$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32392e302f32342d3234203d3e203234353235.roa File: 3230332e3135332e32392e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: eIEdJ2S1OwilYftApTEV2NZJwGtuPb3aObbKzbCKBNo= Subject key identifier: FF:80:1F:78:18:87:67:C8:DB:A2:0C:EA:8F:60:8A:93:BA:5E:D5:91 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 2947F62D47EFDB589F49674E92320E84CCED7895 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32392e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 07:00:01 +0000 ROA not before: Sat 03 May 2025 06:55:01 +0000 ROA not after: Sat 02 May 2026 07:00:01 +0000 asID: 24525 IP address blocks: 203.153.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:47:f6:2d:47:ef:db:58:9f:49:67:4e:92:32:0e:84:cc:ed:78:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 06:55:01 2025 GMT Not After : May 2 07:00:01 2026 GMT Subject: CN=FF801F78188767C8DBA20CEA8F608A93BA5ED591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:59:9e:73:5c:16:f1:d4:da:90:51:a0:e5:ee: 25:c1:9f:1f:1a:10:19:9a:19:ef:0b:12:cf:20:eb: 57:1d:cc:86:a8:f2:6c:fe:53:7d:18:29:ad:da:4a: 6d:02:45:0b:c4:00:f2:53:79:1c:e1:91:65:99:31: b4:1c:2b:b1:16:8d:52:a1:6a:c5:3a:9a:2a:b1:6f: 3a:d9:bf:c5:67:63:b4:4b:cb:e1:17:83:4c:66:a8: ef:09:6f:f9:7d:45:e6:d3:f7:e3:a3:20:b4:27:0e: ab:a2:ee:9c:71:42:89:9a:44:a7:35:69:41:59:dd: de:2a:2e:79:58:21:18:8f:10:92:1c:07:b7:06:d1: 9c:22:e2:a7:5f:2d:2a:b3:3b:7d:31:20:86:53:54: 1d:61:4c:ab:38:aa:49:f1:eb:47:ed:86:5e:f8:d3: 19:e7:68:07:71:9f:c9:7b:0a:cf:97:7d:9d:43:16: 72:41:e5:e8:d5:0d:88:b3:cb:c9:92:9a:c9:f2:5a: 3a:86:8c:6e:e5:bb:11:8c:9b:58:50:7e:f6:99:fb: 9d:26:73:36:8a:6e:11:b8:38:5f:89:f2:54:24:3f: de:90:32:f8:4e:3b:c2:b9:5d:6a:fd:ef:7b:1b:4f: 3c:c2:6f:ee:f5:3e:a2:ef:38:ef:37:f1:f2:76:20: b4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:80:1F:78:18:87:67:C8:DB:A2:0C:EA:8F:60:8A:93:BA:5E:D5:91 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32392e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.29.0/24 Signature Algorithm: sha256WithRSAEncryption b3:61:f2:7c:6b:33:33:2b:1a:a0:ac:f4:37:dd:39:ae:70:fa: 3d:ac:5b:51:8d:4e:9e:b5:8b:7c:7a:0d:b7:fb:27:5c:2d:47: 3c:52:e4:12:22:09:07:4b:07:47:f4:7f:43:24:c3:de:48:18: 3c:13:51:15:96:05:c9:3c:85:a3:c3:d5:79:91:ca:d6:cd:60: 68:5d:39:9e:6b:2b:7f:32:e4:31:ed:a7:5e:c2:52:e2:f2:7c: 8d:9d:9c:b5:5c:de:3c:93:61:37:96:4b:7f:26:64:ad:67:1a: e6:f4:c6:5b:cf:98:4a:6c:a6:9a:9e:5b:ae:3f:8b:5e:89:e7: 51:47:e5:3e:2f:94:89:5b:83:d2:3a:fa:08:92:e5:11:8a:0c: 0e:20:88:b2:44:82:4b:b5:d9:dc:9f:a3:4c:6b:1d:42:d0:02: ac:4e:d8:42:1f:64:74:92:aa:c5:79:25:94:f1:ab:aa:83:43: 97:aa:3d:f8:66:ba:8d:34:5d:22:92:72:10:da:93:6d:2d:22: 48:c1:ce:03:34:40:06:72:e7:17:a5:9b:17:eb:70:05:fd:e8: 62:cc:b0:9e:ee:0c:b6:06:b9:36:d0:fc:41:30:0a:d2:55:ba: b8:67:67:77:cd:af:71:48:7f:e6:b5:2a:7b:b7:9b:e1:fc:84: 54:c6:09:e5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKUf2LUfv21ifSWdOkjIOhMzteJUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwNjU1MDFaFw0yNjA1MDIwNzAwMDFaMDMxMTAvBgNV BAMTKEZGODAxRjc4MTg4NzY3QzhEQkEyMENFQThGNjA4QTkzQkE1RUQ1OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQWZ5zXBbx1NqQUaDl7iXBnx8a EBmaGe8LEs8g61cdzIao8mz+U30YKa3aSm0CRQvEAPJTeRzhkWWZMbQcK7EWjVKh asU6miqxbzrZv8VnY7RLy+EXg0xmqO8Jb/l9RebT9+OjILQnDqui7pxxQomaRKc1 aUFZ3d4qLnlYIRiPEJIcB7cG0Zwi4qdfLSqzO30xIIZTVB1hTKs4qknx60fthl74 0xnnaAdxn8l7Cs+XfZ1DFnJB5ejVDYizy8mSmsnyWjqGjG7luxGMm1hQfvaZ+50m czaKbhG4OF+J8lQkP96QMvhOO8K5XWr973sbTzzCb+71PqLvOO838fJ2ILRpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/4AfeBiHZ8jbogzqj2CKk7pe1ZEwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuZHTANBgkqhkiG 9w0BAQsFAAOCAQEAs2HyfGszMysaoKz0N905rnD6PaxbUY1OnrWLfHoNt/snXC1H PFLkEiIJB0sHR/R/QyTD3kgYPBNRFZYFyTyFo8PVeZHK1s1gaF05nmsrfzLkMe2n XsJS4vJ8jZ2ctVzePJNhN5ZLfyZkrWca5vTGW8+YSmymmp5brj+LXonnUUflPi+U iVuD0jr6CJLlEYoMDiCIskSCS7XZ3J+jTGsdQtACrE7YQh9kdJKqxXkllPGrqoND l6o9+Ga6jTRdIpJyENqTbS0iSMHOAzRABnLnF6WbF+twBf3oYsywnu4Mtga5NtD8 QTAK0lW6uGdnd82vcUh/5rUqe7eb4fyEVMYJ5Q== -----END CERTIFICATE-----Generated at Sun May 11 06:23:41 2025 by rpki-client