$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33362e302f32332d3233203d3e203538343837.roa File: 3230322e31302e33362e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: laV47cYc2Y+YU5ngUHDLm0eIPkxpjWT8ScmhZj5qM0I= Subject key identifier: 8D:CF:3A:44:BA:7E:37:C5:6B:9B:21:76:DC:D7:F9:5A:D4:37:93:C7 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 3F8F14E57405FC34876F6790628CA856AE9D810A Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33362e302f32332d3233203d3e203538343837.roa Signing time: Thu 13 Mar 2025 11:02:24 +0000 ROA not before: Thu 13 Mar 2025 10:57:24 +0000 ROA not after: Thu 12 Mar 2026 11:02:24 +0000 asID: 58487 IP address blocks: 202.10.36.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 12:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:8f:14:e5:74:05:fc:34:87:6f:67:90:62:8c:a8:56:ae:9d:81:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Mar 13 10:57:24 2025 GMT Not After : Mar 12 11:02:24 2026 GMT Subject: CN=8DCF3A44BA7E37C56B9B2176DCD7F95AD43793C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:43:86:31:08:20:91:2c:f0:1c:40:b6:f6:5a: 03:1a:b4:85:84:90:9d:c8:8e:6f:7d:e5:b7:c2:44: af:c7:28:a3:50:83:23:f8:e3:00:8b:16:1d:9f:82: e1:fc:a8:52:73:60:0f:da:36:72:da:fd:87:c2:81: fa:45:c7:51:07:47:5b:00:c5:2b:06:32:0e:b8:df: 8c:b0:c1:a7:0f:9b:9a:c3:db:46:ca:a7:97:56:92: 8b:b0:11:32:ff:a6:14:44:d9:89:2b:50:bf:f2:49: 38:85:3b:aa:b7:5f:6b:fd:2e:c1:df:0d:ab:b0:4c: 8e:80:c0:6c:95:a0:a0:f4:e0:5e:ec:a3:c8:69:ad: bc:96:f2:5b:c2:db:65:df:62:9e:7f:2b:2a:87:85: 0e:7a:90:63:6e:50:70:62:87:b7:49:26:dd:3f:42: 23:c0:69:2e:47:c8:d5:1b:eb:ca:45:27:41:75:bc: dc:8d:ef:11:2e:7d:73:7e:c9:5d:77:c5:c1:e9:91: 23:86:dd:60:d3:7a:f0:fb:92:57:88:2d:f6:30:42: d2:d5:d5:de:ce:2d:9c:0e:3c:55:e4:ee:17:4c:90: 27:c4:87:ab:0a:70:10:cf:7e:28:cb:00:f6:2d:24: 8c:d1:76:08:42:75:09:75:79:58:5c:3f:d9:fe:df: 85:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:CF:3A:44:BA:7E:37:C5:6B:9B:21:76:DC:D7:F9:5A:D4:37:93:C7 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33362e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.36.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:74:df:5c:11:90:1f:37:81:61:e4:e7:bc:ef:16:2e:19:bc: 6d:03:99:4b:68:51:e3:0f:3e:90:2c:56:a9:4f:9c:af:85:d7: 49:3c:94:d4:b5:f0:8b:4b:ed:62:2b:28:2c:86:b2:1c:49:a9: 90:d8:b7:c6:01:ad:49:bf:6e:02:22:de:eb:2e:11:a4:c4:22: 8e:c5:30:53:87:76:00:4b:9c:1a:4a:60:68:ba:8b:08:10:16: 61:d2:51:d2:87:87:c6:fe:63:3e:1f:6e:97:cb:34:b3:91:5f: 8c:56:e7:c6:96:44:d6:08:82:d0:0a:50:96:78:47:f7:0c:c3: 31:24:58:4c:5a:1a:aa:b8:ef:ae:be:c7:e0:43:9d:87:cb:ff: e2:ec:35:ed:89:aa:a0:38:84:37:be:07:25:32:0e:1b:e3:81: a5:0d:30:15:4f:14:f5:4a:60:15:85:78:af:94:df:91:46:67: 26:d5:56:3d:cc:97:78:35:21:dc:e8:d6:75:98:93:70:2f:c3: d4:50:e9:02:1b:14:ba:bf:4e:1c:46:af:ae:68:75:00:5f:7f: 25:5c:05:10:40:bb:6f:30:29:60:cf:c4:b8:28:e2:0d:1f:0e: 8f:53:b4:0c:6e:24:12:af:ee:d9:38:8a:29:67:36:e2:60:1e: 54:22:c5:c4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUP48U5XQF/DSHb2eQYoyoVq6dgQowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNTAzMTMxMDU3MjRaFw0yNjAzMTIxMTAyMjRaMDMxMTAvBgNV BAMTKDhEQ0YzQTQ0QkE3RTM3QzU2QjlCMjE3NkRDRDdGOTVBRDQzNzkzQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChQ4YxCCCRLPAcQLb2WgMatIWE kJ3Ijm995bfCRK/HKKNQgyP44wCLFh2fguH8qFJzYA/aNnLa/YfCgfpFx1EHR1sA xSsGMg6434ywwacPm5rD20bKp5dWkouwETL/phRE2YkrUL/ySTiFO6q3X2v9LsHf DauwTI6AwGyVoKD04F7so8hprbyW8lvC22XfYp5/KyqHhQ56kGNuUHBih7dJJt0/ QiPAaS5HyNUb68pFJ0F1vNyN7xEufXN+yV13xcHpkSOG3WDTevD7kleILfYwQtLV 1d7OLZwOPFXk7hdMkCfEh6sKcBDPfijLAPYtJIzRdghCdQl1eVhcP9n+34XhAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUjc86RLp+N8VrmyF23Nf5WtQ3k8cwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzMzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKCiQwDQYJKoZIhvcN AQELBQADggEBAFx031wRkB83gWHk57zvFi4ZvG0DmUtoUeMPPpAsVqlPnK+F10k8 lNS18ItL7WIrKCyGshxJqZDYt8YBrUm/bgIi3usuEaTEIo7FMFOHdgBLnBpKYGi6 iwgQFmHSUdKHh8b+Yz4fbpfLNLORX4xW58aWRNYIgtAKUJZ4R/cMwzEkWExaGqq4 766+x+BDnYfL/+LsNe2JqqA4hDe+ByUyDhvjgaUNMBVPFPVKYBWFeK+U35FGZybV Vj3Ml3g1Idzo1nWYk3Avw9RQ6QIbFLq/ThxGr65odQBffyVcBRBAu28wKWDPxLgo 4g0fDo9TtAxuJBKv7tk4iilnNuJgHlQixcQ= -----END CERTIFICATE-----Generated at Sun Apr 6 13:26:50 2025 by rpki-client