$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34372e302f32342d3234203d3e203538343837.roa File: 3230322e31302e34372e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: u58aVcSaGI4G1j8KcCBgXQjLG6jts8lqMjNzR3uAE1k= Subject key identifier: 3C:BD:1F:38:8B:53:D0:BD:0C:11:47:BE:71:28:44:24:FC:E8:4B:AD Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 0968048DE10E3407C55940C7EC6E7DB991465F40 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34372e302f32342d3234203d3e203538343837.roa Signing time: Thu 13 Mar 2025 11:02:24 +0000 ROA not before: Thu 13 Mar 2025 10:57:24 +0000 ROA not after: Thu 12 Mar 2026 11:02:24 +0000 asID: 58487 IP address blocks: 202.10.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 12:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:68:04:8d:e1:0e:34:07:c5:59:40:c7:ec:6e:7d:b9:91:46:5f:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Mar 13 10:57:24 2025 GMT Not After : Mar 12 11:02:24 2026 GMT Subject: CN=3CBD1F388B53D0BD0C1147BE71284424FCE84BAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a0:ba:36:75:97:43:44:19:c6:7f:41:5f:0b: 98:12:c0:0c:3d:9b:40:e2:d9:5f:46:b5:a6:38:a4: d0:d8:0d:68:f5:1c:9d:12:f8:2d:39:d2:00:f7:e5: 3d:22:6b:0d:30:47:35:d8:61:0e:7d:4c:e5:38:0c: 90:2c:ea:88:d2:8a:88:25:61:09:c2:df:fb:53:54: 84:e2:35:d9:d4:39:ce:12:39:52:0e:f5:d4:b2:8a: fe:c6:03:69:b2:e2:51:37:1a:3e:65:c9:9c:e4:b9: 8c:ca:53:61:c6:ed:48:43:3b:94:86:44:05:1e:9c: 29:59:41:07:90:02:70:87:09:ca:68:a9:72:82:12: 1e:da:d8:61:e5:c2:7d:fb:c7:f3:c4:dc:15:3d:52: b7:4a:86:49:ea:49:03:b5:a3:48:98:38:00:22:82: 64:c0:a7:6d:b2:92:94:4c:4c:7d:36:14:fb:19:55: a8:0e:78:59:1f:f4:b5:70:94:cf:4b:1e:78:34:a8: 2f:42:67:79:cc:e1:b2:11:38:e5:7e:f5:63:35:16: 89:bd:2b:9f:ae:d6:8b:92:bc:f6:96:1e:a6:f4:1c: a5:c1:75:c0:1a:0e:cc:60:11:4d:68:f4:84:dd:c0: cc:3a:ae:db:32:4d:16:7e:76:bb:98:e2:fe:2e:86: db:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:BD:1F:38:8B:53:D0:BD:0C:11:47:BE:71:28:44:24:FC:E8:4B:AD X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34372e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.47.0/24 Signature Algorithm: sha256WithRSAEncryption 32:67:d5:eb:5d:e3:81:59:51:70:f2:5b:58:c4:5a:4c:a1:c1: e4:17:55:7a:8e:d6:73:d0:e2:c4:37:b4:71:f1:6b:ee:72:f5: d9:39:b1:cb:3d:e5:18:99:3d:4b:bb:b1:23:fc:49:03:92:57: d1:a1:99:80:19:da:45:8c:17:30:4d:76:0f:70:be:42:6a:3b: 6a:8c:70:41:b1:bd:dd:06:5c:55:5d:59:89:ea:77:9d:50:fe: 93:c9:00:d3:c1:da:d2:c0:8e:13:48:ed:27:fd:cb:44:dd:f8: f6:fa:9e:99:db:6c:88:43:e2:e2:93:09:6d:4e:a0:88:cb:ac: 3a:c9:f5:18:14:e8:69:1f:6f:3b:49:44:e4:0d:9a:b2:99:7e: ad:17:ac:bf:92:1d:11:e4:d9:9d:cd:d7:bd:a0:37:1e:61:43: dc:e4:f4:b6:12:13:14:4f:b7:9c:7b:d2:2a:fe:9f:c1:d0:42: 01:07:ba:df:9e:ed:85:13:b0:2c:10:65:27:d4:ac:8d:03:03: b5:2b:0e:cb:54:52:cc:66:f5:ea:5b:79:10:67:2c:90:e6:e1: e1:58:08:47:86:2e:05:ac:55:be:2d:49:6a:b6:31:1f:9f:93: 57:96:68:5f:4f:a2:7c:d4:52:58:ff:59:c6:61:f4:15:7e:af: 82:3e:a1:21 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUCWgEjeEONAfFWUDH7G59uZFGX0AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNTAzMTMxMDU3MjRaFw0yNjAzMTIxMTAyMjRaMDMxMTAvBgNV BAMTKDNDQkQxRjM4OEI1M0QwQkQwQzExNDdCRTcxMjg0NDI0RkNFODRCQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDToLo2dZdDRBnGf0FfC5gSwAw9 m0Di2V9GtaY4pNDYDWj1HJ0S+C050gD35T0iaw0wRzXYYQ59TOU4DJAs6ojSiogl YQnC3/tTVITiNdnUOc4SOVIO9dSyiv7GA2my4lE3Gj5lyZzkuYzKU2HG7UhDO5SG RAUenClZQQeQAnCHCcpoqXKCEh7a2GHlwn37x/PE3BU9UrdKhknqSQO1o0iYOAAi gmTAp22ykpRMTH02FPsZVagOeFkf9LVwlM9LHng0qC9CZ3nM4bIROOV+9WM1Fom9 K5+u1ouSvPaWHqb0HKXBdcAaDsxgEU1o9ITdwMw6rtsyTRZ+druY4v4uhtu5AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUPL0fOItT0L0MEUe+cShEJPzoS60wHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzQzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCi8wDQYJKoZIhvcN AQELBQADggEBADJn1etd44FZUXDyW1jEWkyhweQXVXqO1nPQ4sQ3tHHxa+5y9dk5 scs95RiZPUu7sSP8SQOSV9GhmYAZ2kWMFzBNdg9wvkJqO2qMcEGxvd0GXFVdWYnq d51Q/pPJANPB2tLAjhNI7Sf9y0Td+Pb6npnbbIhD4uKTCW1OoIjLrDrJ9RgU6Gkf bztJROQNmrKZfq0XrL+SHRHk2Z3N172gNx5hQ9zk9LYSExRPt5x70ir+n8HQQgEH ut+e7YUTsCwQZSfUrI0DA7UrDstUUsxm9epbeRBnLJDm4eFYCEeGLgWsVb4tSWq2 MR+fk1eWaF9PonzUUlj/WcZh9BV+r4I+oSE= -----END CERTIFICATE-----Generated at Sun Apr 6 11:41:07 2025 by rpki-client