$ rpki-client -vvf repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e35382e302f32332d3233203d3e203330383630.roa File: 3230322e35312e35382e302f32332d3233203d3e203330383630.roa (raw, json) Hash identifier: fmU/gB/7itVGB2sFtyfrKlK+5/0j2F7s2JNU9ipGEtI= Subject key identifier: 11:B9:59:53:19:57:6C:03:24:2F:A7:EB:0C:5D:67:A9:CA:4C:2B:48 Certificate issuer: /CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C Certificate serial: 6A321F2F1F032BDB79B5F06C876161C0B76ED29B Authority key identifier: 3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e35382e302f32332d3233203d3e203330383630.roa Signing time: Mon 23 Dec 2024 13:52:32 +0000 ROA not before: Mon 23 Dec 2024 13:47:32 +0000 ROA not after: Mon 22 Dec 2025 13:52:32 +0000 asID: 30860 IP address blocks: 202.51.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.crl rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 05:09:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:32:1f:2f:1f:03:2b:db:79:b5:f0:6c:87:61:61:c0:b7:6e:d2:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C Validity Not Before: Dec 23 13:47:32 2024 GMT Not After : Dec 22 13:52:32 2025 GMT Subject: CN=11B9595319576C03242FA7EB0C5D67A9CA4C2B48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ff:e6:67:1b:e9:71:35:72:3f:f9:d2:e0:45: 4a:ef:a5:d7:2f:69:79:aa:c0:66:fe:d5:d3:5d:c0: 1b:b9:14:fe:bc:ce:78:fd:19:82:cc:67:8f:1b:63: 01:05:68:31:e4:10:11:36:4d:a3:84:c8:bd:87:4a: 1d:88:1c:2f:5a:19:bc:09:7d:0c:46:c2:b3:07:b2: 5d:f5:c5:6a:51:5a:91:0a:6a:90:8a:bd:83:80:96: 05:de:ac:44:4c:5f:b4:ed:53:aa:5f:b7:b6:42:33: c6:5c:6b:40:c9:0d:76:d8:14:31:25:19:ff:f6:75: 71:d8:65:89:78:71:ad:4c:82:71:22:01:d9:5b:61: 65:2c:20:7b:48:1d:15:7c:be:3c:77:29:69:04:89: 8d:6d:7b:1c:11:2f:80:08:2f:5c:2e:ed:25:ba:0e: 84:81:77:46:be:fe:28:b5:94:17:1a:fa:25:55:f3: 67:2c:8b:f2:9a:ef:ef:b7:33:65:5b:b6:bc:9c:f5: b5:10:cc:65:84:85:1d:53:cb:d0:e0:75:f6:2c:07: 5c:c5:d3:ff:73:45:05:82:67:f6:7c:4b:71:f5:f3: 74:79:78:d7:97:47:fb:ce:9d:bb:20:e8:e5:ac:1e: 82:44:31:6c:5b:91:d1:4f:f3:25:d7:c8:55:99:77: 19:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:B9:59:53:19:57:6C:03:24:2F:A7:EB:0C:5D:67:A9:CA:4C:2B:48 X509v3 Authority Key Identifier: keyid:3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e35382e302f32332d3233203d3e203330383630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.58.0/23 Signature Algorithm: sha256WithRSAEncryption 23:b4:ba:74:99:12:79:99:4d:c0:ae:37:c2:57:e4:43:5a:02: 2d:1c:c7:8b:96:eb:f5:f7:df:13:86:dc:4e:a9:86:8b:87:ce: 