$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230312e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3230312e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: VB7muXOs/KUgbeY56FO085YD+k7/KBG+CVGoqwGS/LQ= Subject key identifier: 46:D2:70:92:9F:CE:DE:CC:5F:17:44:3B:76:F0:23:3B:E2:55:7A:23 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 40CFCA65A9B5495D9CE6A597C76A8E61FBEDC5CE Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230312e302f32342d3234203d3e203633383539.roa Signing time: Tue 10 Jun 2025 03:43:04 +0000 ROA not before: Tue 10 Jun 2025 03:38:04 +0000 ROA not after: Tue 09 Jun 2026 03:43:04 +0000 asID: 63859 IP address blocks: 202.152.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 21:31:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:cf:ca:65:a9:b5:49:5d:9c:e6:a5:97:c7:6a:8e:61:fb:ed:c5:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Jun 10 03:38:04 2025 GMT Not After : Jun 9 03:43:04 2026 GMT Subject: CN=46D270929FCEDECC5F17443B76F0233BE2557A23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:04:84:95:13:10:bf:5f:af:99:f1:12:b1:e9: 57:dc:23:86:0e:ea:5a:b2:0b:b4:f5:2c:64:65:db: ce:6b:77:d1:05:de:8f:0b:fc:0b:e3:ad:04:fc:59: 49:68:9a:9c:56:7d:3e:e7:14:fe:8c:54:7a:54:58: 53:d4:e2:06:99:da:cc:b0:9d:37:25:f2:0d:cf:f5: 5f:ef:f1:be:50:6a:c2:b7:df:84:c1:88:a3:8c:a0: 3b:23:a2:33:79:5a:91:4e:9f:ff:35:ee:83:d4:80: 96:7e:ee:f1:1b:c1:b8:e0:14:15:c1:06:4d:01:5b: dd:94:fb:61:de:a3:b6:f8:7b:bc:79:ba:a5:cc:97: c0:73:56:4b:c1:9a:80:a0:93:3e:e3:10:e4:9a:7b: 5f:04:74:c4:71:25:6c:21:ee:b0:0a:60:86:be:d1: d0:7f:1a:fa:7e:a3:1d:e9:38:32:2b:b4:88:11:4c: 78:c9:dc:4d:15:7d:8c:79:61:ed:55:b7:aa:cd:ce: 08:7d:36:09:f9:77:66:7d:6d:e8:45:38:cd:85:9c: 06:f8:91:d8:a5:90:02:7d:fd:6f:2f:4a:91:6a:a7: 61:ec:0b:7e:7f:c4:4f:25:ac:23:be:3a:b0:4c:cc: 98:0d:fa:ae:d9:5b:15:77:4e:c7:fa:dd:45:94:6e: ae:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:D2:70:92:9F:CE:DE:CC:5F:17:44:3B:76:F0:23:3B:E2:55:7A:23 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230312e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.201.0/24 Signature Algorithm: sha256WithRSAEncryption 67:23:92:af:4a:2b:ad:97:89:d8:a9:cb:53:43:b8:bb:03:a6: 2c:ff:51:61:14:32:29:96:70:34:8c:1e:48:d6:9a:d2:a9:64: 2f:af:59:3a:55:fb:3d:02:14:df:56:4a:35:5c:e0:b4:60:8a: 33:0a:46:08:a2:c4:83:b9:31:8d:3e:4d:9b:68:89:a4:f3:58: a9:05:18:14:31:f7:3a:cc:ea:e3:b2:b9:e9:8b:80:ec:55:a7: 1d:96:78:8a:3a:0a:d6:69:1c:79:5a:d3:f9:74:10:51:d6:26: 54:7f:2b:28:c5:f1:1e:c0:96:d0:4c:35:b8:8e:4d:b3:9a:33: 58:9f:0f:e8:b4:6f:60:14:fe:21:c5:73:3c:e4:e1:c9:c0:51: 69:8b:5e:c1:82:8e:f9:e2:87:e7:9c:fb:c8:0b:7f:ac:a2:33: c8:57:b1:97:48:80:4d:63:11:d2:f1:a3:33:28:f3:32:09:31: 30:b6:fc:ae:41:9d:91:2e:63:1d:d1:a6:ea:ec:9d:d7:14:b5: 37:40:91:e5:5f:1c:fe:cf:9c:ff:cd:79:30:55:90:2c:04:bc: 0e:91:57:f3:8f:66:03:41:34:ee:53:38:b8:47:b3:42:7d:78: 24:c3:4e:23:8a:eb:13:4d:5c:94:0c:e6:7f:fb:58:19:68:e1: ff:08:33:72 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQM/KZam1SV2c5qWXx2qOYfvtxc4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNTA2MTAwMzM4MDRaFw0yNjA2MDkwMzQzMDRaMDMxMTAvBgNV BAMTKDQ2RDI3MDkyOUZDRURFQ0M1RjE3NDQzQjc2RjAyMzNCRTI1NTdBMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUBISVExC/X6+Z8RKx6VfcI4YO 6lqyC7T1LGRl285rd9EF3o8L/AvjrQT8WUlompxWfT7nFP6MVHpUWFPU4gaZ2syw nTcl8g3P9V/v8b5QasK334TBiKOMoDsjojN5WpFOn/817oPUgJZ+7vEbwbjgFBXB Bk0BW92U+2Heo7b4e7x5uqXMl8BzVkvBmoCgkz7jEOSae18EdMRxJWwh7rAKYIa+ 0dB/Gvp+ox3pODIrtIgRTHjJ3E0VfYx5Ye1Vt6rNzgh9Ngn5d2Z9behFOM2FnAb4 kdilkAJ9/W8vSpFqp2HsC35/xE8lrCO+OrBMzJgN+q7ZWxV3Tsf63UWUbq5LAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURtJwkp/O3sxfF0Q7dvAjO+JVeiMwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMjMwMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjJMA0GCSqG SIb3DQEBCwUAA4IBAQBnI5KvSiutl4nYqctTQ7i7A6Ys/1FhFDIplnA0jB5I1prS qWQvr1k6Vfs9AhTfVko1XOC0YIozCkYIosSDuTGNPk2baImk81ipBRgUMfc6zOrj srnpi4DsVacdlniKOgrWaRx5WtP5dBBR1iZUfysoxfEewJbQTDW4jk2zmjNYnw/o tG9gFP4hxXM85OHJwFFpi17Bgo754ofnnPvIC3+sojPIV7GXSIBNYxHS8aMzKPMy CTEwtvyuQZ2RLmMd0abq7J3XFLU3QJHlXxz+z5z/zXkwVZAsBLwOkVfzj2YDQTTu Uzi4R7NCfXgkw04jiusTTVyUDOZ/+1gZaOH/CDNy -----END CERTIFICATE-----Generated at Sun Oct 26 22:51:57 2025 by rpki-client