$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233362e302f32332d3233203d3e20313331373735.roa File: 3230322e37342e3233362e302f32332d3233203d3e20313331373735.roa (raw, json) Hash identifier: gEYK+18FP+7kBMfZJoRXCpV612TXysZxOtU9C0Gw8cc= Subject key identifier: 87:93:A5:66:F7:C8:9C:E0:4A:1C:5C:F2:F9:68:17:5B:38:F9:59:BE Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Certificate serial: 3A503936C3FAAAD35D1B2088043F7E4338DDC82F Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233362e302f32332d3233203d3e20313331373735.roa Signing time: Sat 12 Jul 2025 15:00:01 +0000 ROA not before: Sat 12 Jul 2025 14:55:01 +0000 ROA not after: Sat 11 Jul 2026 15:00:01 +0000 asID: 131775 IP address blocks: 202.74.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 19:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:50:39:36:c3:fa:aa:d3:5d:1b:20:88:04:3f:7e:43:38:dd:c8:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Validity Not Before: Jul 12 14:55:01 2025 GMT Not After : Jul 11 15:00:01 2026 GMT Subject: CN=8793A566F7C89CE04A1C5CF2F968175B38F959BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a5:24:c3:c9:09:ca:33:fe:a1:14:17:4c:8d: 3a:b1:ed:45:33:06:1a:a9:e7:fb:55:0e:03:d9:d9: fc:d0:4f:b1:b3:30:55:d4:01:5a:94:32:38:79:35: 20:5c:39:1e:99:e9:65:38:81:de:4d:e7:a9:d2:8b: e4:d2:37:02:c1:bb:d4:d1:06:f7:e8:34:62:56:6d: ef:71:1c:86:78:ca:f8:19:e7:b4:17:05:5c:5b:04: 78:5d:46:c6:4c:47:e8:51:5c:be:3a:a6:1a:a3:52: 23:2a:8f:6d:62:b0:15:69:90:eb:e2:2e:d5:96:d2: b4:ae:92:e5:9b:1b:dc:68:4e:0d:f6:0a:6d:3b:bf: 0a:af:74:a8:ae:c7:c5:ef:68:a6:0c:6e:87:68:7f: 31:27:7e:a0:c3:c6:77:cc:61:27:2a:75:e9:67:e1: 18:32:42:81:96:71:c1:c9:af:bb:b9:c5:20:10:c8: a0:dd:91:fc:b5:b9:f7:b2:b9:1d:19:84:07:a9:b9: 74:48:dd:11:07:36:4c:23:03:ca:9b:c5:56:c4:48: 5c:e5:38:52:c6:95:65:20:bb:9c:c2:7d:3f:ad:34: 59:ed:de:cd:22:0f:01:ad:ee:6e:e2:ab:07:69:5f: c5:1d:0f:bc:f1:e6:2a:c3:15:1d:26:5a:81:91:25: 41:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:93:A5:66:F7:C8:9C:E0:4A:1C:5C:F2:F9:68:17:5B:38:F9:59:BE X509v3 Authority Key Identifier: keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233362e302f32332d3233203d3e20313331373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.74.236.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:e4:7c:54:ea:94:88:64:81:f3:15:f6:1e:d3:54:05:f2:7f: 1b:aa:af:72:91:3a:39:7b:cf:bc:6d:44:a6:c4:d2:ba:01:23: 85:85:cd:15:cb:15:96:8b:8e:f9:ec:ea:ab:87:4b:05:e4:04: 5d:35:3e:9b:1d:97:1d:97:31:af:6d:dc:76:06:04:dd:40:5d: 0d:a4:48:85:2d:55:80:6b:a7:a7:3b:c2:f8:0a:02:c3:be:3b: a2:60:2b:02:d8:9b:a0:a3:bf:f7:37:a0:f3:8a:8d:15:07:fa: 95:20:1c:8b:d6:47:7c:60:f1:10:aa:7b:6a:b4:bc:1f:b1:a4: da:8d:9e:7c:6b:3c:69:14:77:f5:c2:6e:62:6b:68:63:5d:29: d3:8e:23:2f:e3:19:28:b8:4c:d4:21:dd:8d:26:92:e2:21:88: 6b:ba:1a:e9:f2:14:85:89:a0:9a:18:39:d4:16:df:ac:79:56: 8f:b1:6e:48:b5:2e:16:1a:9b:ff:82:ab:da:75:d9:6c:aa:c9: 02:d6:0f:38:c2:b3:57:94:1f:d1:47:d0:e2:fa:72:da:19:d9: bd:bd:dc:95:1e:19:8d:5f:18:51:46:2f:7d:49:94:bc:44:b1: 60:5e:7f:6a:2c:60:9c:db:d3:67:5a:4f:fe:cf:e4:cb:ed:8d: 77:d2:aa:60 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOlA5NsP6qtNdGyCIBD9+QzjdyC8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VE NzZCNTA1NDAeFw0yNTA3MTIxNDU1MDFaFw0yNjA3MTExNTAwMDFaMDMxMTAvBgNV BAMTKDg3OTNBNTY2RjdDODlDRTA0QTFDNUNGMkY5NjgxNzVCMzhGOTU5QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmpSTDyQnKM/6hFBdMjTqx7UUz Bhqp5/tVDgPZ2fzQT7GzMFXUAVqUMjh5NSBcOR6Z6WU4gd5N56nSi+TSNwLBu9TR BvfoNGJWbe9xHIZ4yvgZ57QXBVxbBHhdRsZMR+hRXL46phqjUiMqj21isBVpkOvi LtWW0rSukuWbG9xoTg32Cm07vwqvdKiux8XvaKYMbodofzEnfqDDxnfMYScqdeln 4RgyQoGWccHJr7u5xSAQyKDdkfy1ufeyuR0ZhAepuXRI3REHNkwjA8qbxVbESFzl OFLGlWUgu5zCfT+tNFnt3s0iDwGt7m7iqwdpX8UdD7zx5irDFR0mWoGRJUFJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUh5OlZvfInOBKHFzy+WgXWzj5Wb4wHwYDVR0j BBgwFoAUSc3KMIwonWiMZJwjA77LPtdrUFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZWI5OGNlZC1hZjE4LTRiZmYtYWQ3MS03M2QyYjBjOWQ4YTkvMC80OUNEQ0EzMDhD Mjg5RDY4OEM2NDlDMjMwM0JFQ0IzRUQ3NkI1MDU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VENzZC NTA1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlYjk4Y2VkLWFmMTgtNGJmZi1h ZDcxLTczZDJiMGM5ZDhhOS8wLzMyMzAzMjJlMzczNDJlMzIzMzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzMxMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBykrsMA0GCSqG SIb3DQEBCwUAA4IBAQCP5HxU6pSIZIHzFfYe01QF8n8bqq9ykTo5e8+8bUSmxNK6 ASOFhc0VyxWWi4757Oqrh0sF5ARdNT6bHZcdlzGvbdx2BgTdQF0NpEiFLVWAa6en O8L4CgLDvjuiYCsC2Jugo7/3N6Dzio0VB/qVIByL1kd8YPEQqntqtLwfsaTajZ58 azxpFHf1wm5ia2hjXSnTjiMv4xkouEzUId2NJpLiIYhruhrp8hSFiaCaGDnUFt+s eVaPsW5ItS4WGpv/gqvaddlsqskC1g84wrNXlB/RR9Di+nLaGdm9vdyVHhmNXxhR Ri99SZS8RLFgXn9qLGCc29NnWk/+z+TL7Y130qpg -----END CERTIFICATE-----Generated at Wed Jul 23 18:39:11 2025 by rpki-client