$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32362e302f32342d3234203d3e203234353235.roa File: 3230332e3135332e32362e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: u+/aTyQzVy3y0qm9waWLbAFlYZYW+R+34XsQx9Nmyc4= Subject key identifier: 97:FA:36:B4:CF:C4:1D:AD:C0:73:63:39:98:59:80:CB:7D:5C:DB:30 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 022C55E5FA2AB7DC18B652A3B0116643AC405B38 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32362e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:04 +0000 ROA not before: Sat 03 May 2025 08:55:04 +0000 ROA not after: Sat 02 May 2026 09:00:04 +0000 asID: 24525 IP address blocks: 203.153.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:2c:55:e5:fa:2a:b7:dc:18:b6:52:a3:b0:11:66:43:ac:40:5b:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:04 2025 GMT Not After : May 2 09:00:04 2026 GMT Subject: CN=97FA36B4CFC41DADC0736339985980CB7D5CDB30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c1:3f:4c:5a:ea:89:d8:10:b7:11:b9:a9:ec: 95:e2:b5:68:a8:41:08:50:10:8c:14:cf:8b:cd:b8: 6f:df:af:cc:da:b6:11:40:ea:82:90:4c:df:3f:cd: 54:e2:e9:81:c4:02:e0:bb:2e:ec:15:12:de:d2:cd: 6e:cc:1c:bb:bc:78:b0:08:9b:96:1e:54:e6:2f:17: 4e:f7:7c:ed:97:cc:71:56:23:80:52:26:a1:a3:99: c4:fc:98:4d:76:9f:d0:d2:07:ae:28:25:a1:8b:5b: 89:fb:59:f3:3a:b0:0a:a7:3f:83:80:b0:5d:ce:63: 05:53:57:e7:c2:59:82:ac:71:64:80:16:6d:71:da: 93:a1:df:53:10:33:bd:e2:4d:d6:99:e5:e9:68:cd: 6c:5b:5b:92:98:33:26:6f:63:90:12:f6:f4:21:63: 4c:57:03:47:1f:f4:dc:38:cd:64:84:31:d3:f0:c7: 82:69:e2:4d:52:51:93:36:69:ff:11:aa:3d:00:7b: c0:e5:73:31:29:10:c8:13:67:87:59:3e:85:58:d7: 13:bc:2f:c7:5b:70:46:62:08:10:f2:4e:c8:da:0c: 25:14:66:cb:b1:5b:2c:47:06:df:39:56:74:7f:73: e6:75:99:8c:b8:46:81:4d:e2:db:d6:fa:72:22:bc: ac:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:FA:36:B4:CF:C4:1D:AD:C0:73:63:39:98:59:80:CB:7D:5C:DB:30 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32362e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.26.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:da:02:9b:9f:ea:d4:25:59:f1:66:5d:f3:ee:a2:58:45:58: 32:ea:6b:e3:da:00:f6:5d:1b:e0:2a:9b:7c:7f:bb:2e:c5:1c: 31:7a:80:1d:2b:dd:5c:ff:fe:26:a2:c8:97:47:3a:ee:f7:b8: 96:51:b9:0b:68:66:cc:a9:ca:c8:8e:f2:3a:71:18:77:de:1a: 4e:9e:f7:bc:3a:5a:e3:7e:ad:84:8d:f1:00:c3:9d:b5:1c:89: 9f:2e:4f:ff:ff:47:7b:aa:ba:43:d4:d0:cd:ae:a7:ad:b4:4d: 66:a6:d1:3e:f5:5a:70:90:57:ae:71:8d:e7:1a:d8:a8:51:6e: 5d:5d:91:b5:25:72:ed:ce:8f:60:be:17:e7:3f:ae:60:ab:c6: 5e:ac:63:05:12:21:2a:7c:c3:c5:04:90:47:08:2c:07:1c:72: ac:4c:c2:3b:2e:77:87:57:8e:0c:90:04:aa:13:53:e7:2e:af: 26:0d:47:7c:ac:1a:7a:68:a2:13:18:c4:50:69:5b:25:e4:99: f8:e6:80:21:c3:02:f2:bc:6c:f8:75:c2:be:84:a7:ed:40:75: cf:97:bb:31:8e:eb:fc:04:a0:b8:29:3b:71:5e:5b:0c:f8:2f: a4:47:79:0d:f2:a7:ab:d5:41:46:a8:3e:b2:22:89:38:9d:1b: 44:cf:32:63 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAixV5foqt9wYtlKjsBFmQ6xAWzgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDRaFw0yNjA1MDIwOTAwMDRaMDMxMTAvBgNV BAMTKDk3RkEzNkI0Q0ZDNDFEQURDMDczNjMzOTk4NTk4MENCN0Q1Q0RCMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1wT9MWuqJ2BC3Ebmp7JXitWio QQhQEIwUz4vNuG/fr8zathFA6oKQTN8/zVTi6YHEAuC7LuwVEt7SzW7MHLu8eLAI m5YeVOYvF073fO2XzHFWI4BSJqGjmcT8mE12n9DSB64oJaGLW4n7WfM6sAqnP4OA sF3OYwVTV+fCWYKscWSAFm1x2pOh31MQM73iTdaZ5elozWxbW5KYMyZvY5AS9vQh Y0xXA0cf9Nw4zWSEMdPwx4Jp4k1SUZM2af8Rqj0Ae8DlczEpEMgTZ4dZPoVY1xO8 L8dbcEZiCBDyTsjaDCUUZsuxWyxHBt85VnR/c+Z1mYy4RoFN4tvW+nIivKyFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUl/o2tM/EHa3Ac2M5mFmAy31c2zAwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuZGjANBgkqhkiG 9w0BAQsFAAOCAQEALNoCm5/q1CVZ8WZd8+6iWEVYMupr49oA9l0b4CqbfH+7LsUc MXqAHSvdXP/+JqLIl0c67ve4llG5C2hmzKnKyI7yOnEYd94aTp73vDpa436thI3x AMOdtRyJny5P//9He6q6Q9TQza6nrbRNZqbRPvVacJBXrnGN5xrYqFFuXV2RtSVy 7c6PYL4X5z+uYKvGXqxjBRIhKnzDxQSQRwgsBxxyrEzCOy53h1eODJAEqhNT5y6v Jg1HfKwaemiiExjEUGlbJeSZ+OaAIcMC8rxs+HXCvoSn7UB1z5e7MY7r/ASguCk7 cV5bDPgvpEd5DfKnq9VBRqg+siKJOJ0bRM8yYw== -----END CERTIFICATE-----Generated at Sun May 11 06:24:52 2025 by rpki-client