$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33382e302f32332d3233203d3e203538343837.roa File: 3230322e31302e33382e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: QPLTqMl2k8GDfaLn1HVTOtXELs6osZwBMiSvIHtsFL8= Subject key identifier: 1B:2C:6B:79:4D:5B:84:A2:B4:29:1B:02:28:2E:BA:BB:DA:5E:97:88 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 2D699EEC4693E316874C947D306C5AFC447DDD5C Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33382e302f32332d3233203d3e203538343837.roa Signing time: Thu 13 Mar 2025 11:02:24 +0000 ROA not before: Thu 13 Mar 2025 10:57:24 +0000 ROA not after: Thu 12 Mar 2026 11:02:24 +0000 asID: 58487 IP address blocks: 202.10.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 12:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:69:9e:ec:46:93:e3:16:87:4c:94:7d:30:6c:5a:fc:44:7d:dd:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Mar 13 10:57:24 2025 GMT Not After : Mar 12 11:02:24 2026 GMT Subject: CN=1B2C6B794D5B84A2B4291B02282EBABBDA5E9788 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:cd:15:2b:f2:ba:a8:0a:bd:03:4e:26:1b:cf: cf:98:bc:75:2a:6f:a5:c2:bd:7a:93:5c:06:d0:4a: c8:88:f5:ba:c2:4c:5d:2e:f3:84:1d:b8:58:7b:74: 84:5a:ae:05:70:71:3b:a0:d5:3d:7f:26:4a:74:9f: 7e:c3:bb:e5:cd:07:15:36:f5:4a:9d:ed:a4:68:56: 2d:13:3c:49:f4:5c:d8:60:fb:a9:3e:74:de:18:a1: 0c:fd:9e:3d:f0:7a:67:af:83:7f:56:a7:64:56:69: e1:5a:f6:2d:d9:f5:43:1f:22:9e:c3:38:fc:39:12: 4f:e8:36:5b:19:5d:e7:d2:b4:cc:ae:f5:91:ee:a8: bf:6e:fa:38:67:17:51:73:52:56:6f:cb:96:d2:9b: 29:22:a7:3e:de:9f:84:71:40:c4:6a:e2:90:5a:25: db:c4:76:2e:70:cd:95:d9:f3:83:aa:8c:c6:05:32: 93:c6:14:b2:78:4d:a7:4e:09:d1:98:74:55:b1:29: 8c:08:c3:79:13:3d:58:33:f7:13:2f:09:a1:8b:7f: 63:31:16:9d:3d:eb:d2:98:a1:e1:af:94:0a:a0:9a: ca:3c:4e:f8:10:c9:0c:54:07:0a:bd:e4:59:16:ec: e4:bf:9e:93:3a:89:b7:82:09:73:7c:d6:38:4e:bd: ef:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:2C:6B:79:4D:5B:84:A2:B4:29:1B:02:28:2E:BA:BB:DA:5E:97:88 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33382e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.38.0/23 Signature Algorithm: sha256WithRSAEncryption 05:4d:00:c1:72:29:1f:29:71:7c:b5:fd:55:2c:85:c9:8d:fe: cc:8c:3f:17:79:fd:7f:93:76:0f:e6:34:e7:4c:38:56:b7:05: dd:9e:fd:02:eb:9a:0f:16:9f:aa:26:fa:14:ca:9c:6f:b4:60: 38:6c:c7:7f:24:bc:0a:38:fc:bd:d7:03:97:93:f5:01:b2:98: 8b:50:1c:74:0d:62:7b:1f:96:58:88:3a:5a:e9:38:39:39:6e: 51:45:f1:e7:e0:3b:8d:52:54:f5:a4:ee:3e:59:92:1f:51:48: 73:63:36:1a:7a:01:68:74:bc:e1:e6:e8:3b:50:dc:06:10:8d: 3c:26:b2:b4:03:fe:a8:52:11:bb:ce:60:96:e3:9c:c9:b5:3c: 65:d3:f7:25:76:c0:34:fb:2b:dd:8e:27:c8:29:9e:de:d7:05: fc:f8:15:05:ba:f5:6f:59:ef:6e:14:e0:44:7a:7a:0a:16:f1: b1:bc:ac:03:3f:5f:80:3a:e8:db:cd:4f:b3:7a:9a:5e:13:94: 21:ee:6b:11:26:07:72:7c:27:66:a1:49:56:82:42:fa:32:88: b0:32:38:27:6c:21:92:c2:46:6a:a4:20:7d:f1:96:58:16:78: ba:80:d4:00:28:a7:4a:01:72:27:6c:95:87:16:f5:61:f3:2a: 48:c5:02:0f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIULWme7EaT4xaHTJR9MGxa/ER93VwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNTAzMTMxMDU3MjRaFw0yNjAzMTIxMTAyMjRaMDMxMTAvBgNV BAMTKDFCMkM2Qjc5NEQ1Qjg0QTJCNDI5MUIwMjI4MkVCQUJCREE1RTk3ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpzRUr8rqoCr0DTiYbz8+YvHUq b6XCvXqTXAbQSsiI9brCTF0u84QduFh7dIRargVwcTug1T1/Jkp0n37Du+XNBxU2 9Uqd7aRoVi0TPEn0XNhg+6k+dN4YoQz9nj3wemevg39Wp2RWaeFa9i3Z9UMfIp7D OPw5Ek/oNlsZXefStMyu9ZHuqL9u+jhnF1FzUlZvy5bSmykipz7en4RxQMRq4pBa JdvEdi5wzZXZ84OqjMYFMpPGFLJ4TadOCdGYdFWxKYwIw3kTPVgz9xMvCaGLf2Mx Fp0969KYoeGvlAqgmso8TvgQyQxUBwq95FkW7OS/npM6ibeCCXN81jhOve8rAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUGyxreU1bhKK0KRsCKC66u9pel4gwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzMzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKCiYwDQYJKoZIhvcN AQELBQADggEBAAVNAMFyKR8pcXy1/VUshcmN/syMPxd5/X+Tdg/mNOdMOFa3Bd2e /QLrmg8Wn6om+hTKnG+0YDhsx38kvAo4/L3XA5eT9QGymItQHHQNYnsflliIOlrp ODk5blFF8efgO41SVPWk7j5Zkh9RSHNjNhp6AWh0vOHm6DtQ3AYQjTwmsrQD/qhS EbvOYJbjnMm1PGXT9yV2wDT7K92OJ8gpnt7XBfz4FQW69W9Z724U4ER6egoW8bG8 rAM/X4A66NvNT7N6ml4TlCHuaxEmB3J8J2ahSVaCQvoyiLAyOCdsIZLCRmqkIH3x llgWeLqA1AAop0oBcidslYcW9WHzKkjFAg8= -----END CERTIFICATE-----Generated at Sun Apr 6 09:33:37 2025 by rpki-client