$ rpki-client -vvf repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3230332e32392e32362e302f32342d3234203d3e20313335343737.roa File: 3230332e32392e32362e302f32342d3234203d3e20313335343737.roa (raw, json) Hash identifier: YsPCY6UCv05oHfHFXQer5wdXjWe1w4PGTDeh2YhnWn4= Subject key identifier: 54:4F:FD:6E:C7:76:74:2A:37:BB:AB:A0:06:DD:A9:43:43:5C:F0:C8 Certificate issuer: /CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Certificate serial: 353590484933E983870A16B6D80C1A61848A25A2 Authority key identifier: 80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3230332e32392e32362e302f32342d3234203d3e20313335343737.roa Signing time: Mon 28 Apr 2025 23:00:01 +0000 ROA not before: Mon 28 Apr 2025 22:55:01 +0000 ROA not after: Mon 27 Apr 2026 23:00:01 +0000 asID: 135477 IP address blocks: 203.29.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 08:57:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:35:90:48:49:33:e9:83:87:0a:16:b6:d8:0c:1a:61:84:8a:25:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Validity Not Before: Apr 28 22:55:01 2025 GMT Not After : Apr 27 23:00:01 2026 GMT Subject: CN=544FFD6EC776742A37BBABA006DDA943435CF0C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:c2:c3:aa:75:33:0d:f7:02:5c:f9:11:d0:88: fe:aa:f8:db:33:f4:60:0b:6d:75:39:aa:95:74:d5: 39:85:ec:fd:26:cb:4f:bc:8c:ea:93:8d:85:84:3b: 60:1a:dd:51:cc:47:22:e2:27:ed:55:7c:4b:c4:4d: 7a:06:ca:6c:56:8a:ba:60:ac:00:09:8d:a3:88:e3: 4a:af:77:9f:30:40:c2:05:3c:dd:a9:ef:e3:30:a8: 4d:91:65:4f:a5:2b:fd:27:41:26:1c:f3:05:96:7c: 32:6f:99:80:a5:55:5a:e5:f1:cb:6e:c7:db:26:5e: 5e:9e:a7:15:52:7e:99:a8:41:4b:b1:09:b0:06:a9: fa:17:d8:82:71:2b:86:8d:b4:73:75:9b:0f:83:7e: 4c:96:32:81:94:82:0a:b9:12:41:0b:c7:cd:04:ff: 58:02:d5:72:75:83:a3:67:d8:0f:31:9a:c0:90:d9: 5e:2a:51:07:a6:fa:3a:62:0c:98:3f:09:9d:ff:54: 3f:3f:91:39:55:46:75:db:e7:cc:78:07:0b:40:c1: 84:b7:5a:55:cf:76:73:dc:f3:16:f1:c5:02:3a:48: 45:23:f7:bf:09:55:ad:9e:fd:24:63:33:70:6e:62: f9:03:81:e6:89:22:c6:07:e4:31:ad:45:bb:88:ec: 9a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:4F:FD:6E:C7:76:74:2A:37:BB:AB:A0:06:DD:A9:43:43:5C:F0:C8 X509v3 Authority Key Identifier: keyid:80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3230332e32392e32362e302f32342d3234203d3e20313335343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.29.26.0/24 Signature Algorithm: sha256WithRSAEncryption 07:bf:15:dc:ca:2b:94:f1:48:76:80:91:23:52:92:d9:aa:82: 