$ rpki-client -vvf repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/3230322e3132392e3232342e302f32322d3234203d3e203338373831.roa File: 3230322e3132392e3232342e302f32322d3234203d3e203338373831.roa (raw, json) Hash identifier: KKdgbWLDDouRzCILnrDemBFX6Nv6Y8LRFzPrNN7B8tE= Subject key identifier: CF:FA:69:31:C5:86:DA:AA:71:CE:56:0A:00:2D:C7:5F:A7:2F:16:25 Certificate issuer: /CN=1678F34665D7A5281AECD895B892F07EA136CF72 Certificate serial: 2361BB1B10B830A7DA859A33929FB75D01DEFA87 Authority key identifier: 16:78:F3:46:65:D7:A5:28:1A:EC:D8:95:B8:92:F0:7E:A1:36:CF:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1678F34665D7A5281AECD895B892F07EA136CF72.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/3230322e3132392e3232342e302f32322d3234203d3e203338373831.roa Signing time: Mon 02 Jun 2025 02:02:36 +0000 ROA not before: Mon 02 Jun 2025 01:57:36 +0000 ROA not after: Mon 01 Jun 2026 02:02:36 +0000 asID: 38781 IP address blocks: 202.129.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/1678F34665D7A5281AECD895B892F07EA136CF72.crl rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/1678F34665D7A5281AECD895B892F07EA136CF72.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1678F34665D7A5281AECD895B892F07EA136CF72.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:46:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:61:bb:1b:10:b8:30:a7:da:85:9a:33:92:9f:b7:5d:01:de:fa:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1678F34665D7A5281AECD895B892F07EA136CF72 Validity Not Before: Jun 2 01:57:36 2025 GMT Not After : Jun 1 02:02:36 2026 GMT Subject: CN=CFFA6931C586DAAA71CE560A002DC75FA72F1625 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d3:36:62:0d:b4:9a:6c:53:5c:8b:99:ce:3f: d2:4f:bf:c9:e3:b8:38:45:4d:40:55:10:ad:7a:91: 01:42:02:7a:d0:eb:24:36:61:24:c4:ef:c2:5d:c4: 41:2a:8e:10:c5:10:a1:6e:c9:40:a4:f5:a4:24:4b: fd:fd:b6:9d:28:23:81:25:54:8e:fa:00:6b:f3:79: be:7c:d8:c1:0b:93:d1:f3:3c:03:42:3c:19:42:23: 07:b9:da:33:bd:4e:12:5f:26:92:d2:34:22:f1:44: 23:18:b2:f4:0d:41:45:4b:e2:ff:d0:73:56:7b:ab: 18:27:b2:0f:e0:03:1c:80:60:98:e1:90:f3:d1:d4: dc:fa:25:cd:92:33:bc:4f:4f:06:a7:8f:2f:da:aa: 65:3e:f2:7f:f4:7a:21:24:75:dc:96:e6:7b:b1:05: fb:35:fa:9d:18:39:67:e2:44:5c:31:57:99:8b:89: bc:08:4a:0e:eb:60:88:44:39:c0:61:fb:5a:69:09: 01:38:6e:ea:47:94:68:21:6a:db:6f:d7:f8:e7:e4: 42:d6:75:a4:ec:4c:bf:30:78:8f:bb:cd:fa:c9:b8: 66:fd:80:d7:f5:4c:e5:c6:d2:38:2a:61:ab:af:1a: 95:92:8a:cd:47:c0:18:6a:72:0b:ad:99:c1:4d:9b: 5c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:FA:69:31:C5:86:DA:AA:71:CE:56:0A:00:2D:C7:5F:A7:2F:16:25 X509v3 Authority Key Identifier: keyid:16:78:F3:46:65:D7:A5:28:1A:EC:D8:95:B8:92:F0:7E:A1:36:CF:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/1678F34665D7A5281AECD895B892F07EA136CF72.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1678F34665D7A5281AECD895B892F07EA136CF72.