$ rpki-client -vvf repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134332e302f32342d3234203d3e20313431363037.roa File: 3231302e37392e3134332e302f32342d3234203d3e20313431363037.roa (raw, json) Hash identifier: jqfTRowotRE9toTW7s6XxuVzWTLvd0wPa0s2vyImrss= Subject key identifier: 4A:CB:1E:4B:E7:4E:EA:78:A3:A2:8B:59:BB:3F:4E:66:2B:E7:D7:42 Certificate issuer: /CN=C3359BEBF0C15C9D4739CE88BFB2142D15A99313 Certificate serial: 6EC9EC8125F5F07E75DCACFBC658BC818F4F7E34 Authority key identifier: C3:35:9B:EB:F0:C1:5C:9D:47:39:CE:88:BF:B2:14:2D:15:A9:93:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134332e302f32342d3234203d3e20313431363037.roa Signing time: Wed 07 May 2025 11:21:50 +0000 ROA not before: Wed 07 May 2025 11:16:50 +0000 ROA not after: Wed 06 May 2026 11:21:50 +0000 asID: 141607 IP address blocks: 210.79.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.crl rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 13:52:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:c9:ec:81:25:f5:f0:7e:75:dc:ac:fb:c6:58:bc:81:8f:4f:7e:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3359BEBF0C15C9D4739CE88BFB2142D15A99313 Validity Not Before: May 7 11:16:50 2025 GMT Not After : May 6 11:21:50 2026 GMT Subject: CN=4ACB1E4BE74EEA78A3A28B59BB3F4E662BE7D742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:13:92:4d:6c:4a:52:7d:ff:60:e4:93:8f:d4: 0a:b9:42:a9:5e:06:e8:a8:03:4f:2d:f7:2e:0a:5b: 94:3a:70:bb:8a:8b:1c:15:69:1d:45:76:49:83:84: 86:8f:08:fd:7c:d3:11:0f:a3:71:70:cb:70:05:a6: c5:dc:06:e6:4c:94:4b:d3:33:85:e8:da:41:f4:e5: 1b:c6:d0:2f:66:d2:41:96:bf:89:fe:64:5a:96:ab: 0b:90:fa:09:ab:57:e3:09:3d:93:6e:b2:28:a1:14: 31:c8:47:f8:a9:a8:33:b9:b7:6f:00:8e:60:ed:7e: 78:e5:7b:f0:c0:cb:86:a4:a8:14:f8:02:ab:bc:4a: 70:38:9c:08:25:28:84:35:78:67:27:f5:9c:35:59: 81:46:c3:2a:11:95:b0:d1:22:86:f3:27:21:53:96: 1f:fe:94:87:aa:8c:bc:f1:55:a9:34:24:45:10:0f: b7:31:ac:91:ce:2a:a8:4f:ac:65:16:32:1d:ff:9a: d1:9f:6e:52:4d:f8:ed:23:19:50:89:9c:b2:1a:af: 48:a5:20:3a:09:f0:22:ea:3e:fb:94:f6:15:a7:31: 0f:ec:ea:c0:b2:ff:e1:ee:f8:ce:a1:2a:9d:97:e9: 96:49:fa:52:f5:30:7d:03:60:ce:65:6b:b9:d7:49: eb:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:CB:1E:4B:E7:4E:EA:78:A3:A2:8B:59:BB:3F:4E:66:2B:E7:D7:42 X509v3 Authority Key Identifier: keyid:C3:35:9B:EB:F0:C1:5C:9D:47:39:CE:88:BF:B2:14:2D:15:A9:93:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134332e302f32342d3234203d3e20313431363037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.79.143.0/24 Signature Algorithm: