$ rpki-client -vvf repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232382e302f32342d3234203d3e203338373634.roa File: 3132302e32392e3232382e302f32342d3234203d3e203338373634.roa (raw, json) Hash identifier: RPYaZow5ZwQZRWzcXVmYwaCDDEvxoHSoWyb9lPO3JzQ= Subject key identifier: 73:D4:05:05:79:81:39:45:D9:AF:5E:DF:49:18:3E:09:49:23:18:C0 Certificate issuer: /CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Certificate serial: 02C3AF4E69EE534448D93AB860FDD6F7B98C39CF Authority key identifier: 3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject info access: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232382e302f32342d3234203d3e203338373634.roa Signing time: Wed 19 Feb 2025 11:00:01 +0000 ROA not before: Wed 19 Feb 2025 10:55:01 +0000 ROA not after: Wed 18 Feb 2026 11:00:01 +0000 asID: 38764 IP address blocks: 120.29.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 04:11:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:c3:af:4e:69:ee:53:44:48:d9:3a:b8:60:fd:d6:f7:b9:8c:39:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Validity Not Before: Feb 19 10:55:01 2025 GMT Not After : Feb 18 11:00:01 2026 GMT Subject: CN=73D4050579813945D9AF5EDF49183E09492318C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:38:a9:44:fc:7b:b0:d5:b5:36:1a:02:9b:12: 75:6a:97:c5:e5:25:c0:be:20:e4:c0:17:03:f4:59: e1:d4:fa:b5:7e:77:2d:90:5a:9c:0d:ce:c6:34:9e: 55:c9:f6:a2:9c:0d:6e:d7:80:9b:7a:74:09:cb:12: c6:79:1b:7d:96:d5:f7:7d:b7:6d:b6:d8:88:66:7a: 1c:10:b5:55:6b:26:5f:85:b0:fb:9f:58:04:d1:bc: 66:fb:c0:4e:87:5f:03:4e:59:50:4c:e9:07:f3:e4: f4:18:e2:5f:53:ac:91:ac:c1:4b:71:25:9c:03:09: c7:01:db:da:6a:bf:12:7b:3d:ad:b4:49:81:e8:99: ce:25:27:a4:83:12:44:13:e8:28:4b:54:0f:6f:e3: a2:96:7c:e5:a9:02:eb:e2:85:f0:c6:f1:66:5f:21: 5a:d4:70:2b:d1:87:46:1c:eb:5f:8c:91:6b:d9:a2: d5:9d:33:6a:22:e3:a0:e9:6d:2e:75:54:a7:8f:86: d4:fa:4c:68:89:b8:9a:65:cc:a9:1c:55:fa:3e:03: aa:ec:c4:7c:c5:11:3f:42:dd:11:42:9c:03:a9:73: ff:86:cc:83:7a:77:72:f2:6c:6e:2a:d4:8b:cc:49: 6c:ac:cd:26:4f:ec:d9:43:4e:38:11:d1:be:dc:39: ef:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:D4:05:05:79:81:39:45:D9:AF:5E:DF:49:18:3E:09:49:23:18:C0 X509v3 Authority Key Identifier: keyid:3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232382e302f32342d3234203d3e203338373634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.29.228.