$ rpki-client -vvf repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232362e302f32342d3234203d3e203435373033.roa File: 3230332e3131342e3232362e302f32342d3234203d3e203435373033.roa (raw, json) Hash identifier: 1cX8i6kVHz142LzobmEyC/+1K1VM1wldny1qyaPLfIA= Subject key identifier: E1:C2:C7:CA:E6:B8:27:E6:32:EB:F5:1A:4E:A4:A8:6D:21:88:07:83 Certificate issuer: /CN=B7959E04EF090801395CE53E099D09F7AF2EF81B Certificate serial: 38DDE9E0185F4E9A2F41AE35C22A63B4AFE22E04 Authority key identifier: B7:95:9E:04:EF:09:08:01:39:5C:E5:3E:09:9D:09:F7:AF:2E:F8:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232362e302f32342d3234203d3e203435373033.roa Signing time: Fri 16 May 2025 04:00:00 +0000 ROA not before: Fri 16 May 2025 03:55:00 +0000 ROA not after: Fri 15 May 2026 04:00:00 +0000 asID: 45703 IP address blocks: 203.114.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.crl rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:58:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:dd:e9:e0:18:5f:4e:9a:2f:41:ae:35:c2:2a:63:b4:af:e2:2e:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7959E04EF090801395CE53E099D09F7AF2EF81B Validity Not Before: May 16 03:55:00 2025 GMT Not After : May 15 04:00:00 2026 GMT Subject: CN=E1C2C7CAE6B827E632EBF51A4EA4A86D21880783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e4:73:ca:a7:ec:8a:e3:e5:99:b1:38:ca:06: a4:24:cb:03:14:b5:64:3a:54:06:c0:a6:2e:b2:62: 94:38:77:69:51:71:ca:29:7a:3d:c6:05:98:7d:69: e4:e7:0b:c4:b6:00:43:ba:a4:2b:ae:c8:c4:47:ec: 66:9a:bf:b3:af:b6:d8:d0:c4:d6:90:04:a1:25:6a: 84:82:e5:dc:7f:88:7c:0f:eb:cf:79:67:60:27:f7: fc:13:66:28:84:90:ed:25:11:40:69:d7:df:d8:d1: 63:c0:96:9a:97:be:05:e5:8a:0b:bf:33:3a:71:b4: 2b:09:cb:66:02:92:f7:35:75:92:e0:24:57:0b:78: 4b:b1:c4:b9:37:23:96:50:17:db:6f:a8:eb:02:eb: 00:1e:1f:9b:5c:ea:90:72:c7:5f:d0:ab:22:e3:31: f6:de:8a:f1:1d:ca:8e:6d:a6:25:0b:a8:70:cd:3a: 40:d4:ba:12:09:ed:50:e3:8f:23:78:8d:88:24:9f: 4c:ac:eb:06:60:8c:46:13:de:e2:ec:24:6d:8b:4c: a8:09:3d:88:4b:1c:4f:aa:c5:4a:79:df:54:25:ec: 0e:ef:f9:ac:97:1e:a1:66:65:e4:c9:3c:53:57:cb: cf:d8:b0:06:b1:ce:0a:aa:ab:86:37:15:5c:a6:6d: 73:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:C2:C7:CA:E6:B8:27:E6:32:EB:F5:1A:4E:A4:A8:6D:21:88:07:83 X509v3 Authority Key Identifier: keyid:B7:95:9E:04:EF:09:08:01:39:5C:E5:3E:09:9D:09:F7:AF:2E:F8:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232362e302f32342d3234203d3e203435373033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.114.226.0/24 Signature Algorithm: sha256WithRSAEncryption