$ rpki-client -vvf repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e332e302f32342d3234203d3e203234323030.roa File: 3230322e3133332e332e302f32342d3234203d3e203234323030.roa (raw, json) Hash identifier: KBjjsWsKQFuN1REWppuBIRLZLM4xHEbHMPv7NBToWH4= Subject key identifier: 02:58:3A:01:E3:3E:98:17:E5:D1:85:90:87:B8:2F:2F:25:3A:85:3F Certificate issuer: /CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Certificate serial: 59628E469CDEE8BDFE10E1965183E551E52B3B8D Authority key identifier: D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e332e302f32342d3234203d3e203234323030.roa Signing time: Mon 23 Dec 2024 08:35:21 +0000 ROA not before: Mon 23 Dec 2024 08:30:21 +0000 ROA not after: Mon 22 Dec 2025 08:35:21 +0000 asID: 24200 IP address blocks: 202.133.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:40:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:62:8e:46:9c:de:e8:bd:fe:10:e1:96:51:83:e5:51:e5:2b:3b:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Validity Not Before: Dec 23 08:30:21 2024 GMT Not After : Dec 22 08:35:21 2025 GMT Subject: CN=02583A01E33E9817E5D1859087B82F2F253A853F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0b:20:d8:8b:e0:43:f2:26:c9:68:2b:95:7b: 13:84:d8:65:86:35:20:0c:21:fa:9f:d4:ea:8d:a5: 95:ea:c2:d5:26:53:0a:79:f9:2b:75:54:98:ee:89: fb:cc:81:7a:a4:9a:ef:1c:6b:ca:b1:98:0b:42:c9: 3f:fc:6e:92:f0:b2:c5:dd:ec:59:e8:fd:bc:0c:10: e0:a4:30:f6:26:4d:64:a5:07:3d:d1:39:2a:d3:39: bb:ac:e4:4f:35:63:ec:36:9a:1f:69:72:39:dc:70: 03:cd:b6:92:53:7d:80:ab:55:dc:44:66:7c:b8:ac: 2d:d1:14:a0:ff:ea:8f:62:b0:72:82:4d:83:15:68: c7:d6:5b:bc:98:33:67:b7:76:53:c4:a9:83:b5:47: af:e8:bc:55:95:51:85:19:56:87:58:e3:53:19:09: 8e:2b:da:5a:dd:5d:5a:6f:74:6d:81:52:cd:7d:f0: a2:6b:fb:fb:06:c3:6c:b0:53:08:85:ec:3e:55:7e: 99:b4:1c:56:9f:e8:23:4a:d0:25:07:0d:57:77:d9: ff:a0:15:26:90:a4:14:88:64:3f:14:ee:d3:53:36: 82:05:75:93:94:ae:b7:4f:c8:5f:1f:f7:7a:1c:92: 9c:99:61:ca:2f:02:12:db:ec:b6:77:9a:a4:94:fa: 3a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:58:3A:01:E3:3E:98:17:E5:D1:85:90:87:B8:2F:2F:25:3A:85:3F X509v3 Authority Key Identifier: keyid:D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e332e302f32342d3234203d3e203234323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.133.3.0/24 Signature Algorithm: sha256WithRSAEncryption 16:4e:04:4a:3a:81:e3:03:f9:fb:ba:15:a1:8d:30:88:51:c2: 