$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31302e302f32342d3234203d3e203234323034.roa File: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (raw, json) Hash identifier: GDVJSN1CaQCPhQqR3FRWg5swzCjmjmNit8vMHebzfag= Subject key identifier: CB:DD:61:E9:00:08:83:94:68:AB:CE:F2:21:5F:EE:F9:79:34:03:77 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 2F65532EBB752DBC972B05693B6933CEA6BB9016 Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31302e302f32342d3234203d3e203234323034.roa Signing time: Mon 02 Jun 2025 02:03:27 +0000 ROA not before: Mon 02 Jun 2025 01:58:27 +0000 ROA not after: Mon 01 Jun 2026 02:03:27 +0000 asID: 24204 IP address blocks: 203.80.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:33:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:65:53:2e:bb:75:2d:bc:97:2b:05:69:3b:69:33:ce:a6:bb:90:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Jun 2 01:58:27 2025 GMT Not After : Jun 1 02:03:27 2026 GMT Subject: CN=CBDD61E90008839468ABCEF2215FEEF979340377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5d:82:9a:2c:f3:8d:59:dd:70:0e:10:23:a4: 4a:95:da:d8:84:f0:2d:e9:83:10:78:89:d0:9d:3c: 70:4a:8b:0e:c0:f6:e1:5b:db:92:18:3f:14:66:6a: 74:5d:29:2b:55:2f:40:84:02:1e:f4:56:69:3b:0c: a8:46:14:34:5d:d0:6d:8f:0f:d3:5a:93:bc:fc:38: b8:8e:eb:7e:55:78:1a:b7:0a:8a:fe:27:eb:06:39: 32:43:ba:bf:62:26:4b:be:9c:f0:63:91:92:94:88: 6e:b7:2e:b7:26:51:1a:98:19:21:a8:9d:94:63:88: b1:66:22:84:66:1c:5f:9a:e2:fc:f2:ee:82:21:05: 7f:0f:b5:fd:6f:4c:ab:e5:ac:4d:d7:c2:c2:61:9a: 39:78:d7:21:42:a9:5c:f6:23:32:ce:9d:e8:58:4f: 9f:25:0c:70:7f:1d:8b:32:54:f6:10:5d:e2:76:ae: 99:fe:7a:1c:95:f5:1c:08:ad:6c:58:e0:c2:17:19: 9c:0f:ee:18:47:e7:63:27:55:9e:58:b7:fc:3c:de: 3f:5b:25:04:12:bf:96:01:de:15:f4:da:0c:8d:91: a5:39:26:4d:80:d6:77:98:2f:70:2d:85:ea:f8:d9: 2b:da:51:5d:d7:0e:1a:1d:1e:26:4b:96:93:8e:14: db:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:DD:61:E9:00:08:83:94:68:AB:CE:F2:21:5F:EE:F9:79:34:03:77 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31302e302f32342d3234203d3e203234323034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.80.10.0/24 Signature Algorithm: sha256WithRSAEncryption 05:7b:72:ac:2e:f8:78:ad:0d:97:cb:10:16:38:19:53:01:c2: 36:3b:0d:45:29:db:88:4b:1a:a6:7a:dd:22:09:37:7d:50:af: 76:0f:54:df:4f:b9:d7:20:90:88:31:86:4b:fb:1f:28:f7:1f: 34:71:83:5b:b8:9e:5b:b8:83:42:31:e0:82:eb:62:dd:5d:12: 1c:77:5c:1b:e4:3c:67:8c:25:b7:4d:61:85:d3:60:df:ea:c5: c2:ba:78:bb:4a:f0:f7:e4:0e:fa:eb:b9:f7:9f:f1:85:5b:19: 31:1a:db:31:b5:d7:0d:12:9e:f6:c0:67:ef:0d:c8:b8:4d:40: 85:01:b3:55:15:d6:7e:0a:50:89:04:29:e3:00:72:e7:91:30: bd:b2:44:0c:06:ca:e9:e4:f6:d6:55:95:cd:5c:4a:13:7a:48: 0b:ae:bb:c9:38:8c:7d:70:38:1b:b4:75:b0:0f:18:fe:38:e8: 41:d2:0e:08:29:88:47:a8:48:ca:06:64:1b:f6:29:cc:0a:8c: c0:83:59:b5:17:e1:d2:89:d4:cb:d3:a7:09:ce:55:41:cc:8e: b4:36:a8:d3:7c:6a:e6:a2:9d:ee:f6:bc:17:3a:15:55:ee:2b: dc:cc:9e:52:d1:47:50:28:3a:de:61:7e:12:1f:83:fb:3c:a0: 3f:a0:83:07 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUL2VTLrt1LbyXKwVpO2kzzqa7kBYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNTA2MDIwMTU4MjdaFw0yNjA2MDEwMjAzMjdaMDMxMTAvBgNV BAMTKENCREQ2MUU5MDAwODgzOTQ2OEFCQ0VGMjIxNUZFRUY5NzkzNDAzNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjXYKaLPONWd1wDhAjpEqV2tiE 8C3pgxB4idCdPHBKiw7A9uFb25IYPxRmanRdKStVL0CEAh70Vmk7DKhGFDRd0G2P D9Nak7z8OLiO635VeBq3Cor+J+sGOTJDur9iJku+nPBjkZKUiG63LrcmURqYGSGo nZRjiLFmIoRmHF+a4vzy7oIhBX8Ptf1vTKvlrE3XwsJhmjl41yFCqVz2IzLOnehY T58lDHB/HYsyVPYQXeJ2rpn+ehyV9RwIrWxY4MIXGZwP7hhH52MnVZ5Yt/w83j9b JQQSv5YB3hX02gyNkaU5Jk2A1neYL3Ather42SvaUV3XDhodHiZLlpOOFNv1AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUy91h6QAIg5Roq87yIV/u+Xk0A3cwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyNGE5MTA1LThkMmEtNGIzOC1h NmFlLTA1ZWFkNjk3MTlhMy8wLzMyMzAzMzJlMzgzMDJlMzEzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLUAowDQYJKoZIhvcN AQELBQADggEBAAV7cqwu+HitDZfLEBY4GVMBwjY7DUUp24hLGqZ63SIJN31Qr3YP VN9PudcgkIgxhkv7Hyj3HzRxg1u4nlu4g0Ix4ILrYt1dEhx3XBvkPGeMJbdNYYXT YN/qxcK6eLtK8PfkDvrrufef8YVbGTEa2zG11w0SnvbAZ+8NyLhNQIUBs1UV1n4K UIkEKeMAcueRML2yRAwGyunk9tZVlc1cShN6SAuuu8k4jH1wOBu0dbAPGP446EHS DggpiEeoSMoGZBv2KcwKjMCDWbUX4dKJ1MvTpwnOVUHMjrQ2qNN8auaine72vBc6 FVXuK9zMnlLRR1AoOt5hfhIfg/s8oD+ggwc= -----END CERTIFICATE-----Generated at Sun Jun 8 16:44:14 2025 by rpki-client