$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235312e302f32342d3234203d3e20313338303734.roa File: 3230322e34332e3235312e302f32342d3234203d3e20313338303734.roa (raw, json) Hash identifier: LnfQWSkhBeT+G4FyLtKt+mDAFcmNfarKzOkWL9aGALQ= Subject key identifier: 54:59:8B:A7:1B:FF:91:EF:11:75:26:2D:F1:3C:A3:C6:9E:E8:B1:27 Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Certificate serial: 38424E0E4B67AC77782E747CCF070ACA54920941 Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235312e302f32342d3234203d3e20313338303734.roa Signing time: Mon 30 Dec 2024 02:00:03 +0000 ROA not before: Mon 30 Dec 2024 01:55:03 +0000 ROA not after: Mon 29 Dec 2025 02:00:03 +0000 asID: 138074 IP address blocks: 202.43.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 14:38:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:42:4e:0e:4b:67:ac:77:78:2e:74:7c:cf:07:0a:ca:54:92:09:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Validity Not Before: Dec 30 01:55:03 2024 GMT Not After : Dec 29 02:00:03 2025 GMT Subject: CN=54598BA71BFF91EF1175262DF13CA3C69EE8B127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ab:52:52:2f:5e:7c:c7:04:81:03:39:72:13: 05:b8:68:4a:ba:44:fd:a1:b6:a0:e7:4f:9f:25:50: 90:2f:80:0d:7a:08:9b:b7:ef:ed:c7:97:ad:a2:00: fa:6f:78:34:ab:8e:18:60:f1:49:0a:4f:9c:83:76: b8:26:ff:e0:e2:0c:4a:48:73:bf:52:f3:ab:a7:a7: 23:21:c3:f6:17:7c:50:06:ca:7a:91:93:2a:69:0b: 0c:ad:3f:42:9f:f2:66:1d:77:6a:fe:7e:98:f1:40: 7a:9a:11:de:b3:72:6b:5f:29:b8:b2:e7:b7:97:b6: de:85:66:5a:df:8d:d7:70:43:67:a5:d0:4f:89:18: 0b:12:96:01:e2:7a:78:67:59:9e:4e:8c:79:1f:af: e5:64:5a:85:cf:f5:3d:c7:e0:07:03:7e:72:88:73: cb:06:94:73:2a:20:01:4c:59:b4:30:4d:44:3b:8b: e2:4f:79:6c:7a:41:58:f6:4d:2a:70:e4:04:3f:db: 3a:3a:8e:a2:bb:fe:69:39:2b:4f:5e:ab:d8:3c:14: d2:23:4e:9c:4c:d2:bf:01:4e:c8:f0:2e:10:97:a9: ef:73:6e:41:b7:31:45:55:d8:41:13:d0:fa:13:4d: 3e:9c:e0:24:99:16:43:31:7b:20:b7:4b:c3:16:85: 0b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:59:8B:A7:1B:FF:91:EF:11:75:26:2D:F1:3C:A3:C6:9E:E8:B1:27 X509v3 Authority Key Identifier: keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235312e302f32342d3234203d3e20313338303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.251.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:56:ee:1f:a1:e9:70:93:25:30:76:54:8a:ac:a8:44:8e:52: 7d:13:85:fa:ab:27:02:4e:d3:2b:5c:b1:c1:7d:cf:5f:04:54: f8:29:c0:fc:48:a1:86:8c:5a:9c:fd:a3:ad:e2:45:2c:d9:61: 07:80:60:14:ef:40:63:1b:4d:5c:37:84:a5:d7:2f:79:01:f3: 63:c7:f8:4a:7b:c4:2d:e5:da:c8:2a:c0:f2:aa:3c:cf:85:f8: 69:2f:71:2a:75:7c:55:0a:54:17:2b:3d:5e:90:cc:d1:7d:92: bf:52:ac:3e:cf:5f:4e:19:d3:3b:dd:c3:5c:ed:6b:21:5b:fa: 52:b3:a9:3b:d9:1c:26:e5:26:d5:51:93:23:ba:25:7e:48:26: ce:c8:7f:04:f9:9b:86:61:23:89:f8:d0:37:7a:73:3b:36:c7: 85:12:aa:3d:89:f4:71:2f:19:d5:ed:d1:f3:8a:bd:51:e6:17: bb:4e:99:27:f9:f8:00:7d:48:b6:c7:ad:89:07:cc:a1:48:a1: 83:10:4c:f1:b3:70:6a:d6:63:11:0d:05:1c:c8:fd:af:ce:d7: fa:e6:12:09:77:80:69:f0:8f:87:62:96:07:7f:bf:9a:5a:de: 5f:90:71:f6:7f:57:8f:46:54:ef:f7:69:06:fc:18:24:15:b7: ad:c4:bf:b6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOEJODktnrHd4LnR8zwcKylSSCUEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZC RUZCM0FCQjAeFw0yNDEyMzAwMTU1MDNaFw0yNTEyMjkwMjAwMDNaMDMxMTAvBgNV BAMTKDU0NTk4QkE3MUJGRjkxRUYxMTc1MjYyREYxM0NBM0M2OUVFOEIxMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvq1JSL158xwSBAzlyEwW4aEq6 RP2htqDnT58lUJAvgA16CJu37+3Hl62iAPpveDSrjhhg8UkKT5yDdrgm/+DiDEpI c79S86unpyMhw/YXfFAGynqRkyppCwytP0Kf8mYdd2r+fpjxQHqaEd6zcmtfKbiy 57eXtt6FZlrfjddwQ2el0E+JGAsSlgHienhnWZ5OjHkfr+VkWoXP9T3H4AcDfnKI c8sGlHMqIAFMWbQwTUQ7i+JPeWx6QVj2TSpw5AQ/2zo6jqK7/mk5K09eq9g8FNIj TpxM0r8BTsjwLhCXqe9zbkG3MUVV2EET0PoTTT6c4CSZFkMxeyC3S8MWhQvXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVFmLpxv/ke8RdSYt8Tyjxp7osScwHwYDVR0j BBgwFoAUyOwY4CdjmwW8WKIijRJkhr77OrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YzI4OTcwNi1hNGY0LTRlMWYtOWE2ZS0wMWM5YzUzY2Q4ZjkvMC9DOEVDMThFMDI3 NjM5QjA1QkM1OEEyMjI4RDEyNjQ4NkJFRkIzQUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZCRUZC M0FCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMyMzAzMjJlMzQzMzJlMzIzNTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyiv7MA0GCSqG SIb3DQEBCwUAA4IBAQCaVu4foelwkyUwdlSKrKhEjlJ9E4X6qycCTtMrXLHBfc9f BFT4KcD8SKGGjFqc/aOt4kUs2WEHgGAU70BjG01cN4Sl1y95AfNjx/hKe8Qt5drI KsDyqjzPhfhpL3EqdXxVClQXKz1ekMzRfZK/Uqw+z19OGdM73cNc7WshW/pSs6k7 2Rwm5SbVUZMjuiV+SCbOyH8E+ZuGYSOJ+NA3enM7NseFEqo9ifRxLxnV7dHzir1R 5he7Tpkn+fgAfUi2x62JB8yhSKGDEEzxs3Bq1mMRDQUcyP2vztf65hIJd4Bp8I+H YpYHf7+aWt5fkHH2f1ePRlTv92kG/BgkFbetxL+2 -----END CERTIFICATE-----Generated at Sun Apr 6 05:57:09 2025 by rpki-client