$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235352e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3235352e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: KztHeAlZTb1TsWRrQNB1dA4yh8nWa44vDriF9q5fsBI= Subject key identifier: 19:B5:C8:6B:E5:56:8D:1D:DA:45:91:63:A5:28:63:D8:DC:EC:57:8A Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 2183CCF77159D10495547C363F6654F3FC8A74DC Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235352e302f32342d3234203d3e203338313433.roa Signing time: Tue 20 May 2025 06:00:00 +0000 ROA not before: Tue 20 May 2025 05:55:00 +0000 ROA not after: Tue 19 May 2026 06:00:00 +0000 asID: 38143 IP address blocks: 202.169.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 12:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:83:cc:f7:71:59:d1:04:95:54:7c:36:3f:66:54:f3:fc:8a:74:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: May 20 05:55:00 2025 GMT Not After : May 19 06:00:00 2026 GMT Subject: CN=19B5C86BE5568D1DDA459163A52863D8DCEC578A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:56:15:ae:55:59:ce:e0:54:98:1e:d1:7e:66: cc:7c:16:49:f4:82:d3:5d:ec:34:07:69:e0:aa:00: d8:37:48:fd:28:2f:b2:39:14:2b:42:a1:33:f3:3b: 98:6c:18:e0:37:78:28:d8:9b:4b:c2:7c:e7:c6:5e: 1d:3f:05:54:5c:ab:d4:03:da:73:8d:4d:0b:0f:95: bf:27:c0:03:16:a6:43:5b:f0:af:f0:e8:f2:29:7a: e7:79:a2:9e:50:0b:e6:9d:58:47:d7:fc:42:ec:20: 3f:51:b5:0c:0a:f3:52:99:65:9a:8e:25:0f:0c:34: 2e:1f:e5:ac:52:df:cc:61:bc:61:02:83:dc:07:bc: 5b:52:b1:3a:ac:28:42:a4:2a:7a:17:62:48:6d:47: c2:77:be:cd:c3:ef:97:a4:9b:f2:27:5f:20:39:8e: a8:96:d0:48:cf:62:75:25:97:96:93:57:35:02:db: e8:7f:9b:31:50:11:d1:8c:ca:2c:b4:9c:db:75:e4: 33:b0:3d:5a:e0:75:d4:b5:0b:d1:70:7c:af:37:44: bf:ce:84:5d:b4:44:03:8d:cc:4a:17:ac:d3:56:79: 87:bf:fb:0c:e6:5a:7c:5a:79:53:01:77:f1:5f:09: ab:aa:4e:38:36:d1:1e:ca:54:82:e8:88:39:31:04: 61:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:B5:C8:6B:E5:56:8D:1D:DA:45:91:63:A5:28:63:D8:DC:EC:57:8A X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235352e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.255.0/24 Signature Algorithm: sha256WithRSAEncryption 29:53:25:55:eb:38:ca:6e:e0:ac:ff:37:2a:9f:97:4c:01:53: cb:3e:95:1e:fa:02:0a:8a:36:24:e8:f4:b3:d1:95:f7:b8:f2: 1a:ed:53:9b:39:29:ce:e6:61:90:80:ad:60:4f:30:a0:93:ca: ea:2d:1f:88:b9:64:23:ad:07:71:95:75:cd:75:c7:64:ea:1d: 91:d8:15:0f:17:b5:7d:be:be:93:21:d6:31:26:b1:3b:59:fb: a5:cd:cd:67:53:95:3a:8b:b3:7a:61:6b:ed:ae:e3:3b:30:3a: 18:2c:dd:9c:2e:30:35:ea:f7:4b:0e:7f:08:2e:30:94:6d:1e: f7:cd:e1:cc:eb:21:73:6b:3c:2f:5e:98:13:da:50:94:5f:fb: 04:ff:f4:5b:58:64:9b:7b:ac:f1:da:d8:27:d5:77:0e:11:c0: 45:18:3e:47:92:cf:10:02:ba:11:9c:51:30:85:74:db:b0:62: 87:d3:fe:56:29:48:b4:0d:d9:eb:3f:66:20:23:25:5b:f3:9e: 3c:d1:20:ba:b8:ed:40:37:67:2e:96:14:51:03:b7:e2:04:7b: 1f:ff:f3:14:e9:42:6a:57:1d:6f:c0:49:88:c3:9b:31:82:cd: a0:70:2c:dd:9e:c7:b7:18:6c:e3:ef:f7:8f:ed:48:3b:10:c8: dd:14:da:9c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIYPM93FZ0QSVVHw2P2ZU8/yKdNwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNTA1MjAwNTU1MDBaFw0yNjA1MTkwNjAwMDBaMDMxMTAvBgNV BAMTKDE5QjVDODZCRTU1NjhEMUREQTQ1OTE2M0E1Mjg2M0Q4RENFQzU3OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTVhWuVVnO4FSYHtF+Zsx8Fkn0 gtNd7DQHaeCqANg3SP0oL7I5FCtCoTPzO5hsGOA3eCjYm0vCfOfGXh0/BVRcq9QD 2nONTQsPlb8nwAMWpkNb8K/w6PIpeud5op5QC+adWEfX/ELsID9RtQwK81KZZZqO JQ8MNC4f5axS38xhvGECg9wHvFtSsTqsKEKkKnoXYkhtR8J3vs3D75ekm/InXyA5 jqiW0EjPYnUll5aTVzUC2+h/mzFQEdGMyiy0nNt15DOwPVrgddS1C9FwfK83RL/O hF20RAONzEoXrNNWeYe/+wzmWnxaeVMBd/FfCauqTjg20R7KVILoiDkxBGFzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGbXIa+VWjR3aRZFjpShj2NzsV4owHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqn/MA0GCSqG SIb3DQEBCwUAA4IBAQApUyVV6zjKbuCs/zcqn5dMAVPLPpUe+gIKijYk6PSz0ZX3 uPIa7VObOSnO5mGQgK1gTzCgk8rqLR+IuWQjrQdxlXXNdcdk6h2R2BUPF7V9vr6T IdYxJrE7Wfulzc1nU5U6i7N6YWvtruM7MDoYLN2cLjA16vdLDn8ILjCUbR73zeHM 6yFzazwvXpgT2lCUX/sE//RbWGSbe6zx2tgn1XcOEcBFGD5Hks8QAroRnFEwhXTb sGKH0/5WKUi0DdnrP2YgIyVb85480SC6uO1AN2culhRRA7fiBHsf//MU6UJqVx1v wEmIw5sxgs2gcCzdnse3GGzj7/eP7Ug7EMjdFNqc -----END CERTIFICATE-----Generated at Sun Jun 8 06:36:44 2025 by rpki-client