$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230342e302f32342d3234203d3e203233363739.roa File: 3230322e3136322e3230342e302f32342d3234203d3e203233363739.roa (raw, json) Hash identifier: 14kjAuHk2zM0wdVe09GZD29ym5c6JnN5tbyAjxtpPJc= Subject key identifier: 25:F0:0A:F1:65:F8:D6:23:01:68:EB:86:CC:B5:D2:F4:61:57:A0:03 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 591977FA82252A0D134118EAA44E1633DED7B6A0 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230342e302f32342d3234203d3e203233363739.roa Signing time: Fri 28 Feb 2025 05:02:19 +0000 ROA not before: Fri 28 Feb 2025 04:57:19 +0000 ROA not after: Fri 27 Feb 2026 05:02:19 +0000 asID: 23679 IP address blocks: 202.162.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:19:77:fa:82:25:2a:0d:13:41:18:ea:a4:4e:16:33:de:d7:b6:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Feb 28 04:57:19 2025 GMT Not After : Feb 27 05:02:19 2026 GMT Subject: CN=25F00AF165F8D6230168EB86CCB5D2F46157A003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cb:9a:f3:00:29:66:e1:e4:13:3f:21:8f:3f: 61:48:63:60:9d:da:ba:30:e5:a4:24:84:04:02:34: bd:70:31:f1:f7:ca:18:3a:81:d3:e9:23:10:1f:58: ae:59:91:09:a5:0a:6c:ed:3f:51:26:b0:39:3f:58: 8e:d6:40:eb:ae:9e:df:af:fa:20:e7:fe:96:a8:6f: a6:ff:e8:de:18:24:7c:17:ac:5a:2e:6b:7f:47:39: ec:f1:66:8e:44:4e:9e:68:3d:ae:db:31:e6:0f:21: 59:ff:15:a1:27:92:ae:fa:83:b3:ec:8e:43:b2:4f: dd:67:2c:8a:f7:43:d3:dd:dc:b6:5e:ec:49:8b:a3: ad:74:6f:26:1b:8d:cc:cd:6d:76:ec:7d:33:e3:88: e0:58:a6:b3:3b:7d:b5:04:f4:67:fd:8d:19:4d:1f: 51:e8:05:6f:82:db:5e:3d:f3:91:1b:a1:a6:b6:fe: a1:d7:81:79:b9:af:59:e6:9c:9d:0a:25:6b:f1:21: 14:a4:10:67:b3:cd:c4:19:3c:4f:de:37:14:d0:08: b1:d2:6e:26:fd:d0:1d:03:69:b6:32:df:db:78:e9: 74:55:1d:b5:68:7d:22:c7:d0:6b:d7:f0:b5:66:d3: da:ac:a4:95:77:bd:12:b8:fa:ed:f9:ed:72:1d:08: 49:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:F0:0A:F1:65:F8:D6:23:01:68:EB:86:CC:B5:D2:F4:61:57:A0:03 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230342e302f32342d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.204.0/24 Signature Algorithm: sha256WithRSAEncryption 18:af:a5:49:cb:1b:f5:cc:fd:6b:7b:a8:ef:c8:36:bb:c8:85: 97:3a:b1:9f:a1:03:2d:7c:30:4c:85:57:95:72:21:7c:0c:20: 93:ca:23:d5:00:3a:b1:7a:66:39:27:7a:d2:9f:4b:65:69:83: ab:cd:95:cc:dc:a0:ae:6b:37:d6:f1:78:2f:10:a6:80:2b:89: bb:2e:b1:6d:47:1b:b2:17:f4:6e:a2:e9:70:59:eb:b3:b1:8b: 64:39:84:e3:05:43:1d:74:40:5a:f4:55:f2:8c:61:dd:4d:38: 9e:39:30:b3:c7:b0:21:ce:5b:48:c8:86:91:db:c4:d5:b0:72: ce:12:38:78:62:11:38:cf:63:d3:9c:d7:e5:0c:8d:ef:65:25: ed:cc:b9:3b:30:2e:43:24:3e:d9:d4:1c:3e:50:7c:4d:94:02: 4f:c1:78:f4:80:78:24:e4:40:15:a4:c8:70:f4:ee:d7:c0:35: 1f:68:b2:38:48:68:d3:ff:6e:9d:0c:17:d2:43:f4:24:ce:96: 4c:bf:c3:02:c3:ae:a9:5f:0d:ac:ab:b4:23:de:74:41:ec:08: 20:f8:1e:42:f1:e8:7c:0c:10:ac:7b:b4:15:bf:72:a2:f2:c3: 86:a2:58:9f:67:0b:a4:40:f8:0b:d8:ed:33:3c:a6:bc:c4:14: 54:1b:f4:00 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWRl3+oIlKg0TQRjqpE4WM97XtqAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTAyMjgwNDU3MTlaFw0yNjAyMjcwNTAyMTlaMDMxMTAvBgNV BAMTKDI1RjAwQUYxNjVGOEQ2MjMwMTY4RUI4NkNDQjVEMkY0NjE1N0EwMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7y5rzAClm4eQTPyGPP2FIY2Cd 2row5aQkhAQCNL1wMfH3yhg6gdPpIxAfWK5ZkQmlCmztP1EmsDk/WI7WQOuunt+v +iDn/paob6b/6N4YJHwXrFoua39HOezxZo5ETp5oPa7bMeYPIVn/FaEnkq76g7Ps jkOyT91nLIr3Q9Pd3LZe7EmLo610byYbjczNbXbsfTPjiOBYprM7fbUE9Gf9jRlN H1HoBW+C214985Eboaa2/qHXgXm5r1nmnJ0KJWvxIRSkEGezzcQZPE/eNxTQCLHS bib90B0DabYy39t46XRVHbVofSLH0GvX8LVm09qspJV3vRK4+u357XIdCEm9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJfAK8WX41iMBaOuGzLXS9GFXoAMwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqLMMA0GCSqG SIb3DQEBCwUAA4IBAQAYr6VJyxv1zP1re6jvyDa7yIWXOrGfoQMtfDBMhVeVciF8 DCCTyiPVADqxemY5J3rSn0tlaYOrzZXM3KCuazfW8XgvEKaAK4m7LrFtRxuyF/Ru oulwWeuzsYtkOYTjBUMddEBa9FXyjGHdTTieOTCzx7AhzltIyIaR28TVsHLOEjh4 YhE4z2PTnNflDI3vZSXtzLk7MC5DJD7Z1Bw+UHxNlAJPwXj0gHgk5EAVpMhw9O7X wDUfaLI4SGjT/26dDBfSQ/QkzpZMv8MCw66pXw2sq7Qj3nRB7Agg+B5C8eh8DBCs e7QVv3Ki8sOGolifZwukQPgL2O0zPKa8xBRUG/QA -----END CERTIFICATE-----Generated at Sun Apr 6 13:56:58 2025 by rpki-client