$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34302e302f32342d3234203d3e203538343837.roa File: 3230322e31302e34302e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: +dYOck0/e3uRLuDueS6QvOeH0VjscDt7f1hJdpKhdVo= Subject key identifier: 8F:D8:E6:62:FC:14:18:33:C1:8D:DA:FC:2E:2C:B4:39:6D:B3:B1:42 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 419AE68FA09A590C454816BAE0AE06F7E4918194 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34302e302f32342d3234203d3e203538343837.roa Signing time: Thu 13 Mar 2025 11:02:23 +0000 ROA not before: Thu 13 Mar 2025 10:57:23 +0000 ROA not after: Thu 12 Mar 2026 11:02:23 +0000 asID: 58487 IP address blocks: 202.10.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:19:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:9a:e6:8f:a0:9a:59:0c:45:48:16:ba:e0:ae:06:f7:e4:91:81:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Mar 13 10:57:23 2025 GMT Not After : Mar 12 11:02:23 2026 GMT Subject: CN=8FD8E662FC141833C18DDAFC2E2CB4396DB3B142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f8:3a:c7:5b:a8:7c:7e:02:54:17:6c:d8:2a: 1f:06:e1:57:dc:f6:71:00:13:1e:0f:80:69:73:45: 43:86:13:3d:ef:ab:e5:bd:a7:3d:fd:0a:b4:3e:35: 16:e4:1e:67:2e:87:22:0d:ec:de:68:15:f8:6d:b7: fb:8d:02:62:52:98:13:d3:22:31:89:c9:62:e6:fd: 18:66:6b:b9:4a:a0:a5:55:59:bf:5f:eb:01:e1:82: 0c:85:37:c9:b4:a5:58:cd:84:08:8e:58:67:b2:7d: 8f:42:a7:92:5c:fa:fc:98:4f:de:b8:b3:a5:29:7f: a9:3d:51:82:7c:a3:ca:b8:e6:53:b9:51:1e:9d:78: 24:3d:7c:4e:f8:22:7c:be:6a:5c:d7:2d:60:98:30: 4c:08:3d:2c:02:f0:ee:44:87:4f:71:bd:6e:59:fe: 70:d7:f2:e8:4e:cd:90:b6:50:c4:34:19:05:e3:28: 9e:41:4d:db:ce:96:c0:b4:75:ac:c5:ef:93:a3:8b: a2:1a:7e:39:23:19:e6:47:3c:f1:45:ce:ae:e1:9c: 80:cc:22:5d:82:de:49:a0:d2:58:fd:67:aa:d9:62: dc:11:ba:4b:e3:95:cd:a9:7d:31:3a:7b:5d:93:52: 28:b1:64:01:58:92:ea:14:92:02:57:e2:7f:9d:66: 45:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:D8:E6:62:FC:14:18:33:C1:8D:DA:FC:2E:2C:B4:39:6D:B3:B1:42 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34302e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.40.0/24 Signature Algorithm: sha256WithRSAEncryption be:71:75:15:6d:5b:f7:5c:ed:5a:7e:47:fe:fd:b0:87:0e:6f: 95:3a:1e:08:fc:0b:5f:75:ce:01:8a:cf:50:a5:7d:2a:f9:70: 92:7f:36:3e:46:d8:15:f3:25:79:26:46:19:03:4b:c4:e4:4f: d1:7a:3c:56:ef:7d:c8:24:f4:66:07:9c:78:8b:ad:23:74:8e: 65:08:01:78:3e:af:8c:f2:d3:b8:53:0f:c0:3b:7c:f2:8c:4b: f2:37:78:c7:1f:37:e3:0b:b8:42:36:30:2f:6d:95:fa:fd:7a: 02:79:9d:bd:3c:9a:db:fd:71:72:44:64:df:5a:8b:d7:c3:49: 21:a4:99:56:8e:6b:1c:f5:dd:68:b9:12:83:92:f0:b8:90:93: 1a:54:74:c4:29:a2:4b:fa:07:6f:98:51:47:f2:40:b7:48:2f: 1d:85:2c:5c:bf:fc:29:2f:b5:de:ef:23:05:45:19:08:12:71: b7:8f:9b:7e:94:c2:bb:03:14:ad:05:3c:88:66:53:16:af:e8: b6:52:88:fe:15:f6:18:73:68:d0:52:d5:0d:e3:c6:22:b1:ed: 09:bc:60:10:dc:3e:e5:ea:41:9f:69:99:ee:0f:50:a0:d4:41: d7:15:cf:76:bd:96:d9:41:c4:75:67:b6:d9:4e:a7:05:87:99: 9c:4b:7c:71 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQZrmj6CaWQxFSBa64K4G9+SRgZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNTAzMTMxMDU3MjNaFw0yNjAzMTIxMTAyMjNaMDMxMTAvBgNV BAMTKDhGRDhFNjYyRkMxNDE4MzNDMThEREFGQzJFMkNCNDM5NkRCM0IxNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0+DrHW6h8fgJUF2zYKh8G4Vfc 9nEAEx4PgGlzRUOGEz3vq+W9pz39CrQ+NRbkHmcuhyIN7N5oFfhtt/uNAmJSmBPT IjGJyWLm/Rhma7lKoKVVWb9f6wHhggyFN8m0pVjNhAiOWGeyfY9Cp5Jc+vyYT964 s6Upf6k9UYJ8o8q45lO5UR6deCQ9fE74Iny+alzXLWCYMEwIPSwC8O5Eh09xvW5Z /nDX8uhOzZC2UMQ0GQXjKJ5BTdvOlsC0dazF75Oji6IafjkjGeZHPPFFzq7hnIDM Il2C3kmg0lj9Z6rZYtwRukvjlc2pfTE6e12TUiixZAFYkuoUkgJX4n+dZkXvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUj9jmYvwUGDPBjdr8Liy0OW2zsUIwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzQzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCigwDQYJKoZIhvcN AQELBQADggEBAL5xdRVtW/dc7Vp+R/79sIcOb5U6Hgj8C191zgGKz1ClfSr5cJJ/ Nj5G2BXzJXkmRhkDS8TkT9F6PFbvfcgk9GYHnHiLrSN0jmUIAXg+r4zy07hTD8A7 fPKMS/I3eMcfN+MLuEI2MC9tlfr9egJ5nb08mtv9cXJEZN9ai9fDSSGkmVaOaxz1 3Wi5EoOS8LiQkxpUdMQpokv6B2+YUUfyQLdILx2FLFy//Ckvtd7vIwVFGQgScbeP m36UwrsDFK0FPIhmUxav6LZSiP4V9hhzaNBS1Q3jxiKx7Qm8YBDcPuXqQZ9pme4P UKDUQdcVz3a9ltlBxHVnttlOpwWHmZxLfHE= -----END CERTIFICATE-----Generated at Sun Jun 15 22:43:08 2025 by rpki-client