62:8a:71:11:7e:0c:39:19:16:67:ad:54:a1:8d:35:43:6d:60: fe:ca:eb:16:1b:4f:62:d4:15:cb:a5:50:fe:8f:5c:9a:f9:7c: 35:a1:2f:15:10:ef:0a:05:d2:ae:ef:9e:12:a8:c0:c2:fa:ff: e9:e9:19:cb:5a:0d:79:e0:5a:8d:69:76:7f:14:4b:b3:ea:12: e4:17:ab:1b:a3:65:3e:04:c8:a1:e6:2d:40:1d:45:fc:86:2a: 29:81:73:06:22:e8:19:61:02:32:b7:2f:bb:fb:ad:ef:6a:b2: 6a:57:41:01:9b:8d:b7:e8:bc:c7:aa:fd:cc:09:7d:df:f1:5b: 89:6f:dc:d4:85:2f:e9:04:1d:25:df:b7:ed:8e:0d:a6:49:b1: eb:aa:35:62:17:2e:fb:47:2e:e6:1a:ce:99:a6:4d:b4:81:5e: 59:44:12:12:e6:41:2f:23:97:7e:ca:91:5b:f9:00:69:b6:ca: 11:ba:a4:4f:a4:48:92:9b:b2:c2:59:97:95:09:9e:8a:b9:3d: 3c:df:0b:7a:58:11:61:0a:d0:c8:c1:bc:5b:42:dd:f2:65:11: b1:60:5b:e8:b0:8f:93:d8:f4:94:9b:f5:f0:a4:57:29:82:7c: b9:65:45:ff -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWWKORpze6L3+EOGWUYPlUeUrO40wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4 QkE3QkU0MDAeFw0yNDEyMjMwODMwMjFaFw0yNTEyMjIwODM1MjFaMDMxMTAvBgNV BAMTKDAyNTgzQTAxRTMzRTk4MTdFNUQxODU5MDg3QjgyRjJGMjUzQTg1M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBCyDYi+BD8ibJaCuVexOE2GWG NSAMIfqf1OqNpZXqwtUmUwp5+St1VJjuifvMgXqkmu8ca8qxmAtCyT/8bpLwssXd 7Fno/bwMEOCkMPYmTWSlBz3ROSrTObus5E81Y+w2mh9pcjnccAPNtpJTfYCrVdxE Zny4rC3RFKD/6o9isHKCTYMVaMfWW7yYM2e3dlPEqYO1R6/ovFWVUYUZVodY41MZ CY4r2lrdXVpvdG2BUs198KJr+/sGw2ywUwiF7D5Vfpm0HFaf6CNK0CUHDVd32f+g FSaQpBSIZD8U7tNTNoIFdZOUrrdPyF8f93ockpyZYcovAhLb7LZ3mqSU+jo7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUAlg6AeM+mBfl0YWQh7gvLyU6hT8wHwYDVR0j BBgwFoAU0MbXXDw0fVsnx4kR9ixfq4unvkAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzY2OWVhNC1lODJmLTQ2YzMtOGRkMy0yZTk4ODE1OWIyMDIvMC9EMEM2RDc1QzND MzQ3RDVCMjdDNzg5MTFGNjJDNUZBQjhCQTdCRTQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4QkE3 QkU0MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNjY5ZWE0LWU4MmYtNDZjMy04 ZGQzLTJlOTg4MTU5YjIwMi8wLzMyMzAzMjJlMzEzMzMzMmUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKhQMwDQYJKoZIhvcN AQELBQADggEBABZOBEo6geMD+fu6FaGNMIhRwmKKcRF+DDkZFmetVKGNNUNtYP7K 6xYbT2LUFculUP6PXJr5fDWhLxUQ7woF0q7vnhKowML6/+npGctaDXngWo1pdn8U S7PqEuQXqxujZT4EyKHmLUAdRfyGKimBcwYi6BlhAjK3L7v7re9qsmpXQQGbjbfo vMeq/cwJfd/xW4lv3NSFL+kEHSXft+2ODaZJseuqNWIXLvtHLuYazpmmTbSBXllE EhLmQS8jl37KkVv5AGm2yhG6pE+kSJKbssJZl5UJnoq5PTzfC3pYEWEK0MjBvFtC 3fJlEbFgW+iwj5PY9JSb9fCkVymCfLllRf8= -----END CERTIFICATE-----Generated at Tue Apr 8 19:51:42 2025 by rpki-client