$ rpki-client -vvf repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3230332e3135332e39362e302f32302d3234203d3e203234323037.roa File: 3230332e3135332e39362e302f32302d3234203d3e203234323037.roa (raw, json) Hash identifier: EDTzr0RnERkDSs2/M4R/0RtE2R+ut3mngAzM50kbtVY= Subject key identifier: 80:C2:83:9C:E2:51:90:E2:A1:3F:1B:84:F0:46:C3:7C:16:BB:19:24 Certificate issuer: /CN=3C790FE4AB82A2C15017D265714B1245BF0AFB0F Certificate serial: 4EEAA8D5092B3F7BD5BDB31A8A867476FC8EE05D Authority key identifier: 3C:79:0F:E4:AB:82:A2:C1:50:17:D2:65:71:4B:12:45:BF:0A:FB:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3230332e3135332e39362e302f32302d3234203d3e203234323037.roa Signing time: Wed 12 Feb 2025 04:00:01 +0000 ROA not before: Wed 12 Feb 2025 03:55:01 +0000 ROA not after: Wed 11 Feb 2026 04:00:01 +0000 asID: 24207 IP address blocks: 203.153.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.crl rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ea:a8:d5:09:2b:3f:7b:d5:bd:b3:1a:8a:86:74:76:fc:8e:e0:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C790FE4AB82A2C15017D265714B1245BF0AFB0F Validity Not Before: Feb 12 03:55:01 2025 GMT Not After : Feb 11 04:00:01 2026 GMT Subject: CN=80C2839CE25190E2A13F1B84F046C37C16BB1924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5f:7d:3e:39:14:e4:48:b4:87:79:73:3f:de: 46:79:43:3e:4f:2d:cf:6b:07:a9:81:96:b4:c3:d7: b8:39:cb:c9:33:63:71:2a:69:df:eb:54:19:04:97: 1a:c5:6c:6c:66:24:0b:7b:69:bb:d3:3b:6e:92:85: 07:c5:ce:6c:c8:70:c0:ce:ac:38:c2:76:75:a6:3e: b3:dc:21:ca:73:ff:0d:f7:a5:90:a9:ff:5b:de:ef: eb:9a:61:ff:42:f2:11:e9:5f:4e:a0:99:01:bc:cd: fa:f8:2d:a8:9f:0f:19:57:60:f9:52:93:c9:18:c1: fd:bc:b1:3f:c9:9f:30:fb:36:40:b7:b6:42:78:b5: db:6b:f7:e7:2d:aa:9b:41:06:bb:62:57:6c:58:01: 33:ae:c3:b7:b1:e3:02:82:81:16:8e:f4:82:bc:23: 30:b3:36:56:e5:8c:82:b9:78:89:02:51:b2:68:a4: 64:03:e0:b7:52:24:7e:94:85:a3:85:7a:6f:af:70: 31:2d:d7:42:c0:0d:13:54:96:5d:0c:f2:e2:24:3b: 8b:fb:c3:4d:02:80:79:6e:a4:d2:32:d8:6d:df:64: 79:ca:ef:b5:5a:c1:78:8a:1e:6e:9d:1b:d0:1f:d9: df:38:6b:88:e5:41:5f:13:70:64:0f:79:12:58:5f: 3d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:C2:83:9C:E2:51:90:E2:A1:3F:1B:84:F0:46:C3:7C:16:BB:19:24 X509v3 Authority Key Identifier: keyid:3C:79:0F:E4:AB:82:A2:C1:50:17:D2:65:71:4B:12:45:BF:0A:FB:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3230332e3135332e39362e302f32302d3234203d3e203234323037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.96.0/20 Signature Algorithm: sha256WithRSAEncryption 