$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235342e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3235342e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: JWTNXuMyPReVmjqlA3f9ZAbwJWQGYLxUWUTTvp66CZU= Subject key identifier: A5:38:72:49:0F:2E:CB:54:80:A3:7E:DF:2C:6B:94:8E:19:84:88:9F Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 56B48A42991CB47B6E52D45080751C651DBEEC81 Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235342e302f32342d3234203d3e203338313433.roa Signing time: Tue 20 May 2025 07:02:54 +0000 ROA not before: Tue 20 May 2025 06:57:54 +0000 ROA not after: Tue 19 May 2026 07:02:54 +0000 asID: 38143 IP address blocks: 202.169.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 12:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:b4:8a:42:99:1c:b4:7b:6e:52:d4:50:80:75:1c:65:1d:be:ec:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: May 20 06:57:54 2025 GMT Not After : May 19 07:02:54 2026 GMT Subject: CN=A53872490F2ECB5480A37EDF2C6B948E1984889F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6a:eb:cd:53:e3:8d:65:53:94:c8:65:a5:3d: 3c:3f:f5:b3:48:fc:2c:03:77:8e:38:8f:46:8d:5f: a1:86:f6:b9:5d:f0:1d:b5:e6:ed:8f:d8:d0:91:fa: 00:d3:4e:3a:00:e1:e7:92:97:4e:17:9a:42:3a:b7: 85:e4:04:60:69:b9:68:44:0f:d7:52:6c:9c:e1:f8: 9a:16:ea:83:b3:e1:81:ba:5f:76:55:4c:83:56:12: 61:39:1e:59:a6:22:c7:c4:d1:e1:9b:8b:27:da:59: de:92:f3:ae:31:18:a6:6c:79:8e:08:00:1d:30:f6: 10:44:0e:22:2d:92:4d:57:14:ce:11:2c:2a:5b:cb: 28:bc:a6:2f:ba:16:94:37:12:5e:c9:49:da:c2:c0: 15:34:5e:51:de:65:a2:e7:35:ba:0a:05:37:11:70: e5:ec:9e:d7:76:3f:99:55:3f:24:25:dc:28:c3:e2: fe:2d:0f:c4:35:65:dd:07:d8:ac:af:28:1b:81:39: 69:04:b8:2f:c7:95:22:3c:36:45:2c:56:98:c0:c7: 70:d0:40:80:52:6b:d6:0f:96:21:89:2f:d8:01:c8: 20:2d:f3:e2:91:3b:62:12:b1:83:f9:8a:e2:14:f6: 9c:f1:ab:54:e9:fb:9c:94:66:6a:a2:21:aa:41:97: 3d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:38:72:49:0F:2E:CB:54:80:A3:7E:DF:2C:6B:94:8E:19:84:88:9F X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235342e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.254.0/24 Signature Algorithm: sha256WithRSAEncryption 86:d9:20:52:8f:01:69:74:3a:68:e6:d3:7a:34:31:c4:ee:ac: 50:c4:42:ac:63:59:7f:ac:3c:75:90:65:0a:62:75:78:03:5c: 4d:f9:46:0f:b9:e0:88:a2:00:cc:87:e8:cd:ed:a0:fc:1e:68: d8:ee:60:8f:58:02:44:cf:b6:16:0e:0d:ee:f2:08:3d:25:b3: 41:2e:4b:0c:d1:c8:e6:1f:68:66:2c:f1:13:a5:23:c6:70:00: df:65:cf:5a:ec:28:91:8f:20:2f:c4:cc:28:1e:09:a5:70:3f: 1b:2f:cf:31:62:5e:6b:e9:ba:19:88:06:a8:34:87:9a:42:bf: b9:46:a6:5b:32:98:4e:37:69:18:7c:67:a1:7f:88:31:f3:4f: 22:eb:f0:f0:d1:3e:55:e4:6c:43:35:66:b8:d5:1e:71:81:18: 6f:0b:0a:b6:e4:98:33:b3:64:2c:3f:b7:f3:8a:96:f1:e4:8a: 21:dd:1f:8a:c2:ea:89:af:a5:c0:0d:7a:d4:61:0f:9d:2a:de: 35:7e:72:58:ce:23:7c:32:d6:26:bd:42:55:2a:76:c7:6c:62: 9c:46:e7:74:9b:c4:b0:5d:83:6d:33:f7:5a:97:d6:06:37:a6: c3:c2:7e:5f:70:12:a5:53:95:3a:c9:ac:e8:2c:b6:80:54:05: 43:3b:95:39 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVrSKQpkctHtuUtRQgHUcZR2+7IEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNTA1MjAwNjU3NTRaFw0yNjA1MTkwNzAyNTRaMDMxMTAvBgNV BAMTKEE1Mzg3MjQ5MEYyRUNCNTQ4MEEzN0VERjJDNkI5NDhFMTk4NDg4OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9auvNU+ONZVOUyGWlPTw/9bNI /CwDd444j0aNX6GG9rld8B215u2P2NCR+gDTTjoA4eeSl04XmkI6t4XkBGBpuWhE D9dSbJzh+JoW6oOz4YG6X3ZVTINWEmE5HlmmIsfE0eGbiyfaWd6S864xGKZseY4I AB0w9hBEDiItkk1XFM4RLCpbyyi8pi+6FpQ3El7JSdrCwBU0XlHeZaLnNboKBTcR cOXsntd2P5lVPyQl3CjD4v4tD8Q1Zd0H2KyvKBuBOWkEuC/HlSI8NkUsVpjAx3DQ QIBSa9YPliGJL9gByCAt8+KRO2ISsYP5iuIU9pzxq1Tp+5yUZmqiIapBlz1FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpThySQ8uy1SAo37fLGuUjhmEiJ8wHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqn+MA0GCSqG SIb3DQEBCwUAA4IBAQCG2SBSjwFpdDpo5tN6NDHE7qxQxEKsY1l/rDx1kGUKYnV4 A1xN+UYPueCIogDMh+jN7aD8HmjY7mCPWAJEz7YWDg3u8gg9JbNBLksM0cjmH2hm LPETpSPGcADfZc9a7CiRjyAvxMwoHgmlcD8bL88xYl5r6boZiAaoNIeaQr+5RqZb MphON2kYfGehf4gx808i6/Dw0T5V5GxDNWa41R5xgRhvCwq25Jgzs2QsP7fzipbx 5Ioh3R+KwuqJr6XADXrUYQ+dKt41fnJYziN8MtYmvUJVKnbHbGKcRud0m8SwXYNt M/dal9YGN6bDwn5fcBKlU5U6yazoLLaAVAVDO5U5 -----END CERTIFICATE-----Generated at Sun Jun 8 06:14:45 2025 by rpki-client