$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31392e302f32342d3234203d3e203538383136.roa File: 3230322e37332e31392e302f32342d3234203d3e203538383136.roa (raw, json) Hash identifier: 5m5TlKYtb1BvkeOY5L0iLxzd9TDfvf4dSOsCxsnrroA= Subject key identifier: 2C:F4:93:DF:11:A2:0B:AB:FB:99:D4:4B:52:FA:36:9F:5A:6B:6B:43 Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 2972A96ADF1E24ED4D705B5E3CD4535B3E19FF76 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31392e302f32342d3234203d3e203538383136.roa Signing time: Thu 13 Mar 2025 11:01:37 +0000 ROA not before: Thu 13 Mar 2025 10:56:37 +0000 ROA not after: Thu 12 Mar 2026 11:01:37 +0000 asID: 58816 IP address blocks: 202.73.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:72:a9:6a:df:1e:24:ed:4d:70:5b:5e:3c:d4:53:5b:3e:19:ff:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Mar 13 10:56:37 2025 GMT Not After : Mar 12 11:01:37 2026 GMT Subject: CN=2CF493DF11A20BABFB99D44B52FA369F5A6B6B43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:30:80:bf:60:a8:10:35:90:d4:c1:45:8b:23: 45:8f:f9:8c:3f:ca:af:3b:f4:7c:9b:c5:6b:1c:98: 66:5c:0f:84:ad:08:ee:65:50:9b:18:34:95:3f:0b: ea:90:f4:45:6e:c9:7d:ed:6a:46:2a:7f:76:01:3e: 2f:24:09:55:f0:1f:08:66:f5:33:a2:48:19:6e:8d: 62:06:ff:b9:6a:01:fb:c2:08:ca:38:8e:17:fd:f1: d4:14:f8:a9:12:ca:f2:00:20:2a:55:95:64:4e:1c: e0:8a:ff:f1:0b:cf:fa:55:ee:d5:9c:8d:5b:44:eb: 07:71:08:47:8b:8c:90:14:6c:26:aa:89:a0:9f:a8: bf:e5:90:c0:8f:1b:09:91:71:97:75:d3:aa:e1:ba: f4:31:68:91:c3:8f:14:fd:87:4f:a6:56:2c:49:ea: ef:d3:a2:28:15:02:a5:38:f7:57:d0:5f:e9:20:e4: ed:3e:dc:d3:b5:e4:57:f0:f9:42:91:51:af:9f:60: f5:99:a5:d5:0e:23:09:7d:44:e9:25:c4:62:e7:2d: ee:b6:8e:07:94:a8:85:3d:28:bc:39:65:c5:64:f9: f8:88:13:3e:0c:48:e6:a8:b4:c0:4f:ec:6f:03:c4: 59:0c:6a:c5:d2:61:a9:d5:d7:e7:cb:e5:ef:9d:5b: f7:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:F4:93:DF:11:A2:0B:AB:FB:99:D4:4B:52:FA:36:9F:5A:6B:6B:43 X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31392e302f32342d3234203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.19.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:c8:9a:40:d7:26:bf:d9:be:01:72:8a:1e:63:d5:b9:d0:62: 50:ac:64:5f:f6:a9:0c:b4:44:30:d5:56:d6:c7:c9:ce:d1:b7: 58:1e:4d:e2:0f:33:72:8a:a0:1b:d7:67:12:7c:54:eb:db:54: 93:ab:9c:37:24:e6:87:74:dd:06:c6:e0:90:47:25:ec:c6:4d: ca:ce:3d:29:c4:4a:4e:2c:65:cd:46:21:f0:4b:bf:83:4a:c1: 27:8d:2a:2d:94:89:62:e3:a0:14:14:4d:0f:2b:1f:ca:a2:c3: ad:37:85:3e:70:b5:0d:13:8f:75:fd:61:89:e3:ab:0c:09:02: c2:3d:27:33:67:46:2b:a7:64:8d:1c:3e:e4:52:71:61:9a:20: 10:5e:71:ae:e8:48:21:82:6d:94:d1:04:83:90:9d:46:f0:61: 98:aa:3d:e7:8a:96:dd:d3:ce:92:8b:29:32:b8:49:8f:28:2a: 04:cd:1b:8e:b9:a7:cf:15:b4:68:c9:ff:5e:7c:6c:8e:07:b2: 2f:8c:fa:a4:0d:a0:0f:40:57:de:56:0a:08:fd:52:22:2c:d6: 8d:84:81:81:d9:3b:a7:de:9f:bc:31:fb:6c:e9:8d:bc:bf:02: e5:4c:eb:b2:c3:4e:77:8d:85:fe:92:18:ae:d8:a9:1c:17:48: 22:7f:be:c1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKXKpat8eJO1NcFtePNRTWz4Z/3YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNTAzMTMxMDU2MzdaFw0yNjAzMTIxMTAxMzdaMDMxMTAvBgNV BAMTKDJDRjQ5M0RGMTFBMjBCQUJGQjk5RDQ0QjUyRkEzNjlGNUE2QjZCNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSMIC/YKgQNZDUwUWLI0WP+Yw/ yq879HybxWscmGZcD4StCO5lUJsYNJU/C+qQ9EVuyX3takYqf3YBPi8kCVXwHwhm 9TOiSBlujWIG/7lqAfvCCMo4jhf98dQU+KkSyvIAICpVlWROHOCK//ELz/pV7tWc jVtE6wdxCEeLjJAUbCaqiaCfqL/lkMCPGwmRcZd106rhuvQxaJHDjxT9h0+mVixJ 6u/ToigVAqU491fQX+kg5O0+3NO15Ffw+UKRUa+fYPWZpdUOIwl9ROklxGLnLe62 jgeUqIU9KLw5ZcVk+fiIEz4MSOaotMBP7G8DxFkMasXSYanV1+fL5e+dW/fvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQULPST3xGiC6v7mdRLUvo2n1pra0MwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMyMzAzMjJlMzczMzJlMzEzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzODMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKSRMwDQYJKoZIhvcN AQELBQADggEBAC3ImkDXJr/ZvgFyih5j1bnQYlCsZF/2qQy0RDDVVtbHyc7Rt1ge TeIPM3KKoBvXZxJ8VOvbVJOrnDck5od03QbG4JBHJezGTcrOPSnESk4sZc1GIfBL v4NKwSeNKi2UiWLjoBQUTQ8rH8qiw603hT5wtQ0Tj3X9YYnjqwwJAsI9JzNnRiun ZI0cPuRScWGaIBBeca7oSCGCbZTRBIOQnUbwYZiqPeeKlt3TzpKLKTK4SY8oKgTN G465p88VtGjJ/158bI4Hsi+M+qQNoA9AV95WCgj9UiIs1o2EgYHZO6fen7wx+2zp jby/AuVM67LDTneNhf6SGK7YqRwXSCJ/vsE= -----END CERTIFICATE-----Generated at Sun Apr 6 10:40:00 2025 by rpki-client