$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31372e302f32342d3234203d3e203538383136.roa File: 3230322e37332e31372e302f32342d3234203d3e203538383136.roa (raw, json) Hash identifier: kRRcaFc2J9dVlk1FFSz0s3hPY1eoKnszPg9ucUh3LNQ= Subject key identifier: E8:BB:E1:89:C4:FB:D8:9E:41:81:D7:03:0E:CC:D0:30:2A:16:01:8C Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 440E1913B2380119E4916646E85A9F879F7B7C4D Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31372e302f32342d3234203d3e203538383136.roa Signing time: Thu 13 Mar 2025 11:01:37 +0000 ROA not before: Thu 13 Mar 2025 10:56:37 +0000 ROA not after: Thu 12 Mar 2026 11:01:37 +0000 asID: 58816 IP address blocks: 202.73.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:0e:19:13:b2:38:01:19:e4:91:66:46:e8:5a:9f:87:9f:7b:7c:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Mar 13 10:56:37 2025 GMT Not After : Mar 12 11:01:37 2026 GMT Subject: CN=E8BBE189C4FBD89E4181D7030ECCD0302A16018C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:97:60:76:fc:d1:ff:51:98:66:ed:da:ab:53: 20:34:0d:11:36:cd:79:4c:40:83:6d:4f:1b:88:74: f3:10:f9:24:13:d2:6a:01:f5:df:7c:9a:28:63:08: 53:80:8a:4c:0e:c4:82:24:f8:33:53:6a:de:8f:4a: 5e:f6:c9:e5:e7:ec:04:a9:cf:f0:1a:92:b0:4f:ec: d7:0d:ad:9e:f8:97:ff:52:ed:a2:79:af:32:cb:f8: 7d:e1:34:d3:01:7f:c6:48:ca:cc:fb:26:4d:1e:d6: 29:72:a7:25:36:49:2d:bc:9c:c9:a4:93:90:5e:c3: dd:6b:3d:80:b3:f9:03:de:c5:84:9b:35:ed:9e:d6: 7d:f1:1d:47:bb:7c:3f:c3:7d:eb:d9:b6:ba:0c:e3: 89:d0:81:e5:f4:3f:97:a6:d4:47:5e:72:fa:6c:12: b7:2d:12:74:82:38:a5:82:0c:86:3b:c4:7f:c4:9f: 21:0a:3f:82:03:3a:0d:b7:53:1a:40:b3:45:59:cf: cd:d7:c9:34:23:ac:c3:9e:e1:3b:e9:59:04:cd:6f: c5:c6:6c:26:a8:2d:2a:2c:35:f5:e8:30:78:94:4e: 21:5c:0e:58:a1:5b:e6:12:48:1a:cd:3f:c0:e1:66: 56:6b:fe:ab:af:75:f7:1a:b0:6f:e5:74:96:84:35: 40:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:BB:E1:89:C4:FB:D8:9E:41:81:D7:03:0E:CC:D0:30:2A:16:01:8C X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31372e302f32342d3234203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.17.0/24 Signature Algorithm: sha256WithRSAEncryption 88:4a:d4:be:85:27:2f:25:08:b6:a5:51:3c:1a:bd:78:c3:b5: 4d:01:6b:3c:b1:cd:2f:94:fa:c7:cf:9b:45:db:a5:a0:17:35: 25:91:3a:28:34:fe:20:57:db:22:df:0d:93:bb:37:65:4d:f8: ce:cc:f6:7a:a1:75:10:fc:84:f9:16:d1:0a:42:11:59:bb:7d: 71:a0:de:61:ad:1c:a2:71:9c:fb:57:26:e1:84:29:25:ad:53: aa:40:d7:e5:d5:2b:f3:b4:f8:a4:0a:7e:32:fa:d6:ca:f4:1c: 8d:74:96:13:ef:6c:e9:2e:e8:d2:ca:be:d9:6d:53:eb:8a:97: 63:8a:d4:6e:b0:9e:c6:8c:61:ab:dd:0e:a5:29:b6:f4:5e:80: 36:9e:75:55:08:e4:18:29:d1:c1:84:b7:14:97:31:e3:b0:64: 32:c8:58:c1:9e:5d:61:1a:be:15:fe:0c:f8:ad:cb:96:56:2e: 1a:e2:39:93:7f:e4:0d:68:32:47:7f:57:ba:48:cd:b2:f0:4d: 22:74:0f:40:3b:0b:4e:2b:f5:e5:10:93:e2:77:b1:99:bd:e9: 8d:54:36:26:f1:1b:a9:0a:3b:80:6d:97:91:8e:51:93:99:29: ac:63:88:f5:3d:73:0f:63:34:ee:7f:eb:6f:be:9f:19:bb:05: cf:9e:77:ac -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIURA4ZE7I4ARnkkWZG6Fqfh597fE0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNTAzMTMxMDU2MzdaFw0yNjAzMTIxMTAxMzdaMDMxMTAvBgNV BAMTKEU4QkJFMTg5QzRGQkQ4OUU0MTgxRDcwMzBFQ0NEMDMwMkExNjAxOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCol2B2/NH/UZhm7dqrUyA0DRE2 zXlMQINtTxuIdPMQ+SQT0moB9d98mihjCFOAikwOxIIk+DNTat6PSl72yeXn7ASp z/AakrBP7NcNrZ74l/9S7aJ5rzLL+H3hNNMBf8ZIysz7Jk0e1ilypyU2SS28nMmk k5Bew91rPYCz+QPexYSbNe2e1n3xHUe7fD/DfevZtroM44nQgeX0P5em1Edecvps ErctEnSCOKWCDIY7xH/EnyEKP4IDOg23UxpAs0VZz83XyTQjrMOe4TvpWQTNb8XG bCaoLSosNfXoMHiUTiFcDlihW+YSSBrNP8DhZlZr/quvdfcasG/ldJaENUC9AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU6LvhicT72J5BgdcDDszQMCoWAYwwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMyMzAzMjJlMzczMzJlMzEzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzODMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKSREwDQYJKoZIhvcN AQELBQADggEBAIhK1L6FJy8lCLalUTwavXjDtU0BazyxzS+U+sfPm0XbpaAXNSWR Oig0/iBX2yLfDZO7N2VN+M7M9nqhdRD8hPkW0QpCEVm7fXGg3mGtHKJxnPtXJuGE KSWtU6pA1+XVK/O0+KQKfjL61sr0HI10lhPvbOku6NLKvtltU+uKl2OK1G6wnsaM YavdDqUptvRegDaedVUI5Bgp0cGEtxSXMeOwZDLIWMGeXWEavhX+DPity5ZWLhri OZN/5A1oMkd/V7pIzbLwTSJ0D0A7C04r9eUQk+J3sZm96Y1UNibxG6kKO4Btl5GO UZOZKaxjiPU9cw9jNO5/62++nxm7Bc+ed6w= -----END CERTIFICATE-----Generated at Sun Apr 6 14:39:14 2025 by rpki-client