$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235322e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3235322e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: id0g1JaYO1pziZ0XdQnIbqcSOarNqVLUxMrtCKVg664= Subject key identifier: 6D:E4:CD:FB:9B:E8:2E:BF:9D:7A:FB:6E:F2:7A:0F:24:AD:55:29:D4 Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 7BE7606B86891FFFF214715F915A35B022A3792E Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235322e302f32342d3234203d3e203338313433.roa Signing time: Tue 20 May 2025 07:02:54 +0000 ROA not before: Tue 20 May 2025 06:57:54 +0000 ROA not after: Tue 19 May 2026 07:02:54 +0000 asID: 38143 IP address blocks: 202.169.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 12:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:e7:60:6b:86:89:1f:ff:f2:14:71:5f:91:5a:35:b0:22:a3:79:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: May 20 06:57:54 2025 GMT Not After : May 19 07:02:54 2026 GMT Subject: CN=6DE4CDFB9BE82EBF9D7AFB6EF27A0F24AD5529D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3b:1f:c1:fc:25:80:2f:37:40:69:67:f1:98: 9b:19:ff:a5:c1:b9:43:64:34:48:87:97:8b:ab:be: ca:48:f7:0d:9d:24:ec:67:cf:e6:82:bc:c1:6c:5b: ad:e9:b8:38:8c:e4:6d:41:b8:80:95:23:e0:e7:e4: ac:57:cb:8c:5b:ad:fc:5a:3f:1e:89:ab:31:32:c8: 3f:d5:43:be:0c:05:1b:80:98:0a:18:d9:62:8b:e5: ce:f7:09:2a:37:b9:4a:78:e1:a2:ac:7e:b8:f8:43: 72:b2:93:8d:e8:7f:79:27:3c:e5:92:6e:e3:f5:b1: 75:73:d7:01:f4:a1:8a:dc:4b:e6:4c:65:32:34:88: ca:76:8d:c4:16:0d:d3:ba:d5:4f:0d:1c:2f:4b:21: 27:9a:b3:de:56:5d:a7:df:9e:a2:1d:a9:bc:5e:0a: 6f:b9:c2:81:5c:bc:ea:97:02:52:55:49:82:04:0a: 02:76:bb:78:86:b2:cd:e4:17:9a:7c:94:ff:c0:ba: bb:ae:e6:8d:f1:ca:54:8a:d5:d6:61:1b:05:86:84: d6:68:f4:33:53:47:8c:95:ce:e0:b9:07:3c:dc:27: ac:29:91:07:1e:04:91:54:c2:0d:57:54:2a:e3:8e: f0:61:3b:7a:ff:10:88:ff:ff:6d:79:85:49:8f:66: ff:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:E4:CD:FB:9B:E8:2E:BF:9D:7A:FB:6E:F2:7A:0F:24:AD:55:29:D4 X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235322e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.252.0/24 Signature Algorithm: sha256WithRSAEncryption 73:76:2e:60:d4:87:ec:45:d7:1a:15:77:d7:ab:ad:74:77:72: ca:7a:3e:8b:8e:05:47:f3:e8:69:04:61:6b:c6:3f:46:e0:bb: bf:25:b8:35:da:9a:ad:b2:9e:93:7b:37:b2:4c:25:8d:ab:67: 35:c8:dc:39:6b:11:e4:fd:25:3f:5a:fd:ab:c2:24:54:fc:e5: ac:80:1d:04:78:0a:66:b8:10:ff:b6:ec:c1:21:df:87:bf:7e: 65:31:7d:93:56:ac:6c:f3:f4:46:d8:ad:13:60:75:81:2b:ee: b7:b1:57:a2:a2:e5:27:f1:45:67:45:10:f5:2a:2a:4a:24:be: 75:41:d4:74:73:f7:f8:c2:b3:e0:fc:d1:15:46:e3:5a:3a:a6: 02:f1:b5:59:dc:ec:c4:a1:a3:be:c1:51:b3:51:69:d3:86:bd: f9:71:e6:54:c8:b8:dc:48:60:21:39:a1:ac:53:e6:dd:75:ba: b4:51:67:7d:17:63:8c:67:cc:bb:2b:b7:c5:55:28:31:50:87: 85:24:48:62:e3:f2:18:4f:50:1e:01:49:bd:b8:d8:4a:b3:97: fc:7a:b0:0d:93:bd:d9:f6:c8:ab:95:b9:fc:b0:0b:cf:ba:04: c4:7a:38:9c:05:2d:ad:f7:77:d1:ea:33:9c:bf:ee:b6:ef:76: e9:9f:49:2f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUe+dga4aJH//yFHFfkVo1sCKjeS4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNTA1MjAwNjU3NTRaFw0yNjA1MTkwNzAyNTRaMDMxMTAvBgNV BAMTKDZERTRDREZCOUJFODJFQkY5RDdBRkI2RUYyN0EwRjI0QUQ1NTI5RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbOx/B/CWALzdAaWfxmJsZ/6XB uUNkNEiHl4urvspI9w2dJOxnz+aCvMFsW63puDiM5G1BuICVI+Dn5KxXy4xbrfxa Px6JqzEyyD/VQ74MBRuAmAoY2WKL5c73CSo3uUp44aKsfrj4Q3Kyk43of3knPOWS buP1sXVz1wH0oYrcS+ZMZTI0iMp2jcQWDdO61U8NHC9LISeas95WXaffnqIdqbxe Cm+5woFcvOqXAlJVSYIECgJ2u3iGss3kF5p8lP/Auruu5o3xylSK1dZhGwWGhNZo 9DNTR4yVzuC5BzzcJ6wpkQceBJFUwg1XVCrjjvBhO3r/EIj//215hUmPZv8lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbeTN+5voLr+devtu8noPJK1VKdQwHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqn8MA0GCSqG SIb3DQEBCwUAA4IBAQBzdi5g1IfsRdcaFXfXq610d3LKej6LjgVH8+hpBGFrxj9G 4Lu/Jbg12pqtsp6TezeyTCWNq2c1yNw5axHk/SU/Wv2rwiRU/OWsgB0EeApmuBD/ tuzBId+Hv35lMX2TVqxs8/RG2K0TYHWBK+63sVeiouUn8UVnRRD1KipKJL51QdR0 c/f4wrPg/NEVRuNaOqYC8bVZ3OzEoaO+wVGzUWnThr35ceZUyLjcSGAhOaGsU+bd dbq0UWd9F2OMZ8y7K7fFVSgxUIeFJEhi4/IYT1AeAUm9uNhKs5f8erANk73Z9sir lbn8sAvPugTEejicBS2t93fR6jOcv+6273bpn0kv -----END CERTIFICATE-----Generated at Sun Jun 8 06:33:50 2025 by rpki-client