$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234302e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3234302e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: KmrzRtX+v96Jlcy5meT57LKNlJBPtOAKRwhOLamVofo= Subject key identifier: CF:5F:3C:F0:D8:8B:ED:CB:D8:EA:91:B7:2B:3A:92:62:D6:01:59:BA Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 1B5C1084C5E6FFA432FF8F32E7F325325E33D8B8 Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234302e302f32342d3234203d3e203338313433.roa Signing time: Tue 20 May 2025 06:00:01 +0000 ROA not before: Tue 20 May 2025 05:55:01 +0000 ROA not after: Tue 19 May 2026 06:00:01 +0000 asID: 38143 IP address blocks: 202.169.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 12:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:5c:10:84:c5:e6:ff:a4:32:ff:8f:32:e7:f3:25:32:5e:33:d8:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: May 20 05:55:01 2025 GMT Not After : May 19 06:00:01 2026 GMT Subject: CN=CF5F3CF0D88BEDCBD8EA91B72B3A9262D60159BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:91:bd:c4:67:fa:8b:71:03:8c:38:58:69:00: 93:16:2a:24:1b:6a:d2:b7:d0:f4:0e:7e:86:6a:d9: 06:55:e0:b5:e9:5d:ee:ad:3b:60:63:63:35:6e:54: a8:e4:4c:67:53:0f:80:74:96:b9:60:6b:24:41:ea: c0:a8:17:e5:f1:80:a0:01:53:cc:dd:02:89:46:2d: 69:2a:2d:d8:d3:d1:54:14:c2:bd:71:a9:84:13:01: 62:02:ff:ea:32:6b:1f:b6:4e:c0:a1:50:c7:11:32: 25:cf:c7:25:5f:f2:3d:cb:21:cb:6d:8d:1a:8f:85: f8:93:bb:5b:4f:cd:ef:ba:d2:ca:66:9d:7e:b1:c2: cc:09:b4:73:d2:86:ac:b1:13:76:c5:9a:bb:ff:13: 51:67:21:1f:b9:df:4b:a2:bd:a6:55:ea:18:0d:52: 85:50:45:31:88:9c:28:51:f7:3a:02:3c:dc:1a:97: f1:aa:5a:64:8a:9e:d6:3a:30:cb:40:b9:30:24:d6: a4:13:a8:ae:75:f1:ef:cf:48:54:dd:b7:2f:4b:0d: 05:4b:42:38:f2:02:87:83:96:19:9e:14:df:fb:f6: 88:b2:7a:ae:1c:41:95:16:6c:40:ae:41:6b:e0:2c: e7:9e:b7:d3:4f:cc:8c:1c:22:56:d7:91:44:35:9f: ac:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:5F:3C:F0:D8:8B:ED:CB:D8:EA:91:B7:2B:3A:92:62:D6:01:59:BA X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234302e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.240.0/24 Signature Algorithm: sha256WithRSAEncryption 27:10:00:2d:96:4d:08:f8:6f:3b:e6:a7:76:ee:b9:fa:b5:d3: f2:21:90:dd:dd:17:7b:ca:84:9e:ea:24:15:25:ac:80:08:fa: 7b:12:2d:bd:6c:6c:b1:65:aa:37:2c:02:2f:f6:af:a5:26:6b: f6:a4:38:b8:4c:5a:63:3b:f4:38:37:12:ce:b1:52:cd:78:57: 24:42:bf:d5:82:3d:42:a4:93:2a:3e:a5:37:89:10:bc:0d:cc: ae:58:c8:e7:71:0e:13:ad:6d:79:77:32:d0:c8:f6:86:b5:13: 2f:2d:15:8f:bb:86:3b:42:3b:95:78:f2:03:93:36:90:c1:72: df:95:e0:1d:d1:6d:71:39:41:b7:a0:35:7c:db:5c:23:c0:34: 10:eb:4e:09:20:bd:bb:6c:73:4c:f6:31:43:42:ec:dc:13:56: 92:50:49:bd:a1:ea:39:c9:00:f1:02:05:62:b7:88:5b:8f:b4: a6:23:63:e7:c2:75:ad:c1:43:08:05:dd:0d:7b:66:7e:15:43: 52:fd:8f:d4:41:c3:3d:c7:bd:94:55:55:47:6e:b7:58:57:34: 29:5e:be:e2:e9:13:76:c8:a1:ec:e7:f6:ee:95:8c:d4:8c:67: 40:86:fd:38:39:90:71:16:c8:f8:46:01:f2:71:38:8c:42:88: 7b:0d:bc:51 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUG1wQhMXm/6Qy/48y5/MlMl4z2LgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNTA1MjAwNTU1MDFaFw0yNjA1MTkwNjAwMDFaMDMxMTAvBgNV BAMTKENGNUYzQ0YwRDg4QkVEQ0JEOEVBOTFCNzJCM0E5MjYyRDYwMTU5QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjkb3EZ/qLcQOMOFhpAJMWKiQb atK30PQOfoZq2QZV4LXpXe6tO2BjYzVuVKjkTGdTD4B0lrlgayRB6sCoF+XxgKAB U8zdAolGLWkqLdjT0VQUwr1xqYQTAWIC/+oyax+2TsChUMcRMiXPxyVf8j3LIctt jRqPhfiTu1tPze+60spmnX6xwswJtHPShqyxE3bFmrv/E1FnIR+530uivaZV6hgN UoVQRTGInChR9zoCPNwal/GqWmSKntY6MMtAuTAk1qQTqK518e/PSFTdty9LDQVL QjjyAoeDlhmeFN/79oiyeq4cQZUWbECuQWvgLOeet9NPzIwcIlbXkUQ1n6xrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUz1888NiL7cvY6pG3KzqSYtYBWbowHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqnwMA0GCSqG SIb3DQEBCwUAA4IBAQAnEAAtlk0I+G875qd27rn6tdPyIZDd3Rd7yoSe6iQVJayA CPp7Ei29bGyxZao3LAIv9q+lJmv2pDi4TFpjO/Q4NxLOsVLNeFckQr/Vgj1CpJMq PqU3iRC8DcyuWMjncQ4TrW15dzLQyPaGtRMvLRWPu4Y7QjuVePIDkzaQwXLfleAd 0W1xOUG3oDV821wjwDQQ604JIL27bHNM9jFDQuzcE1aSUEm9oeo5yQDxAgVit4hb j7SmI2PnwnWtwUMIBd0Ne2Z+FUNS/Y/UQcM9x72UVVVHbrdYVzQpXr7i6RN2yKHs 5/bulYzUjGdAhv04OZBxFsj4RgHycTiMQoh7DbxR -----END CERTIFICATE-----Generated at Sun Jun 8 06:43:40 2025 by rpki-client