$ rpki-client -vvf repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234352e302f32342d3234203d3e203338373738.roa File: 3230322e39332e3234352e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: 0PzoQhjtIBIp5z3u6ZT2GigMXbei3fP0btsZYcijF1o= Subject key identifier: 89:3D:C5:99:5E:3D:04:09:F2:BB:65:71:A7:7D:96:C6:8F:34:F6:EE Certificate issuer: /CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Certificate serial: 1943C2260C16C3571885EFD1D848C2A8826E60F9 Authority key identifier: F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234352e302f32342d3234203d3e203338373738.roa Signing time: Tue 24 Dec 2024 10:00:01 +0000 ROA not before: Tue 24 Dec 2024 09:55:01 +0000 ROA not after: Tue 23 Dec 2025 10:00:01 +0000 asID: 38778 IP address blocks: 202.93.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:43:c2:26:0c:16:c3:57:18:85:ef:d1:d8:48:c2:a8:82:6e:60:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Validity Not Before: Dec 24 09:55:01 2024 GMT Not After : Dec 23 10:00:01 2025 GMT Subject: CN=893DC5995E3D0409F2BB6571A77D96C68F34F6EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ef:47:eb:8d:43:f2:e4:fe:ff:2a:9c:56:89: 72:04:28:77:33:c0:21:5c:92:5e:26:bd:05:34:8f: 6a:c2:b3:fa:ce:c0:da:bb:78:33:c4:f5:9a:cd:11: af:5b:67:4d:13:16:8a:01:19:4d:22:be:7c:32:6d: 8a:5c:ea:bb:ab:f7:ce:35:35:d9:73:92:57:ca:a8: 93:a6:dc:1e:89:12:db:0b:01:9c:5d:41:54:ca:bd: 08:74:67:0e:4a:f0:c9:cc:43:c7:6a:4b:62:28:4b: c0:fa:4c:1f:7a:b4:0c:bc:d5:54:05:e5:62:8a:fd: b3:09:a5:7f:bc:4f:f7:55:1e:c3:d3:b6:c8:0f:ab: 04:c9:28:7a:b3:33:e9:02:65:d2:1a:47:e7:7f:d7: a6:a4:5f:e3:48:62:65:9b:13:d4:a2:7c:36:61:a5: 6f:1f:73:ac:2f:fa:5f:bf:78:c3:15:37:c2:6a:54: 04:ad:56:2e:46:66:21:62:80:14:e6:71:17:b6:38: 1d:bb:71:4d:0e:00:3a:1c:ae:33:b1:98:4b:00:3d: b4:c7:b3:ee:4d:e4:4d:03:9f:e0:44:51:ac:81:82: 7c:44:a9:3e:a1:83:7d:41:6b:70:ba:c9:fa:c3:4b: 99:71:3e:19:8d:52:09:29:88:be:73:95:d1:96:7e: aa:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:3D:C5:99:5E:3D:04:09:F2:BB:65:71:A7:7D:96:C6:8F:34:F6:EE X509v3 Authority Key Identifier: keyid:F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234352e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.245.0/24 Signature Algorithm: sha256WithRSAEncryption 45:60:e1:fa:0f:f0:99:87:d4:64:a9:af:81:93:19:2d:f8:0d: 9e:a1:f2:66:ac:c7:1b:3d:72:17:66:d3:81:f7:a0:22:23:c4: 51:b7:54:33:a5:2e:ae:14:83:e0:9b:14:23:a0:f8:36:05:26: ce:b6:b1:3e:26:c7:2f:81:4f:4e:2a:5c:3f:0c:4a:ae:18:fe: 90:53:07:52:55:7b:24:48:2e:fa:1e:ae:75:ea:95:09:e0:2d: be:a0:2e:e6:95:b7:25:98:ae:ff:5b:80:5d:a4:9f:c7:e3:ba: 81:b7:40:ca:0f:04:2f:f7:d6:44:1c:8b:4c:93:1c:af:e8:a8: d3:ca:4e:fc:2d:a1:7b:4f:7d:01:cc:c5:e1:2b:0c:7c:92:b7: bb:e1:5c:08:ac:ae:ca:09:ef:00:3b:6c:6f:3b:18:82:87:4d: 7b:6e:b7:66:ce:0d:de:89:64:ee:b7:1a:51:b4:4f:b7:31:87: 05:13:03:f1:5f:9f:e6:e8:e2:39:48:e7:68:f4:7d:21:bc:75: 9b:cf:be:b2:6a:17:fb:28:6f:49:c7:17:ee:dd:b6:2d:f3:1e: f5:7a:3f:9f:8c:c5:fe:c6:3d:58:37:b4:d8:0f:11:1b:3c:dc: e9:ea:5f:98:b6:54:ca:8a:50:1d:20:9d:d1:50:cc:68:71:9a: cf:98:f4:5a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGUPCJgwWw1cYhe/R2EjCqIJuYPkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3 NzgwOUQwMjAeFw0yNDEyMjQwOTU1MDFaFw0yNTEyMjMxMDAwMDFaMDMxMTAvBgNV BAMTKDg5M0RDNTk5NUUzRDA0MDlGMkJCNjU3MUE3N0Q5NkM2OEYzNEY2RUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr70frjUPy5P7/KpxWiXIEKHcz wCFckl4mvQU0j2rCs/rOwNq7eDPE9ZrNEa9bZ00TFooBGU0ivnwybYpc6rur9841 NdlzklfKqJOm3B6JEtsLAZxdQVTKvQh0Zw5K8MnMQ8dqS2IoS8D6TB96tAy81VQF 5WKK/bMJpX+8T/dVHsPTtsgPqwTJKHqzM+kCZdIaR+d/16akX+NIYmWbE9SifDZh pW8fc6wv+l+/eMMVN8JqVAStVi5GZiFigBTmcRe2OB27cU0OADocrjOxmEsAPbTH s+5N5E0Dn+BEUayBgnxEqT6hg31Ba3C6yfrDS5lxPhmNUgkpiL5zldGWfqrDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUiT3FmV49BAnyu2Vxp32Wxo809u4wHwYDVR0j BBgwFoAU843/CU4WhDhU6sFAPGn9f3eAnQIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWQ2ZGNjOS0xNzAwLTQ4ZWItOTA5OS02Njc4ZjkxYmY0NGUvMC9GMzhERkYwOTRF MTY4NDM4NTRFQUMxNDAzQzY5RkQ3Rjc3ODA5RDAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3Nzgw OUQwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhZDZkY2M5LTE3MDAtNDhlYi05 MDk5LTY2NzhmOTFiZjQ0ZS8wLzMyMzAzMjJlMzkzMzJlMzIzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpd9TANBgkqhkiG 9w0BAQsFAAOCAQEARWDh+g/wmYfUZKmvgZMZLfgNnqHyZqzHGz1yF2bTgfegIiPE UbdUM6UurhSD4JsUI6D4NgUmzraxPibHL4FPTipcPwxKrhj+kFMHUlV7JEgu+h6u deqVCeAtvqAu5pW3JZiu/1uAXaSfx+O6gbdAyg8EL/fWRByLTJMcr+io08pO/C2h e099AczF4SsMfJK3u+FcCKyuygnvADtsbzsYgodNe263Zs4N3olk7rcaUbRPtzGH BRMD8V+f5ujiOUjnaPR9Ibx1m8++smoX+yhvSccX7t22LfMe9Xo/n4zF/sY9WDe0 2A8RGzzc6epfmLZUyopQHSCd0VDMaHGaz5j0Wg== -----END CERTIFICATE-----Generated at Thu Apr 10 23:52:27 2025 by rpki-client