$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e39322e302f32332d3233203d3e203435373235.roa File: 3138302e3231312e39322e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: 5gtSpN1P146ocldJClXJUUX1hGb29RqzWbJ13iydccw= Subject key identifier: 8A:D8:EA:C2:FC:DF:4C:A8:73:1B:43:3D:9E:04:FF:98:6D:A8:37:20 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 3D5656ACB211E3F9F65C191692C4409AE761FE0D Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e39322e302f32332d3233203d3e203435373235.roa Signing time: Sun 06 Apr 2025 15:13:41 +0000 ROA not before: Sun 06 Apr 2025 15:08:41 +0000 ROA not after: Sun 05 Apr 2026 15:13:41 +0000 asID: 45725 IP address blocks: 180.211.92.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 16:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:56:56:ac:b2:11:e3:f9:f6:5c:19:16:92:c4:40:9a:e7:61:fe:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Apr 6 15:08:41 2025 GMT Not After : Apr 5 15:13:41 2026 GMT Subject: CN=8AD8EAC2FCDF4CA8731B433D9E04FF986DA83720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:97:ba:f3:31:64:b3:6d:7b:cc:ff:ad:a7:99: b9:b0:60:49:f5:4f:a8:32:61:79:52:f1:d5:ec:e6: b8:a6:4a:66:15:07:75:54:a5:f8:28:1b:85:bf:af: 84:e1:a5:3c:0b:20:24:b0:20:0c:9d:ca:f6:4c:3d: b2:c8:dc:ac:97:d1:42:10:9c:7d:3b:b4:d3:53:a9: 43:c3:ea:82:83:36:55:20:f1:3a:29:66:a6:0c:92: b4:43:a2:2f:41:ae:ca:c1:2d:dd:28:72:06:da:ba: 1e:89:1b:55:92:45:3f:3d:7d:84:39:8c:22:c1:f9: 00:03:1b:80:c3:06:22:61:2b:89:f6:22:12:71:53: e4:ad:bc:3f:2a:9a:33:d1:e9:c2:b1:19:27:a6:f6: 97:a7:67:f5:7a:2e:f9:38:2a:81:c0:c8:1e:ce:81: fa:d5:4d:7b:bb:c2:e9:48:33:81:a2:32:18:e7:9d: 98:9b:8e:37:fd:47:07:4d:8c:e0:f2:c3:da:80:4f: 7f:b9:91:c1:b2:20:6e:31:69:14:cb:a0:65:9d:a8: 79:71:59:8d:cd:05:ae:b1:f8:47:5d:50:ba:5b:6b: bc:42:3b:3b:7a:94:b7:ce:53:6d:9b:af:0d:67:1e: 98:0a:19:bd:e3:6a:77:6d:a1:3a:46:9e:41:fd:30: ea:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D8:EA:C2:FC:DF:4C:A8:73:1B:43:3D:9E:04:FF:98:6D:A8:37:20 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e39322e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.211.92.0/23 Signature Algorithm: sha256WithRSAEncryption 61:a5:b1:c3:ef:4f:cb:e7:f5:da:a2:09:48:aa:ca:57:c5:3c: 63:c5:05:16:9b:c8:bc:00:38:8a:83:aa:06:a4:9d:50:da:e5: 58:e0:9e:44:11:6f:e6:b5:41:a3:9a:55:32:b8:f0:5d:01:b5: 60:c6:85:77:33:5b:66:92:d1:77:35:0d:f1:28:53:e7:e6:ef: 23:79:96:81:14:29:97:a2:f5:7c:84:87:c2:fa:33:cc:2b:3f: 19:ef:5d:06:ef:ef:9a:d0:b8:5c:de:04:f9:ed:20:b0:34:21: b4:2d:54:94:00:ed:cf:02:63:2e:8c:2e:80:50:88:32:e6:55: 2b:c2:c4:c1:de:f5:05:63:7d:51:3a:1e:0d:d5:fa:4f:08:52: c2:9e:ac:16:ca:2b:37:bb:6e:39:a4:27:cd:6d:a1:b0:9e:4b: 21:5b:14:ce:b0:2b:2d:55:a0:ab:7b:02:24:c4:bf:48:69:6d: d6:7f:00:a2:6d:d8:0a:69:c1:cc:3c:54:ab:c0:71:a9:27:96: 34:9d:30:c1:dd:23:40:8c:1d:51:2a:94:bd:c3:48:f0:44:da: 7c:28:27:9f:48:f6:9b:03:5c:72:8f:cd:a0:53:69:5c:b6:b4: 46:a8:05:30:0b:16:16:ae:bb:4b:ef:9f:01:55:50:56:28:93: b6:64:94:3f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPVZWrLIR4/n2XBkWksRAmudh/g0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA0MDYxNTA4NDFaFw0yNjA0MDUxNTEzNDFaMDMxMTAvBgNV BAMTKDhBRDhFQUMyRkNERjRDQTg3MzFCNDMzRDlFMDRGRjk4NkRBODM3MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhl7rzMWSzbXvM/62nmbmwYEn1 T6gyYXlS8dXs5rimSmYVB3VUpfgoG4W/r4ThpTwLICSwIAydyvZMPbLI3KyX0UIQ nH07tNNTqUPD6oKDNlUg8TopZqYMkrRDoi9BrsrBLd0ocgbauh6JG1WSRT89fYQ5 jCLB+QADG4DDBiJhK4n2IhJxU+StvD8qmjPR6cKxGSem9penZ/V6Lvk4KoHAyB7O gfrVTXu7wulIM4GiMhjnnZibjjf9RwdNjODyw9qAT3+5kcGyIG4xaRTLoGWdqHlx WY3NBa6x+EddULpba7xCOzt6lLfOU22brw1nHpgKGb3jandtoTpGnkH9MOrTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUitjqwvzfTKhzG0M9ngT/mG2oNyAwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMxMzgzMDJlMzIzMTMxMmUzOTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzQzNTM3MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbTTXDANBgkqhkiG 9w0BAQsFAAOCAQEAYaWxw+9Py+f12qIJSKrKV8U8Y8UFFpvIvAA4ioOqBqSdUNrl WOCeRBFv5rVBo5pVMrjwXQG1YMaFdzNbZpLRdzUN8ShT5+bvI3mWgRQpl6L1fISH wvozzCs/Ge9dBu/vmtC4XN4E+e0gsDQhtC1UlADtzwJjLowugFCIMuZVK8LEwd71 BWN9UToeDdX6TwhSwp6sFsorN7tuOaQnzW2hsJ5LIVsUzrArLVWgq3sCJMS/SGlt 1n8Aom3YCmnBzDxUq8BxqSeWNJ0wwd0jQIwdUSqUvcNI8ETafCgnn0j2mwNcco/N oFNpXLa0RqgFMAsWFq67S++fAVVQViiTtmSUPw== -----END CERTIFICATE-----Generated at Sun Apr 6 23:56:29 2025 by rpki-client