$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e36332e302f32342d3234203d3e20313432343031.roa File: 3230322e38312e36332e302f32342d3234203d3e20313432343031.roa (raw, json) Hash identifier: Cb1RwhswgCAaQPfm2cfkDdkRCjZc7YgpOQdOeeBIJyE= Subject key identifier: 1B:4B:FC:97:A9:00:D8:27:0A:2A:90:67:AE:86:4B:94:03:8F:71:93 Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Certificate serial: 2D57C089552902606DE21FA3356808B5A4BC748D Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e36332e302f32342d3234203d3e20313432343031.roa Signing time: Wed 28 May 2025 08:00:01 +0000 ROA not before: Wed 28 May 2025 07:55:01 +0000 ROA not after: Wed 27 May 2026 08:00:01 +0000 asID: 142401 IP address blocks: 202.81.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 12:49:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:57:c0:89:55:29:02:60:6d:e2:1f:a3:35:68:08:b5:a4:bc:74:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Validity Not Before: May 28 07:55:01 2025 GMT Not After : May 27 08:00:01 2026 GMT Subject: CN=1B4BFC97A900D8270A2A9067AE864B94038F7193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:41:99:8d:45:ce:bd:d3:7f:16:ce:df:b3:ac: a9:90:7a:82:f7:fb:74:f0:4f:1e:2d:18:fc:49:ba: 8f:15:6a:ab:03:1c:d8:08:6d:95:5f:04:21:cc:b8: 19:c3:c2:09:20:c0:f7:7a:12:6a:29:fe:1d:e1:aa: c2:bd:c3:60:ff:05:a4:5d:41:d5:ee:6c:d8:36:a9: e4:66:45:43:03:6a:41:6f:d4:2b:de:2a:2b:de:7f: 18:ca:35:12:39:98:49:7f:43:52:5c:c9:0f:97:75: 6a:ec:9b:40:aa:19:a7:35:65:3b:db:7f:69:c2:3d: f1:e4:47:e7:59:5e:85:18:f3:c8:21:05:d7:b4:6e: 0d:c6:db:45:c4:b3:5c:ac:b3:3a:f6:a8:75:9b:43: 40:04:31:82:a4:65:03:48:9a:11:5a:39:d9:bb:f1: f8:10:d9:af:82:b1:7c:b1:85:d2:50:92:6f:a4:46: 9b:55:9e:09:93:75:0e:16:79:58:50:90:65:41:4b: 14:be:78:8f:af:19:fd:d0:67:8a:6e:57:84:0d:97: d8:00:da:8e:85:81:44:0b:1e:61:bb:88:9a:8e:1e: a3:1d:39:7a:e1:9b:3f:3c:ab:b0:4d:bb:1c:20:63: f1:3e:d4:f9:9e:76:7c:da:62:b6:f8:d7:fd:26:51: 52:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:4B:FC:97:A9:00:D8:27:0A:2A:90:67:AE:86:4B:94:03:8F:71:93 X509v3 Authority Key Identifier: keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e36332e302f32342d3234203d3e20313432343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.81.63.0/24 Signature Algorithm: sha256WithRSAEncryption 26:ec:ca:df:23:31:76:a2:4e:e6:af:03:0c:64:16:bc:59:b4: b1:8a:48:1c:12:32:e3:7f:25:8e:0b:24:08:3f:45:71:8a:b2: 7f:c2:9c:09:35:58:4b:63:14:61:90:21:f5:67:1a:71:92:fd: 13:3e:c1:73:0f:91:f2:6e:c5:97:14:e3:ac:81:3b:83:16:ed: 24:06:44:2e:08:9a:3c:88:44:23:9b:76:f5:7a:8a:da:2e:fd: 4a:d8:28:3f:f9:21:31:43:29:c7:bc:0d:9e:7b:b2:f8:1c:36: 79:39:13:2a:f9:a1:d4:c6:24:df:17:70:61:67:25:fd:84:e1: 33:8b:02:09:b2:3b:a8:60:a5:5f:85:b7:b7:b4:3e:11:0a:cb: 45:ea:3a:05:7b:64:3d:8e:a2:7a:a5:ff:e6:75:14:87:25:91: cb:6d:9d:90:23:a6:1c:b4:82:dd:79:8c:0d:de:83:09:01:da: 2f:fb:99:44:e3:ab:aa:77:d8:da:db:2a:79:db:7f:4a:82:6c: 42:a4:32:08:57:e1:ed:6c:ba:3a:85:91:ba:9b:f7:04:af:48: 74:a3:0c:cd:b6:cd:a9:4c:f2:ae:e0:8b:76:40:fa:fd:06:ef: 28:8c:a9:19:fe:8c:55:17:36:d9:7b:a8:47:53:22:b0:ef:f4: e1:92:1f:44 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULVfAiVUpAmBt4h+jNWgItaS8dI0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NB MEJGQzQ0MTAeFw0yNTA1MjgwNzU1MDFaFw0yNjA1MjcwODAwMDFaMDMxMTAvBgNV BAMTKDFCNEJGQzk3QTkwMEQ4MjcwQTJBOTA2N0FFODY0Qjk0MDM4RjcxOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxQZmNRc69038Wzt+zrKmQeoL3 +3TwTx4tGPxJuo8VaqsDHNgIbZVfBCHMuBnDwgkgwPd6Emop/h3hqsK9w2D/BaRd QdXubNg2qeRmRUMDakFv1CveKivefxjKNRI5mEl/Q1JcyQ+XdWrsm0CqGac1ZTvb f2nCPfHkR+dZXoUY88ghBde0bg3G20XEs1ysszr2qHWbQ0AEMYKkZQNImhFaOdm7 8fgQ2a+CsXyxhdJQkm+kRptVngmTdQ4WeVhQkGVBSxS+eI+vGf3QZ4puV4QNl9gA 2o6FgUQLHmG7iJqOHqMdOXrhmz88q7BNuxwgY/E+1PmednzaYrb41/0mUVKNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUG0v8l6kA2CcKKpBnroZLlAOPcZMwHwYDVR0j BBgwFoAUFU7gMZhGe5YxX9tSf7O7zKC/xEEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjIxZjc1My1hODhlLTRlZGYtYTMwNi1iZDkzZDVhMzhmZWEvMC8xNTRFRTAzMTk4 NDY3Qjk2MzE1RkRCNTI3RkIzQkJDQ0EwQkZDNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NBMEJG QzQ0MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzMyMzAzMjJlMzgzMTJlMzYzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMjM0MzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpRPzANBgkqhkiG 9w0BAQsFAAOCAQEAJuzK3yMxdqJO5q8DDGQWvFm0sYpIHBIy438ljgskCD9FcYqy f8KcCTVYS2MUYZAh9WcacZL9Ez7Bcw+R8m7FlxTjrIE7gxbtJAZELgiaPIhEI5t2 9XqK2i79StgoP/khMUMpx7wNnnuy+Bw2eTkTKvmh1MYk3xdwYWcl/YThM4sCCbI7 qGClX4W3t7Q+EQrLReo6BXtkPY6ieqX/5nUUhyWRy22dkCOmHLSC3XmMDd6DCQHa L/uZROOrqnfY2tsqedt/SoJsQqQyCFfh7Wy6OoWRupv3BK9IdKMMzbbNqUzyruCL dkD6/QbvKIypGf6MVRc22XuoR1MisO/04ZIfRA== -----END CERTIFICATE-----Generated at Thu Jun 5 18:20:06 2025 by rpki-client