$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3234382e302f32342d3234203d3e20313333373938.roa File: 3230332e3132382e3234382e302f32342d3234203d3e20313333373938.roa (raw, json) Hash identifier: rksiYWw9fr5mm/qt0HskOQ/tC/lqomqja+CxxGGpnCQ= Subject key identifier: CF:D9:90:CE:2C:E9:38:80:08:75:3D:09:C8:48:88:84:67:F7:90:6D Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 3E65DD9811FB8C9B808E70D3AC07EDAA8205E6A7 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3234382e302f32342d3234203d3e20313333373938.roa Signing time: Wed 08 Jan 2025 04:00:36 +0000 ROA not before: Wed 08 Jan 2025 03:55:36 +0000 ROA not after: Wed 07 Jan 2026 04:00:36 +0000 asID: 133798 IP address blocks: 203.128.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:65:dd:98:11:fb:8c:9b:80:8e:70:d3:ac:07:ed:aa:82:05:e6:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Jan 8 03:55:36 2025 GMT Not After : Jan 7 04:00:36 2026 GMT Subject: CN=CFD990CE2CE9388008753D09C848888467F7906D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:79:72:d3:bd:50:d4:e7:01:90:10:4c:bf:a2: 10:27:3a:42:dc:ac:d2:fc:f1:c1:e3:7a:34:61:23: 6e:35:db:4c:d0:ea:4f:7d:c0:1d:32:26:7c:62:ec: 1c:13:d3:c4:bd:f7:cd:4c:d9:28:e2:d6:a0:71:51: 56:9e:d3:79:0d:b4:77:9d:74:68:0a:d9:71:05:45: f7:b7:0c:60:62:f4:b1:dd:9e:8e:c5:33:c7:dd:98: d6:16:60:bc:22:86:25:82:98:3a:c4:a4:62:1c:19: 9d:ec:0c:3f:00:d3:50:3a:b4:5b:3b:7c:40:13:f4: 21:a0:12:10:19:10:cb:c3:f1:20:6b:de:0f:cc:c3: 65:c7:59:9d:31:70:49:13:71:a3:5b:6a:ad:48:e3: 2b:08:93:95:7f:bd:13:d9:d7:70:da:78:3c:b6:de: 79:be:91:54:9a:fc:64:7a:e5:fa:f9:31:83:c9:2e: 1d:09:ca:b7:e8:75:36:b6:b1:42:9e:bb:0b:ba:91: 57:ba:08:eb:ce:68:80:57:32:b4:68:8c:78:0d:a8: 26:c4:c7:0d:cf:9b:da:68:18:96:33:bc:8f:62:16: b5:a3:83:bb:cc:4e:1a:87:db:7c:05:69:8e:b7:c4: 6f:fb:46:72:76:3c:c3:9e:c4:03:01:ea:a2:de:b9: 37:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D9:90:CE:2C:E9:38:80:08:75:3D:09:C8:48:88:84:67:F7:90:6D X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3234382e302f32342d3234203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.128.248.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:c2:72:66:b7:d9:db:f0:9a:c4:c2:94:70:10:b2:2c:a8:df: 54:5b:50:ba:5d:65:53:cf:77:20:59:31:ff:19:05:d4:7f:ef: 30:31:d9:2e:d2:0d:7e:26:1c:30:e2:e2:e9:2b:75:8a:bf:a2: e0:97:57:d0:13:a6:14:bf:2a:00:2d:a8:1c:a8:c5:7e:35:3f: 91:ef:b0:0a:05:02:df:36:5e:da:00:28:41:24:1d:54:e2:ed: 27:fa:36:52:8f:53:a7:b6:68:f8:d4:87:a8:34:fe:6c:8a:01: c8:7d:e4:26:df:d6:9b:9a:d7:30:39:f4:0d:d1:08:cb:4a:de: c8:6a:d0:82:04:3d:08:e2:8e:fc:c3:9c:4d:c2:45:23:b5:8e: 43:c4:90:39:3a:03:a3:15:6e:fc:f7:45:77:8e:90:f8:c5:43: 97:2e:fd:56:cf:1c:4e:6a:a7:0d:7b:3f:2d:8f:c5:96:f8:60: 81:24:b1:4a:a4:60:60:8c:66:e5:c6:38:5d:f1:7e:e2:32:01: b5:86:11:79:44:00:97:81:07:14:be:f2:a5:16:ae:de:96:a3: 2d:8c:08:29:62:5a:c2:ee:df:4e:af:7d:19:5b:ed:81:d0:52: 4a:63:92:5c:cf:e8:0b:e1:9e:df:21:b1:b6:d8:ac:54:36:93: f9:25:98:74 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPmXdmBH7jJuAjnDTrAftqoIF5qcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTAxMDgwMzU1MzZaFw0yNjAxMDcwNDAwMzZaMDMxMTAvBgNV BAMTKENGRDk5MENFMkNFOTM4ODAwODc1M0QwOUM4NDg4ODg0NjdGNzkwNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGeXLTvVDU5wGQEEy/ohAnOkLc rNL88cHjejRhI24120zQ6k99wB0yJnxi7BwT08S9981M2Sji1qBxUVae03kNtHed dGgK2XEFRfe3DGBi9LHdno7FM8fdmNYWYLwihiWCmDrEpGIcGZ3sDD8A01A6tFs7 fEAT9CGgEhAZEMvD8SBr3g/Mw2XHWZ0xcEkTcaNbaq1I4ysIk5V/vRPZ13DaeDy2 3nm+kVSa/GR65fr5MYPJLh0JyrfodTa2sUKeuwu6kVe6COvOaIBXMrRojHgNqCbE xw3Pm9poGJYzvI9iFrWjg7vMThqH23wFaY63xG/7RnJ2PMOexAMB6qLeuTdJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUz9mQzizpOIAIdT0JyEiIhGf3kG0wHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzAzMzJlMzEzMjM4MmUzMjM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLgPgwDQYJ KoZIhvcNAQELBQADggEBABvCcma32dvwmsTClHAQsiyo31RbULpdZVPPdyBZMf8Z BdR/7zAx2S7SDX4mHDDi4ukrdYq/ouCXV9ATphS/KgAtqByoxX41P5HvsAoFAt82 XtoAKEEkHVTi7Sf6NlKPU6e2aPjUh6g0/myKAch95Cbf1pua1zA59A3RCMtK3shq 0IIEPQjijvzDnE3CRSO1jkPEkDk6A6MVbvz3RXeOkPjFQ5cu/VbPHE5qpw17Py2P xZb4YIEksUqkYGCMZuXGOF3xfuIyAbWGEXlEAJeBBxS+8qUWrt6Woy2MCCliWsLu 306vfRlb7YHQUkpjklzP6Avhnt8hsbbYrFQ2k/klmHQ= -----END CERTIFICATE-----Generated at Sun Apr 6 16:07:47 2025 by rpki-client