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/3230322e3132392e3232342e302f32322d3234203d3e203338373831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.129.224.0/22 Signature Algorithm: sha256WithRSAEncryption 55:42:ca:ed:4e:1e:01:ea:d4:b2:a4:b1:72:6a:d8:e0:c0:b2: a1:10:d8:c6:c5:19:ed:7f:8e:c7:b9:91:ad:2d:e0:4d:fd:67: 4f:9d:3e:47:4c:b4:40:ed:ee:44:64:c3:9a:58:b0:d1:2e:a2: cd:7e:eb:98:23:48:19:32:7f:b6:85:46:76:87:3c:08:d5:74: 96:92:9e:56:ad:01:50:c1:a7:fa:c9:48:6f:96:03:2b:5c:ea: 50:b6:d5:c2:04:d9:54:99:85:90:ff:aa:cf:fa:b0:88:1c:b6: e2:ad:d2:13:47:73:17:4d:98:75:88:ce:2e:54:1e:a7:cb:35: 16:b5:ab:48:f7:95:4e:20:58:cc:8e:c8:6e:9b:22:48:3a:90: 49:6b:c1:3c:d5:c3:a9:1c:3c:c1:c1:29:93:ca:06:d0:cb:1d: d5:5e:21:de:e2:da:e5:d7:ea:da:58:64:eb:1a:66:dd:0e:15: 8f:fb:da:ad:99:b0:db:dc:78:bb:c1:45:a8:09:a9:6e:f9:c5: 6d:63:d2:93:b6:06:56:19:d9:04:a5:0c:31:53:2f:0e:eb:96: 0d:2b:f1:4c:03:a8:f5:80:be:34:d3:60:ae:28:5a:0f:f1:7b: 71:d4:5e:0b:e7:29:44:e8:f3:82:c5:67:5b:a3:84:90:d5:61: 90:0e:99:1d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUI2G7GxC4MKfahZozkp+3XQHe+ocwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3OEYzNDY2NUQ3QTUyODFBRUNEODk1Qjg5MkYwN0VB MTM2Q0Y3MjAeFw0yNTA2MDIwMTU3MzZaFw0yNjA2MDEwMjAyMzZaMDMxMTAvBgNV BAMTKENGRkE2OTMxQzU4NkRBQUE3MUNFNTYwQTAwMkRDNzVGQTcyRjE2MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+0zZiDbSabFNci5nOP9JPv8nj uDhFTUBVEK16kQFCAnrQ6yQ2YSTE78JdxEEqjhDFEKFuyUCk9aQkS/39tp0oI4El VI76AGvzeb582MELk9HzPANCPBlCIwe52jO9ThJfJpLSNCLxRCMYsvQNQUVL4v/Q c1Z7qxgnsg/gAxyAYJjhkPPR1Nz6Jc2SM7xPTwanjy/aqmU+8n/0eiEkddyW5nux Bfs1+p0YOWfiRFwxV5mLibwISg7rYIhEOcBh+1ppCQE4bupHlGghattv1/jn5ELW daTsTL8weI+7zfrJuGb9gNf1TOXG0jgqYauvGpWSis1HwBhqcgutmcFNm1wbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUz/ppMcWG2qpxzlYKAC3HX6cvFiUwHwYDVR0j BBgwFoAUFnjzRmXXpSga7NiVuJLwfqE2z3IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzkzNjg2Yi0zMzg0LTQ0MTItOGU3Yy1lOWQxYjg1MmFhMWUvMC8xNjc4RjM0NjY1 RDdBNTI4MUFFQ0Q4OTVCODkyRjA3RUExMzZDRjcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY3OEYzNDY2NUQ3QTUyODFBRUNEODk1Qjg5MkYwN0VBMTM2 Q0Y3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OTM2ODZiLTMzODQtNDQxMi04 ZTdjLWU5ZDFiODUyYWExZS8wLzMyMzAzMjJlMzEzMjM5MmUzMjMyMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMzM4MzczODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCyoHgMA0GCSqG SIb3DQEBCwUAA4IBAQBVQsrtTh4B6tSypLFyatjgwLKhENjGxRntf47HuZGtLeBN /WdPnT5HTLRA7e5EZMOaWLDRLqLNfuuYI0gZMn+2hUZ2hzwI1XSWkp5WrQFQwaf6 yUhvlgMrXOpQttXCBNlUmYWQ/6rP+rCIHLbirdITR3MXTZh1iM4uVB6nyzUWtatI 95VOIFjMjshumyJIOpBJa8E81cOpHDzBwSmTygbQyx3VXiHe4trl1+raWGTrGmbd DhWP+9qtmbDb3Hi7wUWoCalu+cVtY9KTtgZWGdkEpQwxUy8O65YNK/FMA6j1gL40 02CuKFoP8Xtx1F4L5ylE6POCxWdbo4SQ1WGQDpkd -----END CERTIFICATE-----Generated at Fri Jun 6 17:04:33 2025 by rpki-client