$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e382e302f32342d3234203d3e203338313530.roa File: 3230322e39312e382e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: Ge6toEI3GzH1rudvQNuKe4sTOqkKcImFzmaL0fB9K2A= Subject key identifier: 9B:33:C2:8D:C9:A6:43:44:57:A9:8C:3A:0A:89:92:3A:4E:4E:22:A3 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 08D7F2C65E848D43BF5EA46DE6A4DF990B331320 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e382e302f32342d3234203d3e203338313530.roa Signing time: Mon 02 Jun 2025 02:02:30 +0000 ROA not before: Mon 02 Jun 2025 01:57:30 +0000 ROA not after: Mon 01 Jun 2026 02:02:30 +0000 asID: 38150 IP address blocks: 202.91.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:d7:f2:c6:5e:84:8d:43:bf:5e:a4:6d:e6:a4:df:99:0b:33:13:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jun 2 01:57:30 2025 GMT Not After : Jun 1 02:02:30 2026 GMT Subject: CN=9B33C28DC9A6434457A98C3A0A89923A4E4E22A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:45:7e:53:aa:d8:85:64:80:89:5b:21:e6:7b: ae:26:46:8b:3f:22:85:be:24:41:c7:0d:23:c4:ba: 52:d0:d0:fc:6e:be:a5:10:cc:ec:70:3f:6c:87:99: e5:f0:7f:f7:82:1f:0a:f7:ae:74:48:fa:13:97:76: d0:96:f8:24:00:73:5c:12:e8:5a:37:9b:82:e4:37: 32:00:fd:e1:4d:2f:52:f2:6e:3f:a4:10:93:ba:e5: b5:9d:9f:49:b4:e7:5f:1b:62:68:b8:0e:49:7b:d4: fa:ba:4a:e0:15:18:6d:9e:17:9a:b2:75:f2:f2:9a: b0:e1:e6:73:4f:cb:aa:16:48:9d:31:96:9c:7d:d8: a2:a0:e0:74:72:30:0a:0c:df:fd:44:98:ec:0a:4f: a5:c0:30:9f:d9:c0:da:75:f6:0b:e3:98:a3:1c:b0: 75:8b:0a:ca:3b:ff:12:29:a4:2f:e8:60:42:3b:b9: 3c:8c:5a:a7:b6:bf:fa:a9:ff:60:e9:e9:b3:ac:7e: b7:36:6e:6c:18:c7:9b:97:d1:db:40:e8:8d:6e:af: 0d:73:af:6b:f5:63:a6:59:df:b9:6f:86:15:a9:7e: 44:a1:06:e9:66:78:ac:10:ab:29:b2:54:a6:91:7e: fa:0f:48:47:e0:82:74:4b:e7:97:04:2f:45:39:69: 43:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:33:C2:8D:C9:A6:43:44:57:A9:8C:3A:0A:89:92:3A:4E:4E:22:A3 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e382e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.8.0/24 Signature Algorithm: sha256WithRSAEncryption 64:a3:53:7b:f1:cb:db:0d:e4:53:8e:cc:fd:06:04:77:2f:f5: e2:bd:e8:12:00:03:47:d7:48:c3:5d:a2:e7:e9:32:67:f1:0f: e3:17:a5:d6:57:02:92:33:e5:e9:7f:f3:2a:a2:7a:27:83:e2: da:75:91:95:ba:df:71:16:a0:5d:46:e9:56:eb:82:47:86:58: bd:03:7b:8c:ae:e4:56:67:10:a6:4f:2f:f5:6e:0f:38:b9:25: fe:8e:99:9b:37:09:a4:bd:28:f5:77:c6:95:24:15:d4:dd:f4: 5d:d5:ea:de:1a:cf:57:6d:62:23:a6:b1:47:eb:9f:bc:15:52: 09:50:6f:7e:61:07:9d:ac:94:38:ba:cc:17:7e:ae:7b:28:69: 80:7f:e7:97:f4:f5:e2:f7:1c:53:e4:c7:87:67:b1:77:ee:6d: bb:48:68:59:e4:47:f5:a4:10:8a:95:f7:88:41:72:e5:0c:ec: 90:a5:23:58:cd:7d:50:a6:d3:7c:32:ad:96:a0:d3:83:39:a2: 73:4a:78:3c:ed:9c:23:09:b7:ce:b2:24:58:7e:0d:a4:34:23: 6a:52:b3:89:a2:0b:5f:fc:6f:78:46:17:ed:7d:4a:b5:75:3b: 49:a2:ef:59:d8:8c:2f:cd:61:09:8c:6c:65:25:72:d9:90:f7: 91:fe:64:f6 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUCNfyxl6EjUO/XqRt5qTfmQszEyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNTA2MDIwMTU3MzBaFw0yNjA2MDEwMjAyMzBaMDMxMTAvBgNV BAMTKDlCMzNDMjhEQzlBNjQzNDQ1N0E5OEMzQTBBODk5MjNBNEU0RTIyQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdRX5TqtiFZICJWyHme64mRos/ IoW+JEHHDSPEulLQ0PxuvqUQzOxwP2yHmeXwf/eCHwr3rnRI+hOXdtCW+CQAc1wS 6Fo3m4LkNzIA/eFNL1Lybj+kEJO65bWdn0m0518bYmi4Dkl71Pq6SuAVGG2eF5qy dfLymrDh5nNPy6oWSJ0xlpx92KKg4HRyMAoM3/1EmOwKT6XAMJ/ZwNp19gvjmKMc sHWLCso7/xIppC/oYEI7uTyMWqe2v/qp/2Dp6bOsfrc2bmwYx5uX0dtA6I1urw1z r2v1Y6ZZ37lvhhWpfkShBulmeKwQqymyVKaRfvoPSEfggnRL55cEL0U5aUNhAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUmzPCjcmmQ0RXqYw6ComSOk5OIqMwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTdlNjViNjctOTA1Yy00MDNjLThj NzktMjMxNTY1OTY2OGFhLzAvMzIzMDMyMmUzOTMxMmUzODJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWwgwDQYJKoZIhvcNAQEL BQADggEBAGSjU3vxy9sN5FOOzP0GBHcv9eK96BIAA0fXSMNdoufpMmfxD+MXpdZX ApIz5el/8yqieieD4tp1kZW633EWoF1G6VbrgkeGWL0De4yu5FZnEKZPL/VuDzi5 Jf6OmZs3CaS9KPV3xpUkFdTd9F3V6t4az1dtYiOmsUfrn7wVUglQb35hB52slDi6 zBd+rnsoaYB/55f09eL3HFPkx4dnsXfubbtIaFnkR/WkEIqV94hBcuUM7JClI1jN fVCm03wyrZag04M5onNKeDztnCMJt86yJFh+DaQ0I2pSs4miC1/8b3hGF+19SrV1 O0mi71nYjC/NYQmMbGUlctmQ95H+ZPY= -----END CERTIFICATE-----Generated at Thu Jun 5 18:26:24 2025 by rpki-client