$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235312e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3235312e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: 78D1hoR1QXfxYgsB/1BdOMQKWXMHIZ8SWcauYm4VB1k= Subject key identifier: 00:23:33:F0:19:A5:93:53:38:E4:E8:A3:16:35:15:E9:C6:A0:AA:AB Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 17887D190ABD2A3C9C0EF80EF5D0F12758C7873D Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235312e302f32342d3234203d3e203338313433.roa Signing time: Tue 18 Jun 2024 05:00:00 +0000 ROA not before: Tue 18 Jun 2024 04:55:00 +0000 ROA not after: Tue 17 Jun 2025 05:00:00 +0000 asID: 38143 IP address blocks: 202.169.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 12:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:88:7d:19:0a:bd:2a:3c:9c:0e:f8:0e:f5:d0:f1:27:58:c7:87:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: Jun 18 04:55:00 2024 GMT Not After : Jun 17 05:00:00 2025 GMT Subject: CN=002333F019A5935338E4E8A3163515E9C6A0AAAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a1:d7:df:1b:84:3f:cc:a6:99:a2:13:2b:07: ab:ae:0b:89:99:0a:fb:1d:e1:cd:76:d2:b8:78:17: 1d:fc:86:b2:03:40:65:02:ad:e5:92:fa:b6:cc:b9: 96:77:d5:20:47:c6:1e:58:02:fe:bb:d0:0e:6c:ac: 49:54:cf:3d:34:70:25:07:7c:1f:65:e2:9f:4c:ee: 69:30:81:2f:16:e0:fb:95:a8:92:74:78:45:f2:7b: 28:e2:ce:c9:06:bb:14:f4:d3:62:6b:86:5b:46:04: c6:f8:50:8c:5a:27:51:41:bb:30:68:71:ff:55:50: 58:16:46:e1:c3:70:0a:c8:84:b3:f0:90:93:a8:97: 65:e6:30:d0:bb:87:c0:60:db:c9:0a:62:ad:3a:d3: 42:09:20:64:8c:53:bd:e2:d1:72:94:e6:b5:89:9f: 04:bd:d2:4a:1d:24:69:1f:b9:23:d7:4f:13:36:15: 68:d7:b4:13:39:04:a4:96:be:67:6e:33:fc:e5:e9: e1:7d:e7:79:ee:bc:c4:fc:2f:9d:fd:e6:d3:ee:60: 34:5c:68:f9:59:de:b7:8a:95:c5:fd:91:e6:f5:78: 78:88:f0:c8:f4:96:29:13:6d:2f:eb:3a:88:ca:12: 2b:79:15:fe:2e:a7:95:27:9d:58:d2:64:7b:1d:6b: b0:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:23:33:F0:19:A5:93:53:38:E4:E8:A3:16:35:15:E9:C6:A0:AA:AB X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235312e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.251.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:e2:00:bf:cb:af:66:59:47:43:07:6e:97:c7:39:36:53:cc: 2f:b6:6e:c1:db:ba:d8:a7:a6:a6:c7:26:ed:fb:ce:68:ed:cc: 1b:85:bd:c9:01:2b:eb:93:02:64:3e:ac:9e:cb:c7:b3:2e:2e: af:f0:d2:16:21:6d:d1:e2:9a:cf:1c:ca:f1:8d:47:18:21:cd: 05:19:c3:57:59:35:11:33:e5:fb:dc:7f:b0:4e:c4:ce:73:64: 12:d9:92:9c:9f:01:ce:e9:b2:de:1b:c6:b6:cd:b2:ec:ed:a7: 6c:e3:88:2a:3e:2e:3c:42:ca:60:b3:63:58:31:62:43:96:f4: e3:2f:4b:f4:8b:d3:a8:50:d1:14:bd:24:c8:fa:8a:6a:cb:e5: 9e:f8:ca:19:28:41:19:1c:b7:5e:ae:45:5f:1d:00:73:f9:a0: 80:4c:ab:db:dd:f3:1a:b0:a4:93:e8:b1:0d:e0:1f:85:a0:7a: 1f:b6:4d:36:7b:15:8a:e9:52:c7:40:0b:e8:b4:c4:e5:22:b5: d9:3a:58:7a:8a:c0:12:9e:91:01:09:4f:ca:b1:ec:9a:12:2a: 1a:80:d1:73:e0:54:9d:83:c6:ea:90:36:5e:ea:48:63:77:66: d1:d0:f0:5c:dd:f2:68:8c:7b:91:b5:1a:67:11:d0:d3:19:51: 4d:13:08:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUF4h9GQq9KjycDvgO9dDxJ1jHhz0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNDA2MTgwNDU1MDBaFw0yNTA2MTcwNTAwMDBaMDMxMTAvBgNV BAMTKDAwMjMzM0YwMTlBNTkzNTMzOEU0RThBMzE2MzUxNUU5QzZBMEFBQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClodffG4Q/zKaZohMrB6uuC4mZ Cvsd4c120rh4Fx38hrIDQGUCreWS+rbMuZZ31SBHxh5YAv670A5srElUzz00cCUH fB9l4p9M7mkwgS8W4PuVqJJ0eEXyeyjizskGuxT002JrhltGBMb4UIxaJ1FBuzBo cf9VUFgWRuHDcArIhLPwkJOol2XmMNC7h8Bg28kKYq0600IJIGSMU73i0XKU5rWJ nwS90kodJGkfuSPXTxM2FWjXtBM5BKSWvmduM/zl6eF953nuvMT8L5395tPuYDRc aPlZ3reKlcX9keb1eHiI8Mj0likTbS/rOojKEit5Ff4up5UnnVjSZHsda7AhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUACMz8Bmlk1M45OijFjUV6cagqqswHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM1MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqn7MA0GCSqG SIb3DQEBCwUAA4IBAQA/4gC/y69mWUdDB26Xxzk2U8wvtm7B27rYp6amxybt+85o 7cwbhb3JASvrkwJkPqyey8ezLi6v8NIWIW3R4prPHMrxjUcYIc0FGcNXWTURM+X7 3H+wTsTOc2QS2ZKcnwHO6bLeG8a2zbLs7ads44gqPi48Qspgs2NYMWJDlvTjL0v0 i9OoUNEUvSTI+opqy+We+MoZKEEZHLderkVfHQBz+aCATKvb3fMasKST6LEN4B+F oHoftk02exWK6VLHQAvotMTlIrXZOlh6isASnpEBCU/KseyaEioagNFz4FSdg8bq kDZe6khjd2bR0PBc3fJojHuRtRpnEdDTGVFNEwiN -----END CERTIFICATE-----Generated at Fri Feb 21 11:16:49 2025 by rpki-client