$ rpki-client -vvf repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3230322e34332e3131342e302f32332d3234203d3e20313339393338.roa File: 3230322e34332e3131342e302f32332d3234203d3e20313339393338.roa (raw, json) Hash identifier: pXz40XnCPDHjX6ETU549n8DZU0gFVrvM11PQ2EVGj3Q= Subject key identifier: D2:32:52:25:71:34:B4:72:EA:48:29:31:83:FC:C0:B9:8E:AC:EE:6B Certificate issuer: /CN=490B3FBCC6F0FC65785096A153DC87BC5057ACE5 Certificate serial: 26D95CEBC1B070E55572FE36CC5A670EE1BEAFFB Authority key identifier: 49:0B:3F:BC:C6:F0:FC:65:78:50:96:A1:53:DC:87:BC:50:57:AC:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3230322e34332e3131342e302f32332d3234203d3e20313339393338.roa Signing time: Wed 04 Dec 2024 04:13:06 +0000 ROA not before: Wed 04 Dec 2024 04:08:06 +0000 ROA not after: Wed 03 Dec 2025 04:13:06 +0000 asID: 139938 IP address blocks: 202.43.114.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.crl rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 22:02:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:d9:5c:eb:c1:b0:70:e5:55:72:fe:36:cc:5a:67:0e:e1:be:af:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=490B3FBCC6F0FC65785096A153DC87BC5057ACE5 Validity Not Before: Dec 4 04:08:06 2024 GMT Not After : Dec 3 04:13:06 2025 GMT Subject: CN=D23252257134B472EA48293183FCC0B98EACEE6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4b:35:79:98:b3:bc:da:71:02:01:ca:51:d6: 1f:94:a0:d7:a1:9c:c7:fe:bd:88:da:c6:75:dd:dd: 9e:0c:fe:a0:23:e0:77:b9:06:2b:e1:32:49:45:9a: d2:2f:d1:d2:bd:b5:94:08:65:ad:44:95:74:1a:f6: 05:38:99:d4:1a:36:a4:51:a2:eb:40:52:5c:86:94: 42:e5:81:e2:23:79:ed:00:fd:85:a5:1d:8d:9c:f0: ae:5f:38:e4:48:f2:c1:eb:f9:8e:1a:10:f5:a3:e8: 56:4b:0f:02:d3:88:5b:87:29:ed:b9:6a:64:12:8f: a7:09:16:67:7b:52:b0:5c:3a:a6:b1:b5:d2:37:ce: 80:e5:a8:0c:6e:5b:2f:e2:22:a4:7f:fb:16:cc:1a: 86:33:7b:62:89:7f:cb:4b:ca:83:39:28:04:f9:ea: bb:32:27:e0:7d:3f:eb:c9:aa:02:c4:4f:99:62:8c: 4a:04:66:67:7c:32:47:1e:42:93:46:ff:2f:09:4b: a9:b2:b3:d4:fd:6e:ab:a8:38:68:a1:cc:02:d8:93: 31:ae:ca:6c:5f:10:b6:75:11:4a:1a:f0:98:ac:a1: 71:ff:6a:41:15:4e:da:63:22:b3:dc:d6:3d:63:79: 7c:91:fa:ea:08:4d:25:60:67:f6:4f:b0:66:6a:54: 2d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:32:52:25:71:34:B4:72:EA:48:29:31:83:FC:C0:B9:8E:AC:EE:6B X509v3 Authority Key Identifier: keyid:49:0B:3F:BC:C6:F0:FC:65:78:50:96:A1:53:DC:87:BC:50:57:AC:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3230322e34332e3131342e302f32332d3234203d3e20313339393338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.114.0/23 Signature