$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31332e302f32342d3234203d3e203234323034.roa File: 3230332e38302e31332e302f32342d3234203d3e203234323034.roa (raw, json) Hash identifier: OqfsOYg/HuhRheOY7XtpBvVh7Zqp58h+Rj/M/YaFZNI= Subject key identifier: FD:95:C9:DE:82:D6:EB:B4:E0:72:3A:D2:48:92:19:D7:05:70:D2:0F Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 75564D11654A818CEAAB521A1A91921BF6C46A88 Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31332e302f32342d3234203d3e203234323034.roa Signing time: Mon 02 Jun 2025 02:03:27 +0000 ROA not before: Mon 02 Jun 2025 01:58:27 +0000 ROA not after: Mon 01 Jun 2026 02:03:27 +0000 asID: 24204 IP address blocks: 203.80.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:33:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:56:4d:11:65:4a:81:8c:ea:ab:52:1a:1a:91:92:1b:f6:c4:6a:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Jun 2 01:58:27 2025 GMT Not After : Jun 1 02:03:27 2026 GMT Subject: CN=FD95C9DE82D6EBB4E0723AD2489219D70570D20F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5e:bd:8e:39:2c:97:82:c2:8c:3a:80:cc:6a: 1c:b9:d4:13:98:00:68:20:4b:67:b6:8d:89:3f:34: 38:93:8f:c0:fb:ad:7d:d1:69:85:2b:8a:cb:30:fd: c5:3e:91:fd:0d:33:b6:c0:7c:19:9b:80:7d:95:f1: b6:5c:e6:cc:5a:b6:06:bc:c6:50:4c:b4:c3:e3:a9: 12:2f:19:f3:91:95:1c:18:07:c6:28:13:a3:00:cb: 05:91:4c:fe:c2:49:56:70:fa:bc:d4:56:63:09:b9: c0:33:6b:bf:02:40:58:c4:4c:f2:88:5d:b1:89:fb: 04:8c:c3:0f:1b:f4:be:da:e3:b5:78:d5:f6:72:bc: 11:2d:ee:49:ce:2e:77:07:f8:be:67:c7:e8:b6:7c: 4c:30:d8:83:70:6c:0d:f4:4c:06:5d:d6:f7:56:e2: ce:48:2d:5e:19:79:ff:f9:2a:58:86:25:9c:c2:d2: b7:f1:ae:0d:34:0c:e2:a1:4c:48:60:bb:e0:61:f9: 5b:c0:aa:08:12:d7:29:81:01:6f:4c:76:24:c2:06: b7:da:6a:47:34:55:6a:31:98:57:67:16:60:4d:a1: fb:c0:f0:6c:48:90:bb:db:f1:dd:82:21:21:0e:30: 73:24:48:5c:0f:8f:5d:16:9e:b0:be:d1:dd:dd:46: d1:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:95:C9:DE:82:D6:EB:B4:E0:72:3A:D2:48:92:19:D7:05:70:D2:0F X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31332e302f32342d3234203d3e203234323034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.80.13.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:73:87:3b:9a:8f:4c:b0:1a:8d:c2:0d:3c:b8:64:95:c6:0d: 95:79:93:5b:4d:fd:d1:26:5c:7d:d0:9d:36:94:37:64:67:f5: 74:14:91:a3:5d:fb:e6:3a:db:a3:2e:c7:72:4b:7c:41:0d:4e: fd:b7:28:20:24:91:94:cb:ed:2a:56:04:27:70:ee:0d:ba:8e: 82:5d:61:61:12:87:be:2b:43:aa:79:68:8a:2a:0a:2c:3f:67: 3d:bc:38:27:c9:d4:64:e8:40:50:da:6b:5b:aa:be:90:a2:44: 16:95:d9:dc:87:61:6a:a6:06:9b:7f:0e:35:b5:dd:24:07:ae: 49:44:9b:51:65:c9:e0:f9:96:31:72:5e:93:e6:1f:f9:64:08: 47:60:f8:52:c3:6b:92:56:f9:69:75:7c:de:22:77:37:90:24: 45:0c:0a:e1:f1:5e:a4:84:4d:36:91:a3:f6:5f:13:2c:36:91: 67:cc:30:02:65:cc:25:55:02:23:3d:c1:91:03:21:17:8b:2e: 54:a3:b6:17:68:d0:36:cc:00:d7:52:b1:79:82:1b:5e:26:ec: 9f:51:81:7d:f4:73:4c:5a:c0:62:82:a7:4b:d2:af:2c:29:70: d8:36:b1:19:a4:b8:c0:1f:e8:3c:7e:76:f5:87:14:4f:34:db: e5:ec:e4:31 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUdVZNEWVKgYzqq1IaGpGSG/bEaogwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNTA2MDIwMTU4MjdaFw0yNjA2MDEwMjAzMjdaMDMxMTAvBgNV BAMTKEZEOTVDOURFODJENkVCQjRFMDcyM0FEMjQ4OTIxOUQ3MDU3MEQyMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbXr2OOSyXgsKMOoDMahy51BOY AGggS2e2jYk/NDiTj8D7rX3RaYUrissw/cU+kf0NM7bAfBmbgH2V8bZc5sxatga8 xlBMtMPjqRIvGfORlRwYB8YoE6MAywWRTP7CSVZw+rzUVmMJucAza78CQFjETPKI XbGJ+wSMww8b9L7a47V41fZyvBEt7knOLncH+L5nx+i2fEww2INwbA30TAZd1vdW 4s5ILV4Zef/5KliGJZzC0rfxrg00DOKhTEhgu+Bh+VvAqggS1ymBAW9MdiTCBrfa akc0VWoxmFdnFmBNofvA8GxIkLvb8d2CISEOMHMkSFwPj10WnrC+0d3dRtFPAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU/ZXJ3oLW67TgcjrSSJIZ1wVw0g8wHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyNGE5MTA1LThkMmEtNGIzOC1h NmFlLTA1ZWFkNjk3MTlhMy8wLzMyMzAzMzJlMzgzMDJlMzEzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLUA0wDQYJKoZIhvcN AQELBQADggEBAE5zhzuaj0ywGo3CDTy4ZJXGDZV5k1tN/dEmXH3QnTaUN2Rn9XQU kaNd++Y626Mux3JLfEENTv23KCAkkZTL7SpWBCdw7g26joJdYWESh74rQ6p5aIoq Ciw/Zz28OCfJ1GToQFDaa1uqvpCiRBaV2dyHYWqmBpt/DjW13SQHrklEm1FlyeD5 ljFyXpPmH/lkCEdg+FLDa5JW+Wl1fN4idzeQJEUMCuHxXqSETTaRo/ZfEyw2kWfM MAJlzCVVAiM9wZEDIReLLlSjthdo0DbMANdSsXmCG14m7J9RgX30c0xawGKCp0vS rywpcNg2sRmkuMAf6Dx+dvWHFE802+Xs5DE= -----END CERTIFICATE-----Generated at Sun Jun 8 07:34:29 2025 by rpki-client