$ rpki-client -vvf repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3230322e39332e3131322e302f32302d3234203d3e203233363936.roa File: 3230322e39332e3131322e302f32302d3234203d3e203233363936.roa (raw, json) Hash identifier: LtScTHZoxOHSbHhuqbZIrkhW+lipK1u0xCr0E9aMFWE= Subject key identifier: C7:61:BD:2A:6F:0A:A2:19:21:2F:B7:BE:FF:2D:FF:81:DD:F0:4B:4E Certificate issuer: /CN=3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0 Certificate serial: 47E7808122E4E1F6EB7BC40D243066B05F0CAC06 Authority key identifier: 3D:1D:44:97:31:55:6F:8E:14:51:DE:65:BB:2E:0F:88:EF:CE:0C:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3230322e39332e3131322e302f32302d3234203d3e203233363936.roa Signing time: Mon 02 Jun 2025 02:03:18 +0000 ROA not before: Mon 02 Jun 2025 01:58:18 +0000 ROA not after: Mon 01 Jun 2026 02:03:18 +0000 asID: 23696 IP address blocks: 202.93.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.crl rsync://repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:e7:80:81:22:e4:e1:f6:eb:7b:c4:0d:24:30:66:b0:5f:0c:ac:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0 Validity Not Before: Jun 2 01:58:18 2025 GMT Not After : Jun 1 02:03:18 2026 GMT Subject: CN=C761BD2A6F0AA219212FB7BEFF2DFF81DDF04B4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ca:20:bd:bb:a6:1b:8a:3d:de:aa:a7:8b:73: 71:9d:70:90:4e:da:7c:9c:2d:fb:d8:c8:a2:02:6f: 75:c8:35:7b:ce:3c:ac:74:fb:84:51:aa:7e:0c:00: 22:d7:f0:ee:70:bd:4c:97:a5:1a:11:7c:b6:a1:8c: 74:1b:dc:36:bf:db:77:d7:ed:96:e0:70:00:bf:5a: 3a:b2:be:81:37:e7:f7:ab:24:b3:b6:1b:b2:89:d3: 42:60:e2:27:e0:7d:27:83:33:b9:dd:17:57:36:aa: 57:70:30:2e:21:ce:27:9d:90:b9:18:39:8b:1f:e5: bf:fc:65:03:15:31:f8:83:30:7a:b4:20:8a:80:c2: 96:41:da:f2:63:5f:1d:44:87:13:f2:af:1a:98:f6: 02:4d:ee:6c:1b:fe:48:fe:27:c3:7e:a0:fb:81:29: 76:06:9c:55:30:41:f1:6d:98:c1:91:91:7b:ed:aa: 09:33:85:13:68:27:39:63:98:36:10:fa:e5:7f:05: 7c:f9:7f:97:b4:b5:85:13:ce:e4:3c:28:b8:f6:5d: d8:2a:3a:ca:da:a2:81:7f:84:9e:d1:4d:1e:f4:fa: 3c:0d:bc:57:f0:4a:f8:7b:52:54:ca:de:2a:37:b6: 04:8d:d0:73:5e:49:ea:35:59:b2:57:2f:bc:0e:40: 6e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:61:BD:2A:6F:0A:A2:19:21:2F:B7:BE:FF:2D:FF:81:DD:F0:4B:4E X509v3 Authority Key Identifier: keyid:3D:1D:44:97:31:55:6F:8E:14:51:DE:65:BB:2E:0F:88:EF:CE:0C:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3230322e39332e3131322e302f32302d3234203d3e203233363936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.112.0/20 Signature Algorithm: sha256WithRSAEncryption 