$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31322e302f32342d3234203d3e203338313530.roa File: 3230322e39312e31322e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: M1sZzZsXerpK67gBWx+pwUlEiAdZNEC8sdxke6ageOg= Subject key identifier: 0F:C5:6D:C2:93:8E:6E:22:EB:7B:84:8D:EF:20:11:A4:F5:78:2B:23 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 47EE1B1BD6E5A171BAF744F964F2C4DAA6674535 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31322e302f32342d3234203d3e203338313530.roa Signing time: Mon 02 Jun 2025 02:02:32 +0000 ROA not before: Mon 02 Jun 2025 01:57:32 +0000 ROA not after: Mon 01 Jun 2026 02:02:32 +0000 asID: 38150 IP address blocks: 202.91.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 00:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:ee:1b:1b:d6:e5:a1:71:ba:f7:44:f9:64:f2:c4:da:a6:67:45:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jun 2 01:57:32 2025 GMT Not After : Jun 1 02:02:32 2026 GMT Subject: CN=0FC56DC2938E6E22EB7B848DEF2011A4F5782B23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6b:63:08:c0:40:48:c2:ac:c0:3f:ea:94:c1: df:a6:d1:10:c6:f3:c4:e4:2a:bd:a2:8a:25:74:d6: 80:63:5e:de:6a:b5:c3:62:c6:ef:b6:f8:62:07:72: 8f:20:e7:9d:86:60:87:d1:59:9c:76:ff:ca:e1:f4: a7:23:cb:80:b6:c0:e5:4a:d1:f9:f5:d2:8f:6b:ef: 29:db:01:a2:8d:58:57:69:83:fd:d3:75:48:91:c0: 4a:1f:8c:ea:3c:34:12:01:ed:97:43:a2:2f:b5:bd: b5:f1:ef:aa:67:aa:17:32:c6:b0:b8:aa:5c:f6:a5: 6c:f2:13:10:13:1b:e8:ee:9d:f0:ae:46:fe:79:d6: 7d:a8:47:c4:2c:71:f8:e0:45:bc:1f:b5:d1:a8:c3: 5a:31:e7:25:d7:9a:e1:2a:b2:a7:80:7d:2a:43:70: 3c:b2:7e:9f:1c:e7:e3:45:8c:ec:bf:90:db:50:40: eb:05:2d:35:f1:9f:42:54:75:09:97:6e:da:c3:e2: 5e:28:07:82:c0:0e:4b:17:69:97:8b:cb:38:3b:7e: 32:52:f8:95:29:52:c1:09:ca:98:6a:0c:62:50:94: 3f:1e:25:f4:83:24:1a:6d:e6:67:a1:58:fa:c2:59: 67:20:34:77:98:62:a3:1a:04:fe:65:86:8d:7b:1a: a0:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C5:6D:C2:93:8E:6E:22:EB:7B:84:8D:EF:20:11:A4:F5:78:2B:23 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31322e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.12.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:89:22:43:37:94:d8:65:da:45:bd:58:bf:e3:ba:3e:ef:c9: b4:3c:03:d1:f9:fb:a5:bb:d0:06:e7:3e:d8:4d:18:a7:74:59: 91:7e:ce:32:c4:9d:52:01:54:21:0f:ec:80:60:3c:f4:fc:e1: 19:9a:b4:51:fe:e3:a7:5b:77:b2:95:d0:30:11:91:b1:9f:0e: 69:ca:e3:79:1d:74:ad:87:ef:5f:a7:6b:01:aa:b6:b9:7e:d0: cc:40:ba:2c:9d:fa:84:b1:29:26:3d:a8:a9:9b:cf:96:68:21: 0a:b2:ad:5f:2c:fe:e6:f2:b5:7c:b7:2c:be:a2:71:18:b3:40: 73:60:58:f1:5e:3a:28:9a:ca:40:c5:28:a4:9c:75:9e:a0:d0: 83:ca:c9:7b:d1:07:d2:80:7f:25:e6:12:e6:56:46:33:5a:3a: 0b:82:e3:97:33:3d:d8:2d:7b:8f:f7:bc:23:b2:1c:cc:b9:13: 2b:d5:61:b8:9c:1e:6f:e1:ef:21:83:a6:b3:2d:16:a9:02:97: 52:75:ee:1e:ed:56:71:c7:b2:a9:de:9d:21:5f:8a:b6:80:af: fd:bf:d3:44:4c:ce:13:2a:45:83:8d:b2:f9:f4:74:46:e5:0f: 83:20:1d:c9:1a:a6:62:90:50:48:9b:d3:2e:5b:64:23:ae:2e: d4:18:35:97 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUR+4bG9bloXG690T5ZPLE2qZnRTUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNTA2MDIwMTU3MzJaFw0yNjA2MDEwMjAyMzJaMDMxMTAvBgNV BAMTKDBGQzU2REMyOTM4RTZFMjJFQjdCODQ4REVGMjAxMUE0RjU3ODJCMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMa2MIwEBIwqzAP+qUwd+m0RDG 88TkKr2iiiV01oBjXt5qtcNixu+2+GIHco8g552GYIfRWZx2/8rh9Kcjy4C2wOVK 0fn10o9r7ynbAaKNWFdpg/3TdUiRwEofjOo8NBIB7ZdDoi+1vbXx76pnqhcyxrC4 qlz2pWzyExATG+junfCuRv551n2oR8QscfjgRbwftdGow1ox5yXXmuEqsqeAfSpD cDyyfp8c5+NFjOy/kNtQQOsFLTXxn0JUdQmXbtrD4l4oB4LADksXaZeLyzg7fjJS +JUpUsEJyphqDGJQlD8eJfSDJBpt5mehWPrCWWcgNHeYYqMaBP5lho17GqBFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUD8VtwpOObiLre4SN7yARpPV4KyMwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzAzMjJlMzkzMTJlMzEzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWwwwDQYJKoZIhvcN AQELBQADggEBAEqJIkM3lNhl2kW9WL/juj7vybQ8A9H5+6W70AbnPthNGKd0WZF+ zjLEnVIBVCEP7IBgPPT84RmatFH+46dbd7KV0DARkbGfDmnK43kddK2H71+nawGq trl+0MxAuiyd+oSxKSY9qKmbz5ZoIQqyrV8s/ubytXy3LL6icRizQHNgWPFeOiia ykDFKKScdZ6g0IPKyXvRB9KAfyXmEuZWRjNaOguC45czPdgte4/3vCOyHMy5EyvV YbicHm/h7yGDprMtFqkCl1J17h7tVnHHsqnenSFfiraAr/2/00RMzhMqRYONsvn0 dEblD4MgHckapmKQUEib0y5bZCOuLtQYNZc= -----END CERTIFICATE-----Generated at Sun Nov 2 20:17:43 2025 by rpki-client