$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34322e302f32332d3233203d3e203538343837.roa File: 3230322e31302e34322e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: G6aGpW+GX/2AEtcToBRQOMbcRoVxB07Zl/GCfKmQbno= Subject key identifier: C8:9D:B6:7A:32:07:40:0B:33:FF:46:1C:AE:7F:B4:EA:B2:0F:87:34 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 6126B03D326757CFE6003D02DFAB33B59A241E76 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34322e302f32332d3233203d3e203538343837.roa Signing time: Thu 13 Mar 2025 11:02:24 +0000 ROA not before: Thu 13 Mar 2025 10:57:24 +0000 ROA not after: Thu 12 Mar 2026 11:02:24 +0000 asID: 58487 IP address blocks: 202.10.42.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 12:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:26:b0:3d:32:67:57:cf:e6:00:3d:02:df:ab:33:b5:9a:24:1e:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Mar 13 10:57:24 2025 GMT Not After : Mar 12 11:02:24 2026 GMT Subject: CN=C89DB67A3207400B33FF461CAE7FB4EAB20F8734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8b:17:26:ee:75:db:46:ad:39:aa:1d:a0:6e: aa:83:12:21:01:a3:26:0e:18:b3:48:75:96:82:c7: 49:c3:98:cf:f6:8f:93:27:02:24:6a:18:1b:fe:0c: 64:36:b3:2c:5c:48:31:7d:9a:48:7d:40:0f:ff:f3: 8c:06:e1:31:9d:5a:68:98:81:3b:5b:4a:19:3e:16: 68:4c:6f:47:ab:5b:d9:27:80:50:b0:3e:75:88:85: 03:cc:f1:94:37:7e:4c:57:bf:83:ab:1d:51:5c:5e: 11:39:63:dc:2f:bd:7f:bf:c6:8c:d2:c2:80:c0:41: 40:cb:dc:6e:ba:64:f4:63:00:10:ff:2d:b8:24:c6: 99:38:eb:da:57:20:5d:d2:68:e3:09:50:b7:62:77: 43:c3:9e:1c:ba:b0:fe:e1:81:51:54:10:42:f0:e9: ad:9f:cb:eb:d4:4c:21:2f:02:ef:ae:24:2e:c4:8b: 3b:c3:7a:71:8f:8f:52:50:84:50:a4:41:fa:d3:22: 4c:69:ff:82:a4:6a:de:45:c7:35:49:81:2e:0c:4f: 88:4f:ae:50:d2:ea:cd:6e:19:6d:13:80:ab:f7:6a: 8d:a2:8f:ad:46:02:c6:0a:7a:79:2c:68:6c:cd:df: fd:26:07:34:7d:53:d3:84:e9:19:85:1c:00:22:3d: d6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:9D:B6:7A:32:07:40:0B:33:FF:46:1C:AE:7F:B4:EA:B2:0F:87:34 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34322e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.42.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:11:7e:8f:35:f3:6b:dd:03:fb:79:ba:3e:30:53:b5:40:35: b9:99:4a:21:0c:25:15:e2:53:24:bd:0b:45:da:25:41:85:8d: de:8a:e0:0d:e3:ed:c0:58:dc:fa:99:2c:23:c2:a5:14:97:73: 8e:68:2f:0a:03:9d:05:99:5d:d5:2c:f6:2f:06:3a:4c:e9:07: 3f:29:6a:9a:06:fa:91:f9:a2:b4:9b:00:c1:cc:31:49:58:51: 20:f2:2d:46:cc:21:15:52:d1:37:c6:62:42:49:41:22:05:8e: f0:00:cb:9d:a7:0b:27:2e:1d:f8:8e:59:91:f0:49:6b:d3:7e: 3a:0e:a8:b2:e7:f1:ce:f2:47:35:f2:f0:92:4f:fa:39:c8:a2: 68:07:d9:84:28:a5:49:0f:18:26:0a:df:a9:2d:1f:35:c4:b1: ee:bb:e0:ae:d6:f7:37:87:05:f9:b8:07:71:ae:8d:86:4c:a1: a2:34:53:b3:62:69:b8:7b:2a:be:c9:bd:da:58:8d:14:18:fc: c2:af:c9:03:c0:e9:f0:61:83:f4:4e:c3:f8:d7:67:33:d0:73: e4:cc:4f:5e:f8:e7:6d:a3:1e:4c:bf:e5:4a:f9:8d:7b:b3:98: 82:7a:87:3d:df:ec:fa:85:e7:c9:2c:f4:0e:fd:35:46:40:cb: 30:38:eb:4b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUYSawPTJnV8/mAD0C36sztZokHnYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNTAzMTMxMDU3MjRaFw0yNjAzMTIxMTAyMjRaMDMxMTAvBgNV BAMTKEM4OURCNjdBMzIwNzQwMEIzM0ZGNDYxQ0FFN0ZCNEVBQjIwRjg3MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8ixcm7nXbRq05qh2gbqqDEiEB oyYOGLNIdZaCx0nDmM/2j5MnAiRqGBv+DGQ2syxcSDF9mkh9QA//84wG4TGdWmiY gTtbShk+FmhMb0erW9kngFCwPnWIhQPM8ZQ3fkxXv4OrHVFcXhE5Y9wvvX+/xozS woDAQUDL3G66ZPRjABD/Lbgkxpk469pXIF3SaOMJULdid0PDnhy6sP7hgVFUEELw 6a2fy+vUTCEvAu+uJC7EizvDenGPj1JQhFCkQfrTIkxp/4Kkat5FxzVJgS4MT4hP rlDS6s1uGW0TgKv3ao2ij61GAsYKenksaGzN3/0mBzR9U9OE6RmFHAAiPdYVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUyJ22ejIHQAsz/0Ycrn+06rIPhzQwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzQzMjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKCiowDQYJKoZIhvcN AQELBQADggEBAEwRfo8182vdA/t5uj4wU7VANbmZSiEMJRXiUyS9C0XaJUGFjd6K 4A3j7cBY3PqZLCPCpRSXc45oLwoDnQWZXdUs9i8GOkzpBz8papoG+pH5orSbAMHM MUlYUSDyLUbMIRVS0TfGYkJJQSIFjvAAy52nCycuHfiOWZHwSWvTfjoOqLLn8c7y RzXy8JJP+jnIomgH2YQopUkPGCYK36ktHzXEse674K7W9zeHBfm4B3GujYZMoaI0 U7Niabh7Kr7JvdpYjRQY/MKvyQPA6fBhg/ROw/jXZzPQc+TMT174522jHky/5Ur5 jXuzmIJ6hz3f7PqF58ks9A79NUZAyzA460s= -----END CERTIFICATE-----Generated at Sun Apr 6 13:26:47 2025 by rpki-client