$ rpki-client -vvf repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3230322e3138322e3136302e302f31392d3234203d3e2039383735.roa File: 3230322e3138322e3136302e302f31392d3234203d3e2039383735.roa (raw, json) Hash identifier: 44xJ+4HPqKcd5YyfQZtlfLdXLia/wNGmzcAqkBPsBnY= Subject key identifier: 40:DE:7E:BE:15:F8:D3:3C:B1:FA:37:EB:03:5B:E6:65:F8:63:5B:AF Certificate issuer: /CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Certificate serial: 0A14FA7093BB2D3BEF7EF1B716097621346789DC Authority key identifier: F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3230322e3138322e3136302e302f31392d3234203d3e2039383735.roa Signing time: Sat 01 Feb 2025 12:02:20 +0000 ROA not before: Sat 01 Feb 2025 11:57:20 +0000 ROA not after: Sat 31 Jan 2026 12:02:20 +0000 asID: 9875 IP address blocks: 202.182.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 01:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:14:fa:70:93:bb:2d:3b:ef:7e:f1:b7:16:09:76:21:34:67:89:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Validity Not Before: Feb 1 11:57:20 2025 GMT Not After : Jan 31 12:02:20 2026 GMT Subject: CN=40DE7EBE15F8D33CB1FA37EB035BE665F8635BAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:69:e7:a1:3f:2f:47:b8:38:2f:1f:31:7f:53: 45:b0:99:48:c4:ed:e3:46:59:29:5b:e8:62:35:00: 5f:a9:54:82:93:ad:16:fd:35:6c:9b:86:2f:b8:28: 2b:db:49:b9:fa:cc:29:35:7f:81:e1:42:4b:13:c0: 57:7f:94:98:2d:47:6f:6e:8c:7c:5a:06:15:cb:23: 83:93:5c:87:b1:d5:ef:32:ec:13:c6:20:f9:6a:97: 8e:53:87:7c:46:93:0a:bf:f8:59:e9:ed:ea:0f:fc: a1:43:3a:5b:81:4c:d5:d9:4d:2b:60:6f:b5:58:42: 7f:d8:87:b1:6d:97:00:e0:28:12:c8:d5:d7:15:db: 5d:00:05:31:db:e9:96:ab:2f:a7:bd:2a:ae:f9:0c: b3:aa:57:ee:84:29:1d:1e:df:51:f3:ae:0a:5b:21: 34:37:e4:2e:46:44:20:8c:fc:cb:16:35:2b:f0:be: b7:42:88:36:08:26:8d:87:d1:15:9d:29:3b:39:dd: b2:f2:11:57:2b:94:f5:a1:56:61:ed:66:57:2f:9d: 21:e1:f2:5e:55:36:c9:fb:4c:01:98:9d:cc:27:5d: 97:35:dd:93:95:65:73:6f:c1:94:15:13:75:d1:59: 89:39:f6:3e:2a:3b:9a:fb:75:b0:21:9f:70:9a:b2: 49:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:DE:7E:BE:15:F8:D3:3C:B1:FA:37:EB:03:5B:E6:65:F8:63:5B:AF X509v3 Authority Key Identifier: keyid:F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3230322e3138322e3136302e302f31392d3234203d3e2039383735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.182.160.0/19 Signature Algorithm: sha256WithRSAEncryption 96:8e:25:a5:0a:72:3d:6d:b9:95:4f:d4:db:17:4e:63:40:c7: