$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233382e302f32332d3233203d3e20313331373735.roa File: 3230322e37342e3233382e302f32332d3233203d3e20313331373735.roa (raw, json) Hash identifier: VOPS8e3VH0l6ubQIOcds4q8+0PaehGxHMdByhPPUMRk= Subject key identifier: BD:99:DA:F0:B6:51:47:70:3E:BF:EA:23:3E:25:68:78:86:F3:D4:24 Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Certificate serial: 08C18D74051E212DB0A40A2C0D565F3F56C14AAC Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233382e302f32332d3233203d3e20313331373735.roa Signing time: Sat 12 Jul 2025 14:00:01 +0000 ROA not before: Sat 12 Jul 2025 13:55:01 +0000 ROA not after: Sat 11 Jul 2026 14:00:01 +0000 asID: 131775 IP address blocks: 202.74.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 19:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:c1:8d:74:05:1e:21:2d:b0:a4:0a:2c:0d:56:5f:3f:56:c1:4a:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Validity Not Before: Jul 12 13:55:01 2025 GMT Not After : Jul 11 14:00:01 2026 GMT Subject: CN=BD99DAF0B65147703EBFEA233E25687886F3D424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:70:d1:8f:e1:b7:22:a1:bb:a1:70:70:5e:fc: 88:57:f9:11:88:99:65:d4:3b:ae:00:3b:c3:12:45: 7b:7f:01:fa:fe:50:b9:0d:4b:f1:e8:47:b8:d1:e0: ce:57:22:94:e5:10:ab:66:14:df:7f:f6:b3:6d:2c: 27:9b:a3:3a:c6:e1:ab:16:0e:83:15:50:d1:d4:62: 7e:6e:f7:5b:83:59:7b:cc:ea:8c:21:58:f3:89:86: 0a:8a:e9:82:ab:e2:1c:b1:c5:ee:37:23:85:bc:b9: 8e:0c:9d:73:4d:d6:df:15:13:22:5c:12:aa:d8:2b: 86:32:b1:c0:5a:e0:ac:32:6c:29:fb:e8:13:b2:69: ae:14:39:9d:b2:2d:28:36:9a:c2:55:8e:e5:ab:98: 7b:79:36:1a:32:36:ae:c6:19:32:2f:24:26:a5:8a: 2d:fe:35:3d:33:70:b4:93:11:b8:fc:88:11:07:36: e5:c2:ee:ef:02:7f:62:d3:13:bb:ac:4e:99:6d:df: ef:f5:30:e7:51:c7:6d:13:de:9e:ef:25:de:96:8f: a9:e8:61:1a:44:00:61:d4:82:b9:c5:24:19:c7:2f: d9:0e:c8:50:e9:18:09:6f:b3:73:08:9c:8a:ee:e1: 48:1a:40:a5:d1:e8:41:ee:fc:4f:60:89:cc:8d:af: 3c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:99:DA:F0:B6:51:47:70:3E:BF:EA:23:3E:25:68:78:86:F3:D4:24 X509v3 Authority Key Identifier: keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233382e302f32332d3233203d3e20313331373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.74.238.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:60:ae:81:20:fe:1d:e8:ac:40:12:c3:e5:6f:d4:ff:8f:dc: 56:44:e0:65:8b:9e:3d:ac:ad:1c:b5:e1:14:cd:d0:c3:3b:df: 66:85:f1:6c:a2:41:4d:a5:1a:41:60:9b:b9:d8:ce:4f:64:48: b0:e5:67:d5:2a:d2:0e:84:83:bc:ef:74:c2:e0:9a:15:05:e4: dd:ef:11:bc:88:5c:44:18:75:4c:b3:be:12:05:09:b9:90:cf: 09:c2:f6:02:7e:d8:52:c7:4b:53:96:1d:c9:9a:34:79:45:58: e0:e4:98:ab:8f:c3:3a:7d:b5:f7:e6:bf:c1:f0:90:15:74:92: df:a4:4a:d3:fc:a9:b6:53:0f:56:49:16:5f:de:75:82:7a:31: 92:86:14:2b:b1:25:87:f1:7d:0d:99:14:1a:5a:98:e0:6d:41: 6d:d4:5e:2d:0f:73:e3:f6:2a:45:cd:ad:3f:d0:c6:de:06:52: 59:ec:a1:b9:33:9a:50:5c:82:1b:7f:0c:4c:ed:38:29:1f:3d: 57:64:10:de:59:09:25:2b:34:08:e5:cc:a1:fe:16:0c:13:b7: eb:01:ac:10:88:6d:5d:f2:67:36:d8:8b:55:bb:06:bd:d0:0c: 79:88:79:4c:bf:1c:e8:41:b8:37:85:91:68:8d:c2:41:5a:29: 2e:77:c9:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCMGNdAUeIS2wpAosDVZfP1bBSqwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VE NzZCNTA1NDAeFw0yNTA3MTIxMzU1MDFaFw0yNjA3MTExNDAwMDFaMDMxMTAvBgNV BAMTKEJEOTlEQUYwQjY1MTQ3NzAzRUJGRUEyMzNFMjU2ODc4ODZGM0Q0MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEcNGP4bciobuhcHBe/IhX+RGI mWXUO64AO8MSRXt/Afr+ULkNS/HoR7jR4M5XIpTlEKtmFN9/9rNtLCebozrG4asW DoMVUNHUYn5u91uDWXvM6owhWPOJhgqK6YKr4hyxxe43I4W8uY4MnXNN1t8VEyJc EqrYK4YyscBa4KwybCn76BOyaa4UOZ2yLSg2msJVjuWrmHt5NhoyNq7GGTIvJCal ii3+NT0zcLSTEbj8iBEHNuXC7u8Cf2LTE7usTplt3+/1MOdRx20T3p7vJd6Wj6no YRpEAGHUgrnFJBnHL9kOyFDpGAlvs3MInIru4UgaQKXR6EHu/E9gicyNrzztAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvZna8LZRR3A+v+ojPiVoeIbz1CQwHwYDVR0j BBgwFoAUSc3KMIwonWiMZJwjA77LPtdrUFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZWI5OGNlZC1hZjE4LTRiZmYtYWQ3MS03M2QyYjBjOWQ4YTkvMC80OUNEQ0EzMDhD Mjg5RDY4OEM2NDlDMjMwM0JFQ0IzRUQ3NkI1MDU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VENzZC NTA1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlYjk4Y2VkLWFmMTgtNGJmZi1h ZDcxLTczZDJiMGM5ZDhhOS8wLzMyMzAzMjJlMzczNDJlMzIzMzM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzMxMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBykruMA0GCSqG SIb3DQEBCwUAA4IBAQBLYK6BIP4d6KxAEsPlb9T/j9xWROBli549rK0cteEUzdDD O99mhfFsokFNpRpBYJu52M5PZEiw5WfVKtIOhIO873TC4JoVBeTd7xG8iFxEGHVM s74SBQm5kM8JwvYCfthSx0tTlh3JmjR5RVjg5Jirj8M6fbX35r/B8JAVdJLfpErT /Km2Uw9WSRZf3nWCejGShhQrsSWH8X0NmRQaWpjgbUFt1F4tD3Pj9ipFza0/0Mbe BlJZ7KG5M5pQXIIbfwxM7TgpHz1XZBDeWQklKzQI5cyh/hYME7frAawQiG1d8mc2 2ItVuwa90Ax5iHlMvxzoQbg3hZFojcJBWikud8kl -----END CERTIFICATE-----Generated at Wed Jul 23 12:11:23 2025 by rpki-client