$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32362e302f32342d3234203d3e20313431383932.roa File: 3230322e37332e32362e302f32342d3234203d3e20313431383932.roa (raw, json) Hash identifier: QqG89TEZjAnI8K1IrPR29kJtDOMjh4sJXdy9wDe7GkQ= Subject key identifier: 62:C5:F7:BF:A6:2B:18:04:71:71:40:18:CC:7A:4C:40:1F:5C:F3:41 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 2F8B77E772018155AA23221BDB3044568968C9A0 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32362e302f32342d3234203d3e20313431383932.roa Signing time: Wed 16 Apr 2025 13:29:48 +0000 ROA not before: Wed 16 Apr 2025 13:24:48 +0000 ROA not after: Wed 15 Apr 2026 13:29:48 +0000 asID: 141892 IP address blocks: 202.73.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 22:39:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:8b:77:e7:72:01:81:55:aa:23:22:1b:db:30:44:56:89:68:c9:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Apr 16 13:24:48 2025 GMT Not After : Apr 15 13:29:48 2026 GMT Subject: CN=62C5F7BFA62B180471714018CC7A4C401F5CF341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ab:01:74:cb:b3:8a:5f:3f:68:b3:97:d7:3b: 2c:d4:5a:15:87:f9:b3:87:db:7e:6a:a7:65:09:ac: 07:ff:c4:f0:66:d6:74:eb:47:52:4b:60:f4:1f:42: 18:e9:fb:94:60:ae:48:63:f3:21:65:4c:a4:be:16: 91:0e:d1:e5:b2:1c:9e:cf:ab:b7:2f:61:15:a6:7c: e3:d4:09:a7:20:aa:f7:fe:85:6f:db:ef:de:b4:8f: 46:6e:45:13:0a:f3:5f:af:53:d8:ef:2f:37:7b:46: 95:02:2b:58:93:b0:9a:72:fd:b0:6f:6f:b1:ba:9f: 32:5f:a9:0a:bc:5c:00:bc:6e:2e:bf:54:52:7b:91: 0b:85:03:ee:10:05:11:9c:ee:32:a9:32:0d:f1:c3: dd:f0:74:d8:51:4c:7a:f7:30:bd:81:03:9d:af:15: 72:da:56:22:0d:6f:ec:c1:ba:6b:fe:22:e2:df:24: bd:62:1b:f2:ef:52:6a:52:e9:ca:d8:4a:d7:55:ed: 50:5b:92:f7:48:69:68:47:9a:31:34:ec:b3:5b:ce: f0:f9:50:34:46:6d:df:e5:45:02:4f:b5:ca:2f:6d: bc:7a:7b:9e:2f:1f:9a:f2:48:77:5f:75:e5:1c:06: 07:4e:39:e5:a0:87:81:38:e8:a8:5d:06:a8:8f:69: bb:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:C5:F7:BF:A6:2B:18:04:71:71:40:18:CC:7A:4C:40:1F:5C:F3:41 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32362e302f32342d3234203d3e20313431383932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.26.0/24 Signature Algorithm: sha256WithRSAEncryption a5:ec:b8:ad:8a:e6:ad:ea:0c:60:bc:22:04:43:8e:5b:c0:5d: 72:1a:56:a9:7d:ad:6b:a3:bf:12:60:44:7d:cf:7c:b6:42:36: 02:1b:78:7d:81:3b:c3:2f:f1:a2:06:04:aa:bf:08:80:8b:89: 99:21:da:e9:8e:b5:27:80:7e:03:54:95:13:6c:4c:4c:a1:95: 8c:84:7a:f5:56:47:3e:50:71:ba:7f:28:67:e8:5b:d5:09:99: 57:ea:6a:b6:29:39:5a:4c:6b:61:39:97:25:f9:a4:57:f2:b6: 98:b4:3a:14:2b:a4:ac:af:0b:6f:d8:53:c5:67:23:be:33:28: ca:0d:e7:f6:dc:fe:38:71:71:30:73:b3:23:ba:89:2d:4e:9b: 36:50:57:f2:64:bc:ed:27:1d:b8:98:92:d1:64:74:15:fb:a6: 66:e4:d9:bd:43:77:50:11:db:b7:78:b5:aa:53:c3:78:48:06: 95:f8:42:10:13:09:7d:b4:b5:61:fc:00:bf:22:fd:db:ef:ce: 60:eb:e1:c7:dc:a4:cd:bb:6d:ac:43:c1:9e:de:e9:29:fa:ae: 44:2d:fe:20:36:ae:0e:39:4b:9a:5d:01:98:bb:3c:fd:a2:d3: aa:b0:dc:85:1d:0c:26:d1:c1:94:97:59:e7:e3:9c:c9:31:00: 60:91:f3:bf -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUL4t353IBgVWqIyIb2zBEVoloyaAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNTA0MTYxMzI0NDhaFw0yNjA0MTUxMzI5NDhaMDMxMTAvBgNV BAMTKDYyQzVGN0JGQTYyQjE4MDQ3MTcxNDAxOENDN0E0QzQwMUY1Q0YzNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/qwF0y7OKXz9os5fXOyzUWhWH +bOH235qp2UJrAf/xPBm1nTrR1JLYPQfQhjp+5Rgrkhj8yFlTKS+FpEO0eWyHJ7P q7cvYRWmfOPUCacgqvf+hW/b7960j0ZuRRMK81+vU9jvLzd7RpUCK1iTsJpy/bBv b7G6nzJfqQq8XAC8bi6/VFJ7kQuFA+4QBRGc7jKpMg3xw93wdNhRTHr3ML2BA52v FXLaViINb+zBumv+IuLfJL1iG/LvUmpS6crYStdV7VBbkvdIaWhHmjE07LNbzvD5 UDRGbd/lRQJPtcovbbx6e54vH5rySHdfdeUcBgdOOeWgh4E46KhdBqiPabubAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYsX3v6YrGARxcUAYzHpMQB9c80EwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzAzMjJlMzczMzJlMzIzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM4MzkzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpJGjANBgkqhkiG 9w0BAQsFAAOCAQEApey4rYrmreoMYLwiBEOOW8BdchpWqX2ta6O/EmBEfc98tkI2 Aht4fYE7wy/xogYEqr8IgIuJmSHa6Y61J4B+A1SVE2xMTKGVjIR69VZHPlBxun8o Z+hb1QmZV+pqtik5WkxrYTmXJfmkV/K2mLQ6FCukrK8Lb9hTxWcjvjMoyg3n9tz+ OHFxMHOzI7qJLU6bNlBX8mS87ScduJiS0WR0FfumZuTZvUN3UBHbt3i1qlPDeEgG lfhCEBMJfbS1YfwAvyL92+/OYOvhx9ykzbttrEPBnt7pKfquRC3+IDauDjlLml0B mLs8/aLTqrDchR0MJtHBlJdZ5+OcyTEAYJHzvw== -----END CERTIFICATE-----Generated at Sat Apr 19 12:44:10 2025 by rpki-client