$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137302e302f32332d3233203d3e203435373235.roa File: 3230322e3135302e3137302e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: RYaUaP8z76N+rN9/CRDsCKHTh8kwn9eyhhBEqvlMUwo= Subject key identifier: 62:5D:59:08:03:B3:B8:99:A2:04:C6:06:EC:89:92:05:99:69:6E:D7 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 611E44C5626BDC022933BC18CCC294383D1477C9 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137302e302f32332d3233203d3e203435373235.roa Signing time: Sun 06 Apr 2025 15:15:06 +0000 ROA not before: Sun 06 Apr 2025 15:10:06 +0000 ROA not after: Sun 05 Apr 2026 15:15:06 +0000 asID: 45725 IP address blocks: 202.150.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 16:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:1e:44:c5:62:6b:dc:02:29:33:bc:18:cc:c2:94:38:3d:14:77:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Apr 6 15:10:06 2025 GMT Not After : Apr 5 15:15:06 2026 GMT Subject: CN=625D590803B3B899A204C606EC89920599696ED7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b8:2c:e0:82:cc:5d:2b:f8:5c:ea:f7:47:2d: 4d:50:79:26:61:ed:bb:1f:a1:8d:7d:90:1b:e7:bb: ff:57:82:f5:6d:30:0b:81:3d:ce:6a:e3:07:63:8d: 1c:0c:39:f3:45:55:43:7a:e8:fc:45:2a:23:50:64: de:1e:90:89:a8:4c:e1:24:10:c2:72:f9:fd:eb:a0: ad:d7:69:8f:95:ac:e1:99:8e:75:c8:71:35:38:e9: 61:76:b4:e8:bd:c9:67:a5:3d:7d:d2:63:7b:43:ac: cc:e4:aa:da:fd:34:f1:48:80:df:98:b3:f1:b7:87: 9e:65:80:a6:d6:64:ac:aa:95:12:16:25:75:1b:75: 70:0c:a0:a0:9c:98:da:40:02:c4:bd:ce:fa:a8:16: 83:7d:19:e1:be:1f:31:86:fd:cd:7c:6a:fd:c9:ac: 87:52:83:f1:74:e9:62:29:67:5e:8f:c8:f1:a5:a8: dd:98:07:19:28:8f:3f:d7:1e:6f:7e:a6:21:3e:ac: 78:ef:96:5d:83:b4:33:70:29:b0:de:08:7f:be:db: 5f:35:c0:be:b5:47:c5:18:ab:2e:de:54:b1:de:34: 2d:17:d0:b1:12:9c:0d:89:34:69:69:03:ac:b1:2a: ed:54:19:92:65:05:4a:84:dd:61:dc:3b:36:18:21: b8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:5D:59:08:03:B3:B8:99:A2:04:C6:06:EC:89:92:05:99:69:6E:D7 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137302e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.150.170.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:5d:53:00:a8:de:9e:18:69:47:2e:d9:4b:6d:c9:25:20:a3: 54:95:bc:7e:2f:12:de:b6:b9:fb:4e:4d:49:a6:42:26:51:d9: 26:7d:7b:63:de:88:3f:68:e1:64:ac:7c:ab:f6:c0:6b:7b:1b: bd:14:19:fe:ae:c1:f8:d6:7c:25:93:76:76:08:54:fe:48:12: b1:47:73:ca:45:51:9c:7a:df:88:e0:39:73:c1:3d:77:1b:95: 96:ff:71:ae:c5:2c:aa:d1:b5:50:4f:8e:47:ed:f8:b4:8a:b9: 42:5c:c5:25:d9:a1:dd:d8:5f:b0:16:fc:4f:7e:95:97:ab:bc: 5f:c7:4a:fd:c2:6b:c0:55:7d:6a:97:54:5a:57:2a:49:b8:30: ce:bd:3d:a9:a3:14:ee:2c:55:42:3b:0a:3a:90:3f:c9:b9:aa: 1c:16:38:96:2f:cd:76:1c:5b:45:bd:5a:67:7b:a5:62:83:2b: ab:d8:0b:3d:88:ce:36:fd:74:db:fa:c4:13:2a:9d:74:55:01: 59:a9:b4:a1:35:94:16:40:95:b9:1e:92:f6:1b:de:64:9c:6e: 1a:cc:0a:a6:da:9b:2a:0f:58:40:ae:31:f8:68:be:f3:4e:f1: 9a:d9:74:e0:61:75:ad:be:ca:45:53:2c:27:cd:b0:ae:1d:c1: 73:82:11:9e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYR5ExWJr3AIpM7wYzMKUOD0Ud8kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA0MDYxNTEwMDZaFw0yNjA0MDUxNTE1MDZaMDMxMTAvBgNV BAMTKDYyNUQ1OTA4MDNCM0I4OTlBMjA0QzYwNkVDODk5MjA1OTk2OTZFRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6uCzggsxdK/hc6vdHLU1QeSZh 7bsfoY19kBvnu/9XgvVtMAuBPc5q4wdjjRwMOfNFVUN66PxFKiNQZN4ekImoTOEk EMJy+f3roK3XaY+VrOGZjnXIcTU46WF2tOi9yWelPX3SY3tDrMzkqtr9NPFIgN+Y s/G3h55lgKbWZKyqlRIWJXUbdXAMoKCcmNpAAsS9zvqoFoN9GeG+HzGG/c18av3J rIdSg/F06WIpZ16PyPGlqN2YBxkojz/XHm9+piE+rHjvll2DtDNwKbDeCH++2181 wL61R8UYqy7eVLHeNC0X0LESnA2JNGlpA6yxKu1UGZJlBUqE3WHcOzYYIbiPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYl1ZCAOzuJmiBMYG7ImSBZlpbtcwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMyMzAzMjJlMzEzNTMwMmUzMTM3MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBypaqMA0GCSqG SIb3DQEBCwUAA4IBAQCeXVMAqN6eGGlHLtlLbcklIKNUlbx+LxLetrn7Tk1JpkIm UdkmfXtj3og/aOFkrHyr9sBrexu9FBn+rsH41nwlk3Z2CFT+SBKxR3PKRVGcet+I 4DlzwT13G5WW/3GuxSyq0bVQT45H7fi0irlCXMUl2aHd2F+wFvxPfpWXq7xfx0r9 wmvAVX1ql1RaVypJuDDOvT2poxTuLFVCOwo6kD/JuaocFjiWL812HFtFvVpne6Vi gyur2As9iM42/XTb+sQTKp10VQFZqbShNZQWQJW5HpL2G95knG4azAqm2psqD1hA rjH4aL7zTvGa2XTgYXWtvspFUywnzbCuHcFzghGe -----END CERTIFICATE-----Generated at Sun Apr 6 23:56:40 2025 by rpki-client