$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32322d3232203d3e203234353235.roa File: 3230332e3135332e32382e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: Ihxr0fAWq4DRLT5SQG4sX7uR4lxql3XVPiQewPkGTdo= Subject key identifier: 73:77:A7:8F:B8:86:70:F0:E5:AD:BE:D1:DD:F4:0B:D8:C8:46:64:E5 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 658CB89115FB49D131DB47FF21147E4060AD3983 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32322d3232203d3e203234353235.roa Signing time: Tue 22 Apr 2025 08:03:49 +0000 ROA not before: Tue 22 Apr 2025 07:58:49 +0000 ROA not after: Tue 21 Apr 2026 08:03:49 +0000 asID: 24525 IP address blocks: 203.153.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:8c:b8:91:15:fb:49:d1:31:db:47:ff:21:14:7e:40:60:ad:39:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 07:58:49 2025 GMT Not After : Apr 21 08:03:49 2026 GMT Subject: CN=7377A78FB88670F0E5ADBED1DDF40BD8C84664E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9a:b1:7d:66:24:1b:36:69:83:d8:d2:42:95: 41:64:db:f8:42:2b:12:ae:8a:39:34:35:0d:e3:a8: 70:84:58:50:a1:4b:6c:74:eb:73:d6:2a:b7:30:91: 44:e4:9a:8d:28:77:0d:8d:f5:15:96:a1:ad:06:db: 02:cc:ac:f4:8e:4b:31:d0:d0:64:f0:69:25:49:b9: 1c:48:ab:4e:d5:eb:ed:b4:00:80:2d:12:1f:b9:f9: fc:dd:39:6d:7a:02:52:13:8a:b5:b6:e6:61:5f:14: a0:b0:1e:ae:e3:ec:4b:98:03:9c:cf:cc:c5:c0:20: 39:2a:be:ca:6f:21:9e:4d:11:5f:93:af:de:0d:6a: 87:fc:83:f1:ff:b8:94:75:4f:d9:66:3d:a1:16:2b: c3:4b:d3:2c:33:85:a4:78:0e:51:07:80:30:04:3f: ed:c7:71:ba:81:44:29:b4:7e:9a:b7:92:5a:69:fd: 41:a9:1d:66:70:84:8f:31:d6:a4:f6:d5:90:61:f7: 9c:e4:4e:bb:6e:d6:2c:32:34:aa:98:ec:d4:6f:67: f2:3c:79:c3:d1:b7:88:e1:30:6b:05:69:75:5e:8b: be:c9:c5:d7:06:60:fc:c4:53:84:95:af:21:a3:b6: 63:af:e0:23:32:4f:16:82:ad:63:bc:80:a5:88:a4: b9:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:77:A7:8F:B8:86:70:F0:E5:AD:BE:D1:DD:F4:0B:D8:C8:46:64:E5 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.28.0/22 Signature Algorithm: sha256WithRSAEncryption 01:62:22:d4:75:29:4a:f0:76:fe:2d:b0:34:83:c6:64:e3:f2: 61:7c:ba:cb:fd:ee:08:61:ec:f2:45:23:68:e8:7b:1a:85:3c: 6b:3d:0b:68:15:e0:f9:fc:7e:27:af:b0:5b:22:cd:36:8b:37: b2:a5:f6:7c:f8:cb:ec:fa:13:49:a7:60:5a:4a:8b:0e:6e:1a: b6:b3:e1:c1:cd:b2:8e:66:57:27:87:bd:bd:ce:b8:ba:81:d3: 4a:27:f7:20:df:07:51:a3:80:b8:75:c7:d6:6f:b1:49:e9:44: 62:fa:8f:b9:c3:9c:51:cb:b3:67:d2:93:56:cd:d4:aa:77:95: c4:42:44:5b:98:e7:2d:9f:e2:41:67:7a:1d:9b:40:af:72:70: 8b:d1:15:06:f1:5c:d1:d8:8e:35:4b:5f:8a:71:ae:b9:bb:03: 16:68:6a:cd:50:1f:b3:27:46:97:60:9b:5c:81:81:46:98:4a: 49:e4:bd:be:5e:81:7c:e4:b9:af:ea:68:f8:36:04:78:31:cb: 60:9d:83:f1:16:08:a7:c1:33:ed:f5:34:8d:74:a0:ba:8b:4a: de:60:f0:64:b6:ad:32:e1:88:cc:e8:ce:ec:3b:9e:8b:e0:3a: b2:5b:a4:f2:45:af:d0:a5:3b:8e:9e:4f:43:01:6e:e5:ba:50: 00:ce:a5:15 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZYy4kRX7SdEx20f/IRR+QGCtOYMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNzU4NDlaFw0yNjA0MjEwODAzNDlaMDMxMTAvBgNV BAMTKDczNzdBNzhGQjg4NjcwRjBFNUFEQkVEMURERjQwQkQ4Qzg0NjY0RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6mrF9ZiQbNmmD2NJClUFk2/hC KxKuijk0NQ3jqHCEWFChS2x063PWKrcwkUTkmo0odw2N9RWWoa0G2wLMrPSOSzHQ 0GTwaSVJuRxIq07V6+20AIAtEh+5+fzdOW16AlITirW25mFfFKCwHq7j7EuYA5zP zMXAIDkqvspvIZ5NEV+Tr94Naof8g/H/uJR1T9lmPaEWK8NL0ywzhaR4DlEHgDAE P+3HcbqBRCm0fpq3klpp/UGpHWZwhI8x1qT21ZBh95zkTrtu1iwyNKqY7NRvZ/I8 ecPRt4jhMGsFaXVei77JxdcGYPzEU4SVryGjtmOv4CMyTxaCrWO8gKWIpLnPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUc3enj7iGcPDlrb7R3fQL2MhGZOUwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM4MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsuZHDANBgkqhkiG 9w0BAQsFAAOCAQEAAWIi1HUpSvB2/i2wNIPGZOPyYXy6y/3uCGHs8kUjaOh7GoU8 az0LaBXg+fx+J6+wWyLNNos3sqX2fPjL7PoTSadgWkqLDm4atrPhwc2yjmZXJ4e9 vc64uoHTSif3IN8HUaOAuHXH1m+xSelEYvqPucOcUcuzZ9KTVs3UqneVxEJEW5jn LZ/iQWd6HZtAr3Jwi9EVBvFc0diONUtfinGuubsDFmhqzVAfsydGl2CbXIGBRphK SeS9vl6BfOS5r+po+DYEeDHLYJ2D8RYIp8Ez7fU0jXSguotK3mDwZLatMuGIzOjO 7Duei+A6sluk8kWv0KU7jp5PQwFu5bpQAM6lFQ== -----END CERTIFICATE-----Generated at Sun May 11 08:31:00 2025 by rpki-client