$ rpki-client -vvf repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e3135392e39362e302f31392d3234203d3e2039333430.roa File: 3230322e3135392e39362e302f31392d3234203d3e2039333430.roa (raw, json) Hash identifier: 4CYpX855PsKjE7pRqG0I65N8tDE2yevHm2JcGXCxF84= Subject key identifier: AC:21:67:52:5E:F2:02:9C:BB:0B:AE:8A:DB:35:41:2E:B5:A4:F7:F8 Certificate issuer: /CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308 Certificate serial: 61D15C79B4C06D884F66BFA583775D11DEFCCD55 Authority key identifier: B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e3135392e39362e302f31392d3234203d3e2039333430.roa Signing time: Mon 13 Jan 2025 10:00:01 +0000 ROA not before: Mon 13 Jan 2025 09:55:01 +0000 ROA not after: Mon 12 Jan 2026 10:00:01 +0000 asID: 9340 IP address blocks: 202.159.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.crl rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 14:15:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:d1:5c:79:b4:c0:6d:88:4f:66:bf:a5:83:77:5d:11:de:fc:cd:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308 Validity Not Before: Jan 13 09:55:01 2025 GMT Not After : Jan 12 10:00:01 2026 GMT Subject: CN=AC2167525EF2029CBB0BAE8ADB35412EB5A4F7F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:98:1f:2c:43:4c:08:42:5f:a1:91:5b:66:6e: a6:5a:3b:b2:2c:84:55:6d:d8:b9:91:5c:3b:bd:68: 3a:0e:35:45:9e:a5:4b:d8:8d:b2:d4:f1:ce:67:a1: a5:10:f9:aa:24:64:c9:da:ef:ca:57:9b:c1:20:60: 35:08:5d:17:4f:60:b7:08:03:83:7a:ad:d0:ff:f3: 27:bb:d9:56:17:f0:78:1a:cb:6e:d6:48:d5:83:78: 39:2a:bf:a8:32:ed:87:ed:2c:91:94:c4:8b:a7:9f: dd:c2:79:1f:a3:f0:a0:2f:04:c4:a6:c6:6a:90:dd: 8e:59:a9:17:97:cc:07:48:5d:9e:14:37:89:07:67: 17:84:c2:c9:e1:cb:3d:bd:22:27:24:af:12:76:ee: 13:3e:37:c5:2b:6b:55:8c:e4:d9:ce:c2:30:70:9e: f2:06:74:a7:1e:43:01:7f:40:2f:a1:57:9c:bb:ef: 52:94:25:77:1f:26:01:77:83:42:2d:b5:67:d9:70: 14:49:39:a9:d9:89:46:84:dd:49:57:87:ef:a9:aa: 62:62:ad:3d:31:06:75:f7:bb:51:84:aa:d4:fc:6d: 2e:af:db:81:bc:fe:72:e9:9a:62:40:64:aa:e0:17: 0f:b2:70:24:44:7f:22:33:4a:a7:43:1b:b4:ee:10: 91:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:21:67:52:5E:F2:02:9C:BB:0B:AE:8A:DB:35:41:2E:B5:A4:F7:F8 X509v3 Authority Key Identifier: keyid:B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e3135392e39362e302f31392d3234203d3e2039333430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.159.96.0/19 Signature Algorithm: sha256WithRSAEncryption 2b:89:30:5f:ad:a4:d7:3b:09:b6:3a:e1:73:40:ca:7f:e6:d1: 