$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234362e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3234362e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: 7oSpg4PI8iO/bLRmdJp1xDm1mTZbqamrPwvewQ0Kcpc= Subject key identifier: 41:26:84:3F:8B:07:FF:EE:D4:74:18:E2:65:D8:03:B8:6B:E6:A1:5E Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 2C304D38F8C49941A7424DC17F38141EA9039688 Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234362e302f32342d3234203d3e203338313433.roa Signing time: Tue 20 May 2025 07:02:53 +0000 ROA not before: Tue 20 May 2025 06:57:53 +0000 ROA not after: Tue 19 May 2026 07:02:53 +0000 asID: 38143 IP address blocks: 202.169.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 12:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:30:4d:38:f8:c4:99:41:a7:42:4d:c1:7f:38:14:1e:a9:03:96:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: May 20 06:57:53 2025 GMT Not After : May 19 07:02:53 2026 GMT Subject: CN=4126843F8B07FFEED47418E265D803B86BE6A15E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:94:2a:f6:f7:49:c9:f2:1c:86:21:a4:51:9f: 59:2e:8a:36:6d:99:76:93:ef:5b:20:eb:da:62:d8: e7:0a:b5:ce:85:54:88:28:98:e8:96:bd:ac:84:9a: b9:0c:6b:b1:6d:c6:84:17:ec:7a:35:b2:f8:49:8d: 2b:ba:b9:b1:84:77:d6:2b:31:b4:28:cd:4d:50:9e: 32:f6:39:01:9c:ce:48:3d:a1:33:3e:5f:ef:9f:ee: 36:e0:31:c5:85:58:c8:63:cf:3b:d4:58:9c:fc:97: e8:c1:a6:33:c4:ad:25:f0:28:02:fb:52:e5:35:18: 95:7e:46:a8:db:c2:64:1c:8e:dc:d6:0f:e2:b5:7b: 94:34:9c:5d:4a:f1:4c:07:63:12:1b:e7:e2:ec:a5: 1f:b8:8c:d6:9b:d0:c7:4f:77:3b:83:5d:a7:ce:b0: f6:b9:53:8d:39:c4:8d:8f:20:cd:a1:fc:58:f3:19: 6e:dc:d7:d1:a1:98:a9:8b:1d:a8:7f:4d:90:68:4f: dc:43:53:83:7d:81:b9:df:36:23:02:98:30:57:13: d2:55:4e:1c:07:1d:a1:95:57:17:e7:db:64:9d:e2: 95:1f:42:a3:0f:03:4a:41:4f:a1:86:79:c7:1c:bb: 66:aa:b5:c1:d6:61:64:fb:30:b1:f3:07:5f:0d:54: c1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:26:84:3F:8B:07:FF:EE:D4:74:18:E2:65:D8:03:B8:6B:E6:A1:5E X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234362e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.246.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:0f:fb:9b:c3:d6:60:d0:fd:f0:42:d3:00:ee:5a:22:b4:9e: 6c:e8:ab:79:59:82:f5:0f:f0:ec:73:c0:a5:fe:c2:41:5e:bc: 12:84:8a:28:4b:0f:08:b3:7c:94:74:9b:9e:2d:94:a8:1d:f8: 79:e3:c7:c1:ed:ed:dc:32:28:d7:12:a9:18:75:85:f7:ea:1f: fa:82:70:44:df:55:e2:cc:8f:f9:ba:f7:a4:4e:b7:5b:54:e5: 87:33:df:93:86:b6:67:f5:6f:7d:79:22:da:3f:b4:c3:8d:77: 14:d3:a7:8c:4c:5f:73:73:a9:d1:c8:49:b4:16:3c:0d:70:1c: 17:50:10:7f:f1:42:0b:75:cd:ce:4b:f8:dc:21:fd:a6:71:57: e8:61:4f:7e:bf:1f:a4:ad:7b:66:eb:53:a0:d6:69:af:b7:d3: af:04:e7:74:26:6a:7e:cb:f1:c4:05:59:ee:c5:02:3a:df:8e: 40:3d:69:14:47:92:f6:c3:98:34:84:13:2d:0f:3f:8b:d3:86: eb:57:f4:14:71:0c:28:4e:86:25:41:0c:3c:09:24:53:50:5e: 18:cb:ae:59:1b:2d:de:82:ad:1e:d6:9e:51:4e:a3:d0:44:fd: f5:aa:a6:de:05:a7:44:0c:dc:5c:bf:48:25:95:2a:a3:50:2f: ba:d0:3c:cf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULDBNOPjEmUGnQk3BfzgUHqkDlogwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNTA1MjAwNjU3NTNaFw0yNjA1MTkwNzAyNTNaMDMxMTAvBgNV BAMTKDQxMjY4NDNGOEIwN0ZGRUVENDc0MThFMjY1RDgwM0I4NkJFNkExNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjlCr290nJ8hyGIaRRn1kuijZt mXaT71sg69pi2OcKtc6FVIgomOiWvayEmrkMa7FtxoQX7Ho1svhJjSu6ubGEd9Yr MbQozU1QnjL2OQGczkg9oTM+X++f7jbgMcWFWMhjzzvUWJz8l+jBpjPErSXwKAL7 UuU1GJV+RqjbwmQcjtzWD+K1e5Q0nF1K8UwHYxIb5+LspR+4jNab0MdPdzuDXafO sPa5U405xI2PIM2h/FjzGW7c19GhmKmLHah/TZBoT9xDU4N9gbnfNiMCmDBXE9JV ThwHHaGVVxfn22Sd4pUfQqMPA0pBT6GGecccu2aqtcHWYWT7MLHzB18NVMH5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQSaEP4sH/+7UdBjiZdgDuGvmoV4wHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqn2MA0GCSqG SIb3DQEBCwUAA4IBAQAfD/ubw9Zg0P3wQtMA7loitJ5s6Kt5WYL1D/Dsc8Cl/sJB XrwShIooSw8Is3yUdJueLZSoHfh548fB7e3cMijXEqkYdYX36h/6gnBE31XizI/5 uvekTrdbVOWHM9+ThrZn9W99eSLaP7TDjXcU06eMTF9zc6nRyEm0FjwNcBwXUBB/ 8UILdc3OS/jcIf2mcVfoYU9+vx+krXtm61Og1mmvt9OvBOd0Jmp+y/HEBVnuxQI6 345APWkUR5L2w5g0hBMtDz+L04brV/QUcQwoToYlQQw8CSRTUF4Yy65ZGy3egq0e 1p5RTqPQRP31qqbeBadEDNxcv0gllSqjUC+60DzP -----END CERTIFICATE-----Generated at Sun Jun 8 06:35:57 2025 by rpki-client