sha256WithRSAEncryption 69:49:a0:9c:10:98:d5:11:52:30:d5:e4:58:9b:6a:7b:a3:6f: 55:5f:1a:68:b5:9e:2c:0e:81:09:a2:5f:16:02:ab:fd:ce:53: 5c:f5:1b:3d:c9:11:02:d9:a4:f3:80:3f:53:d0:a2:ad:5b:17: 40:6b:00:56:45:32:1a:53:7f:70:ea:60:9d:6c:97:24:27:ac: b6:f4:2a:92:44:15:ee:03:86:ee:55:45:ea:e9:03:d4:ba:0d: a0:e5:2c:3e:b3:71:1a:01:eb:87:6b:d5:da:f9:de:65:c5:ee: 07:3a:23:1e:88:8d:7b:67:a9:11:a5:73:82:56:12:de:aa:35: d4:0d:f8:d3:b3:b0:6b:51:30:a4:f0:cf:59:bb:a2:e9:91:95: ab:f5:8e:de:02:ef:b3:28:28:2c:39:26:8d:9d:84:16:08:a3: 26:36:de:a8:96:0f:f1:db:07:59:13:36:5b:b4:ea:06:ba:18: 26:69:ac:1b:00:29:0a:b3:cf:6a:bf:42:bb:17:38:94:59:6b: 14:99:80:03:1c:5b:99:b2:39:d3:e6:5f:00:fe:50:24:a8:3e: 55:36:75:4b:b2:0b:5f:f2:92:82:49:9b:90:a1:84:a6:50:c2: 89:ff:41:c4:dd:a1:73:3d:35:4c:f5:91:97:74:73:99:50:58: 7b:35:81:f1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbsnsgSX18H513Kz7xli8gY9PfjQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzMzNTlCRUJGMEMxNUM5RDQ3MzlDRTg4QkZCMjE0MkQx NUE5OTMxMzAeFw0yNTA1MDcxMTE2NTBaFw0yNjA1MDYxMTIxNTBaMDMxMTAvBgNV BAMTKDRBQ0IxRTRCRTc0RUVBNzhBM0EyOEI1OUJCM0Y0RTY2MkJFN0Q3NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeE5JNbEpSff9g5JOP1Aq5Qqle BuioA08t9y4KW5Q6cLuKixwVaR1FdkmDhIaPCP180xEPo3Fwy3AFpsXcBuZMlEvT M4Xo2kH05RvG0C9m0kGWv4n+ZFqWqwuQ+gmrV+MJPZNusiihFDHIR/ipqDO5t28A jmDtfnjle/DAy4akqBT4Aqu8SnA4nAglKIQ1eGcn9Zw1WYFGwyoRlbDRIobzJyFT lh/+lIeqjLzxVak0JEUQD7cxrJHOKqhPrGUWMh3/mtGfblJN+O0jGVCJnLIar0il IDoJ8CLqPvuU9hWnMQ/s6sCy/+Hu+M6hKp2X6ZZJ+lL1MH0DYM5la7nXSeuTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSsseS+dO6nijootZuz9OZivn10IwHwYDVR0j BBgwFoAUwzWb6/DBXJ1HOc6Iv7IULRWpkxMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NDM4ZjZhYS1mMjdkLTQ5MDYtOTUxZS1mMDJkODkxYmYxZWQvMC9DMzM1OUJFQkYw QzE1QzlENDczOUNFODhCRkIyMTQyRDE1QTk5MzEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzMzNTlCRUJGMEMxNUM5RDQ3MzlDRTg4QkZCMjE0MkQxNUE5 OTMxMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU0MzhmNmFhLWYyN2QtNDkwNi05 NTFlLWYwMmQ4OTFiZjFlZC8wLzMyMzEzMDJlMzczOTJlMzEzNDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0k+PMA0GCSqG SIb3DQEBCwUAA4IBAQBpSaCcEJjVEVIw1eRYm2p7o29VXxpotZ4sDoEJol8WAqv9 zlNc9Rs9yREC2aTzgD9T0KKtWxdAawBWRTIaU39w6mCdbJckJ6y29CqSRBXuA4bu VUXq6QPUug2g5Sw+s3EaAeuHa9Xa+d5lxe4HOiMeiI17Z6kRpXOCVhLeqjXUDfjT s7BrUTCk8M9Zu6LpkZWr9Y7eAu+zKCgsOSaNnYQWCKMmNt6olg/x2wdZEzZbtOoG uhgmaawbACkKs89qv0K7FziUWWsUmYADHFuZsjnT5l8A/lAkqD5VNnVLsgtf8pKC SZuQoYSmUMKJ/0HE3aFzPTVM9ZGXdHOZUFh7NYHx -----END CERTIFICATE-----Generated at Fri May 9 07:17:26 2025 by rpki-client