$ rpki-client -vvf repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3230322e3138322e3137342e302f32342d3234203d3e203538343738.roa File: 3230322e3138322e3137342e302f32342d3234203d3e203538343738.roa (raw, json) Hash identifier: xd0vdotwl3DI/gtzK9jd/Z1SgDoCaQpGK+EAJgcM1tI= Subject key identifier: C8:D9:04:3C:33:46:6A:F7:94:13:99:9F:65:7A:FE:70:A7:FA:21:BD Certificate issuer: /CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Certificate serial: 7F8B28FA4BD53478F961F2E892F2778204F36A93 Authority key identifier: F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3230322e3138322e3137342e302f32342d3234203d3e203538343738.roa Signing time: Sat 01 Feb 2025 12:02:20 +0000 ROA not before: Sat 01 Feb 2025 11:57:20 +0000 ROA not after: Sat 31 Jan 2026 12:02:20 +0000 asID: 58478 IP address blocks: 202.182.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 14:41:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:8b:28:fa:4b:d5:34:78:f9:61:f2:e8:92:f2:77:82:04:f3:6a:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Validity Not Before: Feb 1 11:57:20 2025 GMT Not After : Jan 31 12:02:20 2026 GMT Subject: CN=C8D9043C33466AF79413999F657AFE70A7FA21BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:14:b7:2e:e7:21:1f:83:19:3f:61:e7:71:a1: 2b:69:68:16:27:0d:fe:3a:2e:1a:33:26:29:e8:4c: a9:9c:14:04:37:87:71:96:4a:43:57:91:d4:d7:57: 0d:17:41:04:2f:88:0e:56:1c:03:3f:c1:5d:4c:cd: cd:44:f7:ba:7d:fd:a1:5d:f1:7a:62:08:7c:41:40: 5d:14:a6:01:15:d0:7a:73:d7:5a:8c:c4:30:ae:10: cd:c0:1d:fd:e1:7f:b3:93:f9:03:8c:d6:97:5e:35: 30:e5:b4:0f:f8:1c:60:36:7f:d2:43:3d:b0:08:4c: a3:84:26:86:ef:12:6c:3a:6d:ec:b9:a8:29:ff:12: 49:67:c6:f4:41:95:8e:4c:8b:4e:f5:30:50:01:3a: 31:95:c2:4f:c8:c6:2f:14:ef:f6:f8:2a:40:55:5f: 7f:6b:49:ad:cd:c6:47:b2:fa:e9:b6:85:9a:45:2d: 23:0f:ab:78:34:f8:6e:f5:84:cc:74:7e:26:6d:64: bb:92:0d:d7:50:50:14:1a:a4:cf:3b:f0:50:ad:a3: f6:27:1e:9e:31:63:5c:b4:6d:8b:3b:c4:a8:13:74: 70:34:76:c7:32:dc:e3:2f:64:96:3d:fd:8a:d0:18: c0:cc:79:30:72:bd:1f:68:6f:32:04:33:17:20:a7: 7f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:D9:04:3C:33:46:6A:F7:94:13:99:9F:65:7A:FE:70:A7:FA:21:BD X509v3 Authority Key Identifier: keyid:F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3230322e3138322e3137342e302f32342d3234203d3e203538343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.182.174.