$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34322e302f32342d3234203d3e203538343837.roa File: 3230322e31302e34322e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: WdjaanpjvJkV7F66b1RsY5nlVdX7/6/1Vce41UTVhQk= Subject key identifier: 29:E7:14:A3:70:EB:DC:71:61:8C:F9:33:19:0D:6D:15:8A:84:6D:8B Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 3781661BA908CA074092D6745979D21990850709 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34322e302f32342d3234203d3e203538343837.roa Signing time: Thu 13 Mar 2025 11:02:24 +0000 ROA not before: Thu 13 Mar 2025 10:57:24 +0000 ROA not after: Thu 12 Mar 2026 11:02:24 +0000 asID: 58487 IP address blocks: 202.10.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 12:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:81:66:1b:a9:08:ca:07:40:92:d6:74:59:79:d2:19:90:85:07:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Mar 13 10:57:24 2025 GMT Not After : Mar 12 11:02:24 2026 GMT Subject: CN=29E714A370EBDC71618CF933190D6D158A846D8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:bc:51:03:dd:7c:ce:15:f9:c3:5a:29:e5:3a: 44:e4:6b:e0:7d:c2:98:18:e6:4e:e3:77:73:83:e9: 02:0e:e9:e5:fd:d4:8d:9e:68:b8:99:ee:2f:59:66: 24:5f:db:f8:77:96:8a:fc:05:8a:1b:df:51:90:61: bc:fe:0f:5e:68:2a:72:6b:0e:47:b3:77:81:3d:61: e5:0d:6d:28:ea:78:14:cb:b7:69:94:b2:26:ed:64: a8:49:39:d8:4e:ef:ea:86:a6:9b:26:6a:9c:02:cb: 64:05:70:f6:5c:a4:5c:72:15:71:5b:23:b8:96:3c: a4:2d:8a:21:db:98:43:a7:3a:39:f8:1b:ce:e5:e6: df:09:3d:34:55:3b:00:1d:7b:fb:10:63:79:77:d6: dd:f1:16:cc:32:f1:0c:9d:c1:80:7c:49:2a:5e:52: 88:73:ab:90:79:20:11:23:94:2c:7c:fb:90:48:ef: 69:3b:f7:1d:e2:78:7d:f6:f0:71:61:c6:2c:6f:81: 1d:d0:a5:35:29:28:0b:b6:f9:e7:87:05:d5:f8:8c: 61:04:50:de:d7:f0:3a:a7:61:26:bd:1e:57:65:9a: 41:71:b1:2f:d7:24:fb:c8:dc:65:f3:7d:cc:49:27: 2f:ac:73:b8:46:70:e8:02:ae:0d:78:f8:06:42:e1: d9:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:E7:14:A3:70:EB:DC:71:61:8C:F9:33:19:0D:6D:15:8A:84:6D:8B X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34322e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.42.0/24 Signature Algorithm: sha256WithRSAEncryption 45:64:e4:78:c0:9e:96:e2:b4:e5:2a:3c:a6:95:59:5c:3a:88: 74:3e:c2:fb:e9:f2:c2:56:0d:11:e9:60:50:51:29:08:d3:99: 0d:c3:e4:59:05:21:90:49:c5:3f:eb:23:67:15:d5:42:44:e1: f2:55:b9:9d:95:33:aa:df:85:c5:f5:d6:ed:62:a2:cc:08:90: 04:ad:84:36:5f:2d:98:cf:e8:f8:86:25:18:59:b3:57:f3:1b: 9c:a2:d0:48:30:96:f3:28:f9:6d:1a:62:b1:8b:45:e2:70:68: c6:ee:81:23:9e:c7:df:1e:d9:56:1a:92:49:ee:b4:ae:b8:a9: dd:81:21:00:20:f3:e7:66:65:0f:ed:c9:18:17:82:7e:59:da: da:d7:e6:e5:46:ac:fa:90:44:f3:9a:cf:ed:7b:e9:46:4d:8e: 8c:f4:b6:e0:16:d5:e1:ee:62:c2:f7:cf:4c:b3:24:33:0a:5c: 8c:b3:6f:75:00:ae:5d:19:fb:8b:0b:16:75:da:ed:a2:71:9e: b9:3f:83:2e:32:40:c9:20:b1:e9:f3:5c:32:38:70:2d:09:5c: de:ac:63:73:ba:d8:ac:88:1a:75:be:8e:6d:a1:0e:fb:b8:6e: 5f:dd:dc:dc:4c:09:82:31:2f:fa:c7:73:1e:d0:a1:83:46:a4: 24:fe:e3:48 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUN4FmG6kIygdAktZ0WXnSGZCFBwkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNTAzMTMxMDU3MjRaFw0yNjAzMTIxMTAyMjRaMDMxMTAvBgNV BAMTKDI5RTcxNEEzNzBFQkRDNzE2MThDRjkzMzE5MEQ2RDE1OEE4NDZEOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhvFED3XzOFfnDWinlOkTka+B9 wpgY5k7jd3OD6QIO6eX91I2eaLiZ7i9ZZiRf2/h3lor8BYob31GQYbz+D15oKnJr Dkezd4E9YeUNbSjqeBTLt2mUsibtZKhJOdhO7+qGppsmapwCy2QFcPZcpFxyFXFb I7iWPKQtiiHbmEOnOjn4G87l5t8JPTRVOwAde/sQY3l31t3xFswy8QydwYB8SSpe Uohzq5B5IBEjlCx8+5BI72k79x3ieH328HFhxixvgR3QpTUpKAu2+eeHBdX4jGEE UN7X8DqnYSa9HldlmkFxsS/XJPvI3GXzfcxJJy+sc7hGcOgCrg14+AZC4dmdAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUKecUo3Dr3HFhjPkzGQ1tFYqEbYswHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzQzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCiowDQYJKoZIhvcN AQELBQADggEBAEVk5HjAnpbitOUqPKaVWVw6iHQ+wvvp8sJWDRHpYFBRKQjTmQ3D 5FkFIZBJxT/rI2cV1UJE4fJVuZ2VM6rfhcX11u1ioswIkASthDZfLZjP6PiGJRhZ s1fzG5yi0EgwlvMo+W0aYrGLReJwaMbugSOex98e2VYakknutK64qd2BIQAg8+dm ZQ/tyRgXgn5Z2trX5uVGrPqQRPOaz+176UZNjoz0tuAW1eHuYsL3z0yzJDMKXIyz b3UArl0Z+4sLFnXa7aJxnrk/gy4yQMkgsenzXDI4cC0JXN6sY3O62KyIGnW+jm2h Dvu4bl/d3NxMCYIxL/rHcx7QoYNGpCT+40g= -----END CERTIFICATE-----Generated at Sun Apr 6 07:07:28 2025 by rpki-client