$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134332e302f32342d3234203d3e20313530393732.roa File: 3230332e38342e3134332e302f32342d3234203d3e20313530393732.roa (raw, json) Hash identifier: TQogc+bIoAadk+dL2Cz1Noxh233Lv82bNDTeGntUavQ= Subject key identifier: 0A:19:20:8F:B2:24:18:E9:A6:3C:A9:77:BA:8E:13:8B:63:86:00:EC Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 57448100DC50BB2C9ADBEA764C99DF8CB9501022 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134332e302f32342d3234203d3e20313530393732.roa Signing time: Tue 04 Mar 2025 13:00:00 +0000 ROA not before: Tue 04 Mar 2025 12:55:00 +0000 ROA not after: Tue 03 Mar 2026 13:00:00 +0000 asID: 150972 IP address blocks: 203.84.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 04:48:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:44:81:00:dc:50:bb:2c:9a:db:ea:76:4c:99:df:8c:b9:50:10:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Mar 4 12:55:00 2025 GMT Not After : Mar 3 13:00:00 2026 GMT Subject: CN=0A19208FB22418E9A63CA977BA8E138B638600EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:7e:ac:19:fe:8d:4e:b9:3e:1c:48:41:fc:d2: 40:9c:99:21:64:50:2a:dc:be:08:89:e9:b2:ee:a5: 04:26:03:6e:db:dd:99:02:4e:46:d6:a6:69:be:5a: d3:2f:4b:9c:6c:07:ba:38:5c:7e:ca:87:7e:02:7c: 9b:6b:a8:80:fe:02:2e:57:49:c9:85:2a:03:48:42: 85:27:45:bf:0b:33:d1:56:23:67:f5:a3:7d:b5:df: f4:5b:ee:da:0f:8f:d5:c9:5e:c4:7f:ea:92:ac:fa: de:9b:8b:4e:38:23:69:1e:e4:ed:d4:c6:27:26:96: 07:02:c8:ad:f3:3b:c1:8b:c4:e0:21:19:61:5e:62: 44:f2:41:2a:af:2b:41:04:8d:23:57:d3:0e:5e:c4: 29:9c:ba:80:a4:0f:7f:43:df:92:ba:3b:27:a8:39: 03:a1:1d:8a:26:39:d9:7d:63:c6:f5:e0:9b:75:0d: 5d:41:07:58:6c:77:4e:64:35:67:60:fb:40:4c:4b: 49:37:d9:de:e9:09:dd:bf:1a:bb:fd:69:ae:b1:b3: b0:67:5e:d9:27:4c:94:3e:cb:db:84:53:ea:2f:86: 7d:5d:22:49:4c:89:fb:e5:f0:85:35:47:4b:9a:b4: 4b:05:ff:e7:ba:6c:69:ce:63:87:3d:c3:26:33:d8: fa:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:19:20:8F:B2:24:18:E9:A6:3C:A9:77:BA:8E:13:8B:63:86:00:EC X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134332e302f32342d3234203d3e20313530393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.143.0/24 Signature Algorithm: sha256WithRSAEncryption bd:9e:f3:1d:24:f4:80:ce:59:13:7e:f0:30:41:f6:e8:82:34: 70:af:c9:13:df:91:a0:fc:42:d6:8c:2d:71:0e:49:97:7c:52: fb:e4:1d:25:e4:3d:05:0c:38:72:8f:1e:2b:4b:e3:4e:39:a7: 68:0a:9d:f9:d7:74:cc:51:bf:97:41:36:0b:9f:7f:06:62:72: 97:e7:c9:2b:b8:0b:de:3d:f8:1d:59:2d:fe:59:47:a2:67:4f: 2a:d1:cd:4e:b2:20:5b:34:28:f2:ac:06:c9:fb:92:8b:78:67: 5f:5b:ad:8d:82:64:df:58:ec:5c:8b:5a:9a:cc:48:34:b2:03: bc:9b:df:25:8d:ba:61:8c:6a:a5:4b:50:b5:ee:2a:2c:5f:dc: 4f:73:ec:60:e7:b7:a2:29:1a:12:98:13:94:2e:48:5e:bb:67: 5d:ca:fe:dd:e5:a5:09:58:3a:3c:aa:ec:5e:3b:e4:8c:bb:3a: 31:18:e2:c8:4a:5f:2b:e6:c4:51:93:d3:93:52:6d:07:16:0c: d1:23:8e:05:a6:d3:45:c9:39:34:8d:80:1c:64:8e:10:cb:4a: 2d:01:5b:b7:aa:84:3c:bd:57:1d:3d:60:db:92:83:24:a5:ea: ac:2a:ee:86:33:c0:fb:47:c8:a8:75:f5:82:27:27:ea:c2:11: 66:c7:25:f4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV0SBANxQuyya2+p2TJnfjLlQECIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNTAzMDQxMjU1MDBaFw0yNjAzMDMxMzAwMDBaMDMxMTAvBgNV BAMTKDBBMTkyMDhGQjIyNDE4RTlBNjNDQTk3N0JBOEUxMzhCNjM4NjAwRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZfqwZ/o1OuT4cSEH80kCcmSFk UCrcvgiJ6bLupQQmA27b3ZkCTkbWpmm+WtMvS5xsB7o4XH7Kh34CfJtrqID+Ai5X ScmFKgNIQoUnRb8LM9FWI2f1o3213/Rb7toPj9XJXsR/6pKs+t6bi044I2ke5O3U xicmlgcCyK3zO8GLxOAhGWFeYkTyQSqvK0EEjSNX0w5exCmcuoCkD39D35K6Oyeo OQOhHYomOdl9Y8b14Jt1DV1BB1hsd05kNWdg+0BMS0k32d7pCd2/Grv9aa6xs7Bn XtknTJQ+y9uEU+ovhn1dIklMifvl8IU1R0uatEsF/+e6bGnOY4c9wyYz2PqXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUChkgj7IkGOmmPKl3uo4Ti2OGAOwwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzAzMzJlMzgzNDJlMzEzNDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy1SPMA0GCSqG SIb3DQEBCwUAA4IBAQC9nvMdJPSAzlkTfvAwQfbogjRwr8kT35Gg/ELWjC1xDkmX fFL75B0l5D0FDDhyjx4rS+NOOadoCp3513TMUb+XQTYLn38GYnKX58kruAvePfgd WS3+WUeiZ08q0c1OsiBbNCjyrAbJ+5KLeGdfW62NgmTfWOxci1qazEg0sgO8m98l jbphjGqlS1C17iosX9xPc+xg57eiKRoSmBOULkheu2ddyv7d5aUJWDo8quxeO+SM uzoxGOLISl8r5sRRk9OTUm0HFgzRI44FptNFyTk0jYAcZI4Qy0otAVu3qoQ8vVcd PWDbkoMkpeqsKu6GM8D7R8iodfWCJyfqwhFmxyX0 -----END CERTIFICATE-----Generated at Sun Apr 6 08:27:49 2025 by rpki-client