$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33342e302f32342d3234203d3e203538343837.roa File: 3230322e31302e33342e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: 2wiLBKpeDsUZcWKGP0ZGy0ZfZGGfaiwLub24AoxujkE= Subject key identifier: 6E:0D:8B:3B:62:09:B4:22:46:B9:F3:CD:16:B6:03:F8:7F:58:14:E2 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 566CF1B30C3F31AEEB629A462A8B694991E3F429 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33342e302f32342d3234203d3e203538343837.roa Signing time: Thu 13 Mar 2025 10:00:45 +0000 ROA not before: Thu 13 Mar 2025 09:55:45 +0000 ROA not after: Thu 12 Mar 2026 10:00:45 +0000 asID: 58487 IP address blocks: 202.10.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:56:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:6c:f1:b3:0c:3f:31:ae:eb:62:9a:46:2a:8b:69:49:91:e3:f4:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Mar 13 09:55:45 2025 GMT Not After : Mar 12 10:00:45 2026 GMT Subject: CN=6E0D8B3B6209B42246B9F3CD16B603F87F5814E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:13:40:3e:7d:74:20:66:d4:69:62:8c:92:9c: 0b:f0:26:36:7b:b9:7c:ed:ee:ce:07:72:d2:0b:e1: 87:64:81:f7:de:48:c9:23:e4:36:0d:c3:e1:b4:eb: ba:bd:13:a7:ea:e7:9b:22:81:49:69:b4:31:4f:91: 48:86:98:7b:8f:47:34:70:96:6b:e5:d5:71:dc:8f: fd:e0:5c:d7:ee:e4:65:50:23:a0:95:bc:80:62:01: c0:ac:7a:ca:ac:36:bf:3b:50:75:d5:c0:ca:f2:93: e1:d7:24:94:20:65:bf:70:16:3b:cf:2f:31:70:ad: 59:e2:0e:00:35:07:d8:7d:f7:b3:47:49:4e:47:3c: fb:e4:4a:a2:66:b5:99:49:6d:08:26:27:59:6d:47: 1d:e0:6f:a5:95:6b:95:ce:ea:5c:54:83:96:ff:7a: e6:50:07:0b:dc:f7:e4:12:36:18:aa:65:71:00:5a: 10:d6:f4:0a:ea:f0:c7:4e:ad:0a:fa:ef:25:25:ae: be:3b:39:7e:63:73:d1:08:9b:9e:13:9b:a4:e6:f5: 96:11:2c:73:ef:af:42:ce:79:2a:32:e8:0d:9c:69: 68:8d:79:e4:ba:27:79:27:5c:d3:0a:0d:2c:fa:f2: 44:8b:d0:2a:88:0e:67:79:f3:c1:de:95:f6:63:56: f9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:0D:8B:3B:62:09:B4:22:46:B9:F3:CD:16:B6:03:F8:7F:58:14:E2 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33342e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.34.0/24 Signature Algorithm: sha256WithRSAEncryption 18:52:ac:69:f3:da:7c:a1:6d:8c:c0:32:cb:ed:43:c7:f7:b4: 0e:1b:f9:fa:4c:92:18:50:17:7a:df:7a:45:d4:74:32:16:a5: 02:37:1b:56:4b:fd:77:1c:49:3f:70:d7:64:dc:3e:a6:db:37: 56:50:fe:52:14:42:3b:92:e3:0f:7e:72:5f:33:46:81:ea:b2: 68:b4:6f:f9:ac:b2:16:65:ac:70:2e:50:21:69:51:4f:c3:f4: 6a:13:d9:46:cf:10:78:3b:3e:34:9d:d8:b6:40:f1:d9:70:ed: bd:99:63:06:07:80:fa:bd:ca:6a:02:61:c0:8a:c2:83:8b:a9: 43:66:ef:c0:db:57:01:79:95:35:ed:87:94:c4:c6:65:7e:31: 70:fe:fd:d6:3a:72:09:88:56:e4:1b:f3:e5:78:65:28:e9:96: b7:0b:3c:51:06:23:4d:46:00:f9:2f:1b:d1:69:4a:b0:3f:0c: 73:f3:95:48:5c:f0:fb:bf:0e:6f:91:66:85:3a:f2:94:8e:f9: fb:15:d7:00:51:33:b1:6e:9f:7f:cd:5e:c3:0d:fd:22:b6:a0: c5:bd:5e:af:ae:ff:c3:a8:e0:49:c8:07:ad:ab:40:50:b6:16: 40:a6:0c:50:2b:63:8c:da:54:0b:35:82:32:ff:3e:92:97:94: 61:14:24:ad -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUVmzxsww/Ma7rYppGKotpSZHj9CkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNTAzMTMwOTU1NDVaFw0yNjAzMTIxMDAwNDVaMDMxMTAvBgNV BAMTKDZFMEQ4QjNCNjIwOUI0MjI0NkI5RjNDRDE2QjYwM0Y4N0Y1ODE0RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQE0A+fXQgZtRpYoySnAvwJjZ7 uXzt7s4HctIL4YdkgffeSMkj5DYNw+G067q9E6fq55sigUlptDFPkUiGmHuPRzRw lmvl1XHcj/3gXNfu5GVQI6CVvIBiAcCsesqsNr87UHXVwMryk+HXJJQgZb9wFjvP LzFwrVniDgA1B9h997NHSU5HPPvkSqJmtZlJbQgmJ1ltRx3gb6WVa5XO6lxUg5b/ euZQBwvc9+QSNhiqZXEAWhDW9Arq8MdOrQr67yUlrr47OX5jc9EIm54Tm6Tm9ZYR LHPvr0LOeSoy6A2caWiNeeS6J3knXNMKDSz68kSL0CqIDmd588HelfZjVvklAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUbg2LO2IJtCJGufPNFrYD+H9YFOIwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzMzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCiIwDQYJKoZIhvcN AQELBQADggEBABhSrGnz2nyhbYzAMsvtQ8f3tA4b+fpMkhhQF3rfekXUdDIWpQI3 G1ZL/XccST9w12TcPqbbN1ZQ/lIUQjuS4w9+cl8zRoHqsmi0b/msshZlrHAuUCFp UU/D9GoT2UbPEHg7PjSd2LZA8dlw7b2ZYwYHgPq9ymoCYcCKwoOLqUNm78DbVwF5 lTXth5TExmV+MXD+/dY6cgmIVuQb8+V4ZSjplrcLPFEGI01GAPkvG9FpSrA/DHPz lUhc8Pu/Dm+RZoU68pSO+fsV1wBRM7Fun3/NXsMN/SK2oMW9Xq+u/8Oo4EnIB62r QFC2FkCmDFArY4zaVAs1gjL/PpKXlGEUJK0= -----END CERTIFICATE-----Generated at Tue Apr 8 23:36:32 2025 by rpki-client