$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34342e302f32342d3234203d3e203538343837.roa File: 3230322e31302e34342e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: 9/w5ckdQgwQDW73FdKzObo7UiCVTcJeMlBHUt5JeTjI= Subject key identifier: F2:78:49:A5:9C:4B:19:56:75:8A:3B:84:06:B7:5E:F9:28:6B:AE:A5 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 2CEBACA3D628F6FDF6DAB0BAEA99CD56F552FBD0 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34342e302f32342d3234203d3e203538343837.roa Signing time: Thu 13 Mar 2025 11:02:23 +0000 ROA not before: Thu 13 Mar 2025 10:57:23 +0000 ROA not after: Thu 12 Mar 2026 11:02:23 +0000 asID: 58487 IP address blocks: 202.10.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 12:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:eb:ac:a3:d6:28:f6:fd:f6:da:b0:ba:ea:99:cd:56:f5:52:fb:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Mar 13 10:57:23 2025 GMT Not After : Mar 12 11:02:23 2026 GMT Subject: CN=F27849A59C4B1956758A3B8406B75EF9286BAEA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ed:56:38:8d:9c:b7:54:93:1a:0d:5a:fe:f6: 71:79:99:b7:70:26:ea:56:09:a7:90:85:18:35:ac: 4c:4b:57:20:11:9e:48:d4:6b:78:33:61:3a:20:b5: 62:a9:97:c3:1f:bc:58:4b:d8:cf:c5:c7:9c:91:e5: 6e:53:42:c9:97:a8:77:bc:9c:a1:c8:cb:74:fe:23: db:b7:95:8c:4f:41:6d:30:69:d5:c9:d6:75:2a:1a: 92:ca:36:e8:a1:94:39:53:cd:a1:ba:1d:ce:8e:3e: 93:d6:a3:ce:59:82:cf:f5:19:12:2f:60:2a:ed:36: a3:79:b8:a7:61:57:66:d6:eb:6d:0f:06:79:a8:18: 67:ff:ed:b4:5c:9d:08:20:09:03:37:9e:a1:f6:34: 63:8e:87:bb:89:6a:8a:67:bf:11:0e:ba:70:31:3d: 60:0b:50:01:1c:e5:2c:cf:c2:42:ef:b8:cc:28:10: 83:82:33:1c:2d:ea:ef:51:0c:ed:b4:9e:d9:c9:6f: 58:92:f1:db:d3:76:27:0f:ba:ad:30:84:cd:f7:40: 1d:6e:67:77:ab:30:79:35:e3:18:a4:76:5b:54:3c: b0:0c:34:5c:11:01:57:1e:ed:82:fd:30:45:0f:6c: 97:81:2e:9f:3c:67:27:72:ec:f5:08:0e:ab:3b:e1: b5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:78:49:A5:9C:4B:19:56:75:8A:3B:84:06:B7:5E:F9:28:6B:AE:A5 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34342e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.44.0/24 Signature Algorithm: sha256WithRSAEncryption a3:3f:26:ca:a4:3b:81:2e:f4:72:15:42:79:58:86:9d:3a:13: 53:52:14:f4:c0:81:23:63:26:de:92:98:12:9c:04:8e:e5:b6: e1:1c:81:f9:7d:e4:99:7c:31:57:ba:26:b6:e4:a5:53:4e:48: 43:ad:d3:00:70:57:8d:69:32:7f:8d:9a:1f:a5:ee:83:22:d5: 60:fc:f2:eb:d3:87:16:3b:0f:c7:80:09:3f:20:2c:7b:13:0b: 57:b1:4d:46:c6:ac:f7:07:dd:d9:8f:4a:13:67:37:4b:b2:8d: 39:a9:5c:ff:10:57:fe:bf:4f:0a:fd:21:be:46:0a:62:c6:73: f3:7a:9c:73:1b:b0:46:0a:9c:17:93:dd:f0:10:5c:38:a8:31: 37:0a:21:6f:38:49:87:44:82:b3:94:93:c1:1e:25:d8:2b:18: d4:40:10:42:2a:c1:00:94:d3:d5:ec:67:23:17:23:d3:d7:5a: e9:00:1b:73:ab:9b:26:f0:8e:17:d1:29:59:09:d3:57:6c:53: d7:01:68:8a:14:ed:04:2a:c1:52:32:74:46:cb:e3:71:87:a4: f1:07:04:f2:c4:87:34:3f:07:dd:a9:15:54:3e:6b:e2:0f:5e: c3:20:d9:42:29:cb:d7:2b:7b:a4:a0:32:22:b6:a5:95:d5:a9: f5:0d:db:ac -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIULOuso9Yo9v322rC66pnNVvVS+9AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNTAzMTMxMDU3MjNaFw0yNjAzMTIxMTAyMjNaMDMxMTAvBgNV BAMTKEYyNzg0OUE1OUM0QjE5NTY3NThBM0I4NDA2Qjc1RUY5Mjg2QkFFQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr7VY4jZy3VJMaDVr+9nF5mbdw JupWCaeQhRg1rExLVyARnkjUa3gzYTogtWKpl8MfvFhL2M/Fx5yR5W5TQsmXqHe8 nKHIy3T+I9u3lYxPQW0wadXJ1nUqGpLKNuihlDlTzaG6Hc6OPpPWo85Zgs/1GRIv YCrtNqN5uKdhV2bW620PBnmoGGf/7bRcnQggCQM3nqH2NGOOh7uJaopnvxEOunAx PWALUAEc5SzPwkLvuMwoEIOCMxwt6u9RDO20ntnJb1iS8dvTdicPuq0whM33QB1u Z3erMHk14xikdltUPLAMNFwRAVce7YL9MEUPbJeBLp88Zydy7PUIDqs74bXRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU8nhJpZxLGVZ1ijuEBrde+ShrrqUwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzQzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCiwwDQYJKoZIhvcN AQELBQADggEBAKM/JsqkO4Eu9HIVQnlYhp06E1NSFPTAgSNjJt6SmBKcBI7ltuEc gfl95Jl8MVe6JrbkpVNOSEOt0wBwV41pMn+Nmh+l7oMi1WD88uvThxY7D8eACT8g LHsTC1exTUbGrPcH3dmPShNnN0uyjTmpXP8QV/6/Twr9Ib5GCmLGc/N6nHMbsEYK nBeT3fAQXDioMTcKIW84SYdEgrOUk8EeJdgrGNRAEEIqwQCU09XsZyMXI9PXWukA G3OrmybwjhfRKVkJ01dsU9cBaIoU7QQqwVIydEbL43GHpPEHBPLEhzQ/B92pFVQ+ a+IPXsMg2UIpy9cre6SgMiK2pZXVqfUN26w= -----END CERTIFICATE-----Generated at Sun Apr 6 09:33:07 2025 by rpki-client