$ rpki-client -vvf repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3230322e37332e3232342e302f32312d3234203d3e203138303034.roa File: 3230322e37332e3232342e302f32312d3234203d3e203138303034.roa (raw, json) Hash identifier: MYkgPF54ZFrZUvgyAUVZduFZA6VqGujX+c3smzb0mEg= Subject key identifier: D8:14:20:B1:A7:AD:A5:85:EA:FE:14:9E:DC:75:AF:42:36:E2:00:C9 Certificate issuer: /CN=735D87BA86773AC70137CF53116358A1F3B19766 Certificate serial: 57DF93AFCECDA134D6229CF1007628C45E71E9A1 Authority key identifier: 73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3230322e37332e3232342e302f32312d3234203d3e203138303034.roa Signing time: Sun 04 May 2025 04:00:02 +0000 ROA not before: Sun 04 May 2025 03:55:02 +0000 ROA not after: Sun 03 May 2026 04:00:02 +0000 asID: 18004 IP address blocks: 202.73.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 02:45:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:df:93:af:ce:cd:a1:34:d6:22:9c:f1:00:76:28:c4:5e:71:e9:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=735D87BA86773AC70137CF53116358A1F3B19766 Validity Not Before: May 4 03:55:02 2025 GMT Not After : May 3 04:00:02 2026 GMT Subject: CN=D81420B1A7ADA585EAFE149EDC75AF4236E200C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2f:10:d0:24:20:c9:ad:88:a3:02:bd:b5:fc: 35:e4:c7:3a:9a:79:9c:a4:ab:47:99:46:34:40:67: a0:f5:76:e5:28:80:c0:65:a3:fb:9f:7b:ee:92:e0: 09:bc:17:31:85:28:1f:4d:8c:ce:53:03:d5:97:c7: 76:fe:e9:0c:9a:c4:52:ed:56:be:40:35:72:21:ca: 82:de:d0:d7:6d:c0:74:6a:76:65:9a:a8:4a:c8:43: 59:98:32:49:98:f3:24:52:f6:8d:7c:17:60:1c:96: 3a:74:f2:fd:2d:9f:9f:7f:d8:d1:2d:bc:70:dd:45: 3a:03:66:07:e1:72:47:9b:05:e0:35:5a:27:31:c7: ff:bd:29:66:08:f0:7c:65:1d:6b:59:90:16:7f:c2: a6:69:7b:12:5e:9c:21:70:2b:ae:49:98:c7:8c:21: 97:2d:42:cd:d9:6a:49:b0:45:b3:7e:03:34:bc:19: 33:cc:4c:d8:d0:7b:45:83:4c:87:6f:89:b9:e7:bb: b1:af:a5:6f:ac:8a:04:42:44:23:8c:25:7f:4c:85: d2:b1:93:33:c8:52:cf:5f:c8:76:9f:83:13:02:78: 85:cb:6c:f6:91:f2:d0:d8:3b:08:1c:b5:94:f6:be: 53:c4:64:f5:0d:f5:83:7d:3e:bc:d4:c0:28:52:f6: 30:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:14:20:B1:A7:AD:A5:85:EA:FE:14:9E:DC:75:AF:42:36:E2:00:C9 X509v3 Authority Key Identifier: keyid:73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3230322e37332e3232342e302f32312d3234203d3e203138303034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.224.0/21 Signature Algorithm: sha256WithRSAEncryption 1d:4d:b5:a8:42:ef:e2:bb:f3:23:4b:4f:82:6b:30:16:08:1c: