$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234312e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3234312e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: h6Ee6mAwoTclDh87yxMaZrVLxSRNZyCSkjNCMnA187Q= Subject key identifier: 4E:2B:CE:52:05:CA:49:04:57:73:E1:F5:0D:AB:D4:89:75:1B:1D:6F Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 1AB87B2B0795D272AC179C0E962C78F870E308C6 Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234312e302f32342d3234203d3e203338313433.roa Signing time: Tue 20 May 2025 05:00:00 +0000 ROA not before: Tue 20 May 2025 04:55:00 +0000 ROA not after: Tue 19 May 2026 05:00:00 +0000 asID: 38143 IP address blocks: 202.169.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 12:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:b8:7b:2b:07:95:d2:72:ac:17:9c:0e:96:2c:78:f8:70:e3:08:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: May 20 04:55:00 2025 GMT Not After : May 19 05:00:00 2026 GMT Subject: CN=4E2BCE5205CA49045773E1F50DABD489751B1D6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:12:3a:6b:27:43:02:80:4e:5c:88:4c:a0:e6: 42:97:8d:92:45:91:ae:ae:87:bf:cb:11:dc:fc:22: f6:85:c9:14:3c:67:22:76:7f:68:e4:52:40:1d:1c: 21:bd:f3:17:61:2b:46:a7:a1:30:31:1e:57:65:4c: 32:56:ee:f9:e4:9a:dd:97:af:29:bd:19:82:4b:fd: f5:af:6c:18:45:2a:f3:2d:6f:ec:c9:0e:4e:46:a4: cb:44:56:8a:4e:92:8d:13:33:a9:ad:9a:58:2a:44: 95:6e:85:9e:76:f4:8d:11:44:a8:cd:13:ee:bd:29: 1e:38:c4:14:3e:4f:15:31:e5:93:a2:6b:d8:05:a1: 0d:a0:16:d7:5b:43:71:3a:db:41:60:ca:c2:fe:c9: 4c:01:39:75:be:32:72:7a:57:de:ef:15:fb:95:e1: 51:0d:29:f8:ee:f6:dd:e1:05:4f:70:63:c9:0e:c1: 3c:b1:d3:38:8a:f9:53:bc:57:41:e3:be:7c:9b:7b: cb:34:a7:ef:dc:4a:0c:b8:4c:f7:ba:3e:3e:d1:db: b0:a5:28:e8:17:68:dc:08:b9:65:c6:f9:28:37:47: e9:6c:3c:11:96:a8:f7:0f:71:1b:98:22:68:12:4a: 7f:53:96:ea:30:8e:92:8b:17:9e:45:ab:63:3f:d5: 9b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:2B:CE:52:05:CA:49:04:57:73:E1:F5:0D:AB:D4:89:75:1B:1D:6F X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234312e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.241.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:4d:0c:8e:a6:3f:d2:68:1b:c4:04:6f:e2:ba:6c:c0:17:99: 76:2e:58:58:ab:0b:70:74:58:8f:32:36:59:76:03:ec:db:cb: 11:18:70:33:90:98:e7:55:4b:86:de:4f:3a:3f:53:f7:30:31: e5:2a:52:d7:d5:84:1a:b1:78:3c:eb:3c:96:79:8b:98:52:41: fd:1e:af:f9:5d:71:f8:21:5f:74:0e:fe:6b:9c:ac:51:84:6f: ff:f7:a3:3e:5c:fa:8b:ad:56:07:a3:50:8c:d9:79:c8:09:36: 1c:15:e5:98:6a:2a:aa:2c:e5:bc:fe:ac:c8:14:38:19:98:cd: c5:3e:ec:91:72:2a:9f:db:7a:1e:d8:70:ab:68:42:04:7a:ab: bd:af:87:1d:e3:91:20:33:0f:e3:a2:64:b7:d9:92:9c:e9:68: 0f:fb:8a:7c:29:d6:ba:2d:05:cd:58:62:f3:cd:d4:0d:1b:75: fc:86:6b:29:f2:4c:e4:26:dc:92:53:f4:72:eb:87:fe:11:39: fa:8b:0f:58:ad:e3:4a:29:60:88:cb:06:3d:b9:cc:2b:77:59: 19:27:22:2c:9e:b7:45:9a:5a:d9:5a:0e:f8:50:bf:80:87:fe: 5d:27:c2:83:7e:2a:ab:ca:cd:ca:c3:45:f3:57:e6:99:01:fc: 43:79:19:b4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGrh7KweV0nKsF5wOlix4+HDjCMYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNTA1MjAwNDU1MDBaFw0yNjA1MTkwNTAwMDBaMDMxMTAvBgNV BAMTKDRFMkJDRTUyMDVDQTQ5MDQ1NzczRTFGNTBEQUJENDg5NzUxQjFENkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnEjprJ0MCgE5ciEyg5kKXjZJF ka6uh7/LEdz8IvaFyRQ8ZyJ2f2jkUkAdHCG98xdhK0anoTAxHldlTDJW7vnkmt2X rym9GYJL/fWvbBhFKvMtb+zJDk5GpMtEVopOko0TM6mtmlgqRJVuhZ529I0RRKjN E+69KR44xBQ+TxUx5ZOia9gFoQ2gFtdbQ3E620FgysL+yUwBOXW+MnJ6V97vFfuV 4VENKfju9t3hBU9wY8kOwTyx0ziK+VO8V0Hjvnybe8s0p+/cSgy4TPe6Pj7R27Cl KOgXaNwIuWXG+Sg3R+lsPBGWqPcPcRuYImgSSn9TluowjpKLF55Fq2M/1ZvJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTivOUgXKSQRXc+H1DavUiXUbHW8wHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqnxMA0GCSqG SIb3DQEBCwUAA4IBAQBqTQyOpj/SaBvEBG/iumzAF5l2LlhYqwtwdFiPMjZZdgPs 28sRGHAzkJjnVUuG3k86P1P3MDHlKlLX1YQasXg86zyWeYuYUkH9Hq/5XXH4IV90 Dv5rnKxRhG//96M+XPqLrVYHo1CM2XnICTYcFeWYaiqqLOW8/qzIFDgZmM3FPuyR ciqf23oe2HCraEIEequ9r4cd45EgMw/jomS32ZKc6WgP+4p8Kda6LQXNWGLzzdQN G3X8hmsp8kzkJtySU/Ry64f+ETn6iw9YreNKKWCIywY9ucwrd1kZJyIsnrdFmlrZ Wg74UL+Ah/5dJ8KDfiqrys3Kw0XzV+aZAfxDeRm0 -----END CERTIFICATE-----Generated at Sun Jun 8 06:03:58 2025 by rpki-client