95:4c:71:5a:e9:f5:38:25:7d:9f:58:32:f1:3d:3d:dd:fe:27: 9c:26:d7:d5:36:1c:a5:80:23:4d:9a:c2:48:07:5d:a6:15:c1: 03:db:c6:82:25:88:d4:cd:2d:cb:b0:19:65:af:af:4c:65:66: 78:91:85:13:cf:9d:7a:13:77:1b:bb:d2:1e:f1:30:24:4e:f0: e8:e7:6b:b5:24:87:e0:e2:2e:d5:1f:53:ca:24:e4:b0:82:d6: ec:05:19:96:ed:36:2e:ff:64:77:50:bb:84:d9:c3:99:69:95: e4:59:c9:c1:fc:bd:b4:e2:2c:55:e1:e3:8b:1d:39:f9:b6:8d: 45:a0:86:61:f0:d4:34:b7:a3:ca:01:45:a5:09:1b:25:33:3c: 53:69:66:12:14:9b:e0:7c:93:ab:d5:0c:6d:0d:4e:25:35:f3: c5:cb:cd:dc:c0:64:70:98:26:49:ac:3c:a2:ba:97:82:6c:01: eb:df:f9:f9:77:29:00:45:9e:f8:84:ad:d4:ef:55:03:df:60: 70:dd:db:f8:8c:eb:7f:54:97:0e:27:90:41:51:db:46:7a:7b: 21:8a:53:b4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUajIfLx8DK9t5tfBsh2FhwLdu0pswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2QjVBRjIzMUZEODA5RkJDOEU1OTkyMTVCMTREMzU3 QUM2NkE4QzAeFw0yNDEyMjMxMzQ3MzJaFw0yNTEyMjIxMzUyMzJaMDMxMTAvBgNV BAMTKDExQjk1OTUzMTk1NzZDMDMyNDJGQTdFQjBDNUQ2N0E5Q0E0QzJCNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo/+ZnG+lxNXI/+dLgRUrvpdcv aXmqwGb+1dNdwBu5FP68znj9GYLMZ48bYwEFaDHkEBE2TaOEyL2HSh2IHC9aGbwJ fQxGwrMHsl31xWpRWpEKapCKvYOAlgXerERMX7TtU6pft7ZCM8Zca0DJDXbYFDEl Gf/2dXHYZYl4ca1MgnEiAdlbYWUsIHtIHRV8vjx3KWkEiY1texwRL4AIL1wu7SW6 DoSBd0a+/ii1lBca+iVV82csi/Ka7++3M2Vbtryc9bUQzGWEhR1Ty9DgdfYsB1zF 0/9zRQWCZ/Z8S3H183R5eNeXR/vOnbsg6OWsHoJEMWxbkdFP8yXXyFWZdxl3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUEblZUxlXbAMkL6frDF1nqcpMK0gwHwYDVR0j BBgwFoAUPmta8jH9gJ+8jlmSFbFNNXrGaowwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZTU0MDE2NC0zZDQ2LTQ3OTQtYmY1NS1iNmIxMzRkOWFiMTMvMC8zRTZCNUFGMjMx RkQ4MDlGQkM4RTU5OTIxNUIxNEQzNTdBQzY2QThDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2QjVBRjIzMUZEODA5RkJDOEU1OTkyMTVCMTREMzU3QUM2 NkE4Qy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JlNTQwMTY0LTNkNDYtNDc5NC1i ZjU1LWI2YjEzNGQ5YWIxMy8wLzMyMzAzMjJlMzUzMTJlMzUzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMzMzAzODM2MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKMzowDQYJKoZIhvcN AQELBQADggEBACO0unSZEnmZTcCuN8JX5ENaAi0cx4uW6/X33xOG3E6phouHzpVM cVrp9TglfZ9YMvE9Pd3+J5wm19U2HKWAI02awkgHXaYVwQPbxoIliNTNLcuwGWWv r0xlZniRhRPPnXoTdxu70h7xMCRO8Ojna7Ukh+DiLtUfU8ok5LCC1uwFGZbtNi7/ ZHdQu4TZw5lpleRZycH8vbTiLFXh44sdOfm2jUWghmHw1DS3o8oBRaUJGyUzPFNp ZhIUm+B8k6vVDG0NTiU188XLzdzAZHCYJkmsPKK6l4JsAevf+fl3KQBFnviErdTv VQPfYHDd2/iM639Ulw4nkEFR20Z6eyGKU7Q= -----END CERTIFICATE-----Generated at Sun Apr 6 11:05:43 2025 by rpki-client