$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33342e302f32332d3233203d3e203538343837.roa File: 3230322e31302e33342e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: hurkyeazXrOEmUWCJ42qCT3bjAG0s//7GloH0oAN8wE= Subject key identifier: E5:29:8B:04:7C:26:84:C1:BE:B1:FA:89:E3:13:CB:5A:7D:53:D5:EB Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 40CE869FB88F4069DAA5B34627DD7488EC25305B Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33342e302f32332d3233203d3e203538343837.roa Signing time: Thu 13 Mar 2025 10:00:45 +0000 ROA not before: Thu 13 Mar 2025 09:55:45 +0000 ROA not after: Thu 12 Mar 2026 10:00:45 +0000 asID: 58487 IP address blocks: 202.10.34.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 12:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:ce:86:9f:b8:8f:40:69:da:a5:b3:46:27:dd:74:88:ec:25:30:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Mar 13 09:55:45 2025 GMT Not After : Mar 12 10:00:45 2026 GMT Subject: CN=E5298B047C2684C1BEB1FA89E313CB5A7D53D5EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1c:d7:1d:6e:f9:a1:74:8f:ad:3d:d6:eb:7f: 11:19:77:30:60:66:e3:67:94:d8:bf:59:6f:a8:b3: ee:7a:2e:fc:f6:46:4a:99:79:39:12:a6:49:31:0f: e1:b4:c7:d5:c2:d0:40:92:26:63:2c:1b:78:6e:86: ea:13:c3:9d:7e:8b:02:96:27:29:5b:22:58:0c:d8: c3:34:25:c7:c3:81:bf:50:b5:43:0a:6f:d6:46:8e: 6e:73:75:06:09:1d:f6:48:29:ca:c2:48:5a:fc:a6: 1e:3b:09:19:64:f6:8a:02:78:f9:0c:8e:c9:4c:5b: 7c:19:05:d9:5b:d8:4a:dd:83:6d:2e:bd:dd:20:40: 3c:c7:2c:3b:5b:99:81:76:24:b0:80:6a:bb:5f:d2: f5:38:0c:51:b5:f1:01:dc:98:42:1e:95:26:6a:b1: 6c:25:db:d1:f6:33:ea:2f:09:e4:6e:3d:55:1f:52: 14:f0:f6:18:14:7e:98:c0:e9:b9:db:50:72:68:80: 6d:8b:ea:dc:e6:40:e0:22:b8:a1:ce:fd:97:69:a2: 17:c4:0a:11:a2:d4:c2:eb:e8:cd:da:03:8a:e8:ef: 13:7e:45:67:ea:ea:f3:5f:d9:2f:7c:c8:a5:98:7a: 8b:12:a1:fc:0a:bf:54:58:c9:ab:ad:49:af:45:02: 5c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:29:8B:04:7C:26:84:C1:BE:B1:FA:89:E3:13:CB:5A:7D:53:D5:EB X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33342e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.34.0/23 Signature Algorithm: sha256WithRSAEncryption c3:39:db:c3:fb:9a:fb:e1:55:7f:da:82:9f:6b:5e:ed:46:7e: 3e:29:a2:47:3b:2a:6c:00:f1:02:c5:46:6d:31:9c:a0:51:89: 42:ae:a9:0b:40:d5:05:15:bf:90:5c:d6:20:5f:02:74:8a:d1: fb:c1:33:5d:05:66:25:43:c4:c8:c2:c1:58:e4:82:a7:45:9e: 86:bc:40:bd:b9:53:25:05:15:29:32:62:c1:f2:22:c4:d2:51: 67:24:a9:4b:a0:0e:da:ee:3d:5d:15:52:d8:63:1d:2a:31:29: 2b:83:e5:67:f3:12:0d:c1:de:35:b5:ce:fa:93:7c:00:a0:e8: 51:5d:c5:de:b6:b8:23:5b:bb:57:0f:73:17:89:b6:ca:20:29: a8:8e:b7:a1:4f:d7:3c:c8:60:6f:a0:f4:7a:b1:8b:1c:a4:25: ee:ff:f2:16:34:c6:16:79:9e:df:ed:3a:63:78:75:ba:9e:aa: 4d:63:a6:8a:ed:d6:c0:bf:36:fc:5e:33:b3:1e:a2:34:e8:9e: a6:01:eb:1c:f0:94:78:47:68:15:da:7f:89:34:86:30:af:bf: 8a:fd:a4:ce:17:86:d2:38:8e:8c:d9:9a:c4:e5:61:e9:3a:70: 25:d4:7d:25:7b:34:0e:cb:73:66:0a:e0:a5:68:8b:05:41:20: 4c:26:4f:5c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQM6Gn7iPQGnapbNGJ910iOwlMFswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNTAzMTMwOTU1NDVaFw0yNjAzMTIxMDAwNDVaMDMxMTAvBgNV BAMTKEU1Mjk4QjA0N0MyNjg0QzFCRUIxRkE4OUUzMTNDQjVBN0Q1M0Q1RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQHNcdbvmhdI+tPdbrfxEZdzBg ZuNnlNi/WW+os+56Lvz2RkqZeTkSpkkxD+G0x9XC0ECSJmMsG3huhuoTw51+iwKW JylbIlgM2MM0JcfDgb9QtUMKb9ZGjm5zdQYJHfZIKcrCSFr8ph47CRlk9ooCePkM jslMW3wZBdlb2Erdg20uvd0gQDzHLDtbmYF2JLCAartf0vU4DFG18QHcmEIelSZq sWwl29H2M+ovCeRuPVUfUhTw9hgUfpjA6bnbUHJogG2L6tzmQOAiuKHO/ZdpohfE ChGi1MLr6M3aA4ro7xN+RWfq6vNf2S98yKWYeosSofwKv1RYyautSa9FAlyjAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU5SmLBHwmhMG+sfqJ4xPLWn1T1eswHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzMzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKCiIwDQYJKoZIhvcN AQELBQADggEBAMM528P7mvvhVX/agp9rXu1Gfj4pokc7KmwA8QLFRm0xnKBRiUKu qQtA1QUVv5Bc1iBfAnSK0fvBM10FZiVDxMjCwVjkgqdFnoa8QL25UyUFFSkyYsHy IsTSUWckqUugDtruPV0VUthjHSoxKSuD5WfzEg3B3jW1zvqTfACg6FFdxd62uCNb u1cPcxeJtsogKaiOt6FP1zzIYG+g9HqxixykJe7/8hY0xhZ5nt/tOmN4dbqeqk1j port1sC/NvxeM7MeojTonqYB6xzwlHhHaBXaf4k0hjCvv4r9pM4XhtI4jozZmsTl Yek6cCXUfSV7NA7Lc2YK4KVoiwVBIEwmT1w= -----END CERTIFICATE-----Generated at Sun Apr 6 13:24:37 2025 by rpki-client