$ rpki-client -vvf repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e31302e36332e302f32342d3234203d3e203535363533.roa File: 3230322e31302e36332e302f32342d3234203d3e203535363533.roa (raw, json) Hash identifier: 3x/TagzWw9AEnitF9/BKz1IoUShxY7ix8DtkXTWs+vs= Subject key identifier: 64:91:81:50:C9:CC:78:17:DF:47:9E:C2:8B:71:82:EE:EE:BD:7F:B7 Certificate issuer: /CN=FC646066A689B77054AF95653FA324395357E6A3 Certificate serial: 6BEDF7AA18DC2DED47D0A5772AFDD49F7A8264E4 Authority key identifier: FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e31302e36332e302f32342d3234203d3e203535363533.roa Signing time: Fri 14 Feb 2025 03:00:01 +0000 ROA not before: Fri 14 Feb 2025 02:55:01 +0000 ROA not after: Fri 13 Feb 2026 03:00:01 +0000 asID: 55653 IP address blocks: 202.10.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 07:52:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:ed:f7:aa:18:dc:2d:ed:47:d0:a5:77:2a:fd:d4:9f:7a:82:64:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC646066A689B77054AF95653FA324395357E6A3 Validity Not Before: Feb 14 02:55:01 2025 GMT Not After : Feb 13 03:00:01 2026 GMT Subject: CN=64918150C9CC7817DF479EC28B7182EEEEBD7FB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cd:25:b6:e8:25:26:f2:83:b7:1a:57:f5:23: 97:cc:2d:d3:59:33:84:fd:17:62:21:89:ba:ae:8d: 71:f5:8a:ad:72:fc:53:0f:0d:45:44:10:96:3c:7b: 3b:fd:96:c4:08:eb:dc:9d:30:be:33:35:36:51:c6: 05:42:71:5a:79:d9:ce:e4:82:0a:70:29:c4:10:e1: 74:d7:a5:3f:ec:07:31:47:c5:1b:ff:a5:02:ee:36: ce:37:2e:ec:2d:88:dc:1b:bb:20:e4:b4:96:08:c8: f4:5c:bb:7b:d1:27:5c:75:8d:71:02:e4:08:8c:c4: 85:7e:c4:90:3c:0e:49:27:3a:a5:b7:a5:fd:06:7e: 4f:ff:62:9f:ed:51:60:17:7a:54:51:9e:f7:3d:5f: a4:39:c2:70:ed:da:e5:6d:c0:0b:0d:b7:e9:de:e6: 8b:9c:b2:22:f9:66:a7:49:ca:9a:90:e9:8b:0e:1e: c3:b0:06:a9:c1:10:a5:7a:79:cb:b3:2d:ac:2c:ef: 87:38:82:f9:59:ac:5c:4b:40:fd:6c:5c:4a:c5:cb: 96:b3:6e:ce:78:5e:6c:d4:84:b0:15:c5:8e:a7:81: 3d:2e:c4:a8:57:13:c8:ee:6b:20:80:74:0c:52:d5: d1:96:0b:83:80:d7:6d:0a:a7:1a:e9:8b:07:36:2a: c4:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:91:81:50:C9:CC:78:17:DF:47:9E:C2:8B:71:82:EE:EE:BD:7F:B7 X509v3 Authority Key Identifier: keyid:FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e31302e36332e302f32342d3234203d3e203535363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.63.0/24 Signature Algorithm: sha256WithRSAEncryption