$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32322d3232203d3e203538383136.roa File: 3230322e37332e31362e302f32322d3232203d3e203538383136.roa (raw, json) Hash identifier: b6WR2/tkj/TJmHf4T96jHhe4cr6ziz5DRZJiP/dYI8w= Subject key identifier: 1B:1D:AA:32:53:D7:3E:0C:CF:49:33:8D:71:A7:63:80:1D:45:1B:E6 Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 443FA33A827D35D71387AAB416ABB9D8C60D1429 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32322d3232203d3e203538383136.roa Signing time: Thu 20 Feb 2025 03:01:13 +0000 ROA not before: Thu 20 Feb 2025 02:56:13 +0000 ROA not after: Thu 19 Feb 2026 03:01:13 +0000 asID: 58816 IP address blocks: 202.73.16.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:3f:a3:3a:82:7d:35:d7:13:87:aa:b4:16:ab:b9:d8:c6:0d:14:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Feb 20 02:56:13 2025 GMT Not After : Feb 19 03:01:13 2026 GMT Subject: CN=1B1DAA3253D73E0CCF49338D71A763801D451BE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6d:72:e0:35:ba:67:79:4c:9c:49:6b:33:8c: d8:9b:db:90:a7:8e:f3:bf:cf:0a:f5:49:c3:66:22: 74:99:43:2f:c3:d3:5c:08:9e:79:d8:e4:d0:11:76: ae:43:d6:6e:4c:6d:04:d3:e0:e0:35:04:e7:a1:4b: cc:e8:ab:ac:e6:38:e0:c8:ea:87:b8:0d:e3:7a:fb: 8c:4f:5b:52:c9:f2:2e:ed:41:52:1f:26:88:55:e7: 88:0a:e4:35:28:0f:aa:f6:a9:9d:2b:a6:76:51:9b: 4b:1d:44:a0:d2:6f:81:5b:38:2b:49:0e:32:ef:18: cd:35:55:b6:76:52:59:5b:15:51:1f:cb:10:4b:9a: 97:dd:4e:aa:fc:1f:8f:0e:f9:53:95:a6:78:d7:04: 4c:5b:c4:76:d3:77:3a:aa:f5:46:7e:fb:a1:4d:dc: b1:9e:f1:d7:5b:52:a5:45:e3:70:48:4f:6b:1b:cf: 2b:f1:e3:21:7f:7b:8d:a1:b8:11:fb:2e:ac:0d:52: 79:9e:77:48:1c:8f:88:d0:64:03:3d:2f:fd:ee:8e: 0f:12:4e:6a:41:77:f9:7c:c6:55:38:72:a7:0f:2c: 73:b0:26:4b:16:9a:7d:74:62:d3:ca:83:20:ee:c0: 2c:58:9a:0a:ce:39:57:9d:e1:94:9a:95:26:0a:11: a3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:1D:AA:32:53:D7:3E:0C:CF:49:33:8D:71:A7:63:80:1D:45:1B:E6 X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32322d3232203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.16.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:16:fd:c5:74:4a:42:15:bc:bd:56:63:16:03:fe:bc:6b:fd: b0:3c:78:19:d5:2e:e5:62:d4:49:ac:ac:29:bf:85:79:54:be: 61:c6:02:40:5d:9e:e5:4f:d8:49:37:28:a6:06:00:29:a6:32: c4:d5:d0:66:c0:9d:46:54:ed:30:52:e3:a8:85:0e:df:6b:cb: 85:e6:e3:7c:6c:25:dd:76:59:d7:eb:f0:60:bd:ea:4c:2b:2a: e4:60:f6:a7:6f:36:7b:03:1b:79:06:60:f7:a7:e1:ff:1d:46: 14:a2:26:69:7a:4a:67:6a:db:d7:1f:c5:ca:40:9f:f0:35:f1: a4:94:4a:0e:97:fb:d3:c1:41:ef:e5:4f:b8:eb:c8:4e:92:a8: de:2b:60:ab:24:c4:64:94:3a:42:60:a0:d0:3f:1b:ef:94:aa: e1:bf:37:ba:9b:c3:e2:1c:c5:d3:cd:91:df:d8:fe:c1:6b:5b: 30:90:26:7d:c6:68:1c:f2:2a:83:b6:a3:cc:14:49:bb:a9:bd: 85:c1:79:5b:29:24:d0:f2:9c:ff:68:30:91:36:7d:c8:f1:9d: d2:7e:ca:a5:f8:58:6c:f5:b5:ab:dc:0f:e1:29:59:79:a0:d5: d4:af:a1:f2:4c:ec:58:08:60:60:a6:d8:2c:63:9a:62:59:64: 53:00:50:17 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIURD+jOoJ9NdcTh6q0Fqu52MYNFCkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNTAyMjAwMjU2MTNaFw0yNjAyMTkwMzAxMTNaMDMxMTAvBgNV BAMTKDFCMURBQTMyNTNENzNFMENDRjQ5MzM4RDcxQTc2MzgwMUQ0NTFCRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDbXLgNbpneUycSWszjNib25Cn jvO/zwr1ScNmInSZQy/D01wInnnY5NARdq5D1m5MbQTT4OA1BOehS8zoq6zmOODI 6oe4DeN6+4xPW1LJ8i7tQVIfJohV54gK5DUoD6r2qZ0rpnZRm0sdRKDSb4FbOCtJ DjLvGM01VbZ2UllbFVEfyxBLmpfdTqr8H48O+VOVpnjXBExbxHbTdzqq9UZ++6FN 3LGe8ddbUqVF43BIT2sbzyvx4yF/e42huBH7LqwNUnmed0gcj4jQZAM9L/3ujg8S TmpBd/l8xlU4cqcPLHOwJksWmn10YtPKgyDuwCxYmgrOOVed4ZSalSYKEaOZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUGx2qMlPXPgzPSTONcadjgB1FG+YwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMyMzAzMjJlMzczMzJlMzEzNjJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDM1MzgzODMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKSRAwDQYJKoZIhvcN AQELBQADggEBAIoW/cV0SkIVvL1WYxYD/rxr/bA8eBnVLuVi1EmsrCm/hXlUvmHG AkBdnuVP2Ek3KKYGACmmMsTV0GbAnUZU7TBS46iFDt9ry4Xm43xsJd12Wdfr8GC9 6kwrKuRg9qdvNnsDG3kGYPen4f8dRhSiJml6Smdq29cfxcpAn/A18aSUSg6X+9PB Qe/lT7jryE6SqN4rYKskxGSUOkJgoNA/G++UquG/N7qbw+IcxdPNkd/Y/sFrWzCQ Jn3GaBzyKoO2o8wUSbupvYXBeVspJNDynP9oMJE2fcjxndJ+yqX4WGz1tavcD+Ep WXmg1dSvofJM7FgIYGCm2CxjmmJZZFMAUBc= -----END CERTIFICATE-----Generated at Sun Apr 6 10:32:27 2025 by rpki-client