$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e34332e3232382e302f32322d3234203d3e2039343232.roa File: 3230322e34332e3232382e302f32322d3234203d3e2039343232.roa (raw, json) Hash identifier: pPyEloQMF0TdeYTY5eM6CCjgFQy8xkkymm+/u9Rl4Cw= Subject key identifier: 90:F3:59:4D:A5:00:19:32:67:94:7E:07:AD:C2:9D:82:05:CD:16:B9 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 5A1D527CE999B38EA6690250DD10DA4655028B70 Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e34332e3232382e302f32322d3234203d3e2039343232.roa Signing time: Mon 02 Jun 2025 02:04:20 +0000 ROA not before: Mon 02 Jun 2025 01:59:20 +0000 ROA not after: Mon 01 Jun 2026 02:04:20 +0000 asID: 9422 IP address blocks: 202.43.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:1d:52:7c:e9:99:b3:8e:a6:69:02:50:dd:10:da:46:55:02:8b:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Jun 2 01:59:20 2025 GMT Not After : Jun 1 02:04:20 2026 GMT Subject: CN=90F3594DA500193267947E07ADC29D8205CD16B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cf:c2:a3:13:1a:ba:36:39:a5:fd:06:14:b4: c8:8b:ae:0f:4d:30:de:9c:67:3f:6c:bd:ab:a9:aa: df:d0:5a:af:2e:ae:8e:97:d8:d9:88:b9:1c:23:50: 82:b9:24:ad:5d:5b:45:1c:1f:c9:01:45:e2:42:c2: 3a:4d:5a:2b:d4:cc:fc:78:0a:73:87:b6:d4:bc:73: c1:51:cb:6a:c1:98:7e:95:41:d1:88:71:44:2c:b9: 33:c1:77:bb:27:cf:9c:98:bc:76:73:ad:09:3c:4c: a0:da:08:9a:a5:7d:6c:ee:07:0d:34:e2:ee:94:1c: cc:e7:6b:fe:04:7a:b8:8c:23:ad:3f:73:b4:ae:9c: dc:c8:23:fb:10:c9:95:55:24:04:fd:db:f7:c4:ba: 34:7a:9e:ac:db:46:ff:05:49:5c:aa:d1:46:12:f3: 5e:aa:48:6e:f6:4d:69:3d:5d:01:90:3d:23:2e:5a: bd:5c:28:7a:ab:11:99:a8:32:9c:bb:8a:01:10:37: 4a:11:bb:d8:fb:81:71:18:ed:0b:e5:24:9d:93:e9: 1c:6f:7f:ed:74:f2:37:96:2a:28:3d:71:bb:b9:45: ee:38:48:79:9e:3f:3a:94:3e:b7:cb:84:2f:fb:95: cc:3a:b4:ae:ec:9c:e1:9d:13:2f:31:cb:77:a7:05: 3b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:F3:59:4D:A5:00:19:32:67:94:7E:07:AD:C2:9D:82:05:CD:16:B9 X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e34332e3232382e302f32322d3234203d3e2039343232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.228.0/22 Signature Algorithm: sha256WithRSAEncryption a1:e9:6d:24:d0:b7:d8:7e:64:6b:a0:10:52:bd:46:20:eb:b1: c1:f1:f8:39:ef:2a:4b:9d:65:62:a3:a7:f0:cc:b9:13:9a:32: 49:2c:47:c3:b1:dd:19:00:7e:e2:92:43:a5:5b:2f:8a:3b:de: 0d:da:ba:f9:e7:75:ea:c5:13:03:34:a9:e4:10:fa:2d:5b:2b: 11:af:61:7c:aa:a0:6a:39:3f:28:44:4e:d9:d9:42:ed:05:59: 99:53:31:26:82:4f:7e:12:e3:68:ba:c8:08:bf:4a:bd:31:fb: ef:9c:5b:e5:53:00:32:20:c9:3e:5d:10:25:35:61:23:04:66: 1f:3e:57:ae:f6:5f:92:bb:75:97:ea:a7:9d:c5:50:82:db:8b: 2a:92:ca:9b:0e:9c:96:00:de:92:5d:71:14:04:76:3c:73:b7: f3:63:73:0f:6d:95:32:ee:1f:5c:c6:a6:c9:49:5b:b1:ff:9b: b2:c4:72:44:21:92:17:44:24:ca:9d:48:41:6a:b7:19:5e:af: b3:b1:d4:86:8a:21:fc:ca:20:f4:18:c8:1f:45:13:7f:71:19: 53:ee:72:4f:75:2a:21:a8:da:18:ad:3c:e7:91:68:4d:1c:06: 4d:95:0f:b2:97:0c:89:3c:9d:58:28:18:99:ff:b9:e4:67:ea: 0d:d7:15:85 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWh1SfOmZs46maQJQ3RDaRlUCi3AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNTA2MDIwMTU5MjBaFw0yNjA2MDEwMjA0MjBaMDMxMTAvBgNV BAMTKDkwRjM1OTREQTUwMDE5MzI2Nzk0N0UwN0FEQzI5RDgyMDVDRDE2QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOz8KjExq6Njml/QYUtMiLrg9N MN6cZz9svaupqt/QWq8uro6X2NmIuRwjUIK5JK1dW0UcH8kBReJCwjpNWivUzPx4 CnOHttS8c8FRy2rBmH6VQdGIcUQsuTPBd7snz5yYvHZzrQk8TKDaCJqlfWzuBw00 4u6UHMzna/4EeriMI60/c7SunNzII/sQyZVVJAT92/fEujR6nqzbRv8FSVyq0UYS 816qSG72TWk9XQGQPSMuWr1cKHqrEZmoMpy7igEQN0oRu9j7gXEY7QvlJJ2T6Rxv f+108jeWKig9cbu5Re44SHmePzqUPrfLhC/7lcw6tK7snOGdEy8xy3enBTvRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUkPNZTaUAGTJnlH4HrcKdggXNFrkwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzAzMjJlMzQzMzJlMzIzMjM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzkzNDMyMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKK+QwDQYJKoZIhvcN AQELBQADggEBAKHpbSTQt9h+ZGugEFK9RiDrscHx+DnvKkudZWKjp/DMuROaMkks R8Ox3RkAfuKSQ6VbL4o73g3auvnnderFEwM0qeQQ+i1bKxGvYXyqoGo5PyhETtnZ Qu0FWZlTMSaCT34S42i6yAi/Sr0x+++cW+VTADIgyT5dECU1YSMEZh8+V672X5K7 dZfqp53FUILbiyqSypsOnJYA3pJdcRQEdjxzt/Njcw9tlTLuH1zGpslJW7H/m7LE ckQhkhdEJMqdSEFqtxler7Ox1IaKIfzKIPQYyB9FE39xGVPuck91KiGo2hitPOeR aE0cBk2VD7KXDIk8nVgoGJn/ueRn6g3XFYU= -----END CERTIFICATE-----Generated at Thu Jun 5 18:49:20 2025 by rpki-client