$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3234392e302f32342d3234203d3e20313333373938.roa File: 3230332e3132382e3234392e302f32342d3234203d3e20313333373938.roa (raw, json) Hash identifier: rt7hBjrkUl61vmL4gp7lpaFQtZcTobltS9/PhvhVLxA= Subject key identifier: D5:51:B4:01:CF:4F:C7:7A:02:5E:F0:41:41:46:9E:F7:B6:43:86:96 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 02CAAEA8C756C096EF0EDCA91A8F5BD7A753BAA0 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3234392e302f32342d3234203d3e20313333373938.roa Signing time: Wed 08 Jan 2025 04:00:36 +0000 ROA not before: Wed 08 Jan 2025 03:55:36 +0000 ROA not after: Wed 07 Jan 2026 04:00:36 +0000 asID: 133798 IP address blocks: 203.128.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 12:22:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:ca:ae:a8:c7:56:c0:96:ef:0e:dc:a9:1a:8f:5b:d7:a7:53:ba:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Jan 8 03:55:36 2025 GMT Not After : Jan 7 04:00:36 2026 GMT Subject: CN=D551B401CF4FC77A025EF04141469EF7B6438696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:14:78:46:7c:37:df:cc:ac:d2:12:bc:80:f4: c4:85:f4:ea:a3:4d:0a:96:f8:b9:df:ae:c5:11:a1: d5:1a:bf:14:2c:ac:de:98:b0:60:36:30:16:f6:be: 8e:16:53:1c:05:2f:62:64:d7:46:17:1d:67:16:0b: ed:9e:d3:45:e3:95:11:d7:10:3b:28:86:4a:c1:bb: f6:19:7a:e8:93:7b:65:79:b9:f6:57:c7:ca:ff:40: db:06:ea:8c:77:a6:9d:60:b7:a0:5a:e9:f4:70:b9: 5b:16:22:a0:54:a5:29:1f:23:a9:cf:93:08:14:da: c9:f6:8a:0a:c1:b2:72:90:54:79:13:52:f0:14:89: e0:09:6c:ef:9a:7c:1b:ce:0d:ad:59:7f:42:91:25: 8d:a9:ea:41:76:89:9b:78:8d:f0:85:92:d4:23:fa: 13:66:1d:c7:a6:a9:df:b6:92:a8:33:6c:f2:75:69: 36:24:e1:f8:b9:49:a1:22:54:72:72:c6:ac:e5:d1: 9b:ce:16:47:40:91:3c:d6:a0:f4:2b:81:b9:61:00: cd:7d:cb:fb:d3:ac:9d:23:b8:71:15:4d:6e:44:6e: 7a:72:5b:7d:dd:1a:60:a7:72:3f:f8:88:7c:d2:c6: 15:94:5e:1e:e6:7f:71:07:db:71:91:d7:ff:c4:c7: 63:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:51:B4:01:CF:4F:C7:7A:02:5E:F0:41:41:46:9E:F7:B6:43:86:96 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3234392e302f32342d3234203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.128.249.0/24 Signature Algorithm: sha256WithRSAEncryption 51:1b:17:9f:e3:ae:ee:9e:1b:3c:3e:0a:b8:81:44:36:3d:6f: 6b:cd:bb:4b:1d:ed:eb:88:62:3f:1a:ca:81:39:55:2f:aa:54: 34:64:b7:32:80:51:44:15:f4:55:99:5f:55:ed:ab:dd:29:47: 9a:1c:db:65:78:8b:98:44:00:52:fc:cc:b1:78:65:74:a0:a8: 6d:ef:5e:60:25:79:6c:21:c3:8e:45:57:1c:cb:58:22:81:6e: 18:4d:bb:75:4e:19:17:b8:df:ad:2b:22:9d:45:d6:f3:df:b3: 7b:26:51:6a:2a:63:66:64:b2:59:ee:6e:df:cb:f0:b2:ec:ea: f8:9f:2b:8d:c5:a1:1d:55:08:39:54:ba:c1:6d:79:72:9e:80: 95:aa:3f:9a:3f:65:6b:d3:5f:d4:64:fc:52:dc:aa:43:a5:8c: b9:1a:e5:13:d8:b1:85:65:0c:5a:3c:87:4d:31:82:47:1b:15: 87:c7:cd:cb:80:51:87:95:93:a9:72:78:74:b7:cc:0f:5f:99: 26:6b:4c:bf:49:12:cb:74:a5:6d:57:bd:0e:67:ea:e6:43:d3: 0b:63:d2:f4:54:fb:61:a5:79:b3:18:df:6a:a7:39:51:de:6b: 2e:08:63:c0:7f:b6:5c:c7:9c:4a:f1:72:a1:70:10:fd:55:18: 39:a8:3a:9f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAsquqMdWwJbvDtypGo9b16dTuqAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTAxMDgwMzU1MzZaFw0yNjAxMDcwNDAwMzZaMDMxMTAvBgNV BAMTKEQ1NTFCNDAxQ0Y0RkM3N0EwMjVFRjA0MTQxNDY5RUY3QjY0Mzg2OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1FHhGfDffzKzSEryA9MSF9Oqj TQqW+LnfrsURodUavxQsrN6YsGA2MBb2vo4WUxwFL2Jk10YXHWcWC+2e00XjlRHX EDsohkrBu/YZeuiTe2V5ufZXx8r/QNsG6ox3pp1gt6Ba6fRwuVsWIqBUpSkfI6nP kwgU2sn2igrBsnKQVHkTUvAUieAJbO+afBvODa1Zf0KRJY2p6kF2iZt4jfCFktQj +hNmHcemqd+2kqgzbPJ1aTYk4fi5SaEiVHJyxqzl0ZvOFkdAkTzWoPQrgblhAM19 y/vTrJ0juHEVTW5EbnpyW33dGmCncj/4iHzSxhWUXh7mf3EH23GR1//Ex2OpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1VG0Ac9Px3oCXvBBQUae97ZDhpYwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzAzMzJlMzEzMjM4MmUzMjM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLgPkwDQYJ KoZIhvcNAQELBQADggEBAFEbF5/jru6eGzw+CriBRDY9b2vNu0sd7euIYj8ayoE5 VS+qVDRktzKAUUQV9FWZX1Xtq90pR5oc22V4i5hEAFL8zLF4ZXSgqG3vXmAleWwh w45FVxzLWCKBbhhNu3VOGRe4360rIp1F1vPfs3smUWoqY2Zkslnubt/L8LLs6vif K43FoR1VCDlUusFteXKegJWqP5o/ZWvTX9Rk/FLcqkOljLka5RPYsYVlDFo8h00x gkcbFYfHzcuAUYeVk6lyeHS3zA9fmSZrTL9JEst0pW1XvQ5n6uZD0wtj0vRU+2Gl ebMY32qnOVHeay4IY8B/tlzHnErxcqFwEP1VGDmoOp8= -----END CERTIFICATE-----Generated at Sun Apr 6 17:57:26 2025 by rpki-client