$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32342d3234203d3e203538383136.roa File: 3230322e37332e31362e302f32342d3234203d3e203538383136.roa (raw, json) Hash identifier: 7u4efn7bHYzED6nyNb+Hqw9a6DQWqirinCujiYt23iE= Subject key identifier: 85:18:E0:D5:76:ED:BE:2E:AD:CC:10:10:5F:C2:80:34:B9:A8:E7:14 Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 22DC546400F32711C6EAAE9E81B7147F1E7D6276 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32342d3234203d3e203538383136.roa Signing time: Thu 13 Mar 2025 11:01:36 +0000 ROA not before: Thu 13 Mar 2025 10:56:36 +0000 ROA not after: Thu 12 Mar 2026 11:01:36 +0000 asID: 58816 IP address blocks: 202.73.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:dc:54:64:00:f3:27:11:c6:ea:ae:9e:81:b7:14:7f:1e:7d:62:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Mar 13 10:56:36 2025 GMT Not After : Mar 12 11:01:36 2026 GMT Subject: CN=8518E0D576EDBE2EADCC10105FC28034B9A8E714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:52:d3:c7:03:68:30:70:03:a2:f4:70:cd:38: 7e:98:c4:c8:f1:23:64:6f:a1:84:66:d8:7d:cc:68: 53:d7:08:3c:b6:5c:f5:b6:8e:cf:8d:d6:e7:06:ff: 4d:dc:23:0b:db:7f:2f:ec:b7:90:33:ee:3f:f7:26: b5:1c:bd:c6:ba:63:8c:04:e9:bb:b5:d3:a0:3d:e2: d3:fc:bd:8a:4a:ef:79:ef:79:01:1e:72:03:b3:72: 2e:51:0d:41:de:a7:69:4d:e1:cc:18:51:b3:e0:cd: 28:ff:5d:9b:28:e2:4b:66:df:24:2d:55:87:9b:58: 5d:04:02:4e:46:37:1b:1a:1a:61:42:a3:83:ca:3a: a7:13:1a:c1:6b:46:83:95:84:8f:e0:ff:6b:ba:b5: f7:98:22:b8:c5:23:d6:d3:ac:80:e6:bc:6d:d8:31: 74:b9:aa:9b:4e:4d:f4:59:b9:44:0d:aa:20:95:ef: cf:74:b2:51:9e:db:16:12:a5:0a:59:a4:45:ec:e1: a4:70:36:7f:e4:b6:5e:b8:64:55:cc:e0:b7:12:57: 8b:a8:35:b3:ca:8b:30:14:b5:ad:38:36:c9:8c:fe: 97:a4:95:ee:50:04:4c:f9:de:98:44:f2:eb:dc:be: bd:22:12:12:ff:bc:c9:c3:55:3c:33:ea:61:96:47: 15:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:18:E0:D5:76:ED:BE:2E:AD:CC:10:10:5F:C2:80:34:B9:A8:E7:14 X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32342d3234203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.16.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:ca:dc:67:ce:0a:c6:0f:d6:de:01:cd:36:0a:2b:64:f2:46: ee:56:41:d2:37:e1:72:8d:71:80:e4:b3:3b:a4:6d:42:b3:62: ac:4d:18:c0:60:32:c0:c8:23:b6:1d:af:ee:4c:7f:dd:d1:9c: d4:de:7c:c6:65:65:1b:72:84:e6:1e:c4:4f:89:31:e6:7b:c2: 9a:58:e6:31:20:c6:c3:f3:8a:3f:53:8d:ce:ef:8c:f6:ef:e4: ae:3f:28:0a:bb:8f:7e:54:1b:58:26:eb:e2:fb:ce:cc:4f:fd: 06:38:da:df:e8:28:0c:a8:6a:7a:3b:36:90:f4:e3:64:98:ef: 54:67:42:7e:bb:f3:7b:24:67:f3:fd:68:8b:80:13:65:ae:2d: 7c:f3:17:92:e9:53:5f:c0:e6:c3:96:79:71:29:f7:97:f9:9c: 3c:c3:da:00:47:2e:c4:92:43:ab:53:c6:3e:f3:e5:f1:72:99: b9:fe:b1:d2:4f:01:97:73:dc:5e:b6:fd:f1:51:dd:90:75:3d: df:f4:e1:b5:b7:fa:d8:21:51:12:a8:f6:e6:63:47:7f:1e:a4: 0c:73:ba:bd:a4:cc:70:67:9b:3c:67:68:eb:e4:3b:25:8c:98: 5a:8b:b0:ab:1a:69:d0:91:8d:0a:d3:4d:90:bc:b5:5d:c8:24: 33:ce:40:54 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUItxUZADzJxHG6q6egbcUfx59YnYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNTAzMTMxMDU2MzZaFw0yNjAzMTIxMTAxMzZaMDMxMTAvBgNV BAMTKDg1MThFMEQ1NzZFREJFMkVBRENDMTAxMDVGQzI4MDM0QjlBOEU3MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEUtPHA2gwcAOi9HDNOH6YxMjx I2RvoYRm2H3MaFPXCDy2XPW2js+N1ucG/03cIwvbfy/st5Az7j/3JrUcvca6Y4wE 6bu106A94tP8vYpK73nveQEecgOzci5RDUHep2lN4cwYUbPgzSj/XZso4ktm3yQt VYebWF0EAk5GNxsaGmFCo4PKOqcTGsFrRoOVhI/g/2u6tfeYIrjFI9bTrIDmvG3Y MXS5qptOTfRZuUQNqiCV7890slGe2xYSpQpZpEXs4aRwNn/ktl64ZFXM4LcSV4uo NbPKizAUta04NsmM/pekle5QBEz53phE8uvcvr0iEhL/vMnDVTwz6mGWRxXRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUhRjg1Xbtvi6tzBAQX8KANLmo5xQwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMyMzAzMjJlMzczMzJlMzEzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzODMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKSRAwDQYJKoZIhvcN AQELBQADggEBAHvK3GfOCsYP1t4BzTYKK2TyRu5WQdI34XKNcYDkszukbUKzYqxN GMBgMsDII7Ydr+5Mf93RnNTefMZlZRtyhOYexE+JMeZ7wppY5jEgxsPzij9Tjc7v jPbv5K4/KAq7j35UG1gm6+L7zsxP/QY42t/oKAyoano7NpD042SY71RnQn6783sk Z/P9aIuAE2WuLXzzF5LpU1/A5sOWeXEp95f5nDzD2gBHLsSSQ6tTxj7z5fFymbn+ sdJPAZdz3F62/fFR3ZB1Pd/04bW3+tghURKo9uZjR38epAxzur2kzHBnmzxnaOvk OyWMmFqLsKsaadCRjQrTTZC8tV3IJDPOQFQ= -----END CERTIFICATE-----Generated at Sun Apr 6 12:37:27 2025 by rpki-client