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:b5:14:43:38:94:a3:b6:0e:ae:8c:58:e8:97:74:87:3c:02: 9a:6f:d9:6a:4a:34:e0:e4:46:81:f3:bf:cc:71:df:c3:9f:ef: d1:d3:ed:5d:b9:9e:37:88:80:21:18:63:4e:f3:31:36:89:3a: 57:6a:28:43:60:31:ff:66:69:b3:05:af:cd:5e:e2:d4:ca:f6: fb:36:e8:bf:f6:b1:d7:34:fe:d2:44:86:96:fc:12:0c:fa:91: 87:75:19:ec:9b:70:60:6b:35:59:74:f0:16:0a:59:a5:bc:11: 65:e8:1b:ec:eb:1b:45:1a:87:4e:f2:ac:42:b3:7c:21:07:ef: fb:0d:3d:49:6e:62:7d:e1:52:6e:f3:61:30:d1:d1:49:ee:ba: c4:03:15:e5:c2:73:0e:2d:e8:ef:ce:bb:47:d9:c6:e8:ba:c3: 59:f4:80:37:43:a5:45:74:47:33:b4:12:da:ee:9b:08:09:da: 61:41:69:13:49:00:23:01:8a:3f:c7:45:75:c2:ee:dd:e0:f7: 3e:1b:ec:60:57:c9:7f:c7:77:96:39:50:77:3d:c7:2a:c9:47: c4:88:65:de:af:2b:4e:03:7a:00:de:c8:1b:bb:cf:7f:ec:a7: ef:1a:1d:ff:6b:cd:1f:4b:a5:8c:43:83:3f:d4:14:ea:a5:eb: 93:99:af:8e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAsOvTmnuU0RI2Tq4YP3W97mMOc8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdB MzVCMDI1MTAeFw0yNTAyMTkxMDU1MDFaFw0yNjAyMTgxMTAwMDFaMDMxMTAvBgNV BAMTKDczRDQwNTA1Nzk4MTM5NDVEOUFGNUVERjQ5MTgzRTA5NDkyMzE4QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4OKlE/Huw1bU2GgKbEnVql8Xl JcC+IOTAFwP0WeHU+rV+dy2QWpwNzsY0nlXJ9qKcDW7XgJt6dAnLEsZ5G32W1fd9 t2222IhmehwQtVVrJl+FsPufWATRvGb7wE6HXwNOWVBM6Qfz5PQY4l9TrJGswUtx JZwDCccB29pqvxJ7Pa20SYHomc4lJ6SDEkQT6ChLVA9v46KWfOWpAuvihfDG8WZf IVrUcCvRh0Yc61+MkWvZotWdM2oi46DpbS51VKePhtT6TGiJuJplzKkcVfo+A6rs xHzFET9C3RFCnAOpc/+GzIN6d3LybG4q1IvMSWyszSZP7NlDTjgR0b7cOe8FAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUc9QFBXmBOUXZr17fSRg+CUkjGMAwHwYDVR0j BBgwFoAUPmZijAPKuMbW/N7b4HAFV6NbAlEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjFjOWNhZC1jM2I5LTQ1YTAtYmViNi1iY2U0OGUyYjIyNzIvMC8zRTY2NjI4QzAz Q0FCOEM2RDZGQ0RFREJFMDcwMDU1N0EzNUIwMjUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdBMzVC MDI1MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyMWM5Y2FkLWMzYjktNDVhMC1i ZWI2LWJjZTQ4ZTJiMjI3Mi8wLzMxMzIzMDJlMzIzOTJlMzIzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHgd5DANBgkqhkiG 9w0BAQsFAAOCAQEATrUUQziUo7YOroxY6Jd0hzwCmm/Zako04ORGgfO/zHHfw5/v 0dPtXbmeN4iAIRhjTvMxNok6V2ooQ2Ax/2ZpswWvzV7i1Mr2+zbov/ax1zT+0kSG lvwSDPqRh3UZ7JtwYGs1WXTwFgpZpbwRZegb7OsbRRqHTvKsQrN8IQfv+w09SW5i feFSbvNhMNHRSe66xAMV5cJzDi3o7867R9nG6LrDWfSAN0OlRXRHM7QS2u6bCAna YUFpE0kAIwGKP8dFdcLu3eD3PhvsYFfJf8d3ljlQdz3HKslHxIhl3q8rTgN6AN7I G7vPf+yn7xod/2vNH0uljEODP9QU6qXrk5mvjg== -----END CERTIFICATE-----Generated at Sun Apr 6 08:25:39 2025 by rpki-client