$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3234382e302f32332d3234203d3e203538333831.roa File: 3230322e34332e3234382e302f32332d3234203d3e203538333831.roa (raw, json) Hash identifier: 8RrRORobg42yyo6LFcje0JxeCKUFuSga1jy/CkFuTm4= Subject key identifier: 9C:C4:50:60:27:A0:BC:CE:B2:84:C9:93:EB:B7:FB:3E:01:79:1E:04 Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Certificate serial: 6A138E5AE23EE6EF4DD0FA099BB54D9388B1F1C6 Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3234382e302f32332d3234203d3e203538333831.roa Signing time: Mon 30 Dec 2024 03:00:02 +0000 ROA not before: Mon 30 Dec 2024 02:55:02 +0000 ROA not after: Mon 29 Dec 2025 03:00:02 +0000 asID: 58381 IP address blocks: 202.43.248.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 14:38:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:13:8e:5a:e2:3e:e6:ef:4d:d0:fa:09:9b:b5:4d:93:88:b1:f1:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Validity Not Before: Dec 30 02:55:02 2024 GMT Not After : Dec 29 03:00:02 2025 GMT Subject: CN=9CC4506027A0BCCEB284C993EBB7FB3E01791E04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1b:6c:cc:54:99:50:45:c7:d9:50:b9:48:2a: 48:ce:23:3c:d1:3a:38:8a:21:54:0b:a0:6f:04:15: 69:40:c5:91:49:6d:c2:7a:19:f5:19:7f:df:8b:93: 13:a1:92:0b:86:3f:e1:91:1c:1b:1c:c3:e9:6d:40: 15:28:04:57:cc:90:22:7b:4d:17:7b:3c:96:e7:4b: 81:fb:cc:e0:e9:5f:37:1f:15:e4:05:77:72:69:29: c6:18:b6:06:4d:90:67:e9:cd:35:d7:08:7a:06:23: b0:e0:3c:55:fc:d4:ce:65:24:41:f5:0d:36:2a:4e: 39:2c:68:52:79:98:67:09:1f:30:55:f5:32:f8:4e: 57:61:55:41:78:a8:7f:cb:2f:dc:40:9f:bc:68:09: b0:4c:0e:64:a6:8e:68:a8:8b:b1:1c:04:38:fd:ca: 9a:37:45:87:a5:70:c4:d0:73:e9:39:59:7f:30:9d: 5b:bd:14:4e:45:04:6c:9a:f8:cc:99:da:2f:7e:b9: 0b:a3:22:3a:2c:50:c7:73:f0:f7:34:ef:4e:76:60: 87:f7:33:29:bc:ce:e2:e3:e4:d2:51:25:10:0c:08: 5e:c5:88:6d:ef:55:5c:81:4b:b2:78:b6:e2:ce:a5: df:eb:c0:f7:d2:30:bb:5d:5b:39:96:3c:68:6b:2f: 00:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:C4:50:60:27:A0:BC:CE:B2:84:C9:93:EB:B7:FB:3E:01:79:1E:04 X509v3 Authority Key Identifier: keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3234382e302f32332d3234203d3e203538333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.248.0/23 Signature Algorithm: sha256WithRSAEncryption a0:25:27:ea:00:38:77:5b:0e:46:76:12:23:5f:d1:cd:3b:68: 6e:4f:23:a0:0d:60:de:3f:29:9a:40:6e:d8:81:f5:27:5b:36: ac:57:1f:86:3d:44:5a:47:d0:e0:06:87:d7:7a:3f:ab:58:85: cc:8d:29:e2:53:60:f3:06:67:8e:df:76:61:66:59:c0:3c:35: 29:8b:24:7f:7f:a3:e3:ac:16:e1:39:fd:67:d3:fe:a0:65:79: b2:77:f5:59:94:aa:dd:b6:47:95:31:ad:50:6b:c2:ce:7f:01: 73:d6:fc:d9:64:67:9b:8e:7c:81:4d:b9:82:89:ee:fc:0b:11: f8:1a:50:fd:4f:29:8a:74:90:43:78:ef:71:4c:cc:1c:f4:41: af:91:68:ad:55:e4:ed:63:e5:28:57:85:ce:a1:c9:6a:21:37: 95:89:7a:bb:34:4a:fb:51:db:08:5a:98:14:2c:7c:f7:41:3b: d9:d3:e0:0a:87:d2:7b:a4:9c:ab:6c:3a:fd:bc:a1:28:d5:75: 50:40:10:69:b0:dc:ed:84:12:98:4c:4c:bc:6f:df:2d:8c:65: 79:71:45:46:9d:54:4e:a1:39:2d:8f:3e:79:53:90:84:5f:ef: 13:57:39:99:5a:27:0f:ea:31:be:f2:bd:f5:94:a5:cf:37:46: 39:ab:1e:88 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUahOOWuI+5u9N0PoJm7VNk4ix8cYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZC RUZCM0FCQjAeFw0yNDEyMzAwMjU1MDJaFw0yNTEyMjkwMzAwMDJaMDMxMTAvBgNV BAMTKDlDQzQ1MDYwMjdBMEJDQ0VCMjg0Qzk5M0VCQjdGQjNFMDE3OTFFMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQG2zMVJlQRcfZULlIKkjOIzzR OjiKIVQLoG8EFWlAxZFJbcJ6GfUZf9+LkxOhkguGP+GRHBscw+ltQBUoBFfMkCJ7 TRd7PJbnS4H7zODpXzcfFeQFd3JpKcYYtgZNkGfpzTXXCHoGI7DgPFX81M5lJEH1 DTYqTjksaFJ5mGcJHzBV9TL4TldhVUF4qH/LL9xAn7xoCbBMDmSmjmioi7EcBDj9 ypo3RYelcMTQc+k5WX8wnVu9FE5FBGya+MyZ2i9+uQujIjosUMdz8Pc07052YIf3 Mym8zuLj5NJRJRAMCF7FiG3vVVyBS7J4tuLOpd/rwPfSMLtdWzmWPGhrLwDxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnMRQYCegvM6yhMmT67f7PgF5HgQwHwYDVR0j BBgwFoAUyOwY4CdjmwW8WKIijRJkhr77OrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YzI4OTcwNi1hNGY0LTRlMWYtOWE2ZS0wMWM5YzUzY2Q4ZjkvMC9DOEVDMThFMDI3 NjM5QjA1QkM1OEEyMjI4RDEyNjQ4NkJFRkIzQUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZCRUZC M0FCQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMyMzAzMjJlMzQzMzJlMzIzNDM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODMzMzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcor+DANBgkqhkiG 9w0BAQsFAAOCAQEAoCUn6gA4d1sORnYSI1/RzTtobk8joA1g3j8pmkBu2IH1J1s2 rFcfhj1EWkfQ4AaH13o/q1iFzI0p4lNg8wZnjt92YWZZwDw1KYskf3+j46wW4Tn9 Z9P+oGV5snf1WZSq3bZHlTGtUGvCzn8Bc9b82WRnm458gU25gonu/AsR+BpQ/U8p inSQQ3jvcUzMHPRBr5ForVXk7WPlKFeFzqHJaiE3lYl6uzRK+1HbCFqYFCx890E7 2dPgCofSe6Scq2w6/byhKNV1UEAQabDc7YQSmExMvG/fLYxleXFFRp1UTqE5LY8+ eVOQhF/vE1c5mVonD+oxvvK99ZSlzzdGOaseiA== -----END CERTIFICATE-----Generated at Sun Apr 6 05:57:26 2025 by rpki-client