$ rpki-client -vvf repo-rpki.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/3230332e3137312e3232312e302f32342d3234203d3e203435323938.roa File: 3230332e3137312e3232312e302f32342d3234203d3e203435323938.roa (raw, json) Hash identifier: nJfbDfnLQ0hPzTdK1jvw4RWKNmgPHIKJaKdLROAz98U= Subject key identifier: 3F:92:D5:BA:3A:A4:56:72:2D:58:04:19:F2:64:B7:32:5B:3F:0F:7A Certificate issuer: /CN=483F366E1FE9C068ED4417FD71D5B18420D56B62 Certificate serial: 029CF76962B8CCE822E0D76ED8B30529FBC90AD8 Authority key identifier: 48:3F:36:6E:1F:E9:C0:68:ED:44:17:FD:71:D5:B1:84:20:D5:6B:62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/483F366E1FE9C068ED4417FD71D5B18420D56B62.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/3230332e3137312e3232312e302f32342d3234203d3e203435323938.roa Signing time: Tue 01 Apr 2025 10:00:01 +0000 ROA not before: Tue 01 Apr 2025 09:55:01 +0000 ROA not after: Tue 31 Mar 2026 10:00:01 +0000 asID: 45298 IP address blocks: 203.171.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/483F366E1FE9C068ED4417FD71D5B18420D56B62.crl rsync://repo-rpki.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/483F366E1FE9C068ED4417FD71D5B18420D56B62.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/483F366E1FE9C068ED4417FD71D5B18420D56B62.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:45:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:9c:f7:69:62:b8:cc:e8:22:e0:d7:6e:d8:b3:05:29:fb:c9:0a:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=483F366E1FE9C068ED4417FD71D5B18420D56B62 Validity Not Before: Apr 1 09:55:01 2025 GMT Not After : Mar 31 10:00:01 2026 GMT Subject: CN=3F92D5BA3AA456722D580419F264B7325B3F0F7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ed:57:0a:b1:12:ef:dc:73:4c:53:93:22:18: 94:b8:db:a7:dd:cb:9b:ff:41:1a:47:0f:0d:ee:5c: bf:e6:62:47:86:fd:0d:2c:ed:13:6d:eb:b8:01:64: 71:42:0f:7d:4d:72:b4:5b:ec:92:03:96:8f:ca:2b: cf:32:85:f8:b3:64:4f:10:ca:a7:8f:b2:92:2a:b9: dd:86:81:fb:79:fc:02:06:a3:4d:c0:45:60:00:b7: b1:00:8f:2e:2e:4c:0c:78:c7:9c:73:d5:fb:66:04: a7:2d:62:54:e8:73:a8:60:e8:10:da:3e:5a:2c:18: b9:18:38:62:7a:b3:8a:ee:80:7f:e1:06:5f:b4:33: 05:6c:1c:72:94:2d:1b:72:6c:f9:91:be:b4:06:75: a4:ca:98:3b:1d:1f:43:fa:6f:64:b1:03:73:73:b8: 0b:5e:dd:6e:ad:dd:06:da:b4:e2:16:d2:b9:41:f0: ad:71:76:f4:68:6c:a6:66:c7:e2:2b:aa:d4:6a:d6: cd:46:27:be:94:5b:b2:ab:3c:52:35:93:bc:94:a4: 76:c6:94:7d:60:4b:9d:d2:db:b0:da:5d:13:e1:cc: cb:21:50:a6:94:5f:69:d6:4f:23:d9:99:5a:b8:1b: f2:61:25:1e:40:71:f9:ea:15:6d:36:59:70:79:da: a1:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:92:D5:BA:3A:A4:56:72:2D:58:04:19:F2:64:B7:32:5B:3F:0F:7A X509v3 Authority Key Identifier: keyid:48:3F:36:6E:1F:E9:C0:68:ED:44:17:FD:71:D5:B1:84:20:D5:6B:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/483F366E1FE9C068ED4417FD71D5B18420D56B62.