$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3235312e302f32342d3234203d3e20313333373938.roa File: 3230332e3132382e3235312e302f32342d3234203d3e20313333373938.roa (raw, json) Hash identifier: RrnGuS8smY0YKZHQmlr6gKqhCn98fj34CCDaH0Tffl8= Subject key identifier: 1B:56:2D:94:5B:58:35:6F:1D:ED:57:ED:4B:54:52:3B:70:F4:E8:F2 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 1022678EE805421ACD5E8BAF68C207754EBD1A11 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3235312e302f32342d3234203d3e20313333373938.roa Signing time: Wed 08 Jan 2025 04:00:36 +0000 ROA not before: Wed 08 Jan 2025 03:55:36 +0000 ROA not after: Wed 07 Jan 2026 04:00:36 +0000 asID: 133798 IP address blocks: 203.128.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:22:67:8e:e8:05:42:1a:cd:5e:8b:af:68:c2:07:75:4e:bd:1a:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Jan 8 03:55:36 2025 GMT Not After : Jan 7 04:00:36 2026 GMT Subject: CN=1B562D945B58356F1DED57ED4B54523B70F4E8F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:72:a6:8e:3c:2c:69:3b:ee:48:39:06:b0:19: 39:9e:73:a9:9f:8b:14:de:01:47:1b:fb:01:b0:bd: a6:f0:c8:57:33:a7:fc:96:4d:66:17:2d:2a:65:e4: 3b:30:80:7b:16:fe:11:04:19:3e:e7:36:47:6e:79: 60:92:74:03:16:9c:d6:20:97:03:82:ba:f7:bd:ce: dd:7f:28:6c:61:40:38:0a:b1:0e:cb:22:a9:bc:62: b8:d0:79:40:c3:82:68:52:45:ab:6c:a5:26:00:d6: 64:8e:90:de:5a:66:9d:64:4e:ed:46:51:02:d6:e3: c3:5a:03:fc:8a:5e:2c:0d:db:46:26:e4:e3:08:2e: 39:18:80:01:62:93:7c:4b:e9:e8:3f:5c:bc:3e:41: 7d:60:3d:01:f4:9d:92:08:8a:b4:55:ca:b5:44:d1: 2d:3b:07:86:f4:2e:32:1a:5c:55:18:8a:84:89:28: c1:03:98:17:d4:06:d9:a1:dc:ec:24:64:8e:32:7f: f7:5f:03:a9:11:1a:42:ec:f9:ed:3c:8e:53:ae:39: 69:c5:b2:c1:76:03:1e:8e:3e:64:41:66:17:86:1b: 67:1d:99:9f:cb:bf:ca:c3:d2:39:ff:ab:8f:88:bc: 7d:2a:9a:da:49:de:88:74:06:4a:34:c3:3f:ea:44: fb:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:56:2D:94:5B:58:35:6F:1D:ED:57:ED:4B:54:52:3B:70:F4:E8:F2 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3235312e302f32342d3234203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.128.251.0/24 Signature Algorithm: sha256WithRSAEncryption 03:a9:77:84:f3:05:4c:ff:95:97:cd:34:6b:f7:38:d5:6f:e9: c3:ca:ca:86:b3:98:bc:32:92:f7:ae:d0:de:3f:a4:88:0c:73: 62:e9:1a:e4:1a:0d:dc:90:5e:84:a8:2c:47:cb:b7:e9:7a:a7: ca:f4:18:61:50:84:4a:a0:21:e9:79:1d:a1:93:38:fb:53:48: 69:5f:cf:f4:cf:18:9f:7f:ad:14:52:a1:df:7a:3d:db:5f:18: 05:3c:6f:b6:f6:14:49:28:cf:bd:02:2b:4d:23:03:d8:7f:43: 46:4f:6b:df:be:31:1a:0c:f0:b9:99:4e:e4:a1:e6:a1:50:3c: 2a:83:17:91:80:38:97:f1:eb:3d:ab:1e:bc:ad:84:f1:88:69: 0d:03:01:79:58:c2:14:d2:b2:78:1f:25:a3:ae:5f:bd:b0:aa: f2:7a:06:39:d9:94:30:10:6f:b5:b9:c8:19:aa:08:7e:80:0b: bf:72:6a:d7:b8:d2:fb:5b:e4:6f:c6:0f:51:63:7e:ae:22:e1: d1:18:08:f3:26:e4:1a:37:25:ca:50:b0:1c:22:ea:ba:8a:8b: 19:e1:87:fb:4f:dd:e8:17:10:d8:cb:d5:97:da:40:63:94:15: 68:bb:35:32:01:fe:40:b9:05:22:04:af:0f:1a:f6:fc:a9:96: ee:e9:10:68 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUECJnjugFQhrNXouvaMIHdU69GhEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTAxMDgwMzU1MzZaFw0yNjAxMDcwNDAwMzZaMDMxMTAvBgNV BAMTKDFCNTYyRDk0NUI1ODM1NkYxREVENTdFRDRCNTQ1MjNCNzBGNEU4RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLcqaOPCxpO+5IOQawGTmec6mf ixTeAUcb+wGwvabwyFczp/yWTWYXLSpl5DswgHsW/hEEGT7nNkdueWCSdAMWnNYg lwOCuve9zt1/KGxhQDgKsQ7LIqm8YrjQeUDDgmhSRatspSYA1mSOkN5aZp1kTu1G UQLW48NaA/yKXiwN20Ym5OMILjkYgAFik3xL6eg/XLw+QX1gPQH0nZIIirRVyrVE 0S07B4b0LjIaXFUYioSJKMEDmBfUBtmh3OwkZI4yf/dfA6kRGkLs+e08jlOuOWnF ssF2Ax6OPmRBZheGG2cdmZ/Lv8rD0jn/q4+IvH0qmtpJ3oh0Bko0wz/qRPuZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUG1YtlFtYNW8d7VftS1RSO3D06PIwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzAzMzJlMzEzMjM4MmUzMjM1MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLgPswDQYJ KoZIhvcNAQELBQADggEBAAOpd4TzBUz/lZfNNGv3ONVv6cPKyoazmLwykveu0N4/ pIgMc2LpGuQaDdyQXoSoLEfLt+l6p8r0GGFQhEqgIel5HaGTOPtTSGlfz/TPGJ9/ rRRSod96PdtfGAU8b7b2FEkoz70CK00jA9h/Q0ZPa9++MRoM8LmZTuSh5qFQPCqD F5GAOJfx6z2rHrythPGIaQ0DAXlYwhTSsngfJaOuX72wqvJ6BjnZlDAQb7W5yBmq CH6AC79yate40vtb5G/GD1Fjfq4i4dEYCPMm5Bo3JcpQsBwi6rqKixnhh/tP3egX ENjL1ZfaQGOUFWi7NTIB/kC5BSIErw8a9vyplu7pEGg= -----END CERTIFICATE-----Generated at Sun Apr 6 16:05:00 2025 by rpki-client