a6:cc:7e:b3:4d:80:d9:04:d6:d5:63:80:59:17:e1:88:26:7d: 3a:18:53:ee:99:6b:c1:35:18:ce:e0:96:9d:5f:d8:03:bb:92: 70:f6:ee:f7:8a:20:28:6d:6e:25:89:d7:8c:c0:c7:eb:84:d2: 37:90:16:20:9f:97:3e:95:1f:b8:e8:f3:4d:5d:26:19:32:84: db:22:9a:26:d1:60:96:f8:21:5e:eb:45:cc:ca:b3:b4:a0:1e: e1:8a:e8:f3:21:2e:b9:69:62:49:c8:10:af:51:36:79:93:d7: b7:41:09:8a:f5:c7:07:10:b4:27:92:6a:b6:e7:00:3f:7f:08: 4b:ae:da:c4:dd:2d:e6:af:8a:5b:25:7e:36:d2:0c:f7:0a:35: 71:71:88:ff:7b:6b:af:05:24:5d:8c:35:71:81:8b:7c:8f:b6: e5:91:54:b9:f8:a8:05:29:7c:56:ff:c0:b2:84:64:94:cd:bb: 0d:b2:19:14:a4:1b:7c:2c:73:7e:3f:e7:0b:a4:b2:2d:46:80: d8:36:31:49:63:73:e6:1d:1c:2c:e5:93:4d:0b:2b:60:5b:87: 59:25:5f:16:b3:89:a0:c4:ac:aa:a1:15:b3:c8:7b:f7:8b:55: 25:b4:f7:53 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUChT6cJO7LTvvfvG3Fgl2ITRnidwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZG MjhGODA2NjAeFw0yNTAyMDExMTU3MjBaFw0yNjAxMzExMjAyMjBaMDMxMTAvBgNV BAMTKDQwREU3RUJFMTVGOEQzM0NCMUZBMzdFQjAzNUJFNjY1Rjg2MzVCQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzaeehPy9HuDgvHzF/U0WwmUjE 7eNGWSlb6GI1AF+pVIKTrRb9NWybhi+4KCvbSbn6zCk1f4HhQksTwFd/lJgtR29u jHxaBhXLI4OTXIex1e8y7BPGIPlql45Th3xGkwq/+Fnp7eoP/KFDOluBTNXZTStg b7VYQn/Yh7FtlwDgKBLI1dcV210ABTHb6ZarL6e9Kq75DLOqV+6EKR0e31Hzrgpb ITQ35C5GRCCM/MsWNSvwvrdCiDYIJo2H0RWdKTs53bLyEVcrlPWhVmHtZlcvnSHh 8l5VNsn7TAGYncwnXZc13ZOVZXNvwZQVE3XRWYk59j4qO5r7dbAhn3CaskmZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQN5+vhX40zyx+jfrA1vmZfhjW68wHwYDVR0j BBgwFoAU8zEnsiUkVLSRxdyf45N8VvKPgGYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmJmZTc3Ni0wMGEzLTQ3NzYtYmYzZi01MjExOTQ2MTAxYzMvMC9GMzMxMjdCMjI1 MjQ1NEI0OTFDNURDOUZFMzkzN0M1NkYyOEY4MDY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZGMjhG ODA2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViYmZlNzc2LTAwYTMtNDc3Ni1i ZjNmLTUyMTE5NDYxMDFjMy8wLzMyMzAzMjJlMzEzODMyMmUzMTM2MzAyZTMwMmYz MTM5MmQzMjM0MjAzZDNlMjAzOTM4MzczNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcq2oDANBgkqhkiG 9w0BAQsFAAOCAQEAlo4lpQpyPW25lU/U2xdOY0DHpsx+s02A2QTW1WOAWRfhiCZ9 OhhT7plrwTUYzuCWnV/YA7uScPbu94ogKG1uJYnXjMDH64TSN5AWIJ+XPpUfuOjz TV0mGTKE2yKaJtFglvghXutFzMqztKAe4Yro8yEuuWliScgQr1E2eZPXt0EJivXH BxC0J5JqtucAP38IS67axN0t5q+KWyV+NtIM9wo1cXGI/3trrwUkXYw1cYGLfI+2 5ZFUufioBSl8Vv/AsoRklM27DbIZFKQbfCxzfj/nC6SyLUaA2DYxSWNz5h0cLOWT TQsrYFuHWSVfFrOJoMSsqqEVs8h794tVJbT3Uw== -----END CERTIFICATE-----Generated at Sun Apr 6 07:07:34 2025 by rpki-client