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/483F366E1FE9C068ED4417FD71D5B18420D56B62.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/3230332e3137312e3232312e302f32342d3234203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.171.221.0/24 Signature Algorithm: sha256WithRSAEncryption 05:04:94:b2:22:72:a6:a7:36:12:26:c2:b4:57:7d:ba:59:91: ba:4d:81:d2:3b:d3:34:0e:18:9b:50:56:9b:df:85:01:d7:04: 67:38:63:0a:42:85:d2:81:4c:e0:0c:e0:69:a2:54:ac:be:c2: d4:45:fe:78:5f:31:3d:c2:cf:c5:ad:7a:a0:56:fb:2b:15:a3: a6:ff:20:10:3e:ab:11:bc:f5:24:05:91:23:83:48:e8:c8:83: c8:59:ce:d0:b3:10:80:1d:22:6b:29:75:d4:83:00:a8:73:04: aa:39:00:8f:4a:c7:7a:8c:44:03:6b:71:c3:9c:17:f1:f6:4b: 01:c3:dc:ef:0c:be:34:65:13:ea:1a:db:e1:26:c6:95:f0:c3: c7:fd:aa:4c:03:10:2e:ea:62:b7:60:2a:f7:93:c5:ea:24:d0: 4a:2b:bd:3a:a3:7a:99:c3:3a:ef:96:02:40:cd:ab:b2:d4:a6: 4c:ab:b0:5f:68:11:80:8b:f3:04:1d:7c:7c:5d:e9:6f:a5:0e: b8:7c:44:97:17:72:e0:1e:42:d6:1b:c0:33:46:15:04:1a:b0: e2:ea:84:84:0c:aa:56:b2:f5:0b:b2:ff:aa:5e:c2:38:b5:63: 1a:82:9e:d1:bd:99:0f:d3:90:ab:37:84:d3:18:f8:a9:87:b6: 95:26:39:cf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUApz3aWK4zOgi4Ndu2LMFKfvJCtgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgzRjM2NkUxRkU5QzA2OEVENDQxN0ZENzFENUIxODQy MEQ1NkI2MjAeFw0yNTA0MDEwOTU1MDFaFw0yNjAzMzExMDAwMDFaMDMxMTAvBgNV BAMTKDNGOTJENUJBM0FBNDU2NzIyRDU4MDQxOUYyNjRCNzMyNUIzRjBGN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM7VcKsRLv3HNMU5MiGJS426fd y5v/QRpHDw3uXL/mYkeG/Q0s7RNt67gBZHFCD31NcrRb7JIDlo/KK88yhfizZE8Q yqePspIqud2Ggft5/AIGo03ARWAAt7EAjy4uTAx4x5xz1ftmBKctYlToc6hg6BDa PlosGLkYOGJ6s4rugH/hBl+0MwVsHHKULRtybPmRvrQGdaTKmDsdH0P6b2SxA3Nz uAte3W6t3QbatOIW0rlB8K1xdvRobKZmx+IrqtRq1s1GJ76UW7KrPFI1k7yUpHbG lH1gS53S27DaXRPhzMshUKaUX2nWTyPZmVq4G/JhJR5AcfnqFW02WXB52qEfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUP5LVujqkVnItWAQZ8mS3Mls/D3owHwYDVR0j BBgwFoAUSD82bh/pwGjtRBf9cdWxhCDVa2IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YmYyYWQ0Zi1hNzJhLTQ2ZDEtYmQ3ZC1hNTYwYzMxZWZjYWQvMC80ODNGMzY2RTFG RTlDMDY4RUQ0NDE3RkQ3MUQ1QjE4NDIwRDU2QjYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDgzRjM2NkUxRkU5QzA2OEVENDQxN0ZENzFENUIxODQyMEQ1 NkI2Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZjJhZDRmLWE3MmEtNDZkMS1i ZDdkLWE1NjBjMzFlZmNhZC8wLzMyMzAzMzJlMzEzNzMxMmUzMjMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzIzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy6vdMA0GCSqG SIb3DQEBCwUAA4IBAQAFBJSyInKmpzYSJsK0V326WZG6TYHSO9M0DhibUFab34UB 1wRnOGMKQoXSgUzgDOBpolSsvsLURf54XzE9ws/FrXqgVvsrFaOm/yAQPqsRvPUk BZEjg0joyIPIWc7QsxCAHSJrKXXUgwCocwSqOQCPSsd6jEQDa3HDnBfx9ksBw9zv DL40ZRPqGtvhJsaV8MPH/apMAxAu6mK3YCr3k8XqJNBKK706o3qZwzrvlgJAzauy 1KZMq7BfaBGAi/MEHXx8XelvpQ64fESXF3LgHkLWG8AzRhUEGrDi6oSEDKpWsvUL sv+qXsI4tWMagp7RvZkP05CrN4TTGPiph7aVJjnP -----END CERTIFICATE-----Generated at Sun Apr 6 19:08:08 2025 by rpki-client