$ rpki-client -vvf repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232362e302f32332d3233203d3e203435373033.roa File: 3230332e3131342e3232362e302f32332d3233203d3e203435373033.roa (raw, json) Hash identifier: 6Ec3PjRbQ83AgMPSDqdSdFcRTMZUzCno6pS4ublkNCA= Subject key identifier: D5:B5:FF:D2:27:AD:BB:47:37:E3:FF:50:35:BC:41:F6:73:42:DA:BC Certificate issuer: /CN=B7959E04EF090801395CE53E099D09F7AF2EF81B Certificate serial: 3F514C778AA6C05F528F04884870B95C957C002F Authority key identifier: B7:95:9E:04:EF:09:08:01:39:5C:E5:3E:09:9D:09:F7:AF:2E:F8:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232362e302f32332d3233203d3e203435373033.roa Signing time: Fri 16 May 2025 04:00:00 +0000 ROA not before: Fri 16 May 2025 03:55:00 +0000 ROA not after: Fri 15 May 2026 04:00:00 +0000 asID: 45703 IP address blocks: 203.114.226.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.crl rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:58:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:51:4c:77:8a:a6:c0:5f:52:8f:04:88:48:70:b9:5c:95:7c:00:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7959E04EF090801395CE53E099D09F7AF2EF81B Validity Not Before: May 16 03:55:00 2025 GMT Not After : May 15 04:00:00 2026 GMT Subject: CN=D5B5FFD227ADBB4737E3FF5035BC41F67342DABC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:eb:b6:5b:5b:b7:e7:a4:98:cf:d7:84:f8:1a: 97:6b:4f:d5:61:0a:7e:48:dc:69:c2:72:e3:3a:64: d6:8c:db:ec:79:d5:2e:ad:40:d7:cf:bc:25:a2:7d: 9b:60:f1:6a:96:c3:db:5f:01:db:82:bc:e5:ae:8c: 15:3e:bf:8a:cc:d6:0c:18:59:ff:c0:4b:79:e2:80: 58:2f:19:9c:7c:bf:ee:28:59:fd:98:4e:02:f4:b4: 5d:e0:51:d1:64:f4:5a:20:17:85:1b:0d:d5:23:a5: 2f:8a:c8:85:54:be:86:f1:32:88:61:b0:5b:c7:a4: 94:bb:a9:19:d9:15:ad:b7:fb:59:9f:ac:58:59:94: a0:aa:72:bb:12:37:dd:ef:b0:cc:f1:24:7c:bc:cd: 31:a5:ac:f7:49:64:fc:38:85:be:15:f6:e3:4a:25: 64:db:51:33:f5:8c:91:33:4f:02:26:b5:df:eb:55: 0b:92:67:53:59:8b:2d:4b:3a:df:51:37:fd:dd:9c: 8a:68:d1:a9:73:f8:38:1d:4d:0c:cd:46:6d:4f:e3: ed:1b:8a:29:79:24:53:05:13:4a:09:30:2a:7a:d7: d5:a0:3f:64:74:6d:44:00:25:60:7d:fb:a3:d8:48: 8a:02:18:72:a6:21:9f:47:aa:ad:2d:90:db:a9:6c: ec:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:B5:FF:D2:27:AD:BB:47:37:E3:FF:50:35:BC:41:F6:73:42:DA:BC X509v3 Authority Key Identifier: keyid:B7:95:9E:04:EF:09:08:01:39:5C:E5:3E:09:9D:09:F7:AF:2E:F8:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232362e302f32332d3233203d3e203435373033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.114.226.