$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e382e302f32342d3234203d3e203338313530.roa File: 3230322e39312e382e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: Qol8+JNrvQvm3P/r8gMV8qivGzVQrg5+cD0Ai4x07CE= Subject key identifier: 5E:B1:C6:BC:C7:8B:0D:3B:CE:CC:2E:16:51:7B:B7:B0:D6:27:48:FE Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 068FDA46A7F275FA8F395E689AB17F1B93A356F2 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e382e302f32342d3234203d3e203338313530.roa Signing time: Mon 01 Jul 2024 01:03:29 +0000 ROA not before: Mon 01 Jul 2024 00:58:29 +0000 ROA not after: Mon 30 Jun 2025 01:03:29 +0000 asID: 38150 IP address blocks: 202.91.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 18:40:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:8f:da:46:a7:f2:75:fa:8f:39:5e:68:9a:b1:7f:1b:93:a3:56:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 1 00:58:29 2024 GMT Not After : Jun 30 01:03:29 2025 GMT Subject: CN=5EB1C6BCC78B0D3BCECC2E16517BB7B0D62748FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:2e:1a:4e:9d:74:c4:f8:8d:d5:5c:3b:cd:ba: 67:a6:af:f6:88:44:1e:06:27:67:b5:16:f4:6a:9e: fc:3b:d1:bd:7b:63:ca:6a:96:6e:74:35:69:22:dc: c1:01:9a:1f:68:a4:f4:2b:05:12:c1:3b:6d:c3:8c: ec:75:b7:67:3d:be:37:9e:81:ff:e9:52:1d:76:9a: 17:ac:da:f5:df:14:e6:9f:fa:a7:20:81:90:1d:f8: 56:aa:f0:5c:1e:26:34:e9:96:d1:57:da:71:44:91: f4:a0:c7:c2:85:b1:85:b7:1f:d1:71:3b:01:c2:b2: b3:a4:b6:ad:b2:8b:ed:0f:f4:ab:dc:af:79:12:40: f7:b4:e9:9f:50:74:75:9a:c0:2c:4b:cf:59:94:5a: 3d:2f:89:b1:ca:0d:41:80:11:95:22:58:76:2b:6c: 45:93:de:84:aa:60:ae:9a:60:b3:b5:fc:20:37:69: f9:18:42:36:a3:6b:d3:65:0f:f9:b6:91:65:a0:18: d8:74:bd:08:86:17:90:a6:61:e7:b0:29:3a:6b:1c: fe:25:98:15:42:5c:05:90:60:31:5f:50:76:8c:6e: 88:96:ad:9d:40:f7:26:63:89:9b:4f:87:59:de:3c: ba:d8:63:7f:f6:62:9c:7a:0d:63:8e:5c:f2:30:cc: 2e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:B1:C6:BC:C7:8B:0D:3B:CE:CC:2E:16:51:7B:B7:B0:D6:27:48:FE X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e382e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.8.0/24 Signature Algorithm: sha256WithRSAEncryption 15:fd:b2:91:f6:26:34:4b:c2:14:78:6a:be:ed:7f:4e:e4:2d: e9:d7:f9:92:df:79:c5:68:2a:94:5b:a9:f7:5f:48:39:6a:8a: 03:8c:5d:fb:dc:80:6c:85:ec:23:2c:38:60:e4:56:c4:b4:5a: b4:c0:1c:8b:3b:74:e7:33:f2:ab:e7:98:55:9e:82:f4:b5:fe: 13:a9:4d:bd:ed:ef:ca:ba:bb:9b:23:68:0b:8d:cc:4c:da:15: 49:0d:58:95:e1:1e:47:be:b9:02:ee:0e:8c:fb:ca:f3:31:e1: 34:f2:e1:07:d7:d9:4d:68:06:d3:6b:a5:fb:28:5b:fb:b1:c4: 0b:9e:88:da:8d:1c:6d:2b:6b:bb:6e:6a:4b:a6:c3:1e:b2:30: ae:bd:3e:ee:d5:c9:3c:be:90:89:2b:7d:32:c5:81:62:35:37: bb:65:47:f9:20:0a:73:cd:45:b5:e3:c2:f4:e6:6b:d3:e8:ab: 73:8d:70:f9:ba:fa:85:90:be:db:81:bf:20:3c:14:20:a3:65: aa:12:90:ac:bd:1c:de:4f:c6:5e:ff:84:19:f7:10:6c:73:70: 27:bb:fd:31:ef:a7:ce:5c:65:1a:03:78:2e:50:6a:ed:b8:b0: 40:9f:7c:14:26:15:5f:c6:50:39:ab:f0:2a:cf:fc:08:c6:a7: 1a:c2:fd:9d -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUBo/aRqfydfqPOV5omrF/G5OjVvIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNDA3MDEwMDU4MjlaFw0yNTA2MzAwMTAzMjlaMDMxMTAvBgNV BAMTKDVFQjFDNkJDQzc4QjBEM0JDRUNDMkUxNjUxN0JCN0IwRDYyNzQ4RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtLhpOnXTE+I3VXDvNumemr/aI RB4GJ2e1FvRqnvw70b17Y8pqlm50NWki3MEBmh9opPQrBRLBO23DjOx1t2c9vjee gf/pUh12mhes2vXfFOaf+qcggZAd+Faq8FweJjTpltFX2nFEkfSgx8KFsYW3H9Fx OwHCsrOktq2yi+0P9Kvcr3kSQPe06Z9QdHWawCxLz1mUWj0vibHKDUGAEZUiWHYr bEWT3oSqYK6aYLO1/CA3afkYQjaja9NlD/m2kWWgGNh0vQiGF5CmYeewKTprHP4l mBVCXAWQYDFfUHaMboiWrZ1A9yZjiZtPh1nePLrYY3/2Ypx6DWOOXPIwzC5XAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUXrHGvMeLDTvOzC4WUXu3sNYnSP4wHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTdlNjViNjctOTA1Yy00MDNjLThj NzktMjMxNTY1OTY2OGFhLzAvMzIzMDMyMmUzOTMxMmUzODJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWwgwDQYJKoZIhvcNAQEL BQADggEBABX9spH2JjRLwhR4ar7tf07kLenX+ZLfecVoKpRbqfdfSDlqigOMXfvc gGyF7CMsOGDkVsS0WrTAHIs7dOcz8qvnmFWegvS1/hOpTb3t78q6u5sjaAuNzEza FUkNWJXhHke+uQLuDoz7yvMx4TTy4QfX2U1oBtNrpfsoW/uxxAueiNqNHG0ra7tu akumwx6yMK69Pu7VyTy+kIkrfTLFgWI1N7tlR/kgCnPNRbXjwvTma9Poq3ONcPm6 +oWQvtuBvyA8FCCjZaoSkKy9HN5Pxl7/hBn3EGxzcCe7/THvp85cZRoDeC5Qau24 sECffBQmFV/GUDmr8CrP/AjGpxrC/Z0= -----END CERTIFICATE-----Generated at Tue Mar 11 05:02:47 2025 by rpki-client