8:AB:00:34:50:CC:9F:9F:A5:B5:6F:13:BE:EC X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235352e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.214.255.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:c5:e8:17:9f:a3:43:a8:20:01:9d:7b:bd:f8:48:9b:0b:76: 14:5e:ab:77:84:ca:78:d7:6c:04:a8:0b:2f:6d:cf:bb:eb:b9: 46:c7:9e:09:1f:da:ad:94:7b:30:e0:0e:73:08:e7:97:42:93: cb:55:e1:7c:3f:15:ae:76:36:ec:ee:75:72:fc:d8:c6:f7:01: 1f:49:77:15:33:49:ab:27:ab:9b:03:15:59:26:25:c3:ae:6b: e2:63:f8:70:70:20:fa:a7:72:5e:34:66:65:dc:e8:9f:5c:c3: f6:fa:a7:a4:15:cb:38:b1:d2:0a:f3:f6:c8:8a:2e:b2:c5:a2: c5:04:70:f6:6d:e3:7f:bc:d9:13:c4:64:5c:c8:b1:00:30:60: 5d:eb:27:00:d0:93:d9:1e:4d:17:01:78:43:3c:80:20:f1:44: 25:eb:2c:18:68:58:60:2b:bf:fc:d5:78:7d:a9:39:78:e1:d1: 65:39:67:25:5c:23:49:39:fa:56:cc:c5:01:e2:14:a0:8c:be: b2:4d:f6:ea:f9:e2:62:39:3d:28:42:3a:2d:9f:56:fd:71:92: d3:76:00:92:77:6c:53:4c:3d:f8:76:07:2e:ec:95:26:3b:09: 3e:42:48:2e:06:7a:ce:a0:ff:e4:30:d8:18:26:da:17:9e:b5: 40:50:12:82 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJCNe9Ae1nJvx0c2bei+aMUkm+L4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNTA2MDIwMTU3MzBaFw0yNjA2MDEwMjAyMzBaMDMxMTAvBgNV BAMTKDdEMzcyQTE5MDU4M0Y4QUIwMDM0NTBDQzlGOUZBNUI1NkYxM0JFRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3Y0CH+L9fW6i07QvUN7+VoRz6 /TRIYKiXdPPZgxcdY3leHR5K32bgM+Hqwes/SpXQkBiGkuwYZQX5f0Bw2j3jtlPz iMPjPjRkQWbcxfmGMKh4CLGAldkiuj4TRbVnjewPLimaWqZTygyYqlHNuTybVBiC ydkQ7p/efs/L7N75j2K5wzr4IfDdM134qlM/gK13hk3yLhOjCMxqi1VV1ZbbRdId D29zWHcbMWGa3DVXCtHuXLKu1CPz2D15Wzd8gf7UaFepY8iF2ZHv3mILm8SPtyn/ 5AthZEkrLlsRRON7Wz6sM44aWhOZcYe96dLS6gBL1K6yVzQrKDN02HqhMi+RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfTcqGQWD+KsANFDMn5+ltW8TvuwwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMxMzgzMDJlMzIzMTM0MmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtNb/MA0GCSqG SIb3DQEBCwUAA4IBAQAPxegXn6NDqCABnXu9+EibC3YUXqt3hMp412wEqAsvbc+7 67lGx54JH9qtlHsw4A5zCOeXQpPLVeF8PxWudjbs7nVy/NjG9wEfSXcVM0mrJ6ub AxVZJiXDrmviY/hwcCD6p3JeNGZl3OifXMP2+qekFcs4sdIK8/bIii6yxaLFBHD2 beN/vNkTxGRcyLEAMGBd6ycA0JPZHk0XAXhDPIAg8UQl6ywYaFhgK7/81Xh9qTl4 4dFlOWclXCNJOfpWzMUB4hSgjL6yTfbq+eJiOT0oQjotn1b9cZLTdgCSd2xTTD34 dgcu7JUmOwk+QkguBnrOoP/kMNgYJtoXnrVAUBKC -----END CERTIFICATE-----Generated at Thu Jun 5 18:41:09 2025 by rpki-client