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:bc:1a:e3:81:2c:98:79:a4:3b:d9:9f:96:7b:f3:c5:97:ef: e2:92:4b:c6:c7:40:ce:74:47:e6:75:15:eb:ea:41:15:8f:0b: ac:1e:6d:fd:91:ba:26:7a:52:e6:4f:99:83:d8:10:b6:0c:36: 87:5f:ab:6c:42:55:01:18:48:56:12:97:57:f4:16:74:5c:22: 78:db:13:a9:22:bf:61:cd:a9:d5:5e:ab:32:a6:84:cf:4a:c2: b6:95:f5:e0:79:84:d8:34:c1:32:e1:2a:23:74:f9:8b:45:8a: dd:e2:ab:5e:23:e4:cf:ba:e4:eb:e0:13:98:72:e8:76:85:62: 43:7a:de:e0:cb:8e:78:f5:b0:f4:ff:c4:e6:39:5d:c5:92:23: fc:86:17:32:bf:ce:ad:54:b6:08:97:ac:fd:e3:b2:67:86:de: 9f:76:ed:3b:13:fa:1b:57:ce:cc:4e:8c:b2:ec:3a:92:87:82: 24:4f:36:3f:9c:54:70:73:28:e9:41:32:f1:95:2b:08:c0:b1: 0d:86:1c:c4:2a:51:d3:42:3e:32:36:2e:8c:76:87:c3:5f:e0: 06:c8:3a:e9:ab:d4:01:62:f8:26:19:c5:67:b0:d4:57:8d:4b: 12:b4:0e:ea:a3:e7:ae:12:05:86:b4:e6:89:43:af:3f:66:f8: 69:10:4e:03 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP1FMd4qmwF9SjwSISHC5XJV8AC8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc5NTlFMDRFRjA5MDgwMTM5NUNFNTNFMDk5RDA5RjdB RjJFRjgxQjAeFw0yNTA1MTYwMzU1MDBaFw0yNjA1MTUwNDAwMDBaMDMxMTAvBgNV BAMTKEQ1QjVGRkQyMjdBREJCNDczN0UzRkY1MDM1QkM0MUY2NzM0MkRBQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo67ZbW7fnpJjP14T4GpdrT9Vh Cn5I3GnCcuM6ZNaM2+x51S6tQNfPvCWifZtg8WqWw9tfAduCvOWujBU+v4rM1gwY Wf/AS3nigFgvGZx8v+4oWf2YTgL0tF3gUdFk9FogF4UbDdUjpS+KyIVUvobxMohh sFvHpJS7qRnZFa23+1mfrFhZlKCqcrsSN93vsMzxJHy8zTGlrPdJZPw4hb4V9uNK JWTbUTP1jJEzTwImtd/rVQuSZ1NZiy1LOt9RN/3dnIpo0alz+DgdTQzNRm1P4+0b iil5JFMFE0oJMCp619WgP2R0bUQAJWB9+6PYSIoCGHKmIZ9Hqq0tkNupbOwxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1bX/0ietu0c34/9QNbxB9nNC2rwwHwYDVR0j BBgwFoAUt5WeBO8JCAE5XOU+CZ0J968u+BswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDYzYWU3Yy1hNmZmLTRmZDgtOTZmMi0wYmExODgwMTMzYzcvMC9CNzk1OUUwNEVG MDkwODAxMzk1Q0U1M0UwOTlEMDlGN0FGMkVGODFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjc5NTlFMDRFRjA5MDgwMTM5NUNFNTNFMDk5RDA5RjdBRjJF RjgxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NjNhZTdjLWE2ZmYtNGZkOC05 NmYyLTBiYTE4ODAxMzNjNy8wLzMyMzAzMzJlMzEzMTM0MmUzMjMyMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNDM1MzczMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy3LiMA0GCSqG SIb3DQEBCwUAA4IBAQBbvBrjgSyYeaQ72Z+We/PFl+/ikkvGx0DOdEfmdRXr6kEV jwusHm39kbomelLmT5mD2BC2DDaHX6tsQlUBGEhWEpdX9BZ0XCJ42xOpIr9hzanV XqsypoTPSsK2lfXgeYTYNMEy4SojdPmLRYrd4qteI+TPuuTr4BOYcuh2hWJDet7g y4549bD0/8TmOV3FkiP8hhcyv86tVLYIl6z947Jnht6fdu07E/obV87MToyy7DqS h4IkTzY/nFRwcyjpQTLxlSsIwLENhhzEKlHTQj4yNi6MdofDX+AGyDrpq9QBYvgm GcVnsNRXjUsStA7qo+euEgWGtOaJQ68/ZvhpEE4D -----END CERTIFICATE-----Generated at Sat Jun 7 13:59:22 2025 by rpki-client