$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235332e302f32342d3234203d3e20313338303734.roa File: 3230322e34332e3235332e302f32342d3234203d3e20313338303734.roa (raw, json) Hash identifier: EGI9o7CM4WRok9jPW02rkd7C68LQY6lwOHLdbhuimwI= Subject key identifier: F3:AC:A6:04:82:8D:EC:BA:F4:3A:4F:DA:78:54:23:9C:F2:66:9E:1C Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Certificate serial: 407B43C9B3B2637F1036573D49255B863A7BA574 Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235332e302f32342d3234203d3e20313338303734.roa Signing time: Mon 30 Dec 2024 02:00:02 +0000 ROA not before: Mon 30 Dec 2024 01:55:02 +0000 ROA not after: Mon 29 Dec 2025 02:00:02 +0000 asID: 138074 IP address blocks: 202.43.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 06:27:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:7b:43:c9:b3:b2:63:7f:10:36:57:3d:49:25:5b:86:3a:7b:a5:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Validity Not Before: Dec 30 01:55:02 2024 GMT Not After : Dec 29 02:00:02 2025 GMT Subject: CN=F3ACA604828DECBAF43A4FDA7854239CF2669E1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:10:c1:84:81:62:2d:2e:9b:aa:6c:ed:64:35: c1:4b:dc:8e:a2:ca:8b:7a:9a:0a:c0:bb:09:64:22: dd:22:63:1d:3c:4c:f0:45:a1:ea:02:1a:bc:48:c8: 9d:b8:df:3e:bd:bc:28:33:af:5b:15:59:71:cb:e0: b4:6a:a3:62:aa:e0:86:8a:1a:8c:59:dd:88:11:1c: cb:5c:7e:13:80:9f:6a:21:61:96:9c:35:4e:72:52: 8e:8d:b3:07:7c:2f:77:cb:ea:22:72:cd:34:9e:b2: 71:fe:a5:19:32:ca:69:2a:49:3a:34:f3:ab:be:c0: 56:37:5f:7e:bd:37:6d:d7:31:b3:b3:56:81:09:0f: 1c:6f:ad:e2:24:4c:f6:bb:40:50:23:b7:ec:e7:7b: 0f:ed:c1:f5:bb:d4:13:03:37:fe:37:7a:66:5d:f4: 0e:ff:29:b2:ca:bd:83:f3:ff:2d:68:29:4a:e8:94: 8f:14:00:60:cc:b7:8b:cb:3c:bd:6e:da:a0:d5:9d: 62:de:ba:f8:1c:77:30:aa:96:3b:62:a0:01:01:c8: bd:20:4f:a0:ed:01:3a:9f:94:2e:8e:19:39:80:5c: ae:70:77:35:eb:97:e2:9b:ca:71:7f:be:83:b3:32: c1:23:5e:86:80:f0:3e:4c:e2:04:5a:81:fa:ba:f3: 8d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:AC:A6:04:82:8D:EC:BA:F4:3A:4F:DA:78:54:23:9C:F2:66:9E:1C X509v3 Authority Key Identifier: keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235332e302f32342d3234203d3e20313338303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.253.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:53:bc:a8:42:5b:68:80:06:f0:3f:62:0a:fe:5b:36:d7:89: 34:71:fc:c6:84:a3:92:01:3f:6e:97:92:34:51:d9:19:03:f2: a2:ae:8f:8d:35:10:cb:14:ad:d7:30:d3:6a:f5:f8:48:6f:fe: 84:b3:59:31:36:9d:59:cd:f8:de:df:64:fb:3b:46:69:e9:e7: 0b:b9:68:41:d1:b4:cd:18:e2:63:2a:b7:fa:f5:3d:e5:52:73: d5:3d:6e:bd:a0:e0:39:b6:6f:a7:bd:ce:ce:2d:06:dc:ad:81: 22:ad:55:76:db:a9:cd:2b:1f:37:d1:4d:34:23:65:d3:45:0b: eb:6d:da:e3:f9:36:db:64:32:19:5c:ff:fa:41:32:63:98:f7: 07:cc:42:76:ee:33:ab:ed:f4:80:cd:6c:41:4c:05:2a:d3:06: 4b:39:42:cb:95:f0:de:d7:fe:fb:74:e5:e2:12:9c:e8:19:d8: 82:de:65:5c:f9:bb:c0:0f:1c:9c:4e:8c:28:be:99:32:66:7c: 4d:d5:15:6c:3e:e2:4a:8e:c2:4c:d4:52:32:f6:42:77:83:bd: cf:8d:51:d1:4f:08:f8:96:3c:a7:50:18:ae:36:6b:5a:b8:8a: 6f:a8:e5:d0:76:4e:39:31:ea:e2:4b:6b:07:59:34:d7:ff:3f: 17:59:ec:ed -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQHtDybOyY38QNlc9SSVbhjp7pXQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZC RUZCM0FCQjAeFw0yNDEyMzAwMTU1MDJaFw0yNTEyMjkwMjAwMDJaMDMxMTAvBgNV BAMTKEYzQUNBNjA0ODI4REVDQkFGNDNBNEZEQTc4NTQyMzlDRjI2NjlFMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5EMGEgWItLpuqbO1kNcFL3I6i yot6mgrAuwlkIt0iYx08TPBFoeoCGrxIyJ243z69vCgzr1sVWXHL4LRqo2Kq4IaK GoxZ3YgRHMtcfhOAn2ohYZacNU5yUo6Nswd8L3fL6iJyzTSesnH+pRkyymkqSTo0 86u+wFY3X369N23XMbOzVoEJDxxvreIkTPa7QFAjt+znew/twfW71BMDN/43emZd 9A7/KbLKvYPz/y1oKUrolI8UAGDMt4vLPL1u2qDVnWLeuvgcdzCqljtioAEByL0g T6DtATqflC6OGTmAXK5wdzXrl+KbynF/voOzMsEjXoaA8D5M4gRagfq6840bAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU86ymBIKN7Lr0Ok/aeFQjnPJmnhwwHwYDVR0j BBgwFoAUyOwY4CdjmwW8WKIijRJkhr77OrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YzI4OTcwNi1hNGY0LTRlMWYtOWE2ZS0wMWM5YzUzY2Q4ZjkvMC9DOEVDMThFMDI3 NjM5QjA1QkM1OEEyMjI4RDEyNjQ4NkJFRkIzQUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZCRUZC M0FCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMyMzAzMjJlMzQzMzJlMzIzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyiv9MA0GCSqG SIb3DQEBCwUAA4IBAQBMU7yoQltogAbwP2IK/ls214k0cfzGhKOSAT9ul5I0UdkZ A/Kiro+NNRDLFK3XMNNq9fhIb/6Es1kxNp1Zzfje32T7O0Zp6ecLuWhB0bTNGOJj Krf69T3lUnPVPW69oOA5tm+nvc7OLQbcrYEirVV226nNKx830U00I2XTRQvrbdrj +TbbZDIZXP/6QTJjmPcHzEJ27jOr7fSAzWxBTAUq0wZLOULLlfDe1/77dOXiEpzo GdiC3mVc+bvADxycTowovpkyZnxN1RVsPuJKjsJM1FIy9kJ3g73PjVHRTwj4ljyn UBiuNmtauIpvqOXQdk45MeriS2sHWTTX/z8XWezt -----END CERTIFICATE-----Generated at Tue Mar 11 05:02:54 2025 by rpki-client