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:8c:76:08:b3:e8:39:c3:33:5a:3c:be:6a:d0:1f:d6:f3:1e: 7b:50:c0:9b:dc:8c:34:5d:4e:2c:f1:21:75:49:6d:47:80:88: 46:89:29:a4:6b:8b:9a:08:7e:66:76:98:4b:77:cf:a7:ff:a6: e7:f9:89:8d:e7:2e:d9:17:c7:62:37:bb:0c:bc:c8:3d:27:03: ff:3d:9c:c4:21:7b:50:f3:96:54:1d:e1:c8:df:da:35:ba:bf: fa:37:f9:ff:28:69:56:a9:11:ff:e0:64:37:45:1f:83:0f:46: e5:7a:4c:76:64:d1:bd:75:71:3b:c6:1f:da:aa:db:bf:f2:b5: d0:67:a8:69:94:ba:0c:87:de:a5:20:6a:da:84:9b:1b:ec:3a: 30:e6:37:d3:64:f5:80:cf:e4:8a:93:9d:f0:b4:9d:55:4f:5d: 23:8c:78:a9:9d:55:cb:34:b2:77:89:3f:c0:b3:a1:91:41:e3: 87:4b:60:9e:01:10:c6:9b:9d:60:6c:a7:02:d3:0d:ed:c0:b3: 98:0c:ed:61:8e:98:33:9e:83:31:9c:f0:c9:25:ff:d9:02:be: 70:41:26:09:98:dd:16:38:94:93:c3:64:bd:95:33:70:32:55: 5f:44:db:3d:90:cc:b5:a4:b4:fa:99:94:80:82:5c:b3:e7:c5: 97:ad:f5:5f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUf4so+kvVNHj5YfLokvJ3ggTzapMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZG MjhGODA2NjAeFw0yNTAyMDExMTU3MjBaFw0yNjAxMzExMjAyMjBaMDMxMTAvBgNV BAMTKEM4RDkwNDNDMzM0NjZBRjc5NDEzOTk5RjY1N0FGRTcwQTdGQTIxQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnFLcu5yEfgxk/YedxoStpaBYn Df46LhozJinoTKmcFAQ3h3GWSkNXkdTXVw0XQQQviA5WHAM/wV1Mzc1E97p9/aFd 8XpiCHxBQF0UpgEV0Hpz11qMxDCuEM3AHf3hf7OT+QOM1pdeNTDltA/4HGA2f9JD PbAITKOEJobvEmw6bey5qCn/EklnxvRBlY5Mi071MFABOjGVwk/Ixi8U7/b4KkBV X39rSa3Nxkey+um2hZpFLSMPq3g0+G71hMx0fiZtZLuSDddQUBQapM878FCto/Yn Hp4xY1y0bYs7xKgTdHA0dscy3OMvZJY9/YrQGMDMeTByvR9obzIEMxcgp3+JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyNkEPDNGaveUE5mfZXr+cKf6Ib0wHwYDVR0j BBgwFoAU8zEnsiUkVLSRxdyf45N8VvKPgGYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmJmZTc3Ni0wMGEzLTQ3NzYtYmYzZi01MjExOTQ2MTAxYzMvMC9GMzMxMjdCMjI1 MjQ1NEI0OTFDNURDOUZFMzkzN0M1NkYyOEY4MDY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZGMjhG ODA2Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViYmZlNzc2LTAwYTMtNDc3Ni1i ZjNmLTUyMTE5NDYxMDFjMy8wLzMyMzAzMjJlMzEzODMyMmUzMTM3MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyrauMA0GCSqG SIb3DQEBCwUAA4IBAQBfjHYIs+g5wzNaPL5q0B/W8x57UMCb3Iw0XU4s8SF1SW1H gIhGiSmka4uaCH5mdphLd8+n/6bn+YmN5y7ZF8diN7sMvMg9JwP/PZzEIXtQ85ZU HeHI39o1ur/6N/n/KGlWqRH/4GQ3RR+DD0blekx2ZNG9dXE7xh/aqtu/8rXQZ6hp lLoMh96lIGrahJsb7Dow5jfTZPWAz+SKk53wtJ1VT10jjHipnVXLNLJ3iT/As6GR QeOHS2CeARDGm51gbKcC0w3twLOYDO1hjpgznoMxnPDJJf/ZAr5wQSYJmN0WOJST w2S9lTNwMlVfRNs9kMy1pLT6mZSAglyz58WXrfVf -----END CERTIFICATE-----Generated at Tue Mar 11 05:00:39 2025 by rpki-client