a6:c8:01:44:e8:d7:9b:21:13:51:7b:3c:bd:4c:4e:1b:40:57: a1:10:8c:66:32:66:e0:cf:18:79:03:1a:e0:2c:92:df:eb:00: ec:c0:ff:9c:86:c0:35:60:43:21:b5:a2:40:05:c7:e2:eb:07: 8a:1b:e9:b5:d0:0a:75:0f:99:91:77:75:2e:e5:20:9b:9e:ec: 91:ca:8f:49:35:c0:b2:08:29:41:52:a8:ba:9f:e4:bb:47:78: 7d:9a:c5:3d:43:8e:4f:ca:36:f2:2f:e0:90:7d:a1:90:1f:d8: 9a:32:24:59:54:f1:ba:82:86:ff:c6:b0:55:f6:35:5b:fc:dc: ba:03:16:e7:22:1d:0e:37:79:6a:1c:28:84:0d:70:25:c3:ac: f8:52:3f:56:fe:9c:cd:52:e1:ca:62:a7:75:ca:5f:50:bb:ab: 8d:88:10:55:7e:c8:6b:11:f4:06:6e:dc:61:16:8d:26:21:7b: e7:e8:bf:e3:ec:67:bf:33:7b:b6:c1:bf:08:f9:12:a2:ec:af: e5:3c:55:f2:08:00:d6:bd:03:e8:94:34:11:e8:c3:a9:be:bd: 4e:50:82:68:29:1a:1a:61:d4:54:fa:97:8c:81:3c:0f:ec:ec: 81:4b:87:ee:0e:aa:78:f2:31:1e:ce:b2:6a:16:0c:9b:5c:42: 30:24:d8:8b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUa+33qhjcLe1H0KV3Kv3Un3qCZOQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1 MzU3RTZBMzAeFw0yNTAyMTQwMjU1MDFaFw0yNjAyMTMwMzAwMDFaMDMxMTAvBgNV BAMTKDY0OTE4MTUwQzlDQzc4MTdERjQ3OUVDMjhCNzE4MkVFRUVCRDdGQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAzSW26CUm8oO3Glf1I5fMLdNZ M4T9F2IhibqujXH1iq1y/FMPDUVEEJY8ezv9lsQI69ydML4zNTZRxgVCcVp52c7k ggpwKcQQ4XTXpT/sBzFHxRv/pQLuNs43LuwtiNwbuyDktJYIyPRcu3vRJ1x1jXEC 5AiMxIV+xJA8DkknOqW3pf0Gfk//Yp/tUWAXelRRnvc9X6Q5wnDt2uVtwAsNt+ne 5oucsiL5ZqdJypqQ6YsOHsOwBqnBEKV6ecuzLaws74c4gvlZrFxLQP1sXErFy5az bs54XmzUhLAVxY6ngT0uxKhXE8juayCAdAxS1dGWC4OA120Kpxrpiwc2KsRVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUZJGBUMnMeBffR57Ci3GC7u69f7cwHwYDVR0j BBgwFoAU/GRgZqaJt3BUr5VlP6MkOVNX5qMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OTc0NjVlMy03OGEwLTQ5NjUtYWUxNC1lNGNiNGQwZmMxODUvMC9GQzY0NjA2NkE2 ODlCNzcwNTRBRjk1NjUzRkEzMjQzOTUzNTdFNkEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1MzU3 RTZBMy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h ZTE0LWU0Y2I0ZDBmYzE4NS8wLzMyMzAzMjJlMzEzMDJlMzYzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCj8wDQYJKoZIhvcN AQELBQADggEBAKbIAUTo15shE1F7PL1MThtAV6EQjGYyZuDPGHkDGuAskt/rAOzA /5yGwDVgQyG1okAFx+LrB4ob6bXQCnUPmZF3dS7lIJue7JHKj0k1wLIIKUFSqLqf 5LtHeH2axT1Djk/KNvIv4JB9oZAf2JoyJFlU8bqChv/GsFX2NVv83LoDFuciHQ43 eWocKIQNcCXDrPhSP1b+nM1S4cpip3XKX1C7q42IEFV+yGsR9AZu3GEWjSYhe+fo v+PsZ78ze7bBvwj5EqLsr+U8VfIIANa9A+iUNBHow6m+vU5QgmgpGhph1FT6l4yB PA/s7IFLh+4OqnjyMR7OsmoWDJtcQjAk2Is= -----END CERTIFICATE-----Generated at Sun Apr 6 14:46:38 2025 by rpki-client