$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32312e302f32342d3234203d3e203538383136.roa File: 3230322e37332e32312e302f32342d3234203d3e203538383136.roa (raw, json) Hash identifier: +UYTL16FoJzljt1WcPKnLkea4mRmhRtr/yGtN5BCt4Y= Subject key identifier: 76:AB:8F:53:9C:B7:E6:E0:A1:DE:FB:70:02:00:89:50:FE:04:80:2B Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 3ED6DC6F9CB90A88FEEA80D7F0422A1A54BBE033 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32312e302f32342d3234203d3e203538383136.roa Signing time: Thu 13 Mar 2025 11:01:38 +0000 ROA not before: Thu 13 Mar 2025 10:56:38 +0000 ROA not after: Thu 12 Mar 2026 11:01:38 +0000 asID: 58816 IP address blocks: 202.73.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:d6:dc:6f:9c:b9:0a:88:fe:ea:80:d7:f0:42:2a:1a:54:bb:e0:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Mar 13 10:56:38 2025 GMT Not After : Mar 12 11:01:38 2026 GMT Subject: CN=76AB8F539CB7E6E0A1DEFB7002008950FE04802B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:bd:9d:fb:d0:a3:b8:ef:38:43:b3:8a:6d:cd: 33:66:51:cc:9e:64:8d:ee:a6:29:cf:4e:31:45:92: c7:f4:5f:84:65:81:a3:6f:31:5f:d1:c2:1e:c5:f9: d3:ab:66:5f:a8:8f:5a:43:fb:24:32:ac:b8:08:1a: c5:e9:dc:31:fc:ea:ff:20:01:11:c5:8b:2c:0c:a2: c3:11:b9:c3:2b:27:94:1c:ef:6a:77:06:89:94:dd: 68:47:e3:36:a7:c5:f9:aa:9d:d1:d5:da:48:d7:10: 58:57:93:23:cf:6b:68:8f:8c:96:6a:b6:53:00:32: dd:41:c1:ba:8f:a9:1a:f1:01:15:15:9e:03:8a:b6: ea:b7:af:64:38:5e:56:cf:80:a2:0a:7e:7d:74:5b: 97:e4:49:fb:f4:35:9d:7d:8b:e9:59:af:31:88:82: e2:e8:c8:09:16:e8:a4:e5:f1:aa:b9:59:9a:31:53: 00:4a:d5:35:3f:eb:54:ad:c6:39:d7:5b:d9:93:a8: ec:32:dd:1f:3a:42:11:eb:18:7e:c5:f1:b2:bd:0d: f8:0a:7e:ea:2c:59:cc:f0:c2:54:d3:e8:0c:df:a9: cd:fe:b3:05:6a:aa:e0:6b:e3:be:88:ac:15:9e:8d: 7d:97:e0:ac:fc:7a:99:fe:a3:86:3e:93:a3:5c:b1: ce:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:AB:8F:53:9C:B7:E6:E0:A1:DE:FB:70:02:00:89:50:FE:04:80:2B X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32312e302f32342d3234203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.21.0/24 Signature Algorithm: sha256WithRSAEncryption 88:13:76:eb:14:5c:f6:e3:0b:33:95:32:41:b6:25:1e:71:1e: ac:52:4d:a9:82:48:8b:d4:2e:09:3f:12:85:27:8c:6e:c3:30: 3d:dc:86:11:d6:9f:ff:e0:2a:30:2c:c0:a8:6c:a2:39:f1:9d: 36:7b:06:1f:5e:fe:f4:96:02:53:51:22:7c:a7:d7:ab:25:a1: 66:e1:34:f9:1e:7e:e7:1a:bb:8a:53:01:5e:44:37:e6:2c:68: 96:08:c1:2b:2e:54:36:7b:ea:2d:b8:f4:0e:38:37:98:27:65: 46:ad:3c:23:29:7f:a7:d2:c4:0e:05:67:b3:04:da:49:69:fe: c1:47:d0:7d:17:3e:c0:fc:6e:10:ce:03:1a:1a:85:78:31:0f: 57:c1:b7:5a:34:2a:f2:30:64:66:61:7a:b9:8e:05:52:8e:76: 6f:5a:90:f1:aa:dc:6b:8b:e2:01:67:ae:22:ca:ea:6f:05:5e: b9:54:31:e9:76:20:50:b0:60:5c:1b:c7:8b:f8:dc:58:34:27: cd:b9:52:a9:a0:24:bd:0a:a6:e5:7d:59:79:c0:4e:91:fe:ce: 59:54:da:a3:28:f8:c9:f7:33:58:f7:7e:b6:e1:75:f9:d1:b9: 86:8d:f5:dd:61:1e:38:bc:7f:d6:f7:a7:2a:b6:19:ab:51:0a: b8:7b:4a:0d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUPtbcb5y5Coj+6oDX8EIqGlS74DMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNTAzMTMxMDU2MzhaFw0yNjAzMTIxMTAxMzhaMDMxMTAvBgNV BAMTKDc2QUI4RjUzOUNCN0U2RTBBMURFRkI3MDAyMDA4OTUwRkUwNDgwMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYvZ370KO47zhDs4ptzTNmUcye ZI3upinPTjFFksf0X4RlgaNvMV/Rwh7F+dOrZl+oj1pD+yQyrLgIGsXp3DH86v8g ARHFiywMosMRucMrJ5Qc72p3BomU3WhH4zanxfmqndHV2kjXEFhXkyPPa2iPjJZq tlMAMt1BwbqPqRrxARUVngOKtuq3r2Q4XlbPgKIKfn10W5fkSfv0NZ19i+lZrzGI guLoyAkW6KTl8aq5WZoxUwBK1TU/61StxjnXW9mTqOwy3R86QhHrGH7F8bK9DfgK fuosWczwwlTT6Azfqc3+swVqquBr476IrBWejX2X4Kz8epn+o4Y+k6Ncsc6vAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUdquPU5y35uCh3vtwAgCJUP4EgCswHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMyMzAzMjJlMzczMzJlMzIzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzODMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKSRUwDQYJKoZIhvcN AQELBQADggEBAIgTdusUXPbjCzOVMkG2JR5xHqxSTamCSIvULgk/EoUnjG7DMD3c hhHWn//gKjAswKhsojnxnTZ7Bh9e/vSWAlNRInyn16sloWbhNPkefucau4pTAV5E N+YsaJYIwSsuVDZ76i249A44N5gnZUatPCMpf6fSxA4FZ7ME2klp/sFH0H0XPsD8 bhDOAxoahXgxD1fBt1o0KvIwZGZhermOBVKOdm9akPGq3GuL4gFnriLK6m8FXrlU Mel2IFCwYFwbx4v43Fg0J825UqmgJL0KpuV9WXnATpH+zllU2qMo+Mn3M1j3frbh dfnRuYaN9d1hHji8f9b3pyq2GatRCrh7Sg0= -----END CERTIFICATE-----Generated at Sun Apr 6 14:39:07 2025 by rpki-client