$ rpki-client -vvf repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3230332e3135332e3131322e302f32312d3234203d3e203234323037.roa File: 3230332e3135332e3131322e302f32312d3234203d3e203234323037.roa (raw, json) Hash identifier: Zks55AdYxfoprGZkiZN/TIj//KiubcvneSX7655/CJQ= Subject key identifier: BC:2F:7D:10:86:93:11:7D:AB:92:C5:7C:74:5D:99:93:F4:4E:19:B2 Certificate issuer: /CN=3C790FE4AB82A2C15017D265714B1245BF0AFB0F Certificate serial: 4D23B0C24908B14036792982481B49FA94718CCC Authority key identifier: 3C:79:0F:E4:AB:82:A2:C1:50:17:D2:65:71:4B:12:45:BF:0A:FB:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3230332e3135332e3131322e302f32312d3234203d3e203234323037.roa Signing time: Wed 12 Feb 2025 04:00:01 +0000 ROA not before: Wed 12 Feb 2025 03:55:01 +0000 ROA not after: Wed 11 Feb 2026 04:00:01 +0000 asID: 24207 IP address blocks: 203.153.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.crl rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:23:b0:c2:49:08:b1:40:36:79:29:82:48:1b:49:fa:94:71:8c:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C790FE4AB82A2C15017D265714B1245BF0AFB0F Validity Not Before: Feb 12 03:55:01 2025 GMT Not After : Feb 11 04:00:01 2026 GMT Subject: CN=BC2F7D108693117DAB92C57C745D9993F44E19B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b7:72:83:66:5c:57:71:d8:3d:2a:a9:93:a0: a1:90:f3:c4:9c:8f:0f:a9:be:d0:aa:d4:4b:11:af: 61:c7:c1:d9:7d:1c:cb:16:59:0a:8a:69:0e:2c:10: ff:4a:34:8f:33:f8:e7:d4:47:52:1d:8d:c7:13:3d: 49:4d:4d:23:9b:5a:31:a1:8c:5d:6a:26:4e:77:b7: 08:3a:4b:76:b6:35:0c:78:3c:e7:65:3c:5e:c0:84: c3:34:e2:e1:4e:23:f0:f0:5c:24:af:e6:74:ed:e1: 4d:85:82:66:9f:a6:e7:04:12:32:c3:bc:21:41:ff: 6a:63:5f:32:2d:93:93:d9:37:07:76:f7:c9:6b:04: 67:c9:90:7d:cd:cf:46:46:6d:81:64:b5:05:39:d5: 7a:cd:ea:e5:6d:6e:5e:79:e3:02:d1:7c:f6:7d:47: 98:34:03:61:ee:60:4e:35:4e:a9:03:b3:0a:f3:1e: 8f:ef:ce:50:a1:99:de:49:9a:70:4f:40:c7:9c:ee: 28:e7:fd:a6:e3:e7:78:12:63:b8:e6:83:d0:63:b3: c8:75:22:47:16:8d:20:e3:10:60:33:db:97:27:98: 45:d4:bb:58:0c:af:07:1e:d7:25:32:9f:97:4c:48: c7:87:fb:d1:19:72:c6:23:d0:bf:e4:48:4c:1e:24: 20:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:2F:7D:10:86:93:11:7D:AB:92:C5:7C:74:5D:99:93:F4:4E:19:B2 X509v3 Authority Key Identifier: keyid:3C:79:0F:E4:AB:82:A2:C1:50:17:D2:65:71:4B:12:45:BF:0A:FB:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3230332e3135332e3131322e302f32312d3234203d3e203234323037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.112.0/21 Signature Algorithm: sha256WithRSAEncryption 11:52:e0:bc:64:97:be:95:48:33:93:be:c9:ec:05:fe:85:21: 