db:e7:3e:a6:83:70:c5:7b:12:d5:f8:da:ef:90:b4:cb:c3:88: 92:00:12:6b:10:7b:99:c2:f3:bd:01:17:94:96:b1:fd:2f:fd: 2e:21:06:16:32:69:f6:d9:cb:72:de:8e:98:20:6f:8b:63:1a: 68:26:fb:65:16:96:02:cf:e6:7b:44:34:0b:2b:c7:77:61:b8: f7:3b:bc:33:c1:41:e0:bd:be:43:e8:0f:cc:ea:c5:bf:50:1b: c6:b2:36:57:72:b1:0e:39:0d:f3:e7:be:0a:48:eb:b5:ad:01: 92:33:1c:77:74:78:11:4b:aa:02:61:fc:93:a9:62:3e:c7:7d: 75:9a:ce:f1:20:c6:e7:0a:ef:47:f8:dd:44:03:1d:4c:c0:9a: 68:e4:ac:b6:9e:24:f3:d4:5f:8d:26:78:37:b7:af:e1:a3:3e: 0f:11:3b:19:93:bb:67:1c:0b:e4:f4:10:3a:62:d8:0a:de:34: 4a:9c:4e:50:14:c5:5e:b4:48:be:06:95:0b:10:91:ee:80:f5: ff:dc:65:39:da:37:54:42:e2:35:33:2a:14:d3:d5:41:44:e9: d0:cb:bc:a1:2e:6c:ef:87:37:4f:e4:e1:39:92:48:b0:3f:6a: 0e:e0:ca:06 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUV9+Tr87NoTTWIpzxAHYoxF5x6aEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFG M0IxOTc2NjAeFw0yNTA1MDQwMzU1MDJaFw0yNjA1MDMwNDAwMDJaMDMxMTAvBgNV BAMTKEQ4MTQyMEIxQTdBREE1ODVFQUZFMTQ5RURDNzVBRjQyMzZFMjAwQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdLxDQJCDJrYijAr21/DXkxzqa eZykq0eZRjRAZ6D1duUogMBlo/ufe+6S4Am8FzGFKB9NjM5TA9WXx3b+6QyaxFLt Vr5ANXIhyoLe0NdtwHRqdmWaqErIQ1mYMkmY8yRS9o18F2Acljp08v0tn59/2NEt vHDdRToDZgfhckebBeA1Wicxx/+9KWYI8HxlHWtZkBZ/wqZpexJenCFwK65JmMeM IZctQs3ZakmwRbN+AzS8GTPMTNjQe0WDTIdvibnnu7GvpW+sigRCRCOMJX9MhdKx kzPIUs9fyHafgxMCeIXLbPaR8tDYOwgctZT2vlPEZPUN9YN9PrzUwChS9jAdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2BQgsaetpYXq/hSe3HWvQjbiAMkwHwYDVR0j BBgwFoAUc12HuoZ3OscBN89TEWNYofOxl2YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjVkMzY0YS1kYTBiLTQ1NDAtOTM0OS01OTMwYmQ3MjVjZTMvMC83MzVEODdCQTg2 NzczQUM3MDEzN0NGNTMxMTYzNThBMUYzQjE5NzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFGM0Ix OTc2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNWQzNjRhLWRhMGItNDU0MC05 MzQ5LTU5MzBiZDcyNWNlMy8wLzMyMzAzMjJlMzczMzJlMzIzMjM0MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzEzODMwMzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8pJ4DANBgkqhkiG 9w0BAQsFAAOCAQEAHU21qELv4rvzI0tPgmswFggc2+c+poNwxXsS1fja75C0y8OI kgASaxB7mcLzvQEXlJax/S/9LiEGFjJp9tnLct6OmCBvi2MaaCb7ZRaWAs/me0Q0 CyvHd2G49zu8M8FB4L2+Q+gPzOrFv1AbxrI2V3KxDjkN8+e+Ckjrta0BkjMcd3R4 EUuqAmH8k6liPsd9dZrO8SDG5wrvR/jdRAMdTMCaaOSstp4k89RfjSZ4N7ev4aM+ DxE7GZO7ZxwL5PQQOmLYCt40SpxOUBTFXrRIvgaVCxCR7oD1/9xlOdo3VELiNTMq FNPVQUTp0Mu8oS5s74c3T+ThOZJIsD9qDuDKBg== -----END CERTIFICATE-----Generated at Sun May 11 19:57:26 2025 by rpki-client