$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31312e302f32342d3234203d3e203338313530.roa File: 3230322e39312e31312e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: GOw6BJn4XT5wEmOGVeX/6A1aWsswmeb6q3J3zFZr2JM= Subject key identifier: 35:CB:9D:FE:23:A3:72:10:3A:70:28:4E:48:29:A0:8E:C4:B1:35:AC Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 3CE443DBB777D55EF5A595DD7932C9B2545D6C37 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31312e302f32342d3234203d3e203338313530.roa Signing time: Mon 02 Jun 2025 02:02:32 +0000 ROA not before: Mon 02 Jun 2025 01:57:32 +0000 ROA not after: Mon 01 Jun 2026 02:02:32 +0000 asID: 38150 IP address blocks: 202.91.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:e4:43:db:b7:77:d5:5e:f5:a5:95:dd:79:32:c9:b2:54:5d:6c:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jun 2 01:57:32 2025 GMT Not After : Jun 1 02:02:32 2026 GMT Subject: CN=35CB9DFE23A372103A70284E4829A08EC4B135AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:29:70:8f:38:3a:5b:e6:ff:17:f7:7d:f7:33: 8c:79:fc:0c:5e:4a:83:10:53:4e:33:d0:58:8d:15: 5f:e5:bf:77:4e:b9:21:b7:f9:73:7b:0f:13:d0:86: c2:d0:c6:32:29:bf:9a:48:13:52:21:37:61:36:ae: dd:59:18:d1:dc:60:26:df:1f:bf:9a:39:3f:f6:5c: 1e:4c:b2:86:04:25:fb:b0:63:a5:ba:3c:eb:d5:03: 62:56:08:21:e8:bf:9a:61:05:06:e4:db:e8:5c:c2: 91:34:b0:aa:66:b3:41:ca:15:bf:ca:2b:36:3e:3c: bd:3b:f1:3a:ed:d0:b0:b3:7e:43:dd:74:c6:78:bf: b0:a0:c0:c1:28:b2:00:f0:04:63:c1:ec:99:5a:fe: c1:1a:7e:4d:60:74:29:ec:51:55:45:f7:a8:b6:8c: da:e1:8e:41:4b:9a:40:81:12:b4:04:6b:d7:bf:9a: 6d:c1:be:ca:97:68:72:6d:a5:8e:35:f6:12:91:bc: cd:1e:24:69:b0:77:99:b9:05:56:93:fa:69:bf:41: ad:e1:56:94:bf:01:1a:b2:31:94:c8:37:cb:21:0d: 73:02:34:80:f4:f6:c2:fc:79:ef:26:da:a3:78:e7: 92:40:6a:66:0c:aa:c3:9d:b1:24:48:3c:97:ba:14: a7:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:CB:9D:FE:23:A3:72:10:3A:70:28:4E:48:29:A0:8E:C4:B1:35:AC X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31312e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.11.0/24 Signature Algorithm: sha256WithRSAEncryption 51:2e:cf:54:5a:da:ca:83:24:ad:a0:3e:3a:e2:a4:ad:ea:02: 06:79:9c:c1:60:91:e3:8f:e6:b2:0d:6a:a0:16:fd:29:ca:6e: 7e:5a:95:fc:80:f8:4b:74:ab:77:b4:7a:8b:29:93:01:ef:93: 5f:49:f3:78:32:7a:f0:d1:93:b8:f5:f7:05:d5:64:0d:20:00: 61:a8:e5:6c:53:87:1b:aa:7d:86:ff:5b:14:72:a0:54:c7:73: a5:a0:fb:76:c2:fa:7d:ba:46:63:7c:0a:dd:f1:88:9b:0d:d2: 73:a1:db:ff:a8:c9:03:d6:5c:17:90:92:b3:31:2c:f2:db:2e: 6e:49:a9:01:3f:51:29:2e:74:ea:e9:e1:99:2a:8e:bc:db:3e: fa:84:a1:f9:65:8c:4d:58:2d:26:4b:89:e8:1e:7a:31:f3:eb: 6f:bd:02:1c:7c:b0:2e:b4:62:2d:56:2b:07:e9:5c:16:c3:2e: 13:04:f3:7e:d5:3b:11:ff:78:35:e9:ca:c7:89:01:2f:86:15: 7d:af:3c:01:3b:68:72:0c:6d:c5:db:57:3e:28:37:57:81:81: 32:7e:27:75:e1:9f:0e:6d:c9:62:35:d2:76:ba:7c:4d:41:32: 5d:04:28:d6:d1:2b:fb:12:ad:2f:8e:89:e4:5a:7a:e0:72:bd: 13:66:67:32 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUPORD27d31V71pZXdeTLJslRdbDcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNTA2MDIwMTU3MzJaFw0yNjA2MDEwMjAyMzJaMDMxMTAvBgNV BAMTKDM1Q0I5REZFMjNBMzcyMTAzQTcwMjg0RTQ4MjlBMDhFQzRCMTM1QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWKXCPODpb5v8X9333M4x5/Axe SoMQU04z0FiNFV/lv3dOuSG3+XN7DxPQhsLQxjIpv5pIE1IhN2E2rt1ZGNHcYCbf H7+aOT/2XB5MsoYEJfuwY6W6POvVA2JWCCHov5phBQbk2+hcwpE0sKpms0HKFb/K KzY+PL078Trt0LCzfkPddMZ4v7CgwMEosgDwBGPB7Jla/sEafk1gdCnsUVVF96i2 jNrhjkFLmkCBErQEa9e/mm3BvsqXaHJtpY419hKRvM0eJGmwd5m5BVaT+mm/Qa3h VpS/ARqyMZTIN8shDXMCNID09sL8ee8m2qN455JAamYMqsOdsSRIPJe6FKclAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUNcud/iOjchA6cChOSCmgjsSxNawwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzAzMjJlMzkzMTJlMzEzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWwswDQYJKoZIhvcN AQELBQADggEBAFEuz1Ra2sqDJK2gPjripK3qAgZ5nMFgkeOP5rINaqAW/SnKbn5a lfyA+Et0q3e0eospkwHvk19J83gyevDRk7j19wXVZA0gAGGo5WxThxuqfYb/WxRy oFTHc6Wg+3bC+n26RmN8Ct3xiJsN0nOh2/+oyQPWXBeQkrMxLPLbLm5JqQE/USku dOrp4ZkqjrzbPvqEoflljE1YLSZLiegeejHz62+9Ahx8sC60Yi1WKwfpXBbDLhME 837VOxH/eDXpyseJAS+GFX2vPAE7aHIMbcXbVz4oN1eBgTJ+J3Xhnw5tyWI10na6 fE1BMl0EKNbRK/sSrS+OieRaeuByvRNmZzI= -----END CERTIFICATE-----Generated at Thu Jun 5 18:22:55 2025 by rpki-client