$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234392e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3234392e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: cS5ythDEzT5AmV1FQ7Iw8w4U5LMT6dUxmiuZiyl9vkg= Subject key identifier: 1F:E5:25:72:E1:16:B9:65:A9:6A:D0:F3:6D:79:9A:0B:5C:F8:0D:E4 Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 2370EE596D45DAEC8CA9BB74945AB9660F445B40 Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234392e302f32342d3234203d3e203338313433.roa Signing time: Tue 20 May 2025 07:02:54 +0000 ROA not before: Tue 20 May 2025 06:57:54 +0000 ROA not after: Tue 19 May 2026 07:02:54 +0000 asID: 38143 IP address blocks: 202.169.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 12:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:70:ee:59:6d:45:da:ec:8c:a9:bb:74:94:5a:b9:66:0f:44:5b:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: May 20 06:57:54 2025 GMT Not After : May 19 07:02:54 2026 GMT Subject: CN=1FE52572E116B965A96AD0F36D799A0B5CF80DE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:33:ab:d3:4e:89:8a:d3:fb:7b:91:21:5d:22: 5d:2a:ff:c5:97:62:58:56:9d:7a:0f:cf:0b:15:2b: cb:01:0f:6e:d6:e1:1c:24:1e:02:2e:87:44:a5:73: ed:84:4f:61:58:72:6d:1b:4d:16:80:f3:fe:00:7a: b1:09:2d:33:be:ce:e7:ec:c8:32:ca:80:e6:10:64: f8:31:ce:1f:ff:e0:7c:f5:61:77:2e:42:9d:9a:f8: fd:13:ce:90:65:e2:84:0d:4b:13:0a:b9:eb:8e:ab: 2e:43:c2:cc:4a:48:cb:ae:4e:e1:09:83:ec:8d:09: 4c:10:75:09:18:35:5c:fb:68:06:17:24:c6:42:4e: 6c:1d:b9:12:ee:d3:7e:17:0d:e4:7a:6d:2f:62:27: ec:c3:2f:6b:87:bc:62:a6:5a:d9:d2:84:06:54:35: 68:f7:1c:01:9e:c8:8d:c0:2d:fe:f1:96:2a:93:89: 8c:ba:d6:fc:ba:18:aa:92:18:ed:f1:d7:ef:b7:4d: a3:ef:c4:3d:fd:df:06:3d:ae:d3:4d:96:e0:b2:1a: 00:81:df:c3:a2:17:65:d5:72:d8:68:07:d0:bb:d9: 5e:f9:50:ef:c8:50:0f:3d:c1:e2:1d:0b:f3:0f:95: 0f:0e:40:ed:89:fb:74:11:58:97:c2:be:3c:4d:00: 56:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:E5:25:72:E1:16:B9:65:A9:6A:D0:F3:6D:79:9A:0B:5C:F8:0D:E4 X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234392e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.249.0/24 Signature Algorithm: sha256WithRSAEncryption 54:5d:b8:19:0f:eb:93:19:00:19:58:31:03:83:3a:15:45:fd: 1c:a4:63:0f:d2:80:c2:0b:14:47:41:5d:bf:fd:ee:13:4a:f4: 7a:b0:fe:ae:61:1a:4f:4f:87:fb:bc:2f:af:20:82:39:a9:4e: f3:0c:a9:74:58:a5:52:71:4f:5d:dd:02:7e:ce:1f:da:fe:f0: 30:19:3c:b0:d1:6f:a7:a5:e8:a9:21:d4:fe:6a:94:1e:5c:e5: 32:3f:d4:d8:cb:ab:75:1a:9c:ac:c9:4a:f5:c9:69:99:44:fb: 03:d7:29:ad:58:c9:18:64:53:f1:b2:8f:64:be:30:96:36:1c: 49:fe:89:c3:4f:37:c0:8e:07:59:e9:9c:82:08:ca:74:1c:f0: 98:09:58:5a:d6:7d:60:01:01:04:43:0a:7d:6e:ba:82:88:29: c9:47:a9:7f:fa:6e:b7:cb:6a:1e:91:26:52:63:02:9f:ff:c3: 9b:42:a2:15:e0:3d:43:d6:39:df:9a:82:7e:cc:98:2d:9d:e1: 32:14:38:43:b5:0e:f5:29:a9:85:7f:b6:67:68:01:86:fd:ff: 87:e0:13:c5:36:bb:69:9e:a1:44:8b:f6:2f:0c:96:87:6a:91: 0d:e2:24:b1:6c:f4:15:95:d3:e2:85:91:61:cc:9b:e9:37:94: bc:9a:bc:5c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUI3DuWW1F2uyMqbt0lFq5Zg9EW0AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNTA1MjAwNjU3NTRaFw0yNjA1MTkwNzAyNTRaMDMxMTAvBgNV BAMTKDFGRTUyNTcyRTExNkI5NjVBOTZBRDBGMzZENzk5QTBCNUNGODBERTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKM6vTTomK0/t7kSFdIl0q/8WX YlhWnXoPzwsVK8sBD27W4RwkHgIuh0Slc+2ET2FYcm0bTRaA8/4AerEJLTO+zufs yDLKgOYQZPgxzh//4Hz1YXcuQp2a+P0TzpBl4oQNSxMKueuOqy5DwsxKSMuuTuEJ g+yNCUwQdQkYNVz7aAYXJMZCTmwduRLu034XDeR6bS9iJ+zDL2uHvGKmWtnShAZU NWj3HAGeyI3ALf7xliqTiYy61vy6GKqSGO3x1++3TaPvxD393wY9rtNNluCyGgCB 38OiF2XVcthoB9C72V75UO/IUA89weIdC/MPlQ8OQO2J+3QRWJfCvjxNAFZ3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUH+UlcuEWuWWpatDzbXmaC1z4DeQwHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqn5MA0GCSqG SIb3DQEBCwUAA4IBAQBUXbgZD+uTGQAZWDEDgzoVRf0cpGMP0oDCCxRHQV2//e4T SvR6sP6uYRpPT4f7vC+vIII5qU7zDKl0WKVScU9d3QJ+zh/a/vAwGTyw0W+npeip IdT+apQeXOUyP9TYy6t1GpysyUr1yWmZRPsD1ymtWMkYZFPxso9kvjCWNhxJ/onD TzfAjgdZ6ZyCCMp0HPCYCVha1n1gAQEEQwp9brqCiCnJR6l/+m63y2oekSZSYwKf /8ObQqIV4D1D1jnfmoJ+zJgtneEyFDhDtQ71KamFf7ZnaAGG/f+H4BPFNrtpnqFE i/YvDJaHapEN4iSxbPQVldPihZFhzJvpN5S8mrxc -----END CERTIFICATE-----Generated at Sun Jun 8 07:46:59 2025 by rpki-client