$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234382e302f32342d3234203d3e20313432333834.roa File: 3230322e3136392e3234382e302f32342d3234203d3e20313432333834.roa (raw, json) Hash identifier: 1mC7C69TR7tBnN/daNAA9WmPgkYuyOIPLbSlaAFBxwE= Subject key identifier: 12:DE:63:2A:1F:02:43:FD:09:A1:3A:F0:0E:EF:44:AC:D6:48:C1:CD Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 45997FC4C47E36104BBA97676748244645091C20 Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234382e302f32342d3234203d3e20313432333834.roa Signing time: Sat 10 May 2025 02:31:16 +0000 ROA not before: Sat 10 May 2025 02:26:16 +0000 ROA not after: Sat 09 May 2026 02:31:16 +0000 asID: 142384 IP address blocks: 202.169.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 04:25:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:99:7f:c4:c4:7e:36:10:4b:ba:97:67:67:48:24:46:45:09:1c:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: May 10 02:26:16 2025 GMT Not After : May 9 02:31:16 2026 GMT Subject: CN=12DE632A1F0243FD09A13AF00EEF44ACD648C1CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:50:8a:59:16:9b:74:1c:bd:40:d2:85:75:e0: 98:28:aa:1a:da:75:9a:72:37:e8:7e:6b:ae:f0:1c: 1c:ce:fb:07:04:b9:85:14:0d:43:72:a3:93:39:df: 1e:74:ef:ee:68:4c:fa:49:7b:44:01:8c:39:ea:01: 61:7b:fd:b8:67:36:a4:83:7e:9f:ac:cc:01:5b:ce: 65:6a:ee:56:e7:f1:ae:29:4f:6b:89:b1:ec:6a:01: 34:e1:be:29:55:bf:e1:58:ce:f3:e8:b4:10:c8:e4: c2:95:05:81:98:2f:35:ae:74:db:56:2f:86:bd:44: c2:05:e6:fc:c2:7a:12:19:ae:ba:e1:4c:c3:e5:95: 68:9e:85:9d:55:12:b8:89:ed:db:4c:b6:ba:ad:6e: 38:bc:a9:6a:80:cd:9a:8b:a5:1c:49:b1:80:0b:ef: 29:20:85:7a:a0:e3:f3:0a:7c:9e:81:6f:e5:19:eb: 51:38:d8:3a:ae:67:b1:d5:4e:69:af:ca:48:a4:7e: 62:a0:bb:ee:a3:af:29:f6:0a:d9:61:b5:d5:ad:f7: ec:3c:04:d3:e5:f5:fe:05:03:7a:51:59:da:98:90: 2b:4a:fa:69:c6:ed:4a:96:60:ce:02:13:8a:75:10: 1d:88:e3:9a:93:55:07:6c:d2:6b:89:af:12:13:d4: e7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:DE:63:2A:1F:02:43:FD:09:A1:3A:F0:0E:EF:44:AC:D6:48:C1:CD X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234382e302f32342d3234203d3e20313432333834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.248.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:2d:5a:67:ed:05:35:6c:99:dc:fe:25:f4:6e:01:e3:50:82: 4f:9d:4f:cf:56:6d:6d:92:2a:70:41:0e:30:54:ee:90:00:fb: fd:18:75:43:5c:d7:e4:d0:cb:c7:3b:f5:4c:04:b2:b9:fc:ae: 7f:1b:a9:29:82:80:f0:4b:27:e0:f6:81:82:25:a5:c6:c9:a7: 55:00:b6:e9:17:ad:38:ee:c4:86:d2:02:bc:f2:6a:2a:e7:f1: 6b:d3:5e:6b:e6:83:e7:d3:f2:bd:4f:35:92:cd:74:f0:af:e3: eb:ef:12:be:f6:21:80:c6:4c:af:a6:88:90:76:80:f3:2a:d2: 49:33:53:5a:f0:96:aa:7e:16:fe:7c:89:ff:27:a0:6c:19:f6: 79:95:97:5c:41:58:0a:42:65:45:09:71:2d:23:6a:ad:f7:86: a2:33:8d:77:42:0b:e8:a0:7a:75:b6:b4:62:4a:eb:16:16:c8: db:f5:45:09:87:23:e5:1a:2c:ca:93:60:5a:b1:80:25:3f:ec: b3:cd:5b:61:19:f6:92:96:00:16:b4:a5:60:a1:30:22:e3:2d: c1:74:41:83:bc:a1:48:24:9f:c3:9b:3c:a5:91:a9:e3:b2:51: ee:a3:90:ed:a8:87:6c:17:44:34:34:1c:03:37:99:c5:4c:13: 45:10:b4:ad -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURZl/xMR+NhBLupdnZ0gkRkUJHCAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNTA1MTAwMjI2MTZaFw0yNjA1MDkwMjMxMTZaMDMxMTAvBgNV BAMTKDEyREU2MzJBMUYwMjQzRkQwOUExM0FGMDBFRUY0NEFDRDY0OEMxQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMUIpZFpt0HL1A0oV14Jgoqhra dZpyN+h+a67wHBzO+wcEuYUUDUNyo5M53x507+5oTPpJe0QBjDnqAWF7/bhnNqSD fp+szAFbzmVq7lbn8a4pT2uJsexqATThvilVv+FYzvPotBDI5MKVBYGYLzWudNtW L4a9RMIF5vzCehIZrrrhTMPllWiehZ1VEriJ7dtMtrqtbji8qWqAzZqLpRxJsYAL 7ykghXqg4/MKfJ6Bb+UZ61E42DquZ7HVTmmvykikfmKgu+6jryn2CtlhtdWt9+w8 BNPl9f4FA3pRWdqYkCtK+mnG7UqWYM4CE4p1EB2I45qTVQds0muJrxIT1OdPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUEt5jKh8CQ/0JoTrwDu9ErNZIwc0wHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM4MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKqfgwDQYJ KoZIhvcNAQELBQADggEBAG8tWmftBTVsmdz+JfRuAeNQgk+dT89WbW2SKnBBDjBU 7pAA+/0YdUNc1+TQy8c79UwEsrn8rn8bqSmCgPBLJ+D2gYIlpcbJp1UAtukXrTju xIbSArzyairn8WvTXmvmg+fT8r1PNZLNdPCv4+vvEr72IYDGTK+miJB2gPMq0kkz U1rwlqp+Fv58if8noGwZ9nmVl1xBWApCZUUJcS0jaq33hqIzjXdCC+igenW2tGJK 6xYWyNv1RQmHI+UaLMqTYFqxgCU/7LPNW2EZ9pKWABa0pWChMCLjLcF0QYO8oUgk n8ObPKWRqeOyUe6jkO2oh2wXRDQ0HAM3mcVME0UQtK0= -----END CERTIFICATE-----Generated at Mon May 12 01:29:10 2025 by rpki-client