Algorithm: sha256WithRSAEncryption 55:7c:29:d2:58:ea:27:4a:10:d1:5a:b8:77:10:f9:69:2a:ac: 78:b4:a6:02:9f:0f:d1:7e:1f:a6:70:cd:53:1f:bf:56:a0:31: 38:ca:5f:77:fc:e4:be:4d:de:14:95:41:2d:8b:48:c4:d3:93: 13:78:de:74:bc:ab:7a:73:58:00:87:be:fe:32:51:7f:f6:3d: 3e:f9:26:dc:7b:45:84:30:ad:5a:56:55:cb:be:8f:32:bc:c4: 38:0b:f7:09:8c:58:69:c8:6b:be:a2:ad:44:59:bc:fa:d5:5b: 3a:02:57:cb:55:b7:2e:b7:66:33:01:c2:c5:d9:1a:23:ef:18: 3c:8e:04:80:d9:dd:27:e6:f9:2d:bd:03:bd:3b:56:48:ca:f9: d7:55:d4:97:02:7f:25:e1:43:96:6d:3a:b2:79:af:1a:77:db: 3e:fe:88:a0:4b:3d:2b:f0:4b:c5:68:91:1c:98:15:c9:da:18: da:fb:2d:be:fe:0f:be:e4:85:48:c7:42:30:21:29:48:59:55: 0a:5b:12:27:78:1e:a7:89:01:a1:ba:3c:f2:d6:53:fc:a8:74: e2:92:e8:43:d2:05:dc:d9:2b:24:8c:c9:6b:13:b9:02:c3:fb: fc:ed:eb:83:2c:62:70:99:cc:a2:ae:82:ae:06:df:48:ad:a3: 99:36:67:d0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJtlc68GwcOVVcv42zFpnDuG+r/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkwQjNGQkNDNkYwRkM2NTc4NTA5NkExNTNEQzg3QkM1 MDU3QUNFNTAeFw0yNDEyMDQwNDA4MDZaFw0yNTEyMDMwNDEzMDZaMDMxMTAvBgNV BAMTKEQyMzI1MjI1NzEzNEI0NzJFQTQ4MjkzMTgzRkNDMEI5OEVBQ0VFNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGSzV5mLO82nECAcpR1h+UoNeh nMf+vYjaxnXd3Z4M/qAj4He5BivhMklFmtIv0dK9tZQIZa1ElXQa9gU4mdQaNqRR outAUlyGlELlgeIjee0A/YWlHY2c8K5fOORI8sHr+Y4aEPWj6FZLDwLTiFuHKe25 amQSj6cJFmd7UrBcOqaxtdI3zoDlqAxuWy/iIqR/+xbMGoYze2KJf8tLyoM5KAT5 6rsyJ+B9P+vJqgLET5lijEoEZmd8MkceQpNG/y8JS6mys9T9bquoOGihzALYkzGu ymxfELZ1EUoa8JisoXH/akEVTtpjIrPc1j1jeXyR+uoITSVgZ/ZPsGZqVC1/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0jJSJXE0tHLqSCkxg/zAuY6s7mswHwYDVR0j BBgwFoAUSQs/vMbw/GV4UJahU9yHvFBXrOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 N2NkNjhmNC02OWE1LTQ3NWYtYWVlNC0zZWY0YjhkMzAyZGQvMC80OTBCM0ZCQ0M2 RjBGQzY1Nzg1MDk2QTE1M0RDODdCQzUwNTdBQ0U1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkwQjNGQkNDNkYwRkM2NTc4NTA5NkExNTNEQzg3QkM1MDU3 QUNFNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc3Y2Q2OGY0LTY5YTUtNDc1Zi1h ZWU0LTNlZjRiOGQzMDJkZC8wLzMyMzAzMjJlMzQzMzJlMzEzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByityMA0GCSqG SIb3DQEBCwUAA4IBAQBVfCnSWOonShDRWrh3EPlpKqx4tKYCnw/Rfh+mcM1TH79W oDE4yl93/OS+Td4UlUEti0jE05MTeN50vKt6c1gAh77+MlF/9j0++Sbce0WEMK1a VlXLvo8yvMQ4C/cJjFhpyGu+oq1EWbz61Vs6AlfLVbcut2YzAcLF2Roj7xg8jgSA 2d0n5vktvQO9O1ZIyvnXVdSXAn8l4UOWbTqyea8ad9s+/oigSz0r8EvFaJEcmBXJ 2hja+y2+/g++5IVIx0IwISlIWVUKWxIneB6niQGhujzy1lP8qHTikuhD0gXc2Ssk jMlrE7kCw/v87euDLGJwmcyiroKuBt9IraOZNmfQ -----END CERTIFICATE-----Generated at Thu Apr 17 05:31:44 2025 by rpki-client