$ rpki-client -vvf repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32312e302f32342d3234203d3e20313439343039.roa File: 3230322e35312e32312e302f32342d3234203d3e20313439343039.roa (raw, json) Hash identifier: L5BIjbBfOEx7SS/qKd8g58mpaMP4eQ6lbIGXrSSmvHc= Subject key identifier: 01:5E:88:CA:8B:51:7C:A7:AB:71:5D:3F:71:82:B8:BD:9A:65:7A:54 Certificate issuer: /CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0 Certificate serial: 6661AA138C331483B1748BC93411DBAE7599363E Authority key identifier: 9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32312e302f32342d3234203d3e20313439343039.roa Signing time: Sun 30 Mar 2025 14:00:00 +0000 ROA not before: Sun 30 Mar 2025 13:55:00 +0000 ROA not after: Sun 29 Mar 2026 14:00:00 +0000 asID: 149409 IP address blocks: 202.51.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 09:41:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:61:aa:13:8c:33:14:83:b1:74:8b:c9:34:11:db:ae:75:99:36:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0 Validity Not Before: Mar 30 13:55:00 2025 GMT Not After : Mar 29 14:00:00 2026 GMT Subject: CN=015E88CA8B517CA7AB715D3F7182B8BD9A657A54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e6:3c:a8:b0:cf:d9:c3:d7:6d:05:ad:7e:04: db:ef:9b:91:59:50:33:c4:f3:af:52:be:1c:70:ea: d1:e6:d2:04:8e:ca:aa:92:d7:ed:7a:a4:cb:8f:3d: 63:01:dc:87:d0:82:f2:09:63:b0:71:16:a7:3d:b7: 2b:0c:82:1e:09:76:f3:f0:f2:85:25:05:e1:67:f8: 12:87:61:46:59:01:ab:f8:ba:d0:ad:be:f9:9a:c1: 13:7f:82:71:8e:0b:98:b2:b6:0f:80:db:4a:93:0d: 16:c0:b9:e8:96:ef:d8:28:66:5c:1b:12:a0:26:3a: c5:2e:95:52:99:dd:01:d3:94:6c:81:03:2c:90:45: 89:33:18:0d:5d:ca:ba:43:ce:d7:11:60:94:8b:04: 85:2b:6b:b5:0b:54:62:85:41:da:79:b9:c7:4b:6f: 6b:a3:6a:5f:31:62:d8:f0:91:20:08:18:de:96:ce: 58:3c:f8:a5:c5:8c:4e:da:41:50:a4:9a:e3:d2:87: f9:70:70:92:41:f1:f2:31:85:d5:fc:5b:d1:c1:1e: 7c:32:16:26:f5:ab:94:e9:67:f0:60:28:3e:49:cc: e6:b4:7c:67:20:e0:2d:7c:62:d2:6e:a5:08:b1:e9: 34:ea:ea:1d:4f:fd:bf:0b:64:f4:35:b0:ac:5a:46: 32:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:5E:88:CA:8B:51:7C:A7:AB:71:5D:3F:71:82:B8:BD:9A:65:7A:54 X509v3 Authority Key Identifier: keyid:9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32312e302f32342d3234203d3e20313439343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.21.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:c8:bf:4e:78:61:f5:16:bc:14:69:3f:0a:23:82:00:65:02: 89:f0:36:69:0f:df:b9:23:24:a0:f2:c8:05:04:3f:60:e9:85: bc:57:60:d9:c1:90:58:67:8b:eb:69:35:63:04:30:9f:28:22: 67:1d:40:dd:39:93:59:07:9e:83:1a:1d:cb:d8:0a:36:de:49: ba:5d:17:90:95:46:c5:c6:f6:83:1a:54:e0:d7:1a:aa:92:ed: 46:5c:a8:09:be:2a:90:2e:40:13:5b:cc:1a:0f:41:4d:62:5b: 32:29:fe:a0:90:d7:23:77:e9:c3:46:ff:88:aa:c0:69:da:85: 43:2c:f4:7f:67:35:ed:24:43:98:4b:85:96:e9:66:fa:67:d5: 04:16:e1:55:56:a2:b9:16:ed:04:ae:78:c9:65:92:18:dd:85: 3b:19:50:ee:93:b1:d6:a9:68:cd:67:72:ce:82:d1:9b:99:d5: f6:b4:5e:ff:ad:90:87:87:28:dd:5e:76:7c:1d:35:65:76:f4: 78:ee:b9:ef:5d:99:75:7c:93:6e:07:71:51:c3:77:b8:29:df: 05:05:8c:38:87:f4:9f:94:7e:3c:e3:b1:dd:bd:9a:88:f9:a6: 9c:a6:c9:7d:8e:35:a3:ec:77:8b:a9:9b:51:c5:7a:e5:b4:f3: 5a:0f:95:29 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZmGqE4wzFIOxdIvJNBHbrnWZNj4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcx QUI0MjBBMDAeFw0yNTAzMzAxMzU1MDBaFw0yNjAzMjkxNDAwMDBaMDMxMTAvBgNV BAMTKDAxNUU4OENBOEI1MTdDQTdBQjcxNUQzRjcxODJCOEJEOUE2NTdBNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+5jyosM/Zw9dtBa1+BNvvm5FZ UDPE869Svhxw6tHm0gSOyqqS1+16pMuPPWMB3IfQgvIJY7BxFqc9tysMgh4JdvPw 8oUlBeFn+BKHYUZZAav4utCtvvmawRN/gnGOC5iytg+A20qTDRbAueiW79goZlwb EqAmOsUulVKZ3QHTlGyBAyyQRYkzGA1dyrpDztcRYJSLBIUra7ULVGKFQdp5ucdL b2ujal8xYtjwkSAIGN6Wzlg8+KXFjE7aQVCkmuPSh/lwcJJB8fIxhdX8W9HBHnwy Fib1q5TpZ/BgKD5JzOa0fGcg4C18YtJupQix6TTq6h1P/b8LZPQ1sKxaRjJVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAV6IyotRfKercV0/cYK4vZplelQwHwYDVR0j BBgwFoAUnmpn1bnXJcH0Can7O/NaBxq0IKAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTRlNmIyZC0zZGRiLTQ2ZWItODNlZi1jOTliMjAwMzc4M2YvMC85RTZBNjdENUI5 RDcyNUMxRjQwOUE5RkIzQkYzNUEwNzFBQjQyMEEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcxQUI0 MjBBMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5NGU2YjJkLTNkZGItNDZlYi04 M2VmLWM5OWIyMDAzNzgzZi8wLzMyMzAzMjJlMzUzMTJlMzIzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzOTM0MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMozFTANBgkqhkiG 9w0BAQsFAAOCAQEAXci/Tnhh9Ra8FGk/CiOCAGUCifA2aQ/fuSMkoPLIBQQ/YOmF vFdg2cGQWGeL62k1YwQwnygiZx1A3TmTWQeegxody9gKNt5Jul0XkJVGxcb2gxpU 4NcaqpLtRlyoCb4qkC5AE1vMGg9BTWJbMin+oJDXI3fpw0b/iKrAadqFQyz0f2c1 7SRDmEuFlulm+mfVBBbhVVaiuRbtBK54yWWSGN2FOxlQ7pOx1qlozWdyzoLRm5nV 9rRe/62Qh4co3V52fB01ZXb0eO65712ZdXyTbgdxUcN3uCnfBQWMOIf0n5R+POOx 3b2aiPmmnKbJfY41o+x3i6mbUcV65bTzWg+VKQ== -----END CERTIFICATE-----Generated at Fri Apr 18 19:05:42 2025 by rpki-client