$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3138322e31362e3235342e302f32342d3234203d3e203435323938.roa File: 3138322e31362e3235342e302f32342d3234203d3e203435323938.roa (raw, json) Hash identifier: Br2zhO2mtWf4byMN5oW5IF0fqGbzZ4jKe7O7XXXytF4= Subject key identifier: 39:65:EF:64:8B:9A:68:80:57:71:84:2D:D7:65:49:14:E5:CF:07:9F Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Certificate serial: 22A79959E545C959A5AC3EF4121907ED196D2F07 Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3138322e31362e3235342e302f32342d3234203d3e203435323938.roa Signing time: Wed 26 Feb 2025 01:00:02 +0000 ROA not before: Wed 26 Feb 2025 00:55:02 +0000 ROA not after: Wed 25 Feb 2026 01:00:02 +0000 asID: 45298 IP address blocks: 182.16.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 23:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:a7:99:59:e5:45:c9:59:a5:ac:3e:f4:12:19:07:ed:19:6d:2f:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Validity Not Before: Feb 26 00:55:02 2025 GMT Not After : Feb 25 01:00:02 2026 GMT Subject: CN=3965EF648B9A68805771842DD7654914E5CF079F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:cd:ea:f3:4e:34:e5:e6:00:a5:64:f9:82:a5: 11:f7:9b:9f:e3:e9:5d:b2:2d:85:d8:b6:a4:db:a9: 2b:0e:33:e3:08:e3:80:81:20:60:de:d4:6b:4f:9c: 51:a2:41:80:62:7e:6d:6a:ba:6b:b7:01:81:32:ec: 35:7c:9e:27:98:4b:86:62:38:9b:c8:fc:1d:f9:64: 64:c9:14:39:41:2b:bc:c1:f7:52:2f:be:e3:a0:26: fc:b4:28:6d:7a:28:06:f8:48:92:16:f2:3e:aa:23: d0:5c:02:9f:98:2c:73:ee:45:c2:c6:c8:55:89:66: f5:1f:b5:5e:e5:2e:ee:f4:83:3f:c2:35:8c:5c:fd: 51:b6:59:12:27:11:30:7a:62:1a:32:0b:1a:96:72: f1:32:4a:7a:05:b7:68:57:93:a1:63:d7:45:63:f8: d6:6c:f5:08:29:6f:5b:fd:fa:83:55:e0:4f:68:b1: 29:84:91:c3:0d:ad:e7:4a:b6:41:2c:27:d7:eb:94: b4:df:31:93:44:41:64:28:d1:71:37:c9:d6:92:17: e3:59:76:e0:1a:71:5a:a4:14:77:2d:96:65:19:dd: 51:a2:21:c2:ad:b0:33:da:f5:3c:ca:27:57:9e:15: 8f:0b:57:27:a9:33:d2:05:f5:98:49:10:45:24:3b: e9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:65:EF:64:8B:9A:68:80:57:71:84:2D:D7:65:49:14:E5:CF:07:9F X509v3 Authority Key Identifier: keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3138322e31362e3235342e302f32342d3234203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.16.254.0/24 Signature Algorithm: sha256WithRSAEncryption 63:df:58:ae:fc:13:69:1a:4f:86:f6:8e:2a:4e:95:11:53:5e: a6:cf:39:ea:bf:d0:6c:ba:e3:28:4e:b4:e0:6a:c7:f8:7d:60: 79:5a:cd:2b:50:f4:a8:21:fd:bf:f7:22:d5:d3:cf:ab:e6:7a: 33:f6:93:bf:33:51:4d:06:1d:24:11:01:d8:90:7c:f6:03:bf: 8e:a4:53:65:b9:5d:b6:9f:62:6e:a7:e1:cb:4c:86:27:31:b8: 4d:ac:3d:83:36:c4:a4:8a:67:a3:8e:b2:29:50:02:31:7b:15: d4:5e:86:c4:ab:49:92:3b:71:b6:1e:44:0c:d8:45:96:c1:a0: ba:a0:d6:27:35:7d:e3:ad:d0:ff:05:ae:1e:09:4e:d5:57:d7: 87:a8:40:bf:53:1f:f0:5b:46:30:a7:a0:0b:db:52:f9:8f:29: cc:e6:6f:94:53:57:f5:2c:65:88:db:c8:34:e4:5b:36:7a:c4: 8f:f2:cb:c9:b5:ee:25:cb:73:d3:29:2c:e1:01:03:9b:c2:db: 33:ed:73:d5:a5:06:b4:eb:0a:01:ff:03:8d:03:8e:a7:9b:80: 94:5d:de:f1:bc:fe:fb:a7:7f:ec:d4:f7:f5:3a:d2:90:fd:19: a2:90:77:c8:07:62:94:53:b6:62:3e:9c:21:7a:55:27:5b:1b: 92:b4:ed:73 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIqeZWeVFyVmlrD70EhkH7RltLwcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD ODg2RjFERTAeFw0yNTAyMjYwMDU1MDJaFw0yNjAyMjUwMTAwMDJaMDMxMTAvBgNV BAMTKDM5NjVFRjY0OEI5QTY4ODA1NzcxODQyREQ3NjU0OTE0RTVDRjA3OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpzerzTjTl5gClZPmCpRH3m5/j 6V2yLYXYtqTbqSsOM+MI44CBIGDe1GtPnFGiQYBifm1qumu3AYEy7DV8nieYS4Zi OJvI/B35ZGTJFDlBK7zB91IvvuOgJvy0KG16KAb4SJIW8j6qI9BcAp+YLHPuRcLG yFWJZvUftV7lLu70gz/CNYxc/VG2WRInETB6YhoyCxqWcvEySnoFt2hXk6Fj10Vj +NZs9Qgpb1v9+oNV4E9osSmEkcMNredKtkEsJ9frlLTfMZNEQWQo0XE3ydaSF+NZ duAacVqkFHctlmUZ3VGiIcKtsDPa9TzKJ1eeFY8LVyepM9IF9ZhJEEUkO+k9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOWXvZIuaaIBXcYQt12VJFOXPB58wHwYDVR0j BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2 RjFERS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzMxMzgzMjJlMzEzNjJlMzIzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMyMzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALYQ/jANBgkqhkiG 9w0BAQsFAAOCAQEAY99YrvwTaRpPhvaOKk6VEVNeps856r/QbLrjKE604GrH+H1g eVrNK1D0qCH9v/ci1dPPq+Z6M/aTvzNRTQYdJBEB2JB89gO/jqRTZbldtp9ibqfh y0yGJzG4Taw9gzbEpIpno46yKVACMXsV1F6GxKtJkjtxth5EDNhFlsGguqDWJzV9 463Q/wWuHglO1VfXh6hAv1Mf8FtGMKegC9tS+Y8pzOZvlFNX9SxliNvINORbNnrE j/LLybXuJctz0yks4QEDm8LbM+1z1aUGtOsKAf8DjQOOp5uAlF3e8bz++6d/7NT3 9TrSkP0ZopB3yAdilFO2Yj6cIXpVJ1sbkrTtcw== -----END CERTIFICATE-----Generated at Mon Apr 7 01:13:00 2025 by rpki-client