6d:cc:01:c9:90:25:b0:81:6d:e2:34:03:65:d3:29:68:27:cf: e7:2e:ea:81:5e:f6:a5:e1:b7:79:43:6c:05:01:ba:71:f7:ce: 31:01:8a:db:a7:1f:a7:83:e9:42:63:54:d3:04:17:f0:2f:23: b3:11:7c:2a:44:e4:92:94:d0:02:b9:b4:47:44:3b:9b:1a:26: 2c:78:7c:2d:d9:44:ee:a7:e4:38:58:2b:aa:8f:27:8b:87:4a: bb:90:ec:14:56:63:06:af:4c:7a:7b:29:ef:95:d1:3c:59:77: 1a:4c:a5:c7:75:5c:f3:67:19:7c:60:3e:7a:ed:f5:d9:23:e8: 27:57:e8:f8:a5:26:f3:54:ae:f6:08:8a:2b:2c:58:dd:b2:eb: 78:ff:b8:c1:e6:ab:75:bf:0f:79:ce:5a:bf:f4:70:ee:9f:ab: f3:27:bc:85:0d:41:e4:ec:9e:44:8e:6e:73:16:c1:95:ae:08: 55:ac:e9:c4:26:f6:75:00:d0:5d:be:29:21:53:05:f4:ca:da: f0:36:17:cf:fb:9a:73:4a:27:4b:c2:c9:55:ea:3c:b2:d0:23: d8:7d:22:d7:26:72:75:5b:c0:73:0b:8d:f2:09:4a:e9:52:80: 28:6f:01:f0:41:ac:ea:28:ef:8c:18:f2:af:52:9c:d0:86:c9: b6:fd:5f:63 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUR+eAgSLk4fbre8QNJDBmsF8MrAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxRDQ0OTczMTU1NkY4RTE0NTFERTY1QkIyRTBGODhF RkNFMENBMDAeFw0yNTA2MDIwMTU4MThaFw0yNjA2MDEwMjAzMThaMDMxMTAvBgNV BAMTKEM3NjFCRDJBNkYwQUEyMTkyMTJGQjdCRUZGMkRGRjgxRERGMDRCNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzyiC9u6Ybij3eqqeLc3GdcJBO 2nycLfvYyKICb3XINXvOPKx0+4RRqn4MACLX8O5wvUyXpRoRfLahjHQb3Da/23fX 7ZbgcAC/WjqyvoE35/erJLO2G7KJ00Jg4ifgfSeDM7ndF1c2qldwMC4hziedkLkY OYsf5b/8ZQMVMfiDMHq0IIqAwpZB2vJjXx1EhxPyrxqY9gJN7mwb/kj+J8N+oPuB KXYGnFUwQfFtmMGRkXvtqgkzhRNoJzljmDYQ+uV/BXz5f5e0tYUTzuQ8KLj2Xdgq OsraooF/hJ7RTR70+jwNvFfwSvh7UlTK3io3tgSN0HNeSeo1WbJXL7wOQG73AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUx2G9Km8KohkhL7e+/y3/gd3wS04wHwYDVR0j BBgwFoAUPR1ElzFVb44UUd5luy4PiO/ODKAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z OGM3Mzk2Yy00YmJlLTRjNmUtOGY1MC00NDJjMjA1ZTA3MGMvMC8zRDFENDQ5NzMx NTU2RjhFMTQ1MURFNjVCQjJFMEY4OEVGQ0UwQ0EwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxRDQ0OTczMTU1NkY4RTE0NTFERTY1QkIyRTBGODhFRkNF MENBMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4YzczOTZjLTRiYmUtNGM2ZS04 ZjUwLTQ0MmMyMDVlMDcwYy8wLzMyMzAzMjJlMzkzMzJlMzEzMTMyMmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMpdcDANBgkqhkiG 9w0BAQsFAAOCAQEAbcwByZAlsIFt4jQDZdMpaCfP5y7qgV72peG3eUNsBQG6cffO MQGK26cfp4PpQmNU0wQX8C8jsxF8KkTkkpTQArm0R0Q7mxomLHh8LdlE7qfkOFgr qo8ni4dKu5DsFFZjBq9Mensp75XRPFl3Gkylx3Vc82cZfGA+eu312SPoJ1fo+KUm 81Su9giKKyxY3bLreP+4weardb8Pec5av/Rw7p+r8ye8hQ1B5OyeRI5ucxbBla4I VazpxCb2dQDQXb4pIVMF9Mra8DYXz/uac0onS8LJVeo8stAj2H0i1yZydVvAcwuN 8glK6VKAKG8B8EGs6ijvjBjyr1Kc0IbJtv1fYw== -----END CERTIFICATE-----Generated at Sat Jun 7 13:56:35 2025 by rpki-client