$ rpki-client -vvf repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230302e302f32342d3234203d3e203535363936.roa File: 3230322e35302e3230302e302f32342d3234203d3e203535363936.roa (raw, json) Hash identifier: g3O85uHYQ5H3CYzPQLQFqdssgPM5rhi5A/BzEIRFoas= Subject key identifier: 81:CA:C9:F1:F4:55:4B:51:61:D8:15:E9:FA:8D:58:AE:CC:56:67:FE Certificate issuer: /CN=B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B Certificate serial: 4B4A874B8BA4C7D003780138AA76943BAE54A6D0 Authority key identifier: B3:F1:DA:A6:77:09:A0:65:61:DC:9E:AC:5A:87:21:03:5E:EA:AB:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230302e302f32342d3234203d3e203535363936.roa Signing time: Wed 25 Dec 2024 08:00:00 +0000 ROA not before: Wed 25 Dec 2024 07:55:00 +0000 ROA not after: Wed 24 Dec 2025 08:00:00 +0000 asID: 55696 IP address blocks: 202.50.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.crl rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 02:25:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:4a:87:4b:8b:a4:c7:d0:03:78:01:38:aa:76:94:3b:ae:54:a6:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B Validity Not Before: Dec 25 07:55:00 2024 GMT Not After : Dec 24 08:00:00 2025 GMT Subject: CN=81CAC9F1F4554B5161D815E9FA8D58AECC5667FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2c:cc:f3:ab:61:dc:61:14:b4:21:cd:f0:c2: 8a:7b:55:27:87:75:65:80:3d:27:a0:46:ad:a5:07: ad:57:b2:e4:90:d8:65:a0:ba:bc:39:2b:c1:ca:ea: 28:79:e9:c2:2f:20:3a:fe:88:4a:e5:9b:6c:eb:f1: 05:5f:ab:7c:f4:08:ce:47:87:8c:9e:76:b3:35:8a: 78:d8:13:b7:34:3b:6f:66:50:54:09:10:4c:8f:65: b8:b5:cc:fb:99:1a:59:9d:ed:9f:c6:9f:c3:9b:ba: 07:89:ad:10:15:9a:82:e4:e5:eb:99:44:75:88:53: 4e:cb:52:2c:2b:be:ae:bd:64:d6:36:ab:27:52:c6: 6e:0e:25:03:51:24:18:88:5d:13:fa:11:ab:cc:d0: 96:86:2c:8a:03:88:9e:fe:3c:8b:d1:55:70:7c:08: 31:e5:80:99:b8:03:6a:6c:6f:88:02:5d:06:c4:b9: 2b:0d:8d:83:90:e3:93:cb:35:57:08:7e:8d:91:27: dd:db:22:32:17:af:3f:ed:87:64:af:e7:9d:3c:e7: 37:5c:f9:f0:0c:37:38:68:41:71:b7:95:ad:79:ed: 26:d3:00:04:5d:4d:4f:b5:81:9b:7b:98:31:b6:16: 83:ac:eb:69:90:4b:de:14:07:e7:54:81:04:d6:10: 3f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:CA:C9:F1:F4:55:4B:51:61:D8:15:E9:FA:8D:58:AE:CC:56:67:FE X509v3 Authority Key Identifier: keyid:B3:F1:DA:A6:77:09:A0:65:61:DC:9E:AC:5A:87:21:03:5E:EA:AB:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230302e302f32342d3234203d3e203535363936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.50.200.