$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31352e302f32342d3234203d3e203338313530.roa File: 3230322e39312e31352e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: sTkMNKXQHwGJCIGPBjMVfmb030wQu4FTAnEhwXDkkhA= Subject key identifier: 05:21:81:E8:4B:27:8A:1F:1D:6B:3A:61:63:E8:71:AD:09:FD:94:F4 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 52D666740888C960AF0FF95116CF867B17839C84 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31352e302f32342d3234203d3e203338313530.roa Signing time: Mon 02 Jun 2025 02:02:29 +0000 ROA not before: Mon 02 Jun 2025 01:57:29 +0000 ROA not after: Mon 01 Jun 2026 02:02:29 +0000 asID: 38150 IP address blocks: 202.91.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:d6:66:74:08:88:c9:60:af:0f:f9:51:16:cf:86:7b:17:83:9c:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jun 2 01:57:29 2025 GMT Not After : Jun 1 02:02:29 2026 GMT Subject: CN=052181E84B278A1F1D6B3A6163E871AD09FD94F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7f:7a:53:c5:05:0d:d9:4f:25:58:61:8c:16: 9b:7d:fd:89:bf:7c:fb:dc:a4:a5:9f:d5:8d:59:f5: ef:8e:3f:ca:89:96:e9:d4:cf:a8:4a:e3:3a:87:ff: 38:cd:62:df:ab:11:a7:4a:ce:6c:cb:41:e2:14:ec: e5:05:38:7c:80:7f:17:9d:21:94:8e:61:a1:db:1c: 6b:f0:2d:e8:e4:0c:df:0e:1a:d9:97:44:04:26:0b: 85:f3:de:83:4e:6f:b5:4d:bb:0e:9e:67:9f:22:e1: 20:59:1c:99:7e:ad:77:36:92:eb:79:7e:ab:f2:88: ba:81:ba:cd:34:ee:1f:74:65:1e:6e:61:1f:1f:e2: 28:c5:aa:5f:bc:49:7c:e0:da:9c:15:2c:12:42:81: ee:cb:7f:c3:13:15:79:11:fb:83:a5:cf:68:58:c4: 64:75:d4:05:88:97:d4:f6:48:f6:4a:34:2a:e7:59: 50:31:c9:48:44:64:bc:08:4f:b1:43:6c:96:50:66: 75:1f:c8:9a:52:6c:3b:71:3b:b0:6a:53:48:7a:9c: f5:c0:07:c5:ff:0c:d3:d7:0f:62:23:2d:97:a8:5f: 81:0f:93:7c:39:0e:f1:1e:d3:46:c3:4b:22:47:46: e6:3a:10:d1:bd:c1:ad:63:ed:f0:3a:15:95:41:6d: 56:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:21:81:E8:4B:27:8A:1F:1D:6B:3A:61:63:E8:71:AD:09:FD:94:F4 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31352e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.15.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:70:e7:fe:21:73:58:35:a8:cb:b3:75:4c:5a:ee:c6:3a:41: c7:ed:8b:ed:14:76:b5:78:e3:bf:69:d8:6d:88:51:55:54:b8: 0c:9a:a1:06:69:7e:1f:f5:6d:67:f1:ab:51:4f:f8:9f:7f:28: 3b:53:b6:88:5f:68:5b:4b:a4:66:e0:6f:65:6e:ed:1a:3d:fb: 3a:0f:ff:74:53:9d:e2:9b:5a:c4:9a:ca:86:aa:10:b5:c2:bf: ac:b3:68:ab:0c:a6:9d:60:bc:35:0d:2a:16:2d:a3:5e:44:70: 84:0c:aa:7f:b9:73:df:c4:0d:11:bd:a5:4d:96:e8:5d:be:ae: 97:42:82:0a:e4:9d:31:0d:ce:88:2c:80:06:89:9b:c6:36:46: ea:1f:b4:6d:51:07:e4:7e:e3:c9:7c:9f:ff:31:d7:2b:0c:b4: c4:c9:ca:b7:84:ae:cc:63:a3:a6:c5:ed:87:ff:c6:cc:dc:c7: 10:ce:1f:bd:db:a7:7b:e5:79:2d:4a:33:2d:18:7a:a3:0a:fb: 10:4f:98:9d:70:a0:2c:4d:3b:e4:7a:7e:dd:7b:44:1b:f2:fd: 01:bc:54:c1:57:e9:33:be:8b:71:6d:dd:2f:a3:f8:af:58:ca: f5:1c:66:8d:8d:08:f0:ae:d9:da:61:65:f3:f9:d9:3b:f0:2f: 84:17:c9:8c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUtZmdAiIyWCvD/lRFs+GexeDnIQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNTA2MDIwMTU3MjlaFw0yNjA2MDEwMjAyMjlaMDMxMTAvBgNV BAMTKDA1MjE4MUU4NEIyNzhBMUYxRDZCM0E2MTYzRTg3MUFEMDlGRDk0RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSf3pTxQUN2U8lWGGMFpt9/Ym/ fPvcpKWf1Y1Z9e+OP8qJlunUz6hK4zqH/zjNYt+rEadKzmzLQeIU7OUFOHyAfxed IZSOYaHbHGvwLejkDN8OGtmXRAQmC4Xz3oNOb7VNuw6eZ58i4SBZHJl+rXc2kut5 fqvyiLqBus007h90ZR5uYR8f4ijFql+8SXzg2pwVLBJCge7Lf8MTFXkR+4Olz2hY xGR11AWIl9T2SPZKNCrnWVAxyUhEZLwIT7FDbJZQZnUfyJpSbDtxO7BqU0h6nPXA B8X/DNPXD2IjLZeoX4EPk3w5DvEe00bDSyJHRuY6ENG9wa1j7fA6FZVBbVa3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUBSGB6Esnih8dazphY+hxrQn9lPQwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzAzMjJlMzkzMTJlMzEzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWw8wDQYJKoZIhvcN AQELBQADggEBABpw5/4hc1g1qMuzdUxa7sY6Qcfti+0UdrV4479p2G2IUVVUuAya oQZpfh/1bWfxq1FP+J9/KDtTtohfaFtLpGbgb2Vu7Ro9+zoP/3RTneKbWsSayoaq ELXCv6yzaKsMpp1gvDUNKhYto15EcIQMqn+5c9/EDRG9pU2W6F2+rpdCggrknTEN zogsgAaJm8Y2RuoftG1RB+R+48l8n/8x1ysMtMTJyreErsxjo6bF7Yf/xszcxxDO H73bp3vleS1KMy0YeqMK+xBPmJ1woCxNO+R6ft17RBvy/QG8VMFX6TO+i3Ft3S+j +K9YyvUcZo2NCPCu2dphZfP52TvwL4QXyYw= -----END CERTIFICATE-----Generated at Thu Jun 5 18:27:44 2025 by rpki-client