$ rpki-client -vvf repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/3230322e382e32392e302f32342d3234203d3e203435373234.roa File: 3230322e382e32392e302f32342d3234203d3e203435373234.roa (raw, json) Hash identifier: 07rhNtW/Y5m4M95o6Mh9hHoZo9bTd6uBptdm1OPHIUg= Subject key identifier: 0B:32:73:06:E0:23:9F:65:53:D1:60:5F:F0:D7:F2:A7:26:D9:D9:DF Certificate issuer: /CN=371967DFBD203A2FD44E88F786D9F0F0C88E4BA9 Certificate serial: 1D4F961AA401128F41731C24ADF71BDCE9A3737C Authority key identifier: 37:19:67:DF:BD:20:3A:2F:D4:4E:88:F7:86:D9:F0:F0:C8:8E:4B:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/3230322e382e32392e302f32342d3234203d3e203435373234.roa Signing time: Sun 08 Dec 2024 14:27:16 +0000 ROA not before: Sun 08 Dec 2024 14:22:16 +0000 ROA not after: Sun 07 Dec 2025 14:27:16 +0000 asID: 45724 IP address blocks: 202.8.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.crl rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 06:25:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:4f:96:1a:a4:01:12:8f:41:73:1c:24:ad:f7:1b:dc:e9:a3:73:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=371967DFBD203A2FD44E88F786D9F0F0C88E4BA9 Validity Not Before: Dec 8 14:22:16 2024 GMT Not After : Dec 7 14:27:16 2025 GMT Subject: CN=0B327306E0239F6553D1605FF0D7F2A726D9D9DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ff:fa:a1:58:5f:20:7b:94:55:a2:7e:4f:52: d9:8b:c3:3e:4d:29:6a:8d:3c:2b:5d:1f:28:70:ed: c7:5e:4c:a0:a5:3a:5c:7d:d8:3f:47:35:5a:e1:51: 51:c2:5b:02:48:27:c9:0e:c6:00:1a:23:79:66:79: 77:30:21:bf:58:ec:e9:9c:dc:4e:24:dc:84:0f:c4: ef:7b:f6:1e:88:3a:f1:a7:94:a4:c2:8a:89:76:a8: 82:4e:2a:80:20:89:ac:f6:81:d4:3c:ee:4f:e2:2c: b4:61:bc:3d:21:21:99:f5:39:44:85:b2:90:36:64: 68:ec:42:d6:10:97:d9:e3:b6:d2:e0:c8:33:90:cc: 02:fa:a8:6a:f2:72:19:bf:0a:d9:ff:12:79:3e:2d: fd:dd:b5:0c:f0:b9:76:bf:14:85:a5:27:04:22:1e: 54:a3:1b:68:8b:ff:19:51:c0:26:19:d9:41:18:d3: c6:a8:f4:bc:bb:82:9b:00:c4:49:1d:f5:bc:f3:6e: 42:c8:b5:40:de:09:9b:82:0e:f2:b1:eb:2a:a4:46: 75:dc:72:f3:f7:af:65:c7:ee:c9:43:72:b8:1a:78: 5c:41:9f:d7:84:e8:35:bf:b2:41:97:48:f1:f1:3d: 15:66:d2:40:62:81:13:49:f6:c5:98:3e:8e:99:cc: 88:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:32:73:06:E0:23:9F:65:53:D1:60:5F:F0:D7:F2:A7:26:D9:D9:DF X509v3 Authority Key Identifier: keyid:37:19:67:DF:BD:20:3A:2F:D4:4E:88:F7:86:D9:F0:F0:C8:8E:4B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/3230322e382e32392e302f32342d3234203d3e203435373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.8.29.0/24 Signature Algorithm: sha256WithRSAEncryption