$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3232302e3234372e3136382e302f32312d3231203d3e2039333431.roa File: 3232302e3234372e3136382e302f32312d3231203d3e2039333431.roa (raw, json) Hash identifier: Y4VP1eG9tJZyhMoQSnAVqZusfvym3Loet39qzV/C+LA= Subject key identifier: A5:06:24:3E:10:33:B7:D3:B0:6F:69:78:F7:7A:A5:AF:E1:8E:2C:91 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 1C392912A65BA3FFACBDD70835399DC1AC2703E3 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3232302e3234372e3136382e302f32312d3231203d3e2039333431.roa Signing time: Tue 06 May 2025 05:02:53 +0000 ROA not before: Tue 06 May 2025 04:57:53 +0000 ROA not after: Tue 05 May 2026 05:02:53 +0000 asID: 9341 IP address blocks: 220.247.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 19:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:39:29:12:a6:5b:a3:ff:ac:bd:d7:08:35:39:9d:c1:ac:27:03:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: May 6 04:57:53 2025 GMT Not After : May 5 05:02:53 2026 GMT Subject: CN=A506243E1033B7D3B06F6978F77AA5AFE18E2C91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d5:39:66:cc:5c:12:c6:5c:6d:93:d2:e8:84: 36:9a:07:48:57:f5:fe:c6:d1:fa:c9:ad:54:c8:34: af:9b:2b:cb:78:f3:7f:5a:35:16:62:a0:f1:73:ed: 92:4a:fd:14:fa:48:77:e3:f9:7c:eb:63:07:23:66: e9:f2:c2:af:a8:ec:3b:a1:5e:6c:d4:30:81:a1:1e: 15:b9:c3:50:ed:d4:37:f7:0f:0e:e6:7c:59:9d:cc: 71:89:28:f4:75:63:af:5f:17:09:21:86:25:54:e6: 9c:8d:83:d2:90:3e:fe:93:d7:2e:4c:36:35:e3:48: cf:cb:5a:9e:ab:e5:d6:1e:3e:24:0e:78:95:85:e7: 54:bd:e2:15:4b:79:56:d4:9a:bb:75:5c:ea:f3:0d: 96:72:72:a0:17:36:c9:0f:3d:95:4f:5f:62:18:3e: 63:bd:01:2b:b1:6d:51:06:a8:3b:29:6f:3d:65:e6: 39:37:bf:c6:4c:e6:91:eb:76:17:9c:9f:d9:38:57: f5:9e:94:8a:27:41:0f:43:47:0a:d1:fe:a4:4f:f3: 9f:9d:f8:60:89:bd:e9:f3:b3:6c:0c:59:68:65:82: 74:76:0b:1b:b1:0c:a5:90:e5:a7:50:ea:83:5b:78: ba:d6:8e:ce:91:41:f4:75:ec:f3:70:8a:f3:0f:dd: a5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:06:24:3E:10:33:B7:D3:B0:6F:69:78:F7:7A:A5:AF:E1:8E:2C:91 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3232302e3234372e3136382e302f32312d3231203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.247.168.0/21 Signature Algorithm: sha256WithRSAEncryption 55:75:d3:b0:56:c2:0b:f3:b2:c3:c7:36:7a:b8:5d:a2:80:f0: 5d:b4:71:e9:d1:af:72:19:eb:4c:f2:d1:b1:f2:fc:44:3e:c5: 38:66:4e:76:c4:d1:2b:40:eb:6f:79:ac:65:92:c7:78:fd:ef: d2:4a:8b:d6:e2:8e:fe:8e:f6:c7:da:5a:66:a1:70:6c:a6:6d: 97:fa:3c:61:c5:03:43:53:0e:81:86:a0:cd:01:c2:d4:52:5b: a3:a2:c0:76:0e:5d:2b:43:bb:e9:6a:ee:2a:7c:2b:82:c8:60: 16:f4:b1:dc:09:df:d7:5c:1e:c9:1e:36:0e:53:cb:f8:7b:3c: 2e:fa:90:b5:4b:53:26:96:cb:5b:64:2c:75:e9:2e:54:24:de: 5d:ee:d1:0c:81:bb:97:8a:ca:af:f0:ab:87:0c:ed:62:7e:42: 0a:d2:05:01:b9:7e:d7:ab:26:95:6a:a7:2e:e7:6b:de:42:ab: 91:ce:3f:37:2f:e9:83:c2:87:3a:bd:8d:ea:e8:73:c3:a8:39: 84:e7:a9:13:7e:7e:56:47:c9:dd:2f:1e:06:7b:2f:a8:b3:f2: 9a:bb:a9:d6:ad:22:dc:46:6c:d8:48:23:3a:a9:f6:8d:86:46: 04:9d:5b:7d:ae:9b:55:f8:4d:71:cd:67:d6:91:18:4e:ca:cc: 92:4e:8a:78 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHDkpEqZbo/+svdcINTmdwawnA+MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNTA1MDYwNDU3NTNaFw0yNjA1MDUwNTAyNTNaMDMxMTAvBgNV BAMTKEE1MDYyNDNFMTAzM0I3RDNCMDZGNjk3OEY3N0FBNUFGRTE4RTJDOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe1TlmzFwSxlxtk9LohDaaB0hX 9f7G0frJrVTINK+bK8t4839aNRZioPFz7ZJK/RT6SHfj+XzrYwcjZunywq+o7Duh XmzUMIGhHhW5w1Dt1Df3Dw7mfFmdzHGJKPR1Y69fFwkhhiVU5pyNg9KQPv6T1y5M NjXjSM/LWp6r5dYePiQOeJWF51S94hVLeVbUmrt1XOrzDZZycqAXNskPPZVPX2IY PmO9ASuxbVEGqDspbz1l5jk3v8ZM5pHrdhecn9k4V/WelIonQQ9DRwrR/qRP85+d +GCJvenzs2wMWWhlgnR2CxuxDKWQ5adQ6oNbeLrWjs6RQfR17PNwivMP3aW5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpQYkPhAzt9Owb2l493qlr+GOLJEwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMyMzIzMDJlMzIzNDM3MmUzMTM2MzgyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9z3qDANBgkqhkiG 9w0BAQsFAAOCAQEAVXXTsFbCC/Oyw8c2erhdooDwXbRx6dGvchnrTPLRsfL8RD7F OGZOdsTRK0Drb3msZZLHeP3v0kqL1uKO/o72x9paZqFwbKZtl/o8YcUDQ1MOgYag zQHC1FJbo6LAdg5dK0O76WruKnwrgshgFvSx3Anf11weyR42DlPL+Hs8LvqQtUtT JpbLW2QsdekuVCTeXe7RDIG7l4rKr/CrhwztYn5CCtIFAbl+16smlWqnLudr3kKr kc4/Ny/pg8KHOr2N6uhzw6g5hOepE35+VkfJ3S8eBnsvqLPymrup1q0i3EZs2Egj Oqn2jYZGBJ1bfa6bVfhNcc1n1pEYTsrMkk6KeA== -----END CERTIFICATE-----Generated at Wed Oct 29 21:16:56 2025 by rpki-client