$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34342e302f32332d3233203d3e203538343837.roa File: 3230322e31302e34342e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: AOs0+RY4Y31s73wRP1Vy1UwZxz7AgTJ0z0r1p3VykqY= Subject key identifier: 4A:1C:D3:C7:6D:9A:73:06:AE:73:3B:FB:C9:8D:FE:77:FB:3F:66:C7 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 29ED7101E0C25AD87A7193ACFF179B18A3E84AC7 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34342e302f32332d3233203d3e203538343837.roa Signing time: Thu 13 Mar 2025 11:02:24 +0000 ROA not before: Thu 13 Mar 2025 10:57:24 +0000 ROA not after: Thu 12 Mar 2026 11:02:24 +0000 asID: 58487 IP address blocks: 202.10.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 12:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:ed:71:01:e0:c2:5a:d8:7a:71:93:ac:ff:17:9b:18:a3:e8:4a:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Mar 13 10:57:24 2025 GMT Not After : Mar 12 11:02:24 2026 GMT Subject: CN=4A1CD3C76D9A7306AE733BFBC98DFE77FB3F66C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e8:5a:7c:50:45:0a:fe:2f:b4:82:10:e8:14: 9d:6d:98:94:c6:f3:76:db:ea:92:e5:95:e5:9e:09: ec:0b:4f:52:c7:b5:dc:75:44:e6:6e:30:02:99:3e: d1:30:c4:98:56:1e:70:35:e1:8d:ef:e5:2b:80:88: 68:da:3f:91:1c:e6:aa:35:3f:fa:4c:c1:49:6f:b6: 4a:d3:3c:a1:dc:ee:8d:61:a2:37:6b:f1:83:2b:47: db:96:ab:6a:47:fe:dc:87:a0:1c:41:7f:10:28:e2: 6a:9e:ba:bb:3c:55:3d:eb:82:50:f8:ad:d7:43:a9: 8c:7a:de:37:41:db:f5:ac:4f:f6:5d:d4:23:0a:db: 1f:8d:5d:8c:a2:54:12:c7:8b:0f:bf:3c:34:3c:04: 8a:8e:85:02:d5:7e:e8:3a:35:31:98:ca:37:66:51: 70:f4:0f:d5:d9:a8:d8:34:e3:cd:57:58:59:32:07: c1:f3:c4:2c:b9:9e:71:11:69:32:70:b8:e2:02:c7: ab:f8:d4:ee:37:62:b3:16:c1:98:f0:92:a4:bd:c7: 02:5d:cd:10:b0:49:1c:e7:bc:76:a6:0e:9c:c7:00: e5:ff:b1:21:1f:fb:37:0a:b2:ae:2b:70:df:31:69: 69:59:63:ec:7c:7b:3b:d3:4a:71:5d:d0:f1:65:20: a5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:1C:D3:C7:6D:9A:73:06:AE:73:3B:FB:C9:8D:FE:77:FB:3F:66:C7 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34342e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.44.0/23 Signature Algorithm: sha256WithRSAEncryption ac:33:03:2a:c6:dd:e1:8b:47:40:32:1c:c2:8f:c7:05:9c:0a: 65:02:da:0e:96:26:1a:70:f0:2b:49:f3:ef:54:85:70:59:b6: dd:79:54:0e:0f:29:bb:bd:d6:52:cd:5b:ea:f1:36:b6:e9:eb: 20:3a:22:2d:de:e5:5b:94:01:44:d7:1e:c4:2f:3c:1e:7b:35: ea:d7:44:84:f8:47:34:71:30:91:10:f9:a7:b0:74:62:9a:95: de:3f:48:a5:9e:9f:bc:1a:dc:48:a0:08:38:0d:84:57:12:88: f4:84:23:1a:06:62:9e:1f:02:36:80:fc:90:77:a4:09:49:d5: 9b:5c:d3:8f:00:c6:dd:ae:b2:33:6d:e8:a2:eb:ba:a0:d9:3d: 30:c6:3c:5e:df:80:7c:c0:e8:04:b5:34:4e:27:49:25:14:64: dc:24:a6:ea:d0:ad:c5:24:55:28:32:ac:f5:a9:45:08:c8:b9: 64:ea:99:e6:2c:fd:7c:6f:1c:90:fe:a8:b4:61:9c:18:a2:7f: f1:36:9a:77:4e:9f:e6:0a:73:2b:86:f5:79:b3:a2:08:6f:56: ef:f4:c9:cb:1b:81:90:cf:5a:fc:c0:5d:df:af:c6:0a:18:aa: 3f:04:7f:61:a6:60:28:2e:9d:a5:af:02:4f:2e:d8:8b:ed:67: 0d:03:a2:38 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKe1xAeDCWth6cZOs/xebGKPoSscwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNTAzMTMxMDU3MjRaFw0yNjAzMTIxMTAyMjRaMDMxMTAvBgNV BAMTKDRBMUNEM0M3NkQ5QTczMDZBRTczM0JGQkM5OERGRTc3RkIzRjY2QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT6Fp8UEUK/i+0ghDoFJ1tmJTG 83bb6pLlleWeCewLT1LHtdx1ROZuMAKZPtEwxJhWHnA14Y3v5SuAiGjaP5Ec5qo1 P/pMwUlvtkrTPKHc7o1hojdr8YMrR9uWq2pH/tyHoBxBfxAo4mqeurs8VT3rglD4 rddDqYx63jdB2/WsT/Zd1CMK2x+NXYyiVBLHiw+/PDQ8BIqOhQLVfug6NTGYyjdm UXD0D9XZqNg0481XWFkyB8HzxCy5nnERaTJwuOICx6v41O43YrMWwZjwkqS9xwJd zRCwSRznvHamDpzHAOX/sSEf+zcKsq4rcN8xaWlZY+x8ezvTSnFd0PFlIKW5AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUShzTx22acwauczv7yY3+d/s/ZscwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzQzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKCiwwDQYJKoZIhvcN AQELBQADggEBAKwzAyrG3eGLR0AyHMKPxwWcCmUC2g6WJhpw8CtJ8+9UhXBZtt15 VA4PKbu91lLNW+rxNrbp6yA6Ii3e5VuUAUTXHsQvPB57NerXRIT4RzRxMJEQ+aew dGKald4/SKWen7wa3EigCDgNhFcSiPSEIxoGYp4fAjaA/JB3pAlJ1Ztc048Axt2u sjNt6KLruqDZPTDGPF7fgHzA6AS1NE4nSSUUZNwkpurQrcUkVSgyrPWpRQjIuWTq meYs/XxvHJD+qLRhnBiif/E2mndOn+YKcyuG9XmzoghvVu/0ycsbgZDPWvzAXd+v xgoYqj8Ef2GmYCgunaWvAk8u2IvtZw0Dojg= -----END CERTIFICATE-----Generated at Sun Apr 6 13:24:33 2025 by rpki-client