a6:7b:34:b1:f6:f6:48:44:29:0e:f7:ef:a3:44:69:fe:3e:56: 3a:24:3a:74:8c:10:c2:05:4d:98:9a:3f:d3:fc:14:15:4c:5b: 5e:cf:d7:4e:9f:79:71:5d:9b:47:10:b5:c1:fb:c0:ea:5e:9b: 8b:80:3a:5e:91:a9:70:54:45:5d:43:d0:88:66:c4:92:38:7a: c6:be:79:cc:11:47:e9:f2:ea:b7:30:c2:cb:0d:aa:f1:f8:8e: 09:90:10:36:a8:e0:c5:21:fc:af:10:fd:5f:e3:73:7e:8f:f6: ad:34:81:a4:57:6a:4e:7c:84:9a:9a:ed:42:a5:39:a8:a3:1b: 4b:f7:91:f3:1f:cf:69:5c:f1:4b:c3:7d:76:4c:9b:50:40:10: a0:bd:4c:47:7f:18:fd:59:02:e1:cd:62:79:96:24:5f:b1:75: bd:2d:df:c2:1d:3e:57:a9:ef:45:67:95:d3:a4:2f:35:92:22: 7e:27:ec:94:f8:6b:80:96:98:23:59:ca:3e:e1:49:d3:8c:5d: ef:eb:bb:6d:f9:0b:63:a4:1a:70:62:32:d5:1d:cb:f0:46:a9: 00:97:f4:70:75:6d:26:bd:70:c2:7c:2b:5e:94:ad:a8:3f:9d: ef:80:7c:a3:6b:3a:7d:84:11:d6:a1:4a:5b:e1:af:1d:15:1a: 0d:6f:ac:73 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUHU+WGqQBEo9Bcxwkrfcb3Omjc3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcxOTY3REZCRDIwM0EyRkQ0NEU4OEY3ODZEOUYwRjBD ODhFNEJBOTAeFw0yNDEyMDgxNDIyMTZaFw0yNTEyMDcxNDI3MTZaMDMxMTAvBgNV BAMTKDBCMzI3MzA2RTAyMzlGNjU1M0QxNjA1RkYwRDdGMkE3MjZEOUQ5REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW//qhWF8ge5RVon5PUtmLwz5N KWqNPCtdHyhw7cdeTKClOlx92D9HNVrhUVHCWwJIJ8kOxgAaI3lmeXcwIb9Y7Omc 3E4k3IQPxO979h6IOvGnlKTCiol2qIJOKoAgiaz2gdQ87k/iLLRhvD0hIZn1OUSF spA2ZGjsQtYQl9njttLgyDOQzAL6qGrychm/Ctn/Enk+Lf3dtQzwuXa/FIWlJwQi HlSjG2iL/xlRwCYZ2UEY08ao9Ly7gpsAxEkd9bzzbkLItUDeCZuCDvKx6yqkRnXc cvP3r2XH7slDcrgaeFxBn9eE6DW/skGXSPHxPRVm0kBigRNJ9sWYPo6ZzIjDAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUCzJzBuAjn2VT0WBf8NfypybZ2d8wHwYDVR0j BBgwFoAUNxln370gOi/UToj3htnw8MiOS6kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZWI4Yjg4OS0zYjNkLTRlZjUtYWQ3MC01YjEwNDVlZmYzOTMvMC8zNzE5NjdERkJE MjAzQTJGRDQ0RTg4Rjc4NkQ5RjBGMEM4OEU0QkE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzcxOTY3REZCRDIwM0EyRkQ0NEU4OEY3ODZEOUYwRjBDODhF NEJBOS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGViOGI4ODktM2IzZC00ZWY1LWFk NzAtNWIxMDQ1ZWZmMzkzLzAvMzIzMDMyMmUzODJlMzIzOTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM0MzUzNzMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCB0wDQYJKoZIhvcNAQEL BQADggEBAKZ7NLH29khEKQ7376NEaf4+VjokOnSMEMIFTZiaP9P8FBVMW17P106f eXFdm0cQtcH7wOpem4uAOl6RqXBURV1D0IhmxJI4esa+ecwRR+ny6rcwwssNqvH4 jgmQEDao4MUh/K8Q/V/jc36P9q00gaRXak58hJqa7UKlOaijG0v3kfMfz2lc8UvD fXZMm1BAEKC9TEd/GP1ZAuHNYnmWJF+xdb0t38IdPlep70VnldOkLzWSIn4n7JT4 a4CWmCNZyj7hSdOMXe/ru235C2OkGnBiMtUdy/BGqQCX9HB1bSa9cMJ8K16Urag/ ne+AfKNrOn2EEdahSlvhrx0VGg1vrHM= -----END CERTIFICATE-----Generated at Sun Apr 6 05:57:36 2025 by rpki-client