$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31342e302f32342d3234203d3e203338313530.roa File: 3230322e39312e31342e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: afV3DuPWJs229SMBfZ6L1zzWwdYeqEIzLl+zAnPOPc8= Subject key identifier: E4:B3:CC:A2:29:06:31:DA:E4:9D:32:C2:4C:D9:37:86:99:7E:AA:A9 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 3B93DD3856F4EC2FC43E3B17242E8326CF73A3C6 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31342e302f32342d3234203d3e203338313530.roa Signing time: Mon 02 Jun 2025 02:02:30 +0000 ROA not before: Mon 02 Jun 2025 01:57:30 +0000 ROA not after: Mon 01 Jun 2026 02:02:30 +0000 asID: 38150 IP address blocks: 202.91.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:93:dd:38:56:f4:ec:2f:c4:3e:3b:17:24:2e:83:26:cf:73:a3:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jun 2 01:57:30 2025 GMT Not After : Jun 1 02:02:30 2026 GMT Subject: CN=E4B3CCA2290631DAE49D32C24CD93786997EAAA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b0:63:b3:89:44:ab:fb:18:59:af:e2:d2:6f: 33:9b:5f:e2:b1:37:9b:d9:83:66:3b:87:eb:04:4e: 02:f3:21:ff:65:37:7f:d5:3b:b7:db:02:7e:47:95: c9:97:fa:e1:96:9f:92:c9:90:cc:69:27:99:b0:34: ee:5d:d5:bf:6a:32:6a:db:18:7b:8c:09:15:a7:b8: 9f:00:d3:08:af:1a:2d:58:75:bb:b5:46:9d:84:4d: 7e:ce:73:b5:4c:e0:ae:46:b0:37:fb:bb:77:db:65: 1a:22:9a:39:3a:6a:c8:77:35:09:f4:36:59:73:e3: 4b:cc:d3:5d:d6:39:65:b9:be:4f:65:8d:da:26:e2: 64:68:e0:44:a3:76:f5:9a:7d:2f:4d:8b:74:2c:a7: bc:f3:8a:4f:87:9c:6f:76:d6:2a:cc:bd:7e:61:97: 85:07:15:16:76:6b:f3:07:6d:be:15:1d:78:e6:ec: df:3b:9d:96:c4:c6:b8:5d:97:18:59:a0:47:5d:ee: 94:cb:25:5e:19:4f:af:16:ab:11:2f:39:0b:80:5a: ec:29:a5:96:69:51:d6:e1:cb:b2:63:dd:46:49:08: 05:b6:42:49:ec:96:f0:ab:e7:4a:65:cd:ad:44:7a: aa:36:ae:59:d8:2e:0d:08:a8:27:62:da:c8:1a:53: 20:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B3:CC:A2:29:06:31:DA:E4:9D:32:C2:4C:D9:37:86:99:7E:AA:A9 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31342e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.14.0/24 Signature Algorithm: sha256WithRSAEncryption b1:e6:0b:d9:ee:10:03:a9:61:1a:6f:bf:0d:a2:b2:76:c9:c6: 52:41:60:0f:9b:6f:e3:72:25:b0:cb:d5:16:1c:af:51:18:f9: a7:0b:23:e5:4f:6e:7e:df:86:00:bf:00:18:4d:3f:0d:34:c4: ff:69:f9:a7:52:8c:61:e3:3d:af:9a:92:89:2c:bd:a8:bf:54: 12:1f:56:6f:0a:d7:f6:b7:74:bf:3e:25:84:63:5f:a2:a7:c9: 50:1d:d7:a0:2f:5b:6e:0c:b8:08:4d:93:1a:c1:3f:25:41:5c: b6:16:a3:1f:15:26:d6:f7:19:af:bc:0b:55:29:34:85:92:3b: 0d:72:49:65:ec:b2:32:f4:02:55:8a:49:3a:ca:06:df:de:95: 1d:ac:46:de:cf:69:27:63:18:88:93:2c:f0:18:f2:47:e0:75: 95:37:c1:de:33:f6:bb:d0:8b:1f:82:d8:b2:db:17:cf:97:ed: eb:35:67:e4:69:3d:7d:a1:46:d4:30:45:ce:ac:3d:12:95:f3: f5:48:79:3d:8f:f7:7e:04:e1:33:0e:26:7e:c9:d4:c9:51:6e: 85:b5:23:7a:4c:1a:4a:75:76:28:7a:a3:92:3f:1d:14:05:5d: 44:91:7d:4a:3a:3f:68:cd:29:c4:17:60:9e:17:f7:8b:e5:79: 86:d4:db:ba -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUO5PdOFb07C/EPjsXJC6DJs9zo8YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNTA2MDIwMTU3MzBaFw0yNjA2MDEwMjAyMzBaMDMxMTAvBgNV BAMTKEU0QjNDQ0EyMjkwNjMxREFFNDlEMzJDMjRDRDkzNzg2OTk3RUFBQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCsGOziUSr+xhZr+LSbzObX+Kx N5vZg2Y7h+sETgLzIf9lN3/VO7fbAn5HlcmX+uGWn5LJkMxpJ5mwNO5d1b9qMmrb GHuMCRWnuJ8A0wivGi1Ydbu1Rp2ETX7Oc7VM4K5GsDf7u3fbZRoimjk6ash3NQn0 Nllz40vM013WOWW5vk9ljdom4mRo4ESjdvWafS9Ni3Qsp7zzik+HnG921irMvX5h l4UHFRZ2a/MHbb4VHXjm7N87nZbExrhdlxhZoEdd7pTLJV4ZT68WqxEvOQuAWuwp pZZpUdbhy7Jj3UZJCAW2QknslvCr50plza1Eeqo2rlnYLg0IqCdi2sgaUyARAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU5LPMoikGMdrknTLCTNk3hpl+qqkwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzAzMjJlMzkzMTJlMzEzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWw4wDQYJKoZIhvcN AQELBQADggEBALHmC9nuEAOpYRpvvw2isnbJxlJBYA+bb+NyJbDL1RYcr1EY+acL I+VPbn7fhgC/ABhNPw00xP9p+adSjGHjPa+akoksvai/VBIfVm8K1/a3dL8+JYRj X6KnyVAd16AvW24MuAhNkxrBPyVBXLYWox8VJtb3Ga+8C1UpNIWSOw1ySWXssjL0 AlWKSTrKBt/elR2sRt7PaSdjGIiTLPAY8kfgdZU3wd4z9rvQix+C2LLbF8+X7es1 Z+RpPX2hRtQwRc6sPRKV8/VIeT2P934E4TMOJn7J1MlRboW1I3pMGkp1dih6o5I/ HRQFXUSRfUo6P2jNKcQXYJ4X94vleYbU27o= -----END CERTIFICATE-----Generated at Thu Jun 5 18:23:32 2025 by rpki-client