$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138382e302f32342d3234203d3e203338343936.roa File: 3230322e38372e3138382e302f32342d3234203d3e203338343936.roa (raw, json) Hash identifier: zszSrLC2BOn5OMc3gyg2bseTnpHnWBf4XeaSkK1ao/k= Subject key identifier: 32:11:EF:7F:CC:65:65:08:39:59:9D:A2:83:0C:83:48:66:D8:BA:95 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 1EF6825D72A0A87650A951D370D33D8C42E601E0 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138382e302f32342d3234203d3e203338343936.roa Signing time: Sat 08 Mar 2025 04:02:23 +0000 ROA not before: Sat 08 Mar 2025 03:57:23 +0000 ROA not after: Sat 07 Mar 2026 04:02:23 +0000 asID: 38496 IP address blocks: 202.87.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 08:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:f6:82:5d:72:a0:a8:76:50:a9:51:d3:70:d3:3d:8c:42:e6:01:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Mar 8 03:57:23 2025 GMT Not After : Mar 7 04:02:23 2026 GMT Subject: CN=3211EF7FCC65650839599DA2830C834866D8BA95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:af:97:33:4e:7a:12:0a:1a:02:ae:82:0b:c6: b6:26:6b:a0:19:e1:ef:74:af:f5:d9:b5:54:73:54: bd:f1:25:ab:28:06:7d:47:90:4e:b0:2d:d5:26:b2: 8a:80:52:9f:26:fe:6a:5d:3c:ca:8b:26:78:d4:f8: 2e:01:74:de:dc:b7:3b:53:a8:77:ba:8a:62:f1:fd: e8:97:24:8b:d5:4e:b0:44:c7:9c:c3:df:4f:bb:b7: c9:12:10:69:f8:72:af:ea:ed:38:31:5e:c1:97:b4: 54:02:6a:3e:c1:d6:99:21:c6:9f:5c:29:5a:11:fa: 3d:97:cc:61:70:4b:9a:b0:1a:fb:d3:73:4e:f6:7d: cd:0c:fb:c0:b1:7d:dd:c6:31:59:ae:19:45:bb:ba: 6d:c0:91:00:8f:8e:2d:4f:ef:2d:fe:91:2e:28:22: 15:80:06:0f:a0:86:5b:54:b2:1e:1e:eb:c2:74:ac: 3e:2f:9b:e2:cf:96:af:b5:39:69:46:a2:5c:a9:16: 7a:59:89:af:67:e5:d0:03:f6:f8:f8:63:30:68:ec: 08:10:48:1a:95:cc:38:c6:44:d3:18:99:94:56:d7: e4:c2:e2:27:fa:05:4d:e1:22:70:7a:6f:d9:a8:94: 8b:72:fb:55:61:46:e2:bf:9a:02:0d:97:eb:46:9c: 76:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:11:EF:7F:CC:65:65:08:39:59:9D:A2:83:0C:83:48:66:D8:BA:95 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138382e302f32342d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.87.188.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:bb:1c:88:8a:0a:7a:64:16:5c:d3:58:7f:41:57:18:57:52: d4:94:a7:50:02:d2:d5:cc:e8:43:d5:3b:00:cc:e9:4b:eb:3d: a8:0e:d0:16:1c:d2:3d:e3:78:00:25:af:45:b6:a7:3e:df:40: 74:e4:31:f9:d6:bf:a0:03:1f:e2:0c:0b:f0:66:db:c0:f6:93: 97:61:95:88:da:7e:0f:20:00:55:a8:2d:d7:e4:37:0e:b3:17: 2f:89:77:0c:78:85:1e:95:90:fe:41:6c:c5:14:01:d0:27:ab: c7:5c:b4:6e:4c:26:b3:22:32:0b:04:0b:2d:76:f0:5f:c9:89: b8:b5:a6:db:9a:69:36:a1:64:56:06:b0:0b:f8:de:f4:48:00: 89:c7:24:5e:2b:0d:5a:57:46:40:7b:20:ca:ce:91:8f:91:65: ba:73:06:ca:d2:56:24:6c:99:8d:a7:6d:05:64:76:79:b1:d6: 89:df:8b:47:6a:0d:a4:ee:76:c3:02:d5:e3:9a:27:54:9d:0f: 62:5c:2f:b2:e3:b4:dc:76:14:1a:5a:d8:74:fd:be:ab:17:3d: 94:6d:d1:7a:83:32:70:72:84:55:9f:08:c6:9b:88:d0:ed:b7: 26:f2:eb:47:e4:9a:ce:c0:25:5f:50:54:4b:0e:e1:7f:cf:da: e5:40:a6:d7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHvaCXXKgqHZQqVHTcNM9jELmAeAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNTAzMDgwMzU3MjNaFw0yNjAzMDcwNDAyMjNaMDMxMTAvBgNV BAMTKDMyMTFFRjdGQ0M2NTY1MDgzOTU5OURBMjgzMEM4MzQ4NjZEOEJBOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPr5czTnoSChoCroILxrYma6AZ 4e90r/XZtVRzVL3xJasoBn1HkE6wLdUmsoqAUp8m/mpdPMqLJnjU+C4BdN7ctztT qHe6imLx/eiXJIvVTrBEx5zD30+7t8kSEGn4cq/q7TgxXsGXtFQCaj7B1pkhxp9c KVoR+j2XzGFwS5qwGvvTc072fc0M+8Cxfd3GMVmuGUW7um3AkQCPji1P7y3+kS4o IhWABg+ghltUsh4e68J0rD4vm+LPlq+1OWlGolypFnpZia9n5dAD9vj4YzBo7AgQ SBqVzDjGRNMYmZRW1+TC4if6BU3hInB6b9molIty+1VhRuK/mgINl+tGnHabAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMhHvf8xlZQg5WZ2igwyDSGbYupUwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMyMzAzMjJlMzgzNzJlMzEzODM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpXvDANBgkqhkiG 9w0BAQsFAAOCAQEADrsciIoKemQWXNNYf0FXGFdS1JSnUALS1czoQ9U7AMzpS+s9 qA7QFhzSPeN4ACWvRbanPt9AdOQx+da/oAMf4gwL8GbbwPaTl2GViNp+DyAAVagt 1+Q3DrMXL4l3DHiFHpWQ/kFsxRQB0Cerx1y0bkwmsyIyCwQLLXbwX8mJuLWm25pp NqFkVgawC/je9EgAicckXisNWldGQHsgys6Rj5FlunMGytJWJGyZjadtBWR2ebHW id+LR2oNpO52wwLV45onVJ0PYlwvsuO03HYUGlrYdP2+qxc9lG3ReoMycHKEVZ8I xpuI0O23JvLrR+SazsAlX1BUSw7hf8/a5UCm1w== -----END CERTIFICATE-----Generated at Sun Apr 6 10:50:26 2025 by rpki-client