$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235312e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3235312e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: 41XCYMRh55k6Um2y8+Tik7Eqic7p5rV1jZeEXAGor68= Subject key identifier: 0F:3D:1C:DF:2D:01:9E:FF:7E:ED:99:87:18:AA:75:8C:7A:1C:D8:E8 Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 408C46025D9D333AEB782A5E7427ED70D2024F66 Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235312e302f32342d3234203d3e203338313433.roa Signing time: Tue 20 May 2025 05:00:00 +0000 ROA not before: Tue 20 May 2025 04:55:00 +0000 ROA not after: Tue 19 May 2026 05:00:00 +0000 asID: 38143 IP address blocks: 202.169.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 12:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:8c:46:02:5d:9d:33:3a:eb:78:2a:5e:74:27:ed:70:d2:02:4f:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: May 20 04:55:00 2025 GMT Not After : May 19 05:00:00 2026 GMT Subject: CN=0F3D1CDF2D019EFF7EED998718AA758C7A1CD8E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5a:9b:bc:8b:ff:0d:b6:47:f6:99:e1:01:26: 24:af:c6:26:12:a0:d5:12:a8:c3:27:d1:1e:54:78: f2:23:84:6b:9e:cd:d0:c1:df:1a:c0:af:a7:ff:c2: eb:a3:37:31:07:bc:f4:63:73:82:99:44:1f:e6:b2: f0:ff:d6:7d:c4:50:ce:78:8b:e6:f5:ce:8a:1e:76: 57:2c:0f:b3:0f:d3:ff:ba:63:1f:dd:7b:32:84:82: a0:94:d7:7a:21:a6:74:fb:fb:90:fa:6e:96:dc:59: d8:72:37:43:b4:7d:6d:c6:31:43:aa:49:70:c1:2a: f2:4b:e6:5e:3f:d8:9c:98:8e:5b:a4:71:cd:2c:6f: e7:e4:db:1a:a8:43:f2:0c:b6:8d:0b:02:3f:20:ba: aa:0a:1a:eb:18:1f:26:50:fe:cb:b3:1c:ac:21:2a: 99:34:80:14:1b:d5:6d:ec:37:a1:5f:f3:0d:42:8e: 6f:f2:8c:f3:c0:00:4f:39:e6:7b:cc:20:47:f2:2d: b6:55:9a:89:da:f1:f5:91:56:a1:62:6b:0b:cb:c0: b4:38:ff:09:61:a3:58:e7:c0:68:44:b0:41:27:d8: f4:b0:66:b8:84:2f:68:e4:f5:ca:c7:26:2f:a9:b8: e7:61:f9:e4:2d:1b:1d:cf:e4:1d:14:5a:29:e0:6f: f4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:3D:1C:DF:2D:01:9E:FF:7E:ED:99:87:18:AA:75:8C:7A:1C:D8:E8 X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235312e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.251.0/24 Signature Algorithm: sha256WithRSAEncryption a1:91:9b:e7:ce:b0:ec:37:40:91:ae:1f:c9:31:0f:4b:b4:65: 3d:c9:30:da:86:d7:7f:82:45:d3:31:9d:66:9d:9a:e4:7d:f1: 45:f5:cd:bb:2a:69:ca:3d:a8:c2:0a:04:d4:21:df:ba:93:9e: 6c:c3:44:9c:a3:74:c9:39:34:4d:14:8f:00:28:16:dc:47:5e: b7:4d:fe:15:e1:2e:d1:73:e4:d7:0a:b8:fd:55:36:81:b8:6d: b7:72:59:10:9f:83:74:85:17:a5:44:f1:20:14:cf:e4:5b:98: ee:e0:00:5f:f7:76:ba:33:0c:6c:c5:e8:8b:a5:51:09:89:03: e3:2d:38:5c:c3:80:e2:0b:81:24:bd:63:d3:8e:e5:df:60:88: b2:0d:63:1f:c5:7f:4b:26:01:2b:1a:b5:33:77:af:4d:d5:cb: c8:4e:f9:3e:1b:c7:20:47:ef:c4:b1:3e:d5:1f:bb:71:a9:c9: ba:71:7e:33:6e:6e:21:91:ee:d0:76:6f:a3:49:b7:95:2e:4b: b7:72:c5:f5:26:0b:a7:44:cd:04:29:21:cb:68:44:1a:00:af: 20:b7:6a:8f:e9:56:ad:14:d9:5a:d0:bd:90:0c:d2:0e:36:bc: ea:f2:5b:e5:c4:b4:6e:f2:46:87:f8:70:dc:d9:2b:c0:98:3b: 82:c9:ef:62 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQIxGAl2dMzrreCpedCftcNICT2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNTA1MjAwNDU1MDBaFw0yNjA1MTkwNTAwMDBaMDMxMTAvBgNV BAMTKDBGM0QxQ0RGMkQwMTlFRkY3RUVEOTk4NzE4QUE3NThDN0ExQ0Q4RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmWpu8i/8Ntkf2meEBJiSvxiYS oNUSqMMn0R5UePIjhGuezdDB3xrAr6f/wuujNzEHvPRjc4KZRB/msvD/1n3EUM54 i+b1zooedlcsD7MP0/+6Yx/dezKEgqCU13ohpnT7+5D6bpbcWdhyN0O0fW3GMUOq SXDBKvJL5l4/2JyYjlukcc0sb+fk2xqoQ/IMto0LAj8guqoKGusYHyZQ/suzHKwh Kpk0gBQb1W3sN6Ff8w1Cjm/yjPPAAE855nvMIEfyLbZVmona8fWRVqFiawvLwLQ4 /wlho1jnwGhEsEEn2PSwZriEL2jk9crHJi+puOdh+eQtGx3P5B0UWingb/QFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDz0c3y0Bnv9+7ZmHGKp1jHoc2OgwHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM1MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqn7MA0GCSqG SIb3DQEBCwUAA4IBAQChkZvnzrDsN0CRrh/JMQ9LtGU9yTDahtd/gkXTMZ1mnZrk ffFF9c27KmnKPajCCgTUId+6k55sw0Sco3TJOTRNFI8AKBbcR163Tf4V4S7Rc+TX Crj9VTaBuG23clkQn4N0hRelRPEgFM/kW5ju4ABf93a6MwxsxeiLpVEJiQPjLThc w4DiC4EkvWPTjuXfYIiyDWMfxX9LJgErGrUzd69N1cvITvk+G8cgR+/EsT7VH7tx qcm6cX4zbm4hke7Qdm+jSbeVLku3csX1JgunRM0EKSHLaEQaAK8gt2qP6VatFNla 0L2QDNIONrzq8lvlxLRu8kaH+HDc2SvAmDuCye9i -----END CERTIFICATE-----Generated at Sun Jun 8 06:22:47 2025 by rpki-client