$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130362e302e34382e302f32322d3234203d3e2039343232.roa File: 3130362e302e34382e302f32322d3234203d3e2039343232.roa (raw, json) Hash identifier: ECzNZR+t4Bdt6LAAlKcBfTJvufVHsod6z7EXxaTCQXQ= Subject key identifier: 8A:24:C8:9F:E2:B3:45:03:2F:64:34:29:70:9D:84:12:16:E0:45:01 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 74C0B36FF975C4F5AE8D0155D58E0AAB59188FC7 Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130362e302e34382e302f32322d3234203d3e2039343232.roa Signing time: Mon 02 Jun 2025 02:04:20 +0000 ROA not before: Mon 02 Jun 2025 01:59:20 +0000 ROA not after: Mon 01 Jun 2026 02:04:20 +0000 asID: 9422 IP address blocks: 106.0.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 09:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:c0:b3:6f:f9:75:c4:f5:ae:8d:01:55:d5:8e:0a:ab:59:18:8f:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Jun 2 01:59:20 2025 GMT Not After : Jun 1 02:04:20 2026 GMT Subject: CN=8A24C89FE2B345032F643429709D841216E04501 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:24:42:11:29:7b:db:37:d8:53:89:d4:4b:af: d5:86:3b:92:70:04:2e:4a:18:cb:e5:1f:f1:7c:da: ff:a5:ae:66:03:71:af:73:3d:63:a5:a2:a0:fc:1f: 96:fa:59:bf:35:d3:22:eb:2c:ac:dd:72:32:40:73: bb:44:56:80:e8:49:f5:c1:ea:55:ed:9f:4c:84:61: 39:83:b7:62:07:32:f5:9c:72:20:f6:13:a9:f4:da: 7c:4b:18:90:b0:05:0e:5d:97:71:b6:7a:02:ef:ae: c5:a4:32:c7:47:d5:57:22:fd:bd:a5:2c:a9:c0:b0: 42:c5:c8:66:9f:7b:18:d7:e9:b0:fd:9c:05:52:23: d0:5a:1f:67:75:eb:f9:b5:a3:e2:b8:02:57:c3:e5: 1a:b7:05:9c:fb:31:20:80:11:44:b5:97:0e:a3:5a: 59:c3:75:fb:88:9f:8b:f4:05:26:ea:85:9a:8a:13: e5:3d:49:34:0d:a4:fc:4a:3e:78:97:30:81:48:fc: 67:6a:dc:79:69:6d:bc:e4:8c:fe:29:09:df:95:75: e4:cf:16:00:63:91:cb:85:c5:38:ca:ad:3a:32:83: 04:bb:fc:b5:4a:7e:4f:7f:c1:50:22:cf:fb:1e:39: 0f:cc:f5:ac:a4:20:71:6e:8f:3d:14:b9:80:a8:31: 8b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:24:C8:9F:E2:B3:45:03:2F:64:34:29:70:9D:84:12:16:E0:45:01 X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130362e302e34382e302f32322d3234203d3e2039343232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 106.0.48.0/22 Signature Algorithm: sha256WithRSAEncryption a2:56:80:73:4f:f7:cc:ad:11:5a:88:ef:84:36:94:6e:a4:81: 5e:dd:df:8a:0e:8a:64:3b:69:96:b5:f0:c2:d0:79:6f:4a:4a: 5d:be:ab:98:3a:9c:68:35:d8:ec:1b:82:2f:52:73:79:67:40: 28:19:60:e6:54:fb:14:39:1d:98:36:03:08:41:c7:45:e8:8f: c2:86:8f:ba:ea:14:0c:24:4b:c6:ab:29:1f:ea:f2:a1:36:ae: ff:d0:ee:b2:dc:b6:9d:b6:5b:7a:85:a4:db:ce:bd:27:e5:09: d7:4f:c2:41:eb:7a:c6:e2:d6:cd:98:a8:42:2b:42:f0:cc:b8: 03:6e:c9:9f:bd:5a:01:61:48:ff:0d:3a:ca:01:52:1f:dc:a2: ef:a1:bb:91:6f:c9:31:61:a3:4b:fe:6e:79:e0:ff:97:5e:b2: 27:85:82:3d:1a:72:1e:aa:14:54:5f:48:a5:a6:66:47:7f:34: 05:a7:f2:d6:10:c4:5a:58:5a:b0:ed:f1:4b:00:5a:22:53:1c: 45:0a:11:f3:08:ae:21:ab:6a:f9:41:5a:c7:b5:0e:f5:44:05: 85:8b:0f:a2:66:5e:7a:c4:e6:da:1b:34:46:6d:ce:ff:25:4e: 29:d2:19:0e:e2:9d:93:c4:fe:d6:9d:d6:fa:d0:58:4c:ca:48: 0d:9d:2d:34 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUdMCzb/l1xPWujQFV1Y4Kq1kYj8cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNTA2MDIwMTU5MjBaFw0yNjA2MDEwMjA0MjBaMDMxMTAvBgNV BAMTKDhBMjRDODlGRTJCMzQ1MDMyRjY0MzQyOTcwOUQ4NDEyMTZFMDQ1MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNJEIRKXvbN9hTidRLr9WGO5Jw BC5KGMvlH/F82v+lrmYDca9zPWOloqD8H5b6Wb810yLrLKzdcjJAc7tEVoDoSfXB 6lXtn0yEYTmDt2IHMvWcciD2E6n02nxLGJCwBQ5dl3G2egLvrsWkMsdH1Vci/b2l LKnAsELFyGafexjX6bD9nAVSI9BaH2d16/m1o+K4AlfD5Rq3BZz7MSCAEUS1lw6j WlnDdfuIn4v0BSbqhZqKE+U9STQNpPxKPniXMIFI/Gdq3HlpbbzkjP4pCd+VdeTP FgBjkcuFxTjKrToygwS7/LVKfk9/wVAiz/seOQ/M9aykIHFujz0UuYCoMYsBAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUiiTIn+KzRQMvZDQpcJ2EEhbgRQEwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTg3ZDc5YmEtZmI1NS00OWE1LTk2 N2ItMWVkYzc0OWQwMTI4LzAvMzEzMDM2MmUzMDJlMzQzODJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDM5MzQzMjMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCagAwMA0GCSqGSIb3DQEBCwUA A4IBAQCiVoBzT/fMrRFaiO+ENpRupIFe3d+KDopkO2mWtfDC0HlvSkpdvquYOpxo NdjsG4IvUnN5Z0AoGWDmVPsUOR2YNgMIQcdF6I/Cho+66hQMJEvGqykf6vKhNq7/ 0O6y3Ladtlt6haTbzr0n5QnXT8JB63rG4tbNmKhCK0LwzLgDbsmfvVoBYUj/DTrK AVIf3KLvobuRb8kxYaNL/m554P+XXrInhYI9GnIeqhRUX0ilpmZHfzQFp/LWEMRa WFqw7fFLAFoiUxxFChHzCK4hq2r5QVrHtQ71RAWFiw+iZl56xObaGzRGbc7/JU4p 0hkO4p2TxP7Wndb60FhMykgNnS00 -----END CERTIFICATE-----Generated at Fri Jun 6 16:44:42 2025 by rpki-client