$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35332e302f32342d3234203d3e20313430343639.roa File: 3230322e31302e35332e302f32342d3234203d3e20313430343639.roa (raw, json) Hash identifier: j1Hqw6TnerpgI9rlz8g77UO+7SSdu2/QSD/Hp0tiFCg= Subject key identifier: 58:84:D1:75:AF:2B:AC:7E:D0:84:78:34:D3:D3:91:A4:E4:9D:69:38 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 56B90E761FB51048BBA269ED8356C91864DB2268 Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35332e302f32342d3234203d3e20313430343639.roa Signing time: Mon 28 Apr 2025 07:16:17 +0000 ROA not before: Mon 28 Apr 2025 07:11:17 +0000 ROA not after: Mon 27 Apr 2026 07:16:17 +0000 asID: 140469 IP address blocks: 202.10.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 03:10:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:b9:0e:76:1f:b5:10:48:bb:a2:69:ed:83:56:c9:18:64:db:22:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Apr 28 07:11:17 2025 GMT Not After : Apr 27 07:16:17 2026 GMT Subject: CN=5884D175AF2BAC7ED0847834D3D391A4E49D6938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a6:e5:39:76:ec:98:b3:cc:1f:fd:ac:30:91: 7c:6a:b4:50:f9:94:4d:a1:0c:d2:33:4b:7e:2f:00: c0:87:da:b2:94:42:8f:0b:77:86:82:36:e1:9d:7b: 89:44:a7:21:fd:bb:73:ce:19:ec:45:78:b4:b5:83: dc:67:dd:c4:ba:62:ce:d5:76:64:09:95:30:6c:52: 1d:25:19:3b:27:19:26:42:0a:99:c5:4c:64:8e:91: 1c:c2:3f:49:ce:6f:af:f1:ec:e3:68:d6:25:48:a4: 9c:0a:b8:61:23:a1:e1:da:59:d9:77:c3:87:fc:d7: 70:e5:32:34:67:9b:3b:63:67:5b:f3:af:b6:bc:0e: 19:e7:69:23:c7:17:72:cc:cf:b2:78:9d:2f:fb:2a: 1a:7c:1c:2e:14:c9:14:f7:98:64:56:90:fa:99:3d: 51:aa:45:5a:5a:34:c0:3e:dc:2b:31:ce:06:2f:b4: 9c:b4:9e:dc:49:30:51:9f:10:ad:3c:63:66:33:f9: 1e:32:1e:7f:db:1f:db:a7:ea:aa:db:28:73:04:bf: 1c:2a:cd:bd:01:59:33:68:47:3c:35:2e:7a:21:c1: 58:0d:6b:ad:07:23:e2:34:20:5e:e4:f8:35:7b:55: 61:7e:00:2d:e4:87:b6:5b:4c:95:c6:f1:86:25:70: f1:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:84:D1:75:AF:2B:AC:7E:D0:84:78:34:D3:D3:91:A4:E4:9D:69:38 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35332e302f32342d3234203d3e20313430343639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.53.0/24 Signature Algorithm: sha256WithRSAEncryption cf:9a:fa:29:c8:fb:e8:bc:94:4c:26:89:5a:b4:39:22:36:09: 59:d1:16:1a:ab:03:e1:11:ab:f2:fb:9f:84:bb:af:06:25:da: 31:14:2f:b3:38:97:31:62:d5:de:8c:f1:92:36:b5:53:a4:67: 94:9d:09:42:e1:39:12:d1:45:82:1d:a1:26:66:ae:91:25:4b: 1d:22:b2:d4:5b:33:c8:b9:11:dd:3b:31:88:34:0c:38:1d:df: 5c:ed:1d:09:04:a0:fd:83:c1:0f:00:4d:4f:73:b9:7c:b0:6c: d3:71:06:8b:2b:0f:3f:5c:5c:d5:33:24:84:ca:96:31:58:b4: fa:2a:28:71:2d:69:7b:21:36:b0:70:32:e6:27:bc:9f:f1:4a: f9:29:8e:d2:db:90:a9:78:79:90:68:e3:ce:4d:50:81:be:01: 2e:7a:e9:61:61:7b:1f:84:12:ad:8c:80:c5:c9:63:78:1c:65: 8f:8f:3f:86:fc:7f:7f:c7:52:c0:65:11:ee:4f:10:4a:a5:25: a1:16:45:22:cb:c9:a3:2e:85:ab:8e:12:48:49:45:3f:e6:2c: 67:99:1f:28:54:3a:09:de:30:0a:a6:50:1e:38:72:0f:e4:96: cf:7d:f2:40:5b:06:1f:c1:5b:71:27:61:82:e0:d0:b8:b6:7a: ca:7f:4b:9f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVrkOdh+1EEi7omntg1bJGGTbImgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNTA0MjgwNzExMTdaFw0yNjA0MjcwNzE2MTdaMDMxMTAvBgNV BAMTKDU4ODREMTc1QUYyQkFDN0VEMDg0NzgzNEQzRDM5MUE0RTQ5RDY5MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFpuU5duyYs8wf/awwkXxqtFD5 lE2hDNIzS34vAMCH2rKUQo8Ld4aCNuGde4lEpyH9u3POGexFeLS1g9xn3cS6Ys7V dmQJlTBsUh0lGTsnGSZCCpnFTGSOkRzCP0nOb6/x7ONo1iVIpJwKuGEjoeHaWdl3 w4f813DlMjRnmztjZ1vzr7a8DhnnaSPHF3LMz7J4nS/7Khp8HC4UyRT3mGRWkPqZ PVGqRVpaNMA+3CsxzgYvtJy0ntxJMFGfEK08Y2Yz+R4yHn/bH9un6qrbKHMEvxwq zb0BWTNoRzw1LnohwVgNa60HI+I0IF7k+DV7VWF+AC3kh7ZbTJXG8YYlcPG/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWITRda8rrH7QhHg009ORpOSdaTgwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzAzMjJlMzEzMDJlMzUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoKNTANBgkqhkiG 9w0BAQsFAAOCAQEAz5r6Kcj76LyUTCaJWrQ5IjYJWdEWGqsD4RGr8vufhLuvBiXa MRQvsziXMWLV3ozxkja1U6RnlJ0JQuE5EtFFgh2hJmaukSVLHSKy1FszyLkR3Tsx iDQMOB3fXO0dCQSg/YPBDwBNT3O5fLBs03EGiysPP1xc1TMkhMqWMVi0+ioocS1p eyE2sHAy5ie8n/FK+SmO0tuQqXh5kGjjzk1Qgb4BLnrpYWF7H4QSrYyAxcljeBxl j48/hvx/f8dSwGUR7k8QSqUloRZFIsvJoy6Fq44SSElFP+YsZ5kfKFQ6Cd4wCqZQ HjhyD+SWz33yQFsGH8FbcSdhguDQuLZ6yn9Lnw== -----END CERTIFICATE-----Generated at Sun May 11 14:23:48 2025 by rpki-client