$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234352e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3234352e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: fuw/gxErkL+bJ/gGyq+bm4hu+zVzYCPlr170AzT5bDA= Subject key identifier: 3B:F9:75:4A:51:73:1A:EA:94:7D:DD:EE:76:4F:26:E7:39:6C:36:A2 Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 256C4179E2C9C2B3B9A5DC7C4F38C2890BFEEB1D Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234352e302f32342d3234203d3e203338313433.roa Signing time: Tue 20 May 2025 07:02:54 +0000 ROA not before: Tue 20 May 2025 06:57:54 +0000 ROA not after: Tue 19 May 2026 07:02:54 +0000 asID: 38143 IP address blocks: 202.169.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 12:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:6c:41:79:e2:c9:c2:b3:b9:a5:dc:7c:4f:38:c2:89:0b:fe:eb:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: May 20 06:57:54 2025 GMT Not After : May 19 07:02:54 2026 GMT Subject: CN=3BF9754A51731AEA947DDDEE764F26E7396C36A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:89:34:8f:d9:1b:2c:6e:ee:96:d6:2d:f1:97: 12:ba:dc:00:5b:84:42:ad:b9:db:90:8a:b7:d5:74: d5:b7:88:d4:ef:97:3c:d9:cf:f4:70:51:05:38:68: a1:65:1b:f6:bf:72:dc:bd:54:5b:d9:2d:79:f4:5c: 47:97:b0:d7:2d:28:07:92:7c:a9:5a:da:14:33:f0: 14:45:92:90:46:00:9f:7d:71:91:b8:fa:09:11:06: 9a:e2:58:01:92:6d:b7:b2:01:ef:19:00:29:93:13: d6:08:c7:d4:10:de:78:f4:be:47:f8:ba:fa:ae:c3: 6f:75:d5:b1:44:cc:5d:fc:ad:3f:30:9f:9e:d7:79: 3a:47:70:c1:24:32:e8:50:76:eb:e3:25:1e:2d:ac: 03:b9:fe:bc:9d:4d:0e:6a:86:bd:9e:2c:f7:a7:95: d0:8d:8e:77:07:c6:c5:c6:27:1d:e2:8c:3c:7e:f6: 85:e3:51:49:6f:15:23:c9:6c:95:d9:72:b9:e3:6d: 0a:f5:9f:ce:6c:a9:e3:9e:bc:57:e4:82:64:e9:5f: 57:36:31:a2:57:73:b7:a8:94:2a:77:74:ba:d3:55: d1:18:5a:64:06:8e:ed:b2:33:a1:1f:1a:34:0a:84: 0e:87:3a:20:15:db:ef:19:90:87:fe:e1:08:b9:5a: 61:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F9:75:4A:51:73:1A:EA:94:7D:DD:EE:76:4F:26:E7:39:6C:36:A2 X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234352e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.245.0/24 Signature Algorithm: sha256WithRSAEncryption 04:be:df:00:88:f3:0a:4c:55:3c:c6:90:e2:58:79:99:e4:e4: 7a:34:73:a0:be:20:bb:71:90:a9:1a:6f:7b:4b:bb:ad:2d:64: 34:8d:23:8c:7a:56:97:d2:15:96:20:bc:29:88:da:8a:95:b8: f9:01:40:4b:74:9f:6d:04:58:3a:0f:7d:68:c3:f8:5b:db:f7: 84:49:6a:64:ac:6f:e2:5f:c9:26:73:47:32:a6:45:e2:ae:c1: 71:b4:63:76:30:d4:7a:77:d5:f8:85:f7:3a:a3:ec:31:af:3a: 88:e5:64:32:1e:2d:1e:98:2c:da:bf:4e:3c:8d:98:58:ad:73: 47:9f:3c:42:b8:b5:20:5b:7c:65:1d:76:b6:ef:6a:fc:ac:98: 75:9b:0c:b6:c8:8b:55:a8:9c:ab:b3:ff:ab:6c:ff:67:31:66: cc:0e:67:12:55:9c:57:45:38:f3:1b:e4:97:3c:bb:f3:69:67: 7b:1a:d4:f2:b0:af:e7:c7:7d:16:9c:ad:9a:97:91:fc:c2:c9: 2f:ea:85:d0:36:2a:48:54:9c:38:45:4b:4e:d9:87:a8:82:69: 36:dd:c1:fd:e6:cf:cd:a1:f8:d7:7d:65:82:9b:dc:9f:19:f0: 33:bf:96:aa:d4:e2:b7:05:c7:4f:fa:b5:fa:17:39:30:bb:1d: 4a:e0:45:63 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJWxBeeLJwrO5pdx8TzjCiQv+6x0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNTA1MjAwNjU3NTRaFw0yNjA1MTkwNzAyNTRaMDMxMTAvBgNV BAMTKDNCRjk3NTRBNTE3MzFBRUE5NDdERERFRTc2NEYyNkU3Mzk2QzM2QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCiTSP2Rssbu6W1i3xlxK63ABb hEKtuduQirfVdNW3iNTvlzzZz/RwUQU4aKFlG/a/cty9VFvZLXn0XEeXsNctKAeS fKla2hQz8BRFkpBGAJ99cZG4+gkRBpriWAGSbbeyAe8ZACmTE9YIx9QQ3nj0vkf4 uvquw2911bFEzF38rT8wn57XeTpHcMEkMuhQduvjJR4trAO5/rydTQ5qhr2eLPen ldCNjncHxsXGJx3ijDx+9oXjUUlvFSPJbJXZcrnjbQr1n85sqeOevFfkgmTpX1c2 MaJXc7eolCp3dLrTVdEYWmQGju2yM6EfGjQKhA6HOiAV2+8ZkIf+4Qi5WmF5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUO/l1SlFzGuqUfd3udk8m5zlsNqIwHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqn1MA0GCSqG SIb3DQEBCwUAA4IBAQAEvt8AiPMKTFU8xpDiWHmZ5OR6NHOgviC7cZCpGm97S7ut LWQ0jSOMelaX0hWWILwpiNqKlbj5AUBLdJ9tBFg6D31ow/hb2/eESWpkrG/iX8km c0cypkXirsFxtGN2MNR6d9X4hfc6o+wxrzqI5WQyHi0emCzav048jZhYrXNHnzxC uLUgW3xlHXa272r8rJh1mwy2yItVqJyrs/+rbP9nMWbMDmcSVZxXRTjzG+SXPLvz aWd7GtTysK/nx30WnK2al5H8wskv6oXQNipIVJw4RUtO2Yeogmk23cH95s/NofjX fWWCm9yfGfAzv5aq1OK3BcdP+rX6Fzkwux1K4EVj -----END CERTIFICATE-----Generated at Sun Jun 8 14:36:57 2025 by rpki-client