$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234342e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3234342e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: XQzSwHSK4NT6x/BumC0g2WFFmjLzbeNbB1ShA2P1aTE= Subject key identifier: D5:E9:CC:7A:87:F2:B4:DD:ED:67:EA:3A:51:CB:F8:A5:91:DB:ED:4A Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 660CA6E9577DA060A4CCF97DD0BD554DC011F423 Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234342e302f32342d3234203d3e203338313433.roa Signing time: Tue 20 May 2025 06:00:00 +0000 ROA not before: Tue 20 May 2025 05:55:00 +0000 ROA not after: Tue 19 May 2026 06:00:00 +0000 asID: 38143 IP address blocks: 202.169.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 12:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:0c:a6:e9:57:7d:a0:60:a4:cc:f9:7d:d0:bd:55:4d:c0:11:f4:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: May 20 05:55:00 2025 GMT Not After : May 19 06:00:00 2026 GMT Subject: CN=D5E9CC7A87F2B4DDED67EA3A51CBF8A591DBED4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:9e:db:2a:f0:25:c1:f4:0b:f4:16:e0:e2:f7: ce:01:10:6e:c8:c7:ea:4f:34:0c:d1:a9:49:3a:c8: 4e:b9:0e:1a:7f:6d:52:56:fe:5e:8c:0e:a1:0d:0d: 61:be:6d:de:8a:68:55:c6:9f:d9:dc:9e:e6:fd:6e: ef:54:76:46:1b:a6:35:c6:f7:90:1e:12:a1:bb:9a: cc:5d:f2:31:10:e2:b1:fb:be:db:de:6a:fc:d5:02: 5f:8d:6e:ba:85:a6:da:5e:79:24:7a:ea:9a:95:94: 1f:71:14:26:a6:5c:ab:5c:0f:d4:92:93:60:b0:1e: da:b2:ad:3f:53:19:09:7f:e9:ef:9d:e4:c6:c4:f3: b5:c3:af:de:95:85:4a:5b:d0:d7:5c:4d:a9:be:3c: 6d:c3:d7:c0:30:92:b9:39:7b:1b:ec:4d:7b:f7:4f: e8:44:79:59:a2:83:28:f9:3c:0a:ca:59:93:11:9d: a7:1d:e1:59:f3:08:55:cc:40:a9:a2:cb:0d:81:02: 3b:70:22:ed:64:c9:7d:2e:9b:37:9b:51:2c:f5:42: 7b:9f:7e:92:8e:15:8b:b4:96:a6:bb:b8:6d:86:a3: 53:a1:52:66:b2:cd:90:2d:4c:6d:6a:92:1c:a4:3e: ef:5e:12:fc:5a:a9:49:9b:90:98:4a:8a:f0:4a:59: b5:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:E9:CC:7A:87:F2:B4:DD:ED:67:EA:3A:51:CB:F8:A5:91:DB:ED:4A X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234342e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.244.0/24 Signature Algorithm: sha256WithRSAEncryption a5:d3:ae:90:77:db:ee:05:1b:5b:2d:48:7b:66:f8:75:f2:56: 01:ab:a7:1a:8f:1a:8e:87:a3:ab:22:a7:98:76:81:de:0f:f1: fa:43:fa:8d:41:fa:ff:71:2e:91:6b:88:8c:1a:fc:1f:1f:3a: d0:7d:e2:4c:f4:4a:8d:12:e0:0f:d6:3e:3a:0b:71:2b:14:c7: 66:85:0d:ea:5c:23:ac:ee:4b:05:39:89:d5:ec:60:9e:81:49: c0:a9:5a:5e:f9:fb:ba:5e:e0:37:36:e5:b6:3c:d4:33:79:5a: 46:fc:45:08:f2:02:15:cc:52:f8:57:71:3e:76:ab:a7:3e:f5: 0b:54:89:b5:f5:b3:8a:b3:c5:04:41:6c:a5:50:e4:da:62:29: 7a:34:8f:7d:3d:88:a8:b3:2d:f7:c8:37:4b:a6:0e:36:4a:52: 96:31:46:d1:03:fb:9d:82:97:33:3c:e8:aa:69:8f:61:80:1f: 82:5a:9c:e0:41:9c:ba:5a:a1:9a:a0:76:aa:24:f4:da:11:8e: e3:87:63:97:fa:28:11:5b:93:6d:0f:cb:d3:4e:16:f1:67:0c: 32:27:e5:67:2e:32:fc:dc:61:45:b2:39:6f:5a:c6:2c:31:b4: 6c:8e:7b:56:5f:28:15:af:e1:f9:a7:9d:d5:95:e7:a4:dc:3d: 07:08:57:7f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZgym6Vd9oGCkzPl90L1VTcAR9CMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNTA1MjAwNTU1MDBaFw0yNjA1MTkwNjAwMDBaMDMxMTAvBgNV BAMTKEQ1RTlDQzdBODdGMkI0RERFRDY3RUEzQTUxQ0JGOEE1OTFEQkVENEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDintsq8CXB9Av0FuDi984BEG7I x+pPNAzRqUk6yE65Dhp/bVJW/l6MDqENDWG+bd6KaFXGn9ncnub9bu9UdkYbpjXG 95AeEqG7msxd8jEQ4rH7vtveavzVAl+NbrqFptpeeSR66pqVlB9xFCamXKtcD9SS k2CwHtqyrT9TGQl/6e+d5MbE87XDr96VhUpb0NdcTam+PG3D18Awkrk5exvsTXv3 T+hEeVmigyj5PArKWZMRnacd4VnzCFXMQKmiyw2BAjtwIu1kyX0umzebUSz1Qnuf fpKOFYu0lqa7uG2Go1OhUmayzZAtTG1qkhykPu9eEvxaqUmbkJhKivBKWbVJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1enMeofytN3tZ+o6Ucv4pZHb7UowHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqn0MA0GCSqG SIb3DQEBCwUAA4IBAQCl066Qd9vuBRtbLUh7Zvh18lYBq6cajxqOh6OrIqeYdoHe D/H6Q/qNQfr/cS6Ra4iMGvwfHzrQfeJM9EqNEuAP1j46C3ErFMdmhQ3qXCOs7ksF OYnV7GCegUnAqVpe+fu6XuA3NuW2PNQzeVpG/EUI8gIVzFL4V3E+dqunPvULVIm1 9bOKs8UEQWylUOTaYil6NI99PYiosy33yDdLpg42SlKWMUbRA/udgpczPOiqaY9h gB+CWpzgQZy6WqGaoHaqJPTaEY7jh2OX+igRW5NtD8vTThbxZwwyJ+VnLjL83GFF sjlvWsYsMbRsjntWXygVr+H5p53Vleek3D0HCFd/ -----END CERTIFICATE-----Generated at Sun Jun 8 03:14:02 2025 by rpki-client