49:9f:19:df:0e:f9:c6:97:82:26:ec:56:55:7d:b3:7f:9e:80: 89:fc:8e:c7:d7:3e:cc:74:9b:23:a7:1c:31:7c:03:87:0e:aa: 9c:91:39:66:33:0a:d6:ba:42:2a:2f:7b:f6:fa:c4:83:7c:ab: b6:40:c3:aa:34:6f:50:c0:a1:97:f3:0b:0f:6f:f7:3e:1f:a8: 0a:76:b7:ec:d2:55:dc:98:1d:ce:8f:53:6f:d7:00:e8:9b:8c: 99:f4:e3:ef:1a:63:7a:99:9b:1f:54:cb:7a:a6:17:67:c4:c4: 24:c1:6f:58:dc:a1:a1:91:c4:64:52:57:cd:79:d0:75:ba:00: 63:6f:55:3a:78:ca:a1:99:f7:77:d8:f1:1f:33:74:96:7c:20: 93:3b:ee:fa:9a:bb:e7:dc:ba:f8:35:d9:7b:c8:93:27:45:d5: d1:07:ea:1a:eb:40:79:2e:70:43:53:52:ab:a1:35:11:c8:2f: 9b:d0:b1:e1:2c:71:1e:29:d2:cc:ea:05:3e:97:d1:7b:12:02: 06:9a:14:3c:ae:59:a9:30:d0:90:3e:26:9d:44:65:bf:c8:7d: 25:db:9a:e8:76:00:b2:92:a7:09:a3:55:fe:70:4c:1c:c4:02: 43:b1:8d:af -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNTWQSEkz6YOHCha22AwaYYSKJaIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5 Qjk0MTBFOTAeFw0yNTA0MjgyMjU1MDFaFw0yNjA0MjcyMzAwMDFaMDMxMTAvBgNV BAMTKDU0NEZGRDZFQzc3Njc0MkEzN0JCQUJBMDA2RERBOTQzNDM1Q0YwQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2wsOqdTMN9wJc+RHQiP6q+Nsz 9GALbXU5qpV01TmF7P0my0+8jOqTjYWEO2Aa3VHMRyLiJ+1VfEvETXoGymxWirpg rAAJjaOI40qvd58wQMIFPN2p7+MwqE2RZU+lK/0nQSYc8wWWfDJvmYClVVrl8ctu x9smXl6epxVSfpmoQUuxCbAGqfoX2IJxK4aNtHN1mw+DfkyWMoGUggq5EkELx80E /1gC1XJ1g6Nn2A8xmsCQ2V4qUQem+jpiDJg/CZ3/VD8/kTlVRnXb58x4BwtAwYS3 WlXPdnPc8xbxxQI6SEUj978JVa2e/SRjM3BuYvkDgeaJIsYH5DGtRbuI7JqHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVE/9bsd2dCo3u6ugBt2pQ0Nc8MgwHwYDVR0j BBgwFoAUgKV9krjUw/8X5xwDBdmtgpuUEOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2ZkZjQzZS00YTRjLTRkYmMtYjc4NS1kZDdjYmYxYTY3YjcvMC84MEE1N0Q5MkI4 RDRDM0ZGMTdFNzFDMDMwNUQ5QUQ4MjlCOTQxMEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5Qjk0 MTBFOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3ZmRmNDNlLTRhNGMtNGRiYy1i Nzg1LWRkN2NiZjFhNjdiNy8wLzMyMzAzMzJlMzIzOTJlMzIzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMsdGjANBgkqhkiG 9w0BAQsFAAOCAQEAB78V3MorlPFIdoCRI1KS2aqCSZ8Z3w75xpeCJuxWVX2zf56A ifyOx9c+zHSbI6ccMXwDhw6qnJE5ZjMK1rpCKi979vrEg3yrtkDDqjRvUMChl/ML D2/3Ph+oCna37NJV3Jgdzo9Tb9cA6JuMmfTj7xpjepmbH1TLeqYXZ8TEJMFvWNyh oZHEZFJXzXnQdboAY29VOnjKoZn3d9jxHzN0lnwgkzvu+pq759y6+DXZe8iTJ0XV 0QfqGutAeS5wQ1NSq6E1Ecgvm9Cx4SxxHinSzOoFPpfRexICBpoUPK5ZqTDQkD4m nURlv8h9Jdua6HYAspKnCaNV/nBMHMQCQ7GNrw== -----END CERTIFICATE-----Generated at Wed Apr 30 17:18:07 2025 by rpki-client