3c:1b:67:3e:a7:92:e9:3f:aa:9d:00:cf:e3:81:71:dc:cb:b0: cf:67:7c:e2:6c:c7:31:dc:8a:7a:c4:81:12:be:e5:81:5a:c8: f9:71:65:05:ab:e9:48:26:c9:6d:9d:cd:6c:b4:d6:d1:72:19: 0f:ac:58:78:5f:06:3b:c9:b6:40:31:e9:dc:18:80:80:5b:8c: 76:e5:1c:71:98:8b:93:ba:79:f8:c1:68:bc:b8:e9:2f:7b:ff: 2b:de:a8:df:12:49:18:63:8f:3d:1d:0f:8c:70:f9:c9:5b:27: ce:33:61:a2:48:45:f1:1a:87:a9:31:c4:50:44:1a:d7:d2:bc: cb:65:93:39:a5:00:3d:52:20:95:23:dd:90:c3:56:d8:ca:f6: ed:63:a1:28:d1:59:60:93:80:7a:c8:cb:a0:14:16:79:54:df: 0d:31:e9:4a:21:5c:41:fc:3f:7e:41:d4:18:68:64:22:33:46: c8:f6:ce:17:52:44:9e:01:38:97:d3:50:f5:e1:c7:a5:c5:46: cc:dd:c6:4b:f5:59:1a:d3:ba:c9:ab:d3:f1:ee:9f:11:8a:c9: 5a:91:68:c7:19:d6:ee:83:3c:5e:f6:bb:0f:40:d8:40:cc:4f: 70:6a:2f:0d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUYdFcebTAbYhPZr+lg3ddEd78zVUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhDMkEyQjFCMjExNjRBRjhFQUVFMzg3QzdEOUE1RDk0 RDRGODMwODAeFw0yNTAxMTMwOTU1MDFaFw0yNjAxMTIxMDAwMDFaMDMxMTAvBgNV BAMTKEFDMjE2NzUyNUVGMjAyOUNCQjBCQUU4QURCMzU0MTJFQjVBNEY3RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7mB8sQ0wIQl+hkVtmbqZaO7Is hFVt2LmRXDu9aDoONUWepUvYjbLU8c5noaUQ+aokZMna78pXm8EgYDUIXRdPYLcI A4N6rdD/8ye72VYX8Hgay27WSNWDeDkqv6gy7YftLJGUxIunn93CeR+j8KAvBMSm xmqQ3Y5ZqReXzAdIXZ4UN4kHZxeEwsnhyz29IickrxJ27hM+N8Ura1WM5NnOwjBw nvIGdKceQwF/QC+hV5y771KUJXcfJgF3g0IttWfZcBRJOanZiUaE3UlXh++pqmJi rT0xBnX3u1GEqtT8bS6v24G8/nLpmmJAZKrgFw+ycCREfyIzSqdDG7TuEJF/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUrCFnUl7yApy7C66K2zVBLrWk9/gwHwYDVR0j BBgwFoAUuMKisbIRZK+OruOHx9ml2U1PgwgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NWIxZTU3ZS1hMGYxLTQ2N2YtYTQ2Zi01NWEzMTU3YjBkNjUvMC9COEMyQTJCMUIy MTE2NEFGOEVBRUUzODdDN0Q5QTVEOTRENEY4MzA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjhDMkEyQjFCMjExNjRBRjhFQUVFMzg3QzdEOUE1RDk0RDRG ODMwOC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1YjFlNTdlLWEwZjEtNDY3Zi1h NDZmLTU1YTMxNTdiMGQ2NS8wLzMyMzAzMjJlMzEzNTM5MmUzOTM2MmUzMDJmMzEz OTJkMzIzNDIwM2QzZTIwMzkzMzM0MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXKn2AwDQYJKoZIhvcN AQELBQADggEBACuJMF+tpNc7CbY64XNAyn/m0TwbZz6nkuk/qp0Az+OBcdzLsM9n fOJsxzHcinrEgRK+5YFayPlxZQWr6UgmyW2dzWy01tFyGQ+sWHhfBjvJtkAx6dwY gIBbjHblHHGYi5O6efjBaLy46S97/yveqN8SSRhjjz0dD4xw+clbJ84zYaJIRfEa h6kxxFBEGtfSvMtlkzmlAD1SIJUj3ZDDVtjK9u1joSjRWWCTgHrIy6AUFnlU3w0x 6UohXEH8P35B1BhoZCIzRsj2zhdSRJ4BOJfTUPXhx6XFRszdxkv1WRrTusmr0/Hu nxGKyVqRaMcZ1u6DPF72uw9A2EDMT3BqLw0= -----END CERTIFICATE-----Generated at Sun Apr 6 08:15:41 2025 by rpki-client