$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e34382e302f32302d3230203d3e203435333132.roa File: 3230322e38312e34382e302f32302d3230203d3e203435333132.roa (raw, json) Hash identifier: zXMy5N2KQUBjIdOAB7lWYNP0KiVkr7Sqmrygl64ufTE= Subject key identifier: 8E:79:98:AB:C4:49:8D:CD:7B:6E:4A:8C:AD:64:E0:AC:82:83:2D:8B Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Certificate serial: 1A869DF41D4CD9C675FFD38D6997042184BC1BCD Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e34382e302f32302d3230203d3e203435333132.roa Signing time: Thu 17 Apr 2025 07:02:00 +0000 ROA not before: Thu 17 Apr 2025 06:57:00 +0000 ROA not after: Thu 16 Apr 2026 07:02:00 +0000 asID: 45312 IP address blocks: 202.81.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 15:43:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:86:9d:f4:1d:4c:d9:c6:75:ff:d3:8d:69:97:04:21:84:bc:1b:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Validity Not Before: Apr 17 06:57:00 2025 GMT Not After : Apr 16 07:02:00 2026 GMT Subject: CN=8E7998ABC4498DCD7B6E4A8CAD64E0AC82832D8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:30:93:0d:4b:62:a5:6c:11:24:29:4e:00:87: 3b:81:1d:56:8d:73:f7:e0:36:f0:e7:e0:ca:88:68: 4b:04:45:4c:d0:45:54:e8:01:29:25:e0:3e:d9:fb: 88:62:1e:b1:64:28:b5:bf:05:88:ab:7f:a8:68:c5: ae:18:20:db:dd:b4:82:4c:d5:ba:25:ba:91:0a:0d: d3:1b:d1:60:cf:7b:90:21:7f:21:28:67:6e:90:dc: e6:a2:82:d0:f2:79:00:b9:22:32:ef:31:62:8a:59: c9:ef:09:14:ad:6d:86:7b:c2:23:86:69:ef:53:0c: 7a:e0:f4:6b:1a:b6:b8:95:74:75:ed:fe:bb:41:e6: b2:ae:73:6c:c6:99:09:6b:f7:f1:97:38:9f:a3:fa: c7:ba:48:0f:a1:5e:b1:76:66:6b:78:dc:aa:42:e8: ae:eb:9d:aa:01:18:fc:7a:aa:16:89:00:73:3c:1f: 4d:c7:d9:71:07:84:83:0c:a8:d1:7c:0a:72:69:27: 1f:ab:a6:58:dd:1d:7f:5c:be:67:e1:d8:bb:b3:cc: 7e:3c:7b:2d:d0:52:e8:de:73:98:6b:3d:f5:08:ab: e8:ea:a7:8f:c0:85:40:9b:39:1b:21:13:f7:bc:0c: 19:c6:f1:d4:83:8b:62:80:c3:30:6d:a8:da:f0:f0: 91:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:79:98:AB:C4:49:8D:CD:7B:6E:4A:8C:AD:64:E0:AC:82:83:2D:8B X509v3 Authority Key Identifier: keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e34382e302f32302d3230203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.81.48.0/20 Signature Algorithm: sha256WithRSAEncryption 9d:22:3c:69:6e:e1:f4:c8:85:c3:32:d4:09:dc:d5:c8:f2:1f: 3f:41:2d:ab:94:49:c8:90:59:05:db:93:2b:46:3c:3d:22:e9: 2a:51:49:5a:f0:05:c3:31:4c:95:89:73:3c:1d:52:6d:e1:2a: 22:cc:2a:46:eb:75:8b:41:f3:06:12:cd:6e:7b:18:95:41:e0: eb:76:01:ab:c5:1e:4b:3e:c8:18:db:31:2e:3d:c2:72:75:65: 71:eb:9f:ca:c6:8b:2f:87:8d:81:ff:de:fe:3d:bb:f0:4b:6e: be:c0:9c:e9:b8:ee:2a:ba:f3:c2:7d:a8:7c:73:55:d4:9f:2b: e3:94:1a:b9:f7:41:80:f6:b8:34:e6:2e:eb:1c:5e:65:99:37: c7:4f:2d:7e:95:7c:6b:ba:77:42:ea:ff:b5:83:00:3c:fc:80: cd:96:18:d8:c7:19:ff:83:27:83:bd:d7:2f:54:69:79:df:70: 36:e7:5b:f0:6e:cd:33:69:67:ec:88:d0:a5:76:0f:5f:e4:f2: 91:6c:c6:5b:40:dd:8f:4e:ab:44:20:68:c5:02:ae:4d:7b:d6: 37:54:6d:b7:a8:9c:7a:ca:b3:f6:17:64:c7:60:99:a1:22:b5: 85:4c:3f:50:54:28:1f:bd:92:86:be:eb:38:e1:c0:a5:02:b6: 0c:05:71:6f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUGoad9B1M2cZ1/9ONaZcEIYS8G80wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NB MEJGQzQ0MTAeFw0yNTA0MTcwNjU3MDBaFw0yNjA0MTYwNzAyMDBaMDMxMTAvBgNV BAMTKDhFNzk5OEFCQzQ0OThEQ0Q3QjZFNEE4Q0FENjRFMEFDODI4MzJEOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXMJMNS2KlbBEkKU4AhzuBHVaN c/fgNvDn4MqIaEsERUzQRVToASkl4D7Z+4hiHrFkKLW/BYirf6hoxa4YINvdtIJM 1bolupEKDdMb0WDPe5AhfyEoZ26Q3OaigtDyeQC5IjLvMWKKWcnvCRStbYZ7wiOG ae9TDHrg9GsatriVdHXt/rtB5rKuc2zGmQlr9/GXOJ+j+se6SA+hXrF2Zmt43KpC 6K7rnaoBGPx6qhaJAHM8H03H2XEHhIMMqNF8CnJpJx+rpljdHX9cvmfh2LuzzH48 ey3QUujec5hrPfUIq+jqp4/AhUCbORshE/e8DBnG8dSDi2KAwzBtqNrw8JF1AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUjnmYq8RJjc17bkqMrWTgrIKDLYswHwYDVR0j BBgwFoAUFU7gMZhGe5YxX9tSf7O7zKC/xEEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjIxZjc1My1hODhlLTRlZGYtYTMwNi1iZDkzZDVhMzhmZWEvMC8xNTRFRTAzMTk4 NDY3Qjk2MzE1RkRCNTI3RkIzQkJDQ0EwQkZDNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NBMEJG QzQ0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzMyMzAzMjJlMzgzMTJlMzQzODJlMzAyZjMyMzAy ZDMyMzAyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKUTAwDQYJKoZIhvcN AQELBQADggEBAJ0iPGlu4fTIhcMy1Anc1cjyHz9BLauUSciQWQXbkytGPD0i6SpR SVrwBcMxTJWJczwdUm3hKiLMKkbrdYtB8wYSzW57GJVB4Ot2AavFHks+yBjbMS49 wnJ1ZXHrn8rGiy+HjYH/3v49u/BLbr7AnOm47iq688J9qHxzVdSfK+OUGrn3QYD2 uDTmLuscXmWZN8dPLX6VfGu6d0Lq/7WDADz8gM2WGNjHGf+DJ4O91y9UaXnfcDbn W/BuzTNpZ+yI0KV2D1/k8pFsxltA3Y9Oq0QgaMUCrk171jdUbbeonHrKs/YXZMdg maEitYVMP1BUKB+9koa+6zjhwKUCtgwFcW8= -----END CERTIFICATE-----Generated at Sat Apr 19 17:15:27 2025 by rpki-client