$ rpki-client -vvf repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e35332e3232342e302f31392d3234203d3e2039333430.roa File: 3230322e35332e3232342e302f31392d3234203d3e2039333430.roa (raw, json) Hash identifier: cxySA+7GoKy0ZBQ953Jz7wXFE+7U1S6vU/NAFozpO4w= Subject key identifier: 72:F5:0E:2D:1F:00:14:91:B7:02:74:71:21:65:D5:12:CA:79:77:A0 Certificate issuer: /CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308 Certificate serial: 76AD0295B097BCFA8411DEB11B6C2E5791277F47 Authority key identifier: B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e35332e3232342e302f31392d3234203d3e2039333430.roa Signing time: Wed 19 Mar 2025 11:00:01 +0000 ROA not before: Wed 19 Mar 2025 10:55:01 +0000 ROA not after: Wed 18 Mar 2026 11:00:01 +0000 asID: 9340 IP address blocks: 202.53.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.crl rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 14:15:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:ad:02:95:b0:97:bc:fa:84:11:de:b1:1b:6c:2e:57:91:27:7f:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308 Validity Not Before: Mar 19 10:55:01 2025 GMT Not After : Mar 18 11:00:01 2026 GMT Subject: CN=72F50E2D1F001491B70274712165D512CA7977A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:45:df:83:42:5b:0a:0a:03:b5:fb:60:30:21: f5:99:db:fd:a2:63:1f:e9:7c:75:4c:f0:10:2f:50: cd:4e:f1:f9:3a:c8:05:02:d1:e4:de:d3:59:ca:7e: 92:97:77:14:17:3e:83:a1:c8:48:78:31:5b:7f:dc: aa:b9:6c:73:db:f8:24:5a:6a:f8:c1:be:ac:50:63: 1c:19:e3:1b:34:c0:6d:9e:6e:a3:b8:22:73:3f:05: 63:ca:ed:bc:50:41:82:4f:27:6a:be:60:38:7a:9b: b6:a5:df:d3:9d:ad:e2:4c:00:69:fb:8e:ea:6f:01: 86:5b:64:20:85:df:3e:a4:19:00:3c:6a:79:ec:2a: 0c:d8:a7:26:27:94:27:2b:76:dd:a2:4b:43:67:ab: 5a:fe:99:c7:9b:a7:40:56:cf:1f:7c:31:64:cb:d9: 08:17:de:3d:51:c8:ba:54:17:07:43:8d:f3:f2:f8: d0:dc:38:22:18:2a:e5:ae:f0:f8:25:a8:93:74:00: 8b:f3:a6:cc:e2:b9:4c:39:12:55:b6:29:98:28:73: fc:12:6c:97:66:06:7d:a3:3f:0d:38:22:c5:a0:a8: e4:36:08:30:23:cf:47:82:76:10:30:69:49:a1:0b: 0c:b1:71:f5:23:33:7e:c8:73:92:ea:df:b3:b7:fb: ec:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:F5:0E:2D:1F:00:14:91:B7:02:74:71:21:65:D5:12:CA:79:77:A0 X509v3 Authority Key Identifier: keyid:B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e35332e3232342e302f31392d3234203d3e2039333430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.53.224.0/19 Signature Algorithm: sha256WithRSAEncryption ce:73:7d:28:32:08:0a:31:3e:89:2d:cb:56:60:19:42:97:ca: 