$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3139302e302f32342d3234203d3e203234353230.roa File: 3230322e38372e3139302e302f32342d3234203d3e203234353230.roa (raw, json) Hash identifier: RV5W6n0CXGfV17a0sZ2p+WEHAq3wbWEYI1c/O+9CycY= Subject key identifier: AB:84:F5:36:F4:64:DD:EF:AF:BF:FD:CB:AF:12:B3:BA:11:CE:2D:53 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 191467C9D4E9E41F22DCB62469D50EC94259B464 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3139302e302f32342d3234203d3e203234353230.roa Signing time: Sat 08 Mar 2025 04:02:23 +0000 ROA not before: Sat 08 Mar 2025 03:57:23 +0000 ROA not after: Sat 07 Mar 2026 04:02:23 +0000 asID: 24520 IP address blocks: 202.87.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 08:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:14:67:c9:d4:e9:e4:1f:22:dc:b6:24:69:d5:0e:c9:42:59:b4:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Mar 8 03:57:23 2025 GMT Not After : Mar 7 04:02:23 2026 GMT Subject: CN=AB84F536F464DDEFAFBFFDCBAF12B3BA11CE2D53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:d0:b3:cb:a9:c6:0c:62:69:f5:c5:37:41:93: 2c:48:f1:8b:8f:9b:90:e6:33:ee:aa:80:55:00:c0: aa:95:e8:80:04:2f:9d:de:51:2f:ea:6c:73:78:59: 15:6e:b1:a2:8f:ca:22:c9:18:11:96:68:2f:77:3a: 4a:33:07:00:ba:c1:4d:01:2b:e1:6e:e2:d6:11:90: 15:12:55:9a:b6:ae:2c:d0:e2:92:01:1b:ec:fe:f5: 54:a1:2d:84:8e:eb:23:3c:0d:f0:ac:f8:8d:e3:ee: c7:f5:7b:41:fb:7c:17:fb:26:67:76:63:48:0b:10: fb:a3:2c:25:5a:a3:35:00:05:20:77:0f:04:5f:79: 3e:e1:d7:72:88:d4:ef:0f:94:f2:75:98:3b:fb:e1: cd:c2:f1:fe:2e:6f:d3:46:03:3d:72:3f:47:54:f6: f9:d5:a0:8f:68:24:80:31:db:7c:88:fa:e6:9e:03: 28:8c:a0:85:36:65:36:a8:9d:4b:20:72:4b:b3:21: a4:a7:f2:66:89:d2:f3:33:2f:21:2a:76:9a:73:fa: 77:09:02:2a:85:1b:ac:33:a9:b9:fc:1c:2d:e6:77: 18:4f:5a:3f:4a:a7:4f:b3:03:9b:4e:b5:71:25:e8: 5c:b5:b9:36:6e:8a:8a:1f:30:5b:7f:5d:cc:02:99: cb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:84:F5:36:F4:64:DD:EF:AF:BF:FD:CB:AF:12:B3:BA:11:CE:2D:53 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3139302e302f32342d3234203d3e203234353230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.87.190.0/24 Signature Algorithm: sha256WithRSAEncryption 63:72:93:17:41:e3:65:a0:9f:e3:e0:d0:7f:77:a9:71:1e:21: 8a:f2:f6:6b:a4:60:e0:2f:5d:d1:5c:b8:af:90:62:88:7e:f6: 3d:df:89:ba:c4:bc:d4:15:76:08:5c:18:57:69:0e:ee:62:2f: 1c:52:fc:7d:2f:99:59:d0:41:99:53:6b:3e:82:8b:d0:7c:75: 2d:78:8c:5c:11:f6:15:e4:7a:3a:54:30:b7:8c:52:1a:ae:56: ce:9d:db:c6:69:1d:87:3c:79:12:06:f1:7c:f8:a0:ea:89:55: 27:2a:e8:ff:59:67:70:92:4e:2f:4b:50:09:df:88:1c:61:aa: 45:50:75:ae:b7:fc:e7:20:c5:ec:2a:cf:00:ea:25:3e:51:c5: 0f:f1:04:42:d7:fc:2b:82:0f:b2:98:8e:26:32:39:ce:2c:d0: 21:b8:c4:68:78:31:80:91:8e:44:b7:2c:64:95:0b:32:99:9c: f4:0c:ee:74:3f:5d:27:2f:0a:5b:ff:c1:d4:c1:b2:3e:cc:72: d0:54:7f:c8:12:22:3a:f6:cf:42:34:75:90:ac:02:2e:86:6b: 35:fa:7b:66:b0:68:de:db:ae:cb:50:44:05:9c:71:b8:fa:3e: 53:a3:28:54:3a:e2:63:da:69:93:6a:3c:d1:11:0e:a6:13:a2: 2a:90:50:70 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGRRnydTp5B8i3LYkadUOyUJZtGQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNTAzMDgwMzU3MjNaFw0yNjAzMDcwNDAyMjNaMDMxMTAvBgNV BAMTKEFCODRGNTM2RjQ2NERERUZBRkJGRkRDQkFGMTJCM0JBMTFDRTJENTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDw0LPLqcYMYmn1xTdBkyxI8YuP m5DmM+6qgFUAwKqV6IAEL53eUS/qbHN4WRVusaKPyiLJGBGWaC93OkozBwC6wU0B K+Fu4tYRkBUSVZq2rizQ4pIBG+z+9VShLYSO6yM8DfCs+I3j7sf1e0H7fBf7Jmd2 Y0gLEPujLCVaozUABSB3DwRfeT7h13KI1O8PlPJ1mDv74c3C8f4ub9NGAz1yP0dU 9vnVoI9oJIAx23yI+uaeAyiMoIU2ZTaonUsgckuzIaSn8maJ0vMzLyEqdppz+ncJ AiqFG6wzqbn8HC3mdxhPWj9Kp0+zA5tOtXEl6Fy1uTZuioofMFt/XcwCmcsHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUq4T1NvRk3e+vv/3LrxKzuhHOLVMwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMyMzAzMjJlMzgzNzJlMzEzOTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpXvjANBgkqhkiG 9w0BAQsFAAOCAQEAY3KTF0HjZaCf4+DQf3epcR4hivL2a6Rg4C9d0Vy4r5BiiH72 Pd+JusS81BV2CFwYV2kO7mIvHFL8fS+ZWdBBmVNrPoKL0Hx1LXiMXBH2FeR6OlQw t4xSGq5Wzp3bxmkdhzx5EgbxfPig6olVJyro/1lncJJOL0tQCd+IHGGqRVB1rrf8 5yDF7CrPAOolPlHFD/EEQtf8K4IPspiOJjI5zizQIbjEaHgxgJGORLcsZJULMpmc 9AzudD9dJy8KW//B1MGyPsxy0FR/yBIiOvbPQjR1kKwCLoZrNfp7ZrBo3tuuy1BE BZxxuPo+U6MoVDriY9ppk2o80REOphOiKpBQcA== -----END CERTIFICATE-----Generated at Sun Apr 6 10:53:08 2025 by rpki-client