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:58:98:ae:93:e2:f4:64:af:e1:8a:f7:fe:d6:4d:b1:26:6a: 8c:09:b7:95:dd:2a:e0:f4:57:1b:3c:48:ff:57:02:57:30:53: 08:f6:71:1f:57:da:5b:c4:9f:55:e2:67:c1:fa:83:79:2a:6c: ad:49:02:29:52:26:b0:0d:52:1a:11:4c:5e:9c:cf:cb:cf:ae: 41:35:d8:22:21:f6:96:cf:c3:70:10:ec:10:2d:7d:30:06:bb: 42:9b:1f:53:36:3d:49:95:55:b7:6e:55:3f:a5:2c:ed:e7:82: a6:5e:8b:cb:79:30:9a:15:a1:61:1b:10:85:2f:64:22:60:b6: 3d:3f:13:a9:e0:f6:17:41:76:18:0c:a2:fe:08:d9:66:a7:02: c8:4e:5c:46:80:c4:84:53:db:23:3f:16:91:80:1b:71:00:bd: c5:31:aa:bf:b5:81:cd:a4:dc:26:6c:27:14:4f:a8:c0:54:40: da:0f:37:73:ae:82:c8:fe:a1:d9:4e:7b:68:0a:21:a4:50:85: 9b:1e:91:35:25:3e:cd:1d:81:0f:06:93:0f:ab:d9:fc:92:8f: 41:1a:da:ca:f5:42:19:8f:0e:da:db:82:2b:55:f3:e3:02:50: 38:ba:6f:1e:42:3d:0b:a5:a9:db:db:00:31:8c:02:5b:2d:82: cb:e1:d3:95 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUS0qHS4ukx9ADeAE4qnaUO65UptAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNGMURBQTY3NzA5QTA2NTYxREM5RUFDNUE4NzIxMDM1 RUVBQUI1QjAeFw0yNDEyMjUwNzU1MDBaFw0yNTEyMjQwODAwMDBaMDMxMTAvBgNV BAMTKDgxQ0FDOUYxRjQ1NTRCNTE2MUQ4MTVFOUZBOEQ1OEFFQ0M1NjY3RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeLMzzq2HcYRS0Ic3wwop7VSeH dWWAPSegRq2lB61XsuSQ2GWgurw5K8HK6ih56cIvIDr+iErlm2zr8QVfq3z0CM5H h4yedrM1injYE7c0O29mUFQJEEyPZbi1zPuZGlmd7Z/Gn8ObugeJrRAVmoLk5euZ RHWIU07LUiwrvq69ZNY2qydSxm4OJQNRJBiIXRP6EavM0JaGLIoDiJ7+PIvRVXB8 CDHlgJm4A2psb4gCXQbEuSsNjYOQ45PLNVcIfo2RJ93bIjIXrz/th2Sv55085zdc +fAMNzhoQXG3la157SbTAARdTU+1gZt7mDG2FoOs62mQS94UB+dUgQTWED/tAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgcrJ8fRVS1Fh2BXp+o1YrsxWZ/4wHwYDVR0j BBgwFoAUs/HapncJoGVh3J6sWochA17qq1swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Mjg4MGRlZS03YWEyLTRiZTQtYmYzNS1jZGJkMTFkNzk1MDcvMC9CM0YxREFBNjc3 MDlBMDY1NjFEQzlFQUM1QTg3MjEwMzVFRUFBQjVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNGMURBQTY3NzA5QTA2NTYxREM5RUFDNUE4NzIxMDM1RUVB QUI1Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyODgwZGVlLTdhYTItNGJlNC1i ZjM1LWNkYmQxMWQ3OTUwNy8wLzMyMzAzMjJlMzUzMDJlMzIzMDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoyyDANBgkqhkiG 9w0BAQsFAAOCAQEAaliYrpPi9GSv4Yr3/tZNsSZqjAm3ld0q4PRXGzxI/1cCVzBT CPZxH1faW8SfVeJnwfqDeSpsrUkCKVImsA1SGhFMXpzPy8+uQTXYIiH2ls/DcBDs EC19MAa7QpsfUzY9SZVVt25VP6Us7eeCpl6Ly3kwmhWhYRsQhS9kImC2PT8TqeD2 F0F2GAyi/gjZZqcCyE5cRoDEhFPbIz8WkYAbcQC9xTGqv7WBzaTcJmwnFE+owFRA 2g83c66CyP6h2U57aAohpFCFmx6RNSU+zR2BDwaTD6vZ/JKPQRrayvVCGY8O2tuC K1Xz4wJQOLpvHkI9C6Wp29sAMYwCWy2Cy+HTlQ== -----END CERTIFICATE-----Generated at Mon Apr 7 16:58:31 2025 by rpki-client