3e:0d:a1:ee:a0:65:bd:9e:65:5d:a8:65:0c:ff:26:8b:17:2f: c9:9a:dd:44:c3:cb:00:15:48:9d:9e:6b:1f:84:a1:c9:59:e7: 36:2e:f3:44:d6:49:7e:b7:c2:9d:e0:53:26:0c:ee:b4:a7:9d: 4e:d8:d9:75:77:f5:43:b3:b4:da:36:1f:b9:34:2a:73:a8:d9: 48:4c:ca:c1:f2:5a:18:07:c1:58:52:81:6d:ea:99:00:66:32: 7c:8c:5c:00:30:85:91:b3:3d:15:4e:48:89:91:5b:10:24:97: 29:68:cc:83:a6:f6:a5:41:64:02:c8:78:92:7c:1d:f0:f5:e8: 6b:72:c2:10:fe:c4:d2:b8:66:af:52:cf:5e:b4:55:17:0f:9d: 4a:c8:8e:57:6c:07:d9:6d:69:66:23:96:cd:44:0d:c7:87:45: 54:a9:93:28:5e:21:c7:63:1b:8a:c5:13:f9:aa:28:96:a5:40: 32:94:ca:48:fe:36:af:7b:1e:bf:3c:47:3e:97:f4:83:6d:b5: d1:6e:83:2b:8f:b6:95:f0:70:f8:7e:72:c7:4f:43:69:e2:e9: a8:93:4f:ec:dd:b0:1d:f1:29:34:da:38:b6:12:f0:7d:38:e0: 33:ab:87:f8 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUdq0ClbCXvPqEEd6xG2wuV5Enf0cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhDMkEyQjFCMjExNjRBRjhFQUVFMzg3QzdEOUE1RDk0 RDRGODMwODAeFw0yNTAzMTkxMDU1MDFaFw0yNjAzMTgxMTAwMDFaMDMxMTAvBgNV BAMTKDcyRjUwRTJEMUYwMDE0OTFCNzAyNzQ3MTIxNjVENTEyQ0E3OTc3QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8Rd+DQlsKCgO1+2AwIfWZ2/2i Yx/pfHVM8BAvUM1O8fk6yAUC0eTe01nKfpKXdxQXPoOhyEh4MVt/3Kq5bHPb+CRa avjBvqxQYxwZ4xs0wG2ebqO4InM/BWPK7bxQQYJPJ2q+YDh6m7al39OdreJMAGn7 jupvAYZbZCCF3z6kGQA8annsKgzYpyYnlCcrdt2iS0Nnq1r+mcebp0BWzx98MWTL 2QgX3j1RyLpUFwdDjfPy+NDcOCIYKuWu8PglqJN0AIvzpsziuUw5ElW2KZgoc/wS bJdmBn2jPw04IsWgqOQ2CDAjz0eCdhAwaUmhCwyxcfUjM37Ic5Lq37O3++wnAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUcvUOLR8AFJG3AnRxIWXVEsp5d6AwHwYDVR0j BBgwFoAUuMKisbIRZK+OruOHx9ml2U1PgwgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NWIxZTU3ZS1hMGYxLTQ2N2YtYTQ2Zi01NWEzMTU3YjBkNjUvMC9COEMyQTJCMUIy MTE2NEFGOEVBRUUzODdDN0Q5QTVEOTRENEY4MzA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjhDMkEyQjFCMjExNjRBRjhFQUVFMzg3QzdEOUE1RDk0RDRG ODMwOC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1YjFlNTdlLWEwZjEtNDY3Zi1h NDZmLTU1YTMxNTdiMGQ2NS8wLzMyMzAzMjJlMzUzMzJlMzIzMjM0MmUzMDJmMzEz OTJkMzIzNDIwM2QzZTIwMzkzMzM0MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXKNeAwDQYJKoZIhvcN AQELBQADggEBAM5zfSgyCAoxPokty1ZgGUKXyj4Noe6gZb2eZV2oZQz/JosXL8ma 3UTDywAVSJ2eax+EoclZ5zYu80TWSX63wp3gUyYM7rSnnU7Y2XV39UOztNo2H7k0 KnOo2UhMysHyWhgHwVhSgW3qmQBmMnyMXAAwhZGzPRVOSImRWxAklylozIOm9qVB ZALIeJJ8HfD16GtywhD+xNK4Zq9Sz160VRcPnUrIjldsB9ltaWYjls1EDceHRVSp kyheIcdjG4rFE/mqKJalQDKUykj+Nq97Hr88Rz6X9INttdFugyuPtpXwcPh+csdP Q2ni6aiTT+zdsB3xKTTaOLYS8H044DOrh/g= -----END CERTIFICATE-----Generated at Sun Apr 6 08:16:01 2025 by rpki-client