$ rpki-client -vvf repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/3230322e3134392e36342e302f31392d3234203d3e203137383236.roa File: 3230322e3134392e36342e302f31392d3234203d3e203137383236.roa (raw, json) Hash identifier: MEf2zZIm4OfWmXedDD74TFV0+Lfq2fLCwzGFVGKNDNg= Subject key identifier: 4C:D6:5A:B9:48:3B:19:94:3D:6B:59:0D:11:B7:A8:42:54:27:B4:53 Certificate issuer: /CN=0DA6D433710276BF7B8006C21C26AEF5F856AF21 Certificate serial: 20920F7A7C9D99C7115C2890AE850D476E737349 Authority key identifier: 0D:A6:D4:33:71:02:76:BF:7B:80:06:C2:1C:26:AE:F5:F8:56:AF:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0DA6D433710276BF7B8006C21C26AEF5F856AF21.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/3230322e3134392e36342e302f31392d3234203d3e203137383236.roa Signing time: Fri 17 Jan 2025 08:00:00 +0000 ROA not before: Fri 17 Jan 2025 07:55:00 +0000 ROA not after: Fri 16 Jan 2026 08:00:00 +0000 asID: 17826 IP address blocks: 202.149.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/0DA6D433710276BF7B8006C21C26AEF5F856AF21.crl rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/0DA6D433710276BF7B8006C21C26AEF5F856AF21.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0DA6D433710276BF7B8006C21C26AEF5F856AF21.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 04:30:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:92:0f:7a:7c:9d:99:c7:11:5c:28:90:ae:85:0d:47:6e:73:73:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DA6D433710276BF7B8006C21C26AEF5F856AF21 Validity Not Before: Jan 17 07:55:00 2025 GMT Not After : Jan 16 08:00:00 2026 GMT Subject: CN=4CD65AB9483B19943D6B590D11B7A8425427B453 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:51:f4:29:4e:6d:43:ce:93:08:d0:ae:80:88: fb:da:9e:fe:d3:1f:8a:51:87:e6:2d:03:8f:b9:87: d5:4f:ab:63:92:40:45:23:79:ac:aa:94:80:ad:66: 53:f9:52:6c:24:d9:d4:44:1a:7c:23:61:6f:3b:3a: 14:d7:98:02:6d:2d:34:43:38:01:46:b0:3b:56:01: 33:1b:a5:30:57:bb:01:6d:79:4e:ca:16:a4:93:e3: 3f:9e:e5:fd:4e:37:3f:be:d6:69:64:fb:dc:76:39: a1:f1:06:76:16:1e:1f:6a:ec:1b:71:1c:31:cd:a1: 22:8b:2f:7c:46:7d:b1:42:43:32:95:4e:73:f6:da: 0b:4a:b5:a9:ed:99:5f:db:70:4f:b6:ca:7b:1a:34: 01:c6:f4:15:f4:59:d6:b6:3e:12:8b:36:bf:ed:2b: 53:7c:0b:ef:2c:d1:e3:53:ba:6d:91:7a:b1:cb:34: 9d:dd:5c:7c:63:1c:67:ae:bb:8a:ed:95:12:9a:c5: 57:20:f6:89:7c:9d:0a:19:54:6a:92:25:f4:18:db: cc:4b:fc:4c:34:96:db:58:9f:1a:b7:21:b7:10:12: 4e:04:39:8f:d9:0b:f3:25:83:2e:0f:d1:f7:d0:ab: 2b:1d:db:ef:94:c5:b5:71:fc:42:d0:ca:d9:ba:0b: fc:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:D6:5A:B9:48:3B:19:94:3D:6B:59:0D:11:B7:A8:42:54:27:B4:53 X509v3 Authority Key Identifier: keyid:0D:A6:D4:33:71:02:76:BF:7B:80:06:C2:1C:26:AE:F5:F8:56:AF:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/0DA6D433710276BF7B8006C21C26AEF5F856AF21.