aa:1b:64:a0:2c:a5:5f:a5:ff:08:e7:b2:22:89:76:bf:63:02: 2e:d3:70:c3:5c:cc:35:fc:59:73:ea:19:e6:1d:1a:f0:44:6e: ea:52:9e:e8:a2:26:71:31:96:6b:af:c8:9c:5d:d8:09:53:c5: 66:90:19:b1:73:b9:ec:23:1e:77:6c:8d:7b:72:9f:f7:dd:bd: 9d:c3:35:38:6c:68:7c:74:96:c3:4a:a1:0e:a7:9e:83:ac:97: 0c:6e:4e:3b:9e:79:b7:d2:17:2b:62:6f:61:e9:2a:91:e5:62: 9f:62:52:c3:c7:46:d6:f5:67:af:18:b1:8c:18:10:81:0d:9a: e7:3d:b3:a1:09:20:9c:72:81:56:b1:e6:57:ef:e9:fb:85:1c: fb:29:f9:b1:2c:a8:db:26:c4:c5:46:01:df:02:29:d4:0c:e4: 1b:c9:35:b2:5a:cc:9d:74:0d:ed:2b:15:4e:d8:46:d9:15:2f: e8:ac:63:1d:c8:0f:08:ff:97:9b:ff:a0:23:88:bb:f5:0f:65: 41:b2:0d:c1:39:4c:b4:7b:29:1d:e3:f6:c8:f4:0c:d6:09:e0: 0a:70:7c:25:97:ba:cf:f0:31:9e:20:9c:a8:ab:06:46:47:66: ee:b5:93:06:28:3a:84:89:8c:60:8a:c8:77:b3:a8:81:4a:c8: 39:b0:cb:2d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUON3p4BhfTpovQa41wipjtK/iLgQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc5NTlFMDRFRjA5MDgwMTM5NUNFNTNFMDk5RDA5RjdB RjJFRjgxQjAeFw0yNTA1MTYwMzU1MDBaFw0yNjA1MTUwNDAwMDBaMDMxMTAvBgNV BAMTKEUxQzJDN0NBRTZCODI3RTYzMkVCRjUxQTRFQTRBODZEMjE4ODA3ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp5HPKp+yK4+WZsTjKBqQkywMU tWQ6VAbApi6yYpQ4d2lRccopej3GBZh9aeTnC8S2AEO6pCuuyMRH7Gaav7OvttjQ xNaQBKElaoSC5dx/iHwP6895Z2An9/wTZiiEkO0lEUBp19/Y0WPAlpqXvgXligu/ MzpxtCsJy2YCkvc1dZLgJFcLeEuxxLk3I5ZQF9tvqOsC6wAeH5tc6pByx1/QqyLj MfbeivEdyo5tpiULqHDNOkDUuhIJ7VDjjyN4jYgkn0ys6wZgjEYT3uLsJG2LTKgJ PYhLHE+qxUp531Ql7A7v+ayXHqFmZeTJPFNXy8/YsAaxzgqqq4Y3FVymbXO9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4cLHyua4J+Yy6/UaTqSobSGIB4MwHwYDVR0j BBgwFoAUt5WeBO8JCAE5XOU+CZ0J968u+BswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDYzYWU3Yy1hNmZmLTRmZDgtOTZmMi0wYmExODgwMTMzYzcvMC9CNzk1OUUwNEVG MDkwODAxMzk1Q0U1M0UwOTlEMDlGN0FGMkVGODFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjc5NTlFMDRFRjA5MDgwMTM5NUNFNTNFMDk5RDA5RjdBRjJF RjgxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NjNhZTdjLWE2ZmYtNGZkOC05 NmYyLTBiYTE4ODAxMzNjNy8wLzMyMzAzMzJlMzEzMTM0MmUzMjMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzczMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy3LiMA0GCSqG SIb3DQEBCwUAA4IBAQCqG2SgLKVfpf8I57IiiXa/YwIu03DDXMw1/Flz6hnmHRrw RG7qUp7ooiZxMZZrr8icXdgJU8VmkBmxc7nsIx53bI17cp/33b2dwzU4bGh8dJbD SqEOp56DrJcMbk47nnm30hcrYm9h6SqR5WKfYlLDx0bW9WevGLGMGBCBDZrnPbOh CSCccoFWseZX7+n7hRz7KfmxLKjbJsTFRgHfAinUDOQbyTWyWsyddA3tKxVO2EbZ FS/orGMdyA8I/5eb/6AjiLv1D2VBsg3BOUy0eykd4/bI9AzWCeAKcHwll7rP8DGe IJyoqwZGR2butZMGKDqEiYxgish3s6iBSsg5sMst -----END CERTIFICATE-----Generated at Sat Jun 7 05:52:39 2025 by rpki-client