$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e32302e302f32342d3234203d3e20313333383430.roa File: 3230332e3136312e32302e302f32342d3234203d3e20313333383430.roa (raw, json) Hash identifier: sIzF3VqIw1K5cxYTYqwBznPxcWOS4oSDI/9iZqhXqjI= Subject key identifier: 16:FF:0E:EA:68:5F:F8:AE:16:FA:10:86:8F:42:75:BD:B3:34:9A:C7 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 494B21C24CF3BC5A7F857BC726D92BE7B303800F Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e32302e302f32342d3234203d3e20313333383430.roa Signing time: Thu 26 Dec 2024 09:00:02 +0000 ROA not before: Thu 26 Dec 2024 08:55:02 +0000 ROA not after: Thu 25 Dec 2025 09:00:02 +0000 asID: 133840 IP address blocks: 203.161.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:58:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:4b:21:c2:4c:f3:bc:5a:7f:85:7b:c7:26:d9:2b:e7:b3:03:80:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Dec 26 08:55:02 2024 GMT Not After : Dec 25 09:00:02 2025 GMT Subject: CN=16FF0EEA685FF8AE16FA10868F4275BDB3349AC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9b:26:4d:12:5b:44:00:8d:65:6f:22:74:45: f2:9f:e3:b2:0c:2e:ba:4d:25:3b:06:2a:ff:b0:33: dd:4e:ff:82:39:0b:4e:38:23:26:8e:c9:9b:de:b7: 42:8b:83:5d:e0:ee:3d:8f:92:06:91:fe:d8:ce:90: aa:e1:ee:92:a5:fe:5e:ce:40:4d:a4:bb:58:b5:94: 3d:5a:32:bc:e0:32:1d:db:bf:ac:37:26:c3:5c:a7: b8:0d:8a:f5:c7:cd:fb:c8:8b:7c:b4:b2:3b:cd:88: b2:9c:9a:3b:f8:0b:8f:c7:9d:7b:a3:72:9b:5d:cb: c6:fe:9e:08:6b:02:eb:8f:30:47:c3:6a:d9:c4:a4: 15:db:77:5f:ef:6b:3f:da:54:55:5a:b1:d0:bd:a7: f2:da:d2:f3:38:d4:e2:41:72:0b:f7:8a:13:73:d2: 48:d9:6d:1b:2c:65:ee:ed:f4:fc:f3:bd:bc:1a:14: af:c1:8e:89:9b:54:b1:63:50:9a:19:32:95:45:f7: ab:a6:09:6d:75:ce:7f:4b:cf:68:fa:21:c6:01:2b: 18:4e:9c:37:42:e4:bc:ac:aa:90:a8:82:75:b3:53: 20:e6:d6:db:cc:81:92:c4:d7:55:07:1b:dc:c1:8b: c3:13:5f:cc:4f:fb:42:c4:f3:c8:3d:96:d6:73:d8: 6e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:FF:0E:EA:68:5F:F8:AE:16:FA:10:86:8F:42:75:BD:B3:34:9A:C7 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e32302e302f32342d3234203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.161.20.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:90:af:6f:7c:b9:b8:ba:f8:7b:31:a0:d0:bd:6d:03:7a:73: 91:17:73:68:15:a4:df:df:2e:9c:b4:9e:96:2f:5f:53:d1:4e: 71:f2:21:42:23:a2:41:5c:a2:ab:d2:2f:e5:aa:33:f5:57:4b: 64:31:63:13:62:44:43:df:ce:83:69:ea:da:4e:6e:fc:6c:6c: 8c:23:37:f3:67:a9:03:a4:df:6a:73:91:0b:a3:80:2b:a4:d4: 7d:d4:b1:7a:fc:3a:96:e5:90:46:96:ae:b8:63:1b:2a:89:4f: f8:0a:e8:10:77:4c:57:77:04:5a:6f:88:96:90:00:fc:c3:8f: 98:a6:72:28:01:bd:3b:23:29:ea:49:95:30:da:52:24:b1:b1: e9:24:e0:03:24:37:51:4c:ac:9f:bf:e3:2d:fb:49:f1:ac:a7: ad:b2:64:b6:78:c1:d8:84:67:d8:11:2a:3f:60:38:70:fb:39: 09:0d:a9:ba:54:96:5b:3d:fb:9c:e5:44:e8:5b:c8:9c:62:f0: bc:2f:e4:f2:f2:33:23:80:4e:38:56:0f:9d:14:64:a3:e8:29: 15:88:7a:2e:1a:04:33:c0:e2:f9:36:56:f7:15:03:c0:1b:95: 14:50:3b:d6:63:d6:1e:3f:24:d0:a4:ac:0c:4a:64:2e:3c:f7: 88:53:7f:88 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSUshwkzzvFp/hXvHJtkr57MDgA8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDEyMjYwODU1MDJaFw0yNTEyMjUwOTAwMDJaMDMxMTAvBgNV BAMTKDE2RkYwRUVBNjg1RkY4QUUxNkZBMTA4NjhGNDI3NUJEQjMzNDlBQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9myZNEltEAI1lbyJ0RfKf47IM LrpNJTsGKv+wM91O/4I5C044IyaOyZvet0KLg13g7j2PkgaR/tjOkKrh7pKl/l7O QE2ku1i1lD1aMrzgMh3bv6w3JsNcp7gNivXHzfvIi3y0sjvNiLKcmjv4C4/HnXuj cptdy8b+nghrAuuPMEfDatnEpBXbd1/vaz/aVFVasdC9p/La0vM41OJBcgv3ihNz 0kjZbRssZe7t9PzzvbwaFK/BjombVLFjUJoZMpVF96umCW11zn9Lz2j6IcYBKxhO nDdC5LysqpCognWzUyDm1tvMgZLE11UHG9zBi8MTX8xP+0LE88g9ltZz2G4BAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFv8O6mhf+K4W+hCGj0J1vbM0mscwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzAzMzJlMzEzNjMxMmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy6EUMA0GCSqG SIb3DQEBCwUAA4IBAQAKkK9vfLm4uvh7MaDQvW0DenORF3NoFaTf3y6ctJ6WL19T 0U5x8iFCI6JBXKKr0i/lqjP1V0tkMWMTYkRD386DaeraTm78bGyMIzfzZ6kDpN9q c5ELo4ArpNR91LF6/DqW5ZBGlq64YxsqiU/4CugQd0xXdwRab4iWkAD8w4+YpnIo Ab07IynqSZUw2lIksbHpJOADJDdRTKyfv+Mt+0nxrKetsmS2eMHYhGfYESo/YDhw +zkJDam6VJZbPfuc5UToW8icYvC8L+Ty8jMjgE44Vg+dFGSj6CkViHouGgQzwOL5 Nlb3FQPAG5UUUDvWY9YePyTQpKwMSmQuPPeIU3+I -----END CERTIFICATE-----Generated at Sun Apr 6 11:01:28 2025 by rpki-client