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0DA6D433710276BF7B8006C21C26AEF5F856AF21.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/3230322e3134392e36342e302f31392d3234203d3e203137383236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.149.64.0/19 Signature Algorithm: sha256WithRSAEncryption 98:89:7f:8d:95:c0:36:b9:76:eb:0d:36:7c:3f:f8:a3:56:c4: 05:96:e3:c3:98:7c:2a:03:df:ca:10:96:de:b6:16:ae:d2:55: aa:df:01:2f:84:6a:c9:b9:d6:24:d3:2a:29:1f:ef:44:90:b1: a4:88:7d:92:b3:76:30:9c:9d:eb:9a:11:36:81:36:2b:17:73: 29:d5:ea:a0:b1:c5:51:58:9a:fa:20:e0:c7:64:72:7a:94:b3: ce:4c:b6:b8:0c:12:62:07:73:a3:6d:a8:d4:69:44:ee:e5:dc: ea:8f:41:21:de:91:87:d3:0a:21:af:09:67:44:27:3d:fe:d8: 9e:63:ef:83:6e:85:48:c2:87:66:86:56:67:26:54:aa:b9:13: bc:3e:06:72:83:d4:00:78:8a:18:1e:c0:7c:fd:58:19:69:0d: 52:54:6a:48:c6:21:c6:26:85:3d:ee:03:d8:5e:ff:a3:be:c8: 0b:35:66:f0:f5:f1:32:78:29:66:ff:4d:c1:06:0e:f5:03:4f: bb:0e:f6:eb:f5:0b:13:c2:d9:35:23:18:49:e4:32:6a:cc:d4: 8d:5a:6b:85:17:f3:c7:00:16:93:d2:d0:43:01:aa:12:1c:f4: cd:09:38:92:4f:9a:e8:17:ba:89:5c:6d:b5:29:1c:63:cc:b8: 99:e9:9d:0c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIJIPenydmccRXCiQroUNR25zc0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMERBNkQ0MzM3MTAyNzZCRjdCODAwNkMyMUMyNkFFRjVG ODU2QUYyMTAeFw0yNTAxMTcwNzU1MDBaFw0yNjAxMTYwODAwMDBaMDMxMTAvBgNV BAMTKDRDRDY1QUI5NDgzQjE5OTQzRDZCNTkwRDExQjdBODQyNTQyN0I0NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBUfQpTm1DzpMI0K6AiPvanv7T H4pRh+YtA4+5h9VPq2OSQEUjeayqlICtZlP5Umwk2dREGnwjYW87OhTXmAJtLTRD OAFGsDtWATMbpTBXuwFteU7KFqST4z+e5f1ONz++1mlk+9x2OaHxBnYWHh9q7Btx HDHNoSKLL3xGfbFCQzKVTnP22gtKtantmV/bcE+2ynsaNAHG9BX0Wda2PhKLNr/t K1N8C+8s0eNTum2RerHLNJ3dXHxjHGeuu4rtlRKaxVcg9ol8nQoZVGqSJfQY28xL /Ew0lttYnxq3IbcQEk4EOY/ZC/Mlgy4P0ffQqysd2++UxbVx/ELQytm6C/xdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTNZauUg7GZQ9a1kNEbeoQlQntFMwHwYDVR0j BBgwFoAUDabUM3ECdr97gAbCHCau9fhWryEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGQxZWFjZC1hMDY3LTQ5MjQtOTI4NC1iYzZmMTBkOGQ1YTgvMC8wREE2RDQzMzcx MDI3NkJGN0I4MDA2QzIxQzI2QUVGNUY4NTZBRjIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMERBNkQ0MzM3MTAyNzZCRjdCODAwNkMyMUMyNkFFRjVGODU2 QUYyMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkZDFlYWNkLWEwNjctNDkyNC05 Mjg0LWJjNmYxMGQ4ZDVhOC8wLzMyMzAzMjJlMzEzNDM5MmUzNjM0MmUzMDJmMzEz OTJkMzIzNDIwM2QzZTIwMzEzNzM4MzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcqVQDANBgkqhkiG 9w0BAQsFAAOCAQEAmIl/jZXANrl26w02fD/4o1bEBZbjw5h8KgPfyhCW3rYWrtJV qt8BL4RqybnWJNMqKR/vRJCxpIh9krN2MJyd65oRNoE2KxdzKdXqoLHFUVia+iDg x2RyepSzzky2uAwSYgdzo22o1GlE7uXc6o9BId6Rh9MKIa8JZ0QnPf7YnmPvg26F SMKHZoZWZyZUqrkTvD4GcoPUAHiKGB7AfP1YGWkNUlRqSMYhxiaFPe4D2F7/o77I CzVm8PXxMngpZv9NwQYO9QNPuw726/ULE8LZNSMYSeQyaszUjVprhRfzxwAWk9LQ QwGqEhz0zQk4kk+a6Be6iVxttSkcY8y4memdDA== -----END CERTIFICATE-----Generated at Sun Apr 6 17:41:25 2025 by rpki-client