76:81:6b:db:ac:b1:ca:ae:f5:82:30:a8:01:b9:fe:14:50:3d: 0c:b4:45:37:92:0f:2d:be:29:ab:77:a4:ac:f5:0a:5c:70:c3: 06:f3:bb:31:fa:4c:9f:48:e2:e6:32:d8:b6:ff:25:ab:8a:31: 82:d0:bd:1e:3d:95:d7:01:22:4e:ac:f8:8d:4a:29:4a:e1:a2: 3c:fc:6b:6a:f9:97:0d:15:88:cc:c7:a4:f2:c6:0a:ad:1e:24: 18:ee:10:71:96:d8:27:69:96:c5:e6:d3:6f:b7:15:d8:ea:28: a3:b8:5a:a6:11:16:84:93:84:62:55:01:bf:35:37:53:7f:04: 47:dc:7c:99:51:9a:fb:f0:7d:89:91:27:ec:0d:fb:e9:5b:89: 37:8c:30:56:05:53:b5:bc:be:c0:0d:77:c4:d1:da:5e:64:72: 7f:bf:9a:e3:02:30:91:5e:4e:8a:b0:1c:62:25:09:b3:22:0d: 2c:39:4e:3d:b2:22:b7:fb:3d:5b:d1:86:3b:ed:49:f4:40:46: f3:e6:b4:f4:16:48:7c:57:e7:4e:d0:8a:28:10:e4:bb:ca:85: 7c:5b:84:ae:94:28:15:9a:c0:3a:31:c2:f8:9c:88:1c:24:27: 9b:87:5f:59:cd:8a:0c:8c:77:73:49:a1:d7:4e:e6:8d:fa:e7: a6:d7:3d:fb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTuqo1QkrP3vVvbMaioZ0dvyO4F0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M3OTBGRTRBQjgyQTJDMTUwMTdEMjY1NzE0QjEyNDVC RjBBRkIwRjAeFw0yNTAyMTIwMzU1MDFaFw0yNjAyMTEwNDAwMDFaMDMxMTAvBgNV BAMTKDgwQzI4MzlDRTI1MTkwRTJBMTNGMUI4NEYwNDZDMzdDMTZCQjE5MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVX30+ORTkSLSHeXM/3kZ5Qz5P Lc9rB6mBlrTD17g5y8kzY3Eqad/rVBkElxrFbGxmJAt7abvTO26ShQfFzmzIcMDO rDjCdnWmPrPcIcpz/w33pZCp/1ve7+uaYf9C8hHpX06gmQG8zfr4LaifDxlXYPlS k8kYwf28sT/JnzD7NkC3tkJ4tdtr9+ctqptBBrtiV2xYATOuw7ex4wKCgRaO9IK8 IzCzNlbljIK5eIkCUbJopGQD4LdSJH6UhaOFem+vcDEt10LADRNUll0M8uIkO4v7 w00CgHlupNIy2G3fZHnK77VawXiKHm6dG9Af2d84a4jlQV8TcGQPeRJYXz0bAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgMKDnOJRkOKhPxuE8EbDfBa7GSQwHwYDVR0j BBgwFoAUPHkP5KuCosFQF9JlcUsSRb8K+w8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YzdlODA4MS02M2FmLTQ5ZTctOTY0Ni03NmMyNWE1ZTk3Y2EvMC8zQzc5MEZFNEFC ODJBMkMxNTAxN0QyNjU3MTRCMTI0NUJGMEFGQjBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0M3OTBGRTRBQjgyQTJDMTUwMTdEMjY1NzE0QjEyNDVCRjBB RkIwRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjN2U4MDgxLTYzYWYtNDllNy05 NjQ2LTc2YzI1YTVlOTdjYS8wLzMyMzAzMzJlMzEzNTMzMmUzOTM2MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMuZYDANBgkqhkiG 9w0BAQsFAAOCAQEAdoFr26yxyq71gjCoAbn+FFA9DLRFN5IPLb4pq3ekrPUKXHDD BvO7MfpMn0ji5jLYtv8lq4oxgtC9Hj2V1wEiTqz4jUopSuGiPPxravmXDRWIzMek 8sYKrR4kGO4QcZbYJ2mWxebTb7cV2Oooo7haphEWhJOEYlUBvzU3U38ER9x8mVGa +/B9iZEn7A376VuJN4wwVgVTtby+wA13xNHaXmRyf7+a4wIwkV5OirAcYiUJsyIN LDlOPbIit/s9W9GGO+1J9EBG8+a09BZIfFfnTtCKKBDku8qFfFuErpQoFZrAOjHC +JyIHCQnm4dfWc2KDIx3c0mh107mjfrnptc9+w== -----END CERTIFICATE-----Generated at Sun Apr 6 13:43:38 2025 by rpki-client