$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32302e302f32342d3234203d3e203538383136.roa File: 3230322e37332e32302e302f32342d3234203d3e203538383136.roa (raw, json) Hash identifier: oxNl3kL7pfOEMCZna82D8P/b9qkWwOtKEU4nTRdcl3U= Subject key identifier: 0F:8A:29:8E:48:3E:F1:7D:0A:82:07:03:50:FF:5F:81:97:A7:E5:E3 Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 185E539B89CCC0D3203C737B0B735A5A42002886 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32302e302f32342d3234203d3e203538383136.roa Signing time: Thu 13 Mar 2025 11:01:37 +0000 ROA not before: Thu 13 Mar 2025 10:56:37 +0000 ROA not after: Thu 12 Mar 2026 11:01:37 +0000 asID: 58816 IP address blocks: 202.73.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:5e:53:9b:89:cc:c0:d3:20:3c:73:7b:0b:73:5a:5a:42:00:28:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Mar 13 10:56:37 2025 GMT Not After : Mar 12 11:01:37 2026 GMT Subject: CN=0F8A298E483EF17D0A82070350FF5F8197A7E5E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d3:e9:a0:f5:09:af:85:da:71:4a:81:80:db: 9a:54:c8:09:0c:1e:8f:31:3c:11:78:65:fd:93:f6: 96:cd:71:dd:d6:bd:1f:9a:37:a2:34:2e:a4:df:a5: 74:7e:d6:cd:36:6e:fb:8c:8f:99:f2:ba:f0:21:00: 01:3e:59:c0:b1:83:44:cc:88:85:18:04:2c:4f:73: 3f:9a:9d:fc:27:7e:47:7d:4b:36:c9:a0:bd:f4:ca: af:1e:cf:50:e2:85:bd:65:9f:04:82:8b:5c:59:f3: 0b:25:88:2b:f9:2d:49:27:94:0f:7e:23:fb:c8:1b: 0b:26:db:e3:f2:0b:0c:0c:3e:8b:33:f2:e9:1f:78: 1d:6e:00:c6:94:3c:0c:5c:ce:08:8c:e0:b7:55:b6: 6a:21:85:ae:c6:99:fb:4c:72:d6:b6:95:41:b4:ed: 21:3f:4b:b2:b0:29:8c:45:85:e4:cf:12:c5:8d:db: 9e:df:3e:ed:01:63:c5:3a:89:90:e1:b4:6d:9d:5b: 8c:50:89:0a:01:3e:ae:3a:60:da:c6:f2:d1:84:17: 70:5f:fc:04:8b:45:10:f6:de:a5:21:b3:d0:ca:09: 0a:6a:0e:bc:9b:7d:55:07:17:ee:b8:8a:fb:a4:6e: b5:35:c7:03:db:5e:65:91:c6:85:de:c8:1d:d8:ab: 2f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:8A:29:8E:48:3E:F1:7D:0A:82:07:03:50:FF:5F:81:97:A7:E5:E3 X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32302e302f32342d3234203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.20.0/24 Signature Algorithm: sha256WithRSAEncryption b9:54:d4:3f:e0:d1:02:87:57:11:03:3f:96:67:92:60:1d:2b: 90:9d:62:73:bc:dd:95:57:fb:5e:92:46:85:37:8f:37:9e:48: 4f:3e:20:e2:3a:a4:71:dd:13:12:6c:06:7d:26:53:31:58:c5: 81:38:2c:59:5d:62:30:ea:02:93:1d:1c:32:b7:ba:10:7c:8d: 2c:57:64:87:85:c1:a3:76:6a:58:b6:49:43:78:72:20:f6:04: a7:02:2f:91:7f:56:4b:96:9d:03:0d:4a:d3:04:3c:68:85:56: c2:84:0a:30:28:53:9a:fd:75:55:d5:4e:18:1c:9c:97:8f:7d: 63:55:1a:d4:a1:31:ae:d4:3e:8a:e0:3d:87:17:93:91:81:2c: 64:32:1d:42:83:9f:b7:5c:8a:50:b6:06:16:21:77:e1:f1:dd: c3:86:da:ac:b7:3f:6f:3b:5f:62:b9:77:2f:f0:b7:d6:4a:e0: d7:94:c5:76:60:cd:c6:18:99:28:d5:42:fb:05:f2:61:c9:13: 48:21:29:0b:02:46:68:18:a9:1a:f9:7e:82:d6:c4:8f:aa:df: 47:65:72:aa:cb:70:0b:b7:3c:48:46:31:bd:ca:f1:7c:22:93: da:2e:6c:cb:2b:73:3f:2f:11:ce:18:9c:24:55:6f:47:31:e8: 10:87:a8:f4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUGF5Tm4nMwNMgPHN7C3NaWkIAKIYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNTAzMTMxMDU2MzdaFw0yNjAzMTIxMTAxMzdaMDMxMTAvBgNV BAMTKDBGOEEyOThFNDgzRUYxN0QwQTgyMDcwMzUwRkY1RjgxOTdBN0U1RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI0+mg9QmvhdpxSoGA25pUyAkM Ho8xPBF4Zf2T9pbNcd3WvR+aN6I0LqTfpXR+1s02bvuMj5nyuvAhAAE+WcCxg0TM iIUYBCxPcz+anfwnfkd9SzbJoL30yq8ez1Dihb1lnwSCi1xZ8wsliCv5LUknlA9+ I/vIGwsm2+PyCwwMPosz8ukfeB1uAMaUPAxczgiM4LdVtmohha7GmftMcta2lUG0 7SE/S7KwKYxFheTPEsWN257fPu0BY8U6iZDhtG2dW4xQiQoBPq46YNrG8tGEF3Bf /ASLRRD23qUhs9DKCQpqDrybfVUHF+64ivukbrU1xwPbXmWRxoXeyB3Yqy8VAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUD4opjkg+8X0KggcDUP9fgZen5eMwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMyMzAzMjJlMzczMzJlMzIzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzODMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKSRQwDQYJKoZIhvcN AQELBQADggEBALlU1D/g0QKHVxEDP5ZnkmAdK5CdYnO83ZVX+16SRoU3jzeeSE8+ IOI6pHHdExJsBn0mUzFYxYE4LFldYjDqApMdHDK3uhB8jSxXZIeFwaN2ali2SUN4 ciD2BKcCL5F/VkuWnQMNStMEPGiFVsKECjAoU5r9dVXVThgcnJePfWNVGtShMa7U PorgPYcXk5GBLGQyHUKDn7dcilC2BhYhd+Hx3cOG2qy3P287X2K5dy/wt9ZK4NeU xXZgzcYYmSjVQvsF8mHJE0ghKQsCRmgYqRr5foLWxI+q30dlcqrLcAu3PEhGMb3K 8Xwik9oubMsrcz8vEc4YnCRVb0cx6BCHqPQ= -----END CERTIFICATE-----Generated at Sun Apr 6 10:38:49 2025 by rpki-client