$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e3135342e3138342e302f32312d3234203d3e2039343232.roa File: 3230322e3135342e3138342e302f32312d3234203d3e2039343232.roa (raw, json) Hash identifier: S3vWYnYF+l4dhX20RDpIzaZuA3umTZ3b74Itz4An65E= Subject key identifier: 66:89:C8:00:F3:D0:69:CC:37:02:94:F5:8C:2D:20:EF:42:68:31:2A Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 60F99B930E08BAD8ABA64473BDE67463B1533311 Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e3135342e3138342e302f32312d3234203d3e2039343232.roa Signing time: Mon 02 Jun 2025 02:04:20 +0000 ROA not before: Mon 02 Jun 2025 01:59:20 +0000 ROA not after: Mon 01 Jun 2026 02:04:20 +0000 asID: 9422 IP address blocks: 202.154.184.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:f9:9b:93:0e:08:ba:d8:ab:a6:44:73:bd:e6:74:63:b1:53:33:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Jun 2 01:59:20 2025 GMT Not After : Jun 1 02:04:20 2026 GMT Subject: CN=6689C800F3D069CC370294F58C2D20EF4268312A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8d:64:44:07:4d:40:93:1f:a1:99:cc:78:0d: 06:fd:4d:39:57:c3:22:bb:92:e8:b5:8b:2f:53:fe: 8a:0a:de:3c:70:2b:84:be:2c:1f:99:9f:0b:81:72: 37:b0:4b:6f:45:ee:88:df:dd:a5:1b:92:b0:ca:d0: 46:79:ab:62:e6:3d:36:2e:12:57:a2:35:22:33:c3: 8b:50:cb:bc:18:39:89:fe:b9:93:ce:0b:09:c4:f2: d4:ce:a8:e5:2a:3a:ce:93:ec:1b:7a:6b:71:68:69: d6:3c:d0:bd:5d:06:91:a5:69:58:cc:24:5b:60:77: dc:74:1e:2f:fd:29:05:7c:b8:88:a4:3e:94:3a:b1: 45:6c:25:4c:16:c8:99:e9:97:18:ae:00:34:97:98: 31:5c:be:03:06:75:af:08:43:c0:07:2f:1b:f9:fa: a4:9a:e3:63:1f:5c:80:d3:dd:ba:42:59:3b:ba:37: 0e:4a:b7:e0:e2:e5:98:c8:e0:d6:ef:5d:75:cc:33: 47:f7:cb:75:8a:86:16:5f:78:73:f6:72:37:bf:5d: 19:c1:a4:a6:60:64:fb:ff:12:fe:d3:dc:dc:97:9a: 3e:24:00:a0:90:f0:87:80:f6:10:34:cb:7c:f2:80: 00:f8:83:4f:ca:03:0c:c6:37:cd:45:db:30:5c:87: 9d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:89:C8:00:F3:D0:69:CC:37:02:94:F5:8C:2D:20:EF:42:68:31:2A X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e3135342e3138342e302f32312d3234203d3e2039343232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.184.0/21 Signature Algorithm: sha256WithRSAEncryption 55:16:a6:66:a9:63:3b:ab:80:e9:b2:99:d8:cc:f8:cd:8d:51: 4f:e8:81:92:6b:18:37:7a:67:4c:da:f7:72:c4:e8:4e:d7:a5: c4:50:86:39:13:49:63:ca:24:f5:1b:0f:29:50:af:0e:2f:8a: 8c:d4:cd:e5:33:fa:04:92:e1:6b:57:aa:2c:dd:07:dd:60:a4: 17:e3:9e:a7:a7:a3:fd:07:b1:22:42:c6:5e:d7:ae:da:62:25: f3:fe:65:78:8f:c2:25:84:06:b4:e2:6a:0a:5e:06:36:42:80: dc:e7:58:2d:2d:45:a0:ae:e2:b1:7c:bf:1c:c2:50:2e:d3:99: ce:4d:a5:0d:3d:f4:a5:a2:b2:ae:e3:03:16:0b:80:83:cc:a8: 1d:59:41:f2:24:be:14:40:9a:ce:eb:d8:76:cf:95:39:65:aa: 0d:af:ee:93:7d:d3:95:54:14:f5:c1:4c:dc:4a:5f:b4:ce:90: 4b:34:89:f5:c2:1f:2e:c6:fe:e8:a2:69:30:54:5e:44:e6:ec: 01:96:ee:3e:d5:69:6d:01:53:10:4c:62:e2:b8:bf:93:8e:ed: 1a:68:e4:15:0f:2a:e0:94:fc:94:19:85:1b:bd:4b:29:6e:f2: d4:62:50:50:ad:97:9a:a0:e0:0f:5a:6b:b4:35:18:0a:e3:08: 65:3b:68:0f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYPmbkw4IutirpkRzveZ0Y7FTMxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNTA2MDIwMTU5MjBaFw0yNjA2MDEwMjA0MjBaMDMxMTAvBgNV BAMTKDY2ODlDODAwRjNEMDY5Q0MzNzAyOTRGNThDMkQyMEVGNDI2ODMxMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChjWREB01Akx+hmcx4DQb9TTlX wyK7kui1iy9T/ooK3jxwK4S+LB+ZnwuBcjewS29F7ojf3aUbkrDK0EZ5q2LmPTYu EleiNSIzw4tQy7wYOYn+uZPOCwnE8tTOqOUqOs6T7Bt6a3FoadY80L1dBpGlaVjM JFtgd9x0Hi/9KQV8uIikPpQ6sUVsJUwWyJnplxiuADSXmDFcvgMGda8IQ8AHLxv5 +qSa42MfXIDT3bpCWTu6Nw5Kt+Di5ZjI4NbvXXXMM0f3y3WKhhZfeHP2cje/XRnB pKZgZPv/Ev7T3NyXmj4kAKCQ8IeA9hA0y3zygAD4g0/KAwzGN81F2zBch50fAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZonIAPPQacw3ApT1jC0g70JoMSowHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzAzMjJlMzEzNTM0MmUzMTM4MzQyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzOTM0MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8qauDANBgkqhkiG 9w0BAQsFAAOCAQEAVRamZqljO6uA6bKZ2Mz4zY1RT+iBkmsYN3pnTNr3csToTtel xFCGORNJY8ok9RsPKVCvDi+KjNTN5TP6BJLha1eqLN0H3WCkF+Oep6ej/QexIkLG Xteu2mIl8/5leI/CJYQGtOJqCl4GNkKA3OdYLS1FoK7isXy/HMJQLtOZzk2lDT30 paKyruMDFguAg8yoHVlB8iS+FECazuvYds+VOWWqDa/uk33TlVQU9cFM3EpftM6Q SzSJ9cIfLsb+6KJpMFReRObsAZbuPtVpbQFTEExi4ri/k47tGmjkFQ8q4JT8lBmF G71LKW7y1GJQUK2XmqDgD1prtDUYCuMIZTtoDw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:42:12 2025 by rpki-client