62:99:45:d9:00:83:6b:6b:80:ed:db:00:6f:7b:1c:11:d4:06: 36:28:6c:ad:06:46:cf:bf:67:f4:0a:e8:84:58:76:a5:e3:09: 4e:28:c4:df:3e:80:26:78:c8:ed:54:23:c0:24:94:07:41:99: f2:c3:9d:7f:d5:30:b8:f4:d2:80:59:23:7f:bb:1a:43:bc:16: 56:63:f8:e3:a9:b1:b5:4b:03:ee:ac:d6:46:a0:82:28:6d:03: 12:65:bf:4c:90:c1:33:5b:dd:ea:52:d4:14:26:0a:00:69:67: 41:75:82:e3:57:0d:70:a5:25:b6:07:00:81:28:01:94:7d:f1: 1c:66:6f:b7:0d:c8:7f:ee:f9:23:48:77:8f:d7:f3:5f:47:f7: 87:77:c2:27:f5:54:0e:74:71:2d:0f:35:24:49:c6:67:8d:81: 55:bb:4a:ac:39:83:54:75:60:69:de:fd:4d:5e:93:0c:5a:1a: 41:ec:e3:55:15:55:37:da:af:08:7a:27:89:48:9a:9a:4d:df: 47:ca:2b:bc:17:17:79:f9:ca:44:4d:ec:59:4b:a0:2f:7c:11: 0f:58:6b:92:4f:d4:c2:43:f4:09:af:ea:11:6a:3d:d8:42:c5: 9d:20:9b:2f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTSOwwkkIsUA2eSmCSBtJ+pRxjMwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M3OTBGRTRBQjgyQTJDMTUwMTdEMjY1NzE0QjEyNDVC RjBBRkIwRjAeFw0yNTAyMTIwMzU1MDFaFw0yNjAyMTEwNDAwMDFaMDMxMTAvBgNV BAMTKEJDMkY3RDEwODY5MzExN0RBQjkyQzU3Qzc0NUQ5OTkzRjQ0RTE5QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQt3KDZlxXcdg9KqmToKGQ88Sc jw+pvtCq1EsRr2HHwdl9HMsWWQqKaQ4sEP9KNI8z+OfUR1IdjccTPUlNTSObWjGh jF1qJk53twg6S3a2NQx4POdlPF7AhMM04uFOI/DwXCSv5nTt4U2FgmafpucEEjLD vCFB/2pjXzItk5PZNwd298lrBGfJkH3Nz0ZGbYFktQU51XrN6uVtbl554wLRfPZ9 R5g0A2HuYE41TqkDswrzHo/vzlChmd5JmnBPQMec7ijn/abj53gSY7jmg9Bjs8h1 IkcWjSDjEGAz25cnmEXUu1gMrwce1yUyn5dMSMeH+9EZcsYj0L/kSEweJCDdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvC99EIaTEX2rksV8dF2Zk/ROGbIwHwYDVR0j BBgwFoAUPHkP5KuCosFQF9JlcUsSRb8K+w8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YzdlODA4MS02M2FmLTQ5ZTctOTY0Ni03NmMyNWE1ZTk3Y2EvMC8zQzc5MEZFNEFC ODJBMkMxNTAxN0QyNjU3MTRCMTI0NUJGMEFGQjBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0M3OTBGRTRBQjgyQTJDMTUwMTdEMjY1NzE0QjEyNDVCRjBB RkIwRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjN2U4MDgxLTYzYWYtNDllNy05 NjQ2LTc2YzI1YTVlOTdjYS8wLzMyMzAzMzJlMzEzNTMzMmUzMTMxMzIyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMjM0MzIzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDy5lwMA0GCSqG SIb3DQEBCwUAA4IBAQARUuC8ZJe+lUgzk77J7AX+hSFimUXZAINra4Dt2wBvexwR 1AY2KGytBkbPv2f0CuiEWHal4wlOKMTfPoAmeMjtVCPAJJQHQZnyw51/1TC49NKA WSN/uxpDvBZWY/jjqbG1SwPurNZGoIIobQMSZb9MkMEzW93qUtQUJgoAaWdBdYLj Vw1wpSW2BwCBKAGUffEcZm+3Dch/7vkjSHeP1/NfR/eHd8In9VQOdHEtDzUkScZn jYFVu0qsOYNUdWBp3v1NXpMMWhpB7ONVFVU32q8IeieJSJqaTd9Hyiu8Fxd5+cpE TexZS6AvfBEPWGuST9TCQ/QJr+oRaj3YQsWdIJsv -----END CERTIFICATE-----Generated at Sun Apr 6 13:43:33 2025 by rpki-client