$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31332e302f32342d3234203d3e203338313530.roa File: 3230322e39312e31332e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: Pm3ejHe0iKXyhk2uLd7JZnNwWHWfKfQSqqt4OykxpQA= Subject key identifier: EB:27:DC:C5:12:01:67:EC:F3:72:33:95:7A:8E:5D:37:9D:B9:D6:A6 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 71CBB03481F9BBF2882DDD7B88B5DF3B5A856334 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31332e302f32342d3234203d3e203338313530.roa Signing time: Mon 02 Jun 2025 02:02:32 +0000 ROA not before: Mon 02 Jun 2025 01:57:32 +0000 ROA not after: Mon 01 Jun 2026 02:02:32 +0000 asID: 38150 IP address blocks: 202.91.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:cb:b0:34:81:f9:bb:f2:88:2d:dd:7b:88:b5:df:3b:5a:85:63:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jun 2 01:57:32 2025 GMT Not After : Jun 1 02:02:32 2026 GMT Subject: CN=EB27DCC5120167ECF37233957A8E5D379DB9D6A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cf:13:66:9d:3d:33:49:df:95:5e:87:06:81: ce:55:18:f8:05:cb:56:b2:d5:cb:03:ee:09:1d:1d: b2:0c:98:b3:d4:b9:05:d4:43:19:00:bd:fb:e2:fe: fb:34:ab:57:3f:91:8e:ec:1d:2a:87:5a:ef:8b:a4: 2f:20:ad:94:a2:5c:31:95:85:8e:3b:cc:61:c9:f3: 24:74:00:ff:ae:a2:e4:d4:c2:31:94:91:0d:a4:52: 3f:b5:6f:29:b3:ee:a7:2c:0d:ac:6e:2e:53:90:23: 43:3e:72:03:2b:20:7b:8a:84:ec:53:26:96:a9:d8: c4:0e:b5:36:09:2b:e2:e0:ef:fc:78:fa:41:3f:44: 74:13:e5:2a:ea:c7:25:5d:72:de:53:5e:de:f6:27: 96:78:b7:3a:c9:fc:fd:64:9c:dd:bc:9c:c8:2b:b4: 48:7b:2e:01:11:96:f5:de:ec:25:fd:a1:af:75:8f: 95:c1:e3:21:9a:8f:4c:af:e2:df:b6:b4:1a:88:5e: 88:62:c6:4f:4b:73:f4:1a:cf:3e:b0:b9:3d:12:f7: ec:2e:8d:ba:1e:08:d1:04:a8:45:18:a6:f7:e0:e7: 4c:75:2d:0f:ee:95:50:65:6a:84:34:16:ff:ab:4c: 6e:57:2f:4d:d2:20:4e:77:f2:e0:7d:8a:87:61:1a: 2f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:27:DC:C5:12:01:67:EC:F3:72:33:95:7A:8E:5D:37:9D:B9:D6:A6 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31332e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.13.0/24 Signature Algorithm: sha256WithRSAEncryption a6:5f:c6:d4:53:4e:bf:a3:cf:42:f9:6e:98:1c:d9:8d:32:be: be:57:c3:3c:e7:22:96:88:b7:aa:08:16:00:87:ba:42:2c:10: de:dc:cf:f7:d8:5a:24:7c:1e:11:fa:b1:14:b6:7d:18:41:87: e6:7e:9a:b1:dd:5f:35:b7:1e:d0:d2:a7:02:f2:5e:ea:79:eb: 8c:cf:d7:4c:97:66:38:87:96:b1:bb:3b:cf:b1:2e:25:8e:bf: 45:d2:f6:23:47:73:cf:49:cf:5c:5c:80:5d:54:5f:bf:6a:82: 4b:45:32:5b:53:a7:0b:4f:bd:a6:7a:0a:ae:3b:82:a9:6a:39: 92:2f:a2:f4:0c:a4:8e:ee:65:ea:2e:b1:13:26:6e:72:a8:5f: e6:08:ad:e4:31:2e:34:74:da:ca:21:3f:e1:7f:50:22:2c:77: 8c:e4:a7:c8:e3:93:d5:67:cf:84:de:49:91:ed:46:c1:2b:13: 56:9d:6b:c2:89:dd:f6:1d:43:da:fa:bf:a6:14:54:52:ee:c8: dc:91:53:a2:c8:b7:d9:66:16:bd:72:37:ba:b6:0d:c6:3e:6d: 1d:2b:44:db:50:82:76:2d:e9:d7:81:a5:fa:b1:13:fc:80:f7: 7f:39:45:e6:69:c6:d2:ed:20:ae:f5:2f:10:06:26:b0:82:d9: bc:34:2f:92 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUccuwNIH5u/KILd17iLXfO1qFYzQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNTA2MDIwMTU3MzJaFw0yNjA2MDEwMjAyMzJaMDMxMTAvBgNV BAMTKEVCMjdEQ0M1MTIwMTY3RUNGMzcyMzM5NTdBOEU1RDM3OURCOUQ2QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVzxNmnT0zSd+VXocGgc5VGPgF y1ay1csD7gkdHbIMmLPUuQXUQxkAvfvi/vs0q1c/kY7sHSqHWu+LpC8grZSiXDGV hY47zGHJ8yR0AP+uouTUwjGUkQ2kUj+1bymz7qcsDaxuLlOQI0M+cgMrIHuKhOxT Jpap2MQOtTYJK+Lg7/x4+kE/RHQT5SrqxyVdct5TXt72J5Z4tzrJ/P1knN28nMgr tEh7LgERlvXe7CX9oa91j5XB4yGaj0yv4t+2tBqIXohixk9Lc/Qazz6wuT0S9+wu jboeCNEEqEUYpvfg50x1LQ/ulVBlaoQ0Fv+rTG5XL03SIE538uB9iodhGi+PAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU6yfcxRIBZ+zzcjOVeo5dN5251qYwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzAzMjJlMzkzMTJlMzEzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWw0wDQYJKoZIhvcN AQELBQADggEBAKZfxtRTTr+jz0L5bpgc2Y0yvr5XwzznIpaIt6oIFgCHukIsEN7c z/fYWiR8HhH6sRS2fRhBh+Z+mrHdXzW3HtDSpwLyXup564zP10yXZjiHlrG7O8+x LiWOv0XS9iNHc89Jz1xcgF1UX79qgktFMltTpwtPvaZ6Cq47gqlqOZIvovQMpI7u ZeousRMmbnKoX+YIreQxLjR02sohP+F/UCIsd4zkp8jjk9Vnz4TeSZHtRsErE1ad a8KJ3fYdQ9r6v6YUVFLuyNyRU6LIt9lmFr1yN7q2DcY+bR0rRNtQgnYt6deBpfqx E/yA9385ReZpxtLtIK71LxAGJrCC2bw0L5I= -----END CERTIFICATE-----Generated at Thu Jun 5 18:20:14 2025 by rpki-client