$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e382e302f32342d3234203d3e203234323034.roa File: 3230332e38302e382e302f32342d3234203d3e203234323034.roa (raw, json) Hash identifier: WygMqvrzr917+KMa/vGo8fQyT0ctkaWPjHAmxb/T5Js= Subject key identifier: CC:A4:43:C0:34:8A:89:DE:7D:02:34:FD:28:CE:56:20:6D:13:01:60 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 7B775E7EAC975C4BB84ECDAC2DF355725AE5A7C0 Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e382e302f32342d3234203d3e203234323034.roa Signing time: Mon 02 Jun 2025 02:03:26 +0000 ROA not before: Mon 02 Jun 2025 01:58:26 +0000 ROA not after: Mon 01 Jun 2026 02:03:26 +0000 asID: 24204 IP address blocks: 203.80.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:33:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:77:5e:7e:ac:97:5c:4b:b8:4e:cd:ac:2d:f3:55:72:5a:e5:a7:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Jun 2 01:58:26 2025 GMT Not After : Jun 1 02:03:26 2026 GMT Subject: CN=CCA443C0348A89DE7D0234FD28CE56206D130160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:38:84:06:6e:ea:68:e7:05:30:67:b8:90:a9: 77:72:ce:10:28:b8:be:44:d1:11:ae:55:1e:ab:45: bf:dc:0f:d1:1a:47:7f:23:b0:f0:15:32:f8:1d:f0: d2:bb:6c:a6:7e:d7:dd:59:0a:ad:99:36:44:45:48: 4a:18:54:d1:42:07:be:60:46:ad:2e:e7:63:81:0a: 2b:a1:2a:bb:d6:0d:06:f2:c9:7f:ca:9d:1e:58:94: 4c:4e:fb:31:23:2e:d4:89:62:ec:37:8a:18:e8:b6: a8:75:37:bd:31:51:c1:4c:56:28:c8:ee:ad:56:72: 1d:0a:7e:48:06:3d:b6:cc:7d:04:d8:53:d5:73:4f: 8b:a9:ab:2c:39:f6:17:b7:a4:e3:cc:8e:e8:f5:86: ea:20:8c:f0:29:97:af:f2:81:fb:e7:d9:01:95:a7: 03:71:55:ac:d2:b1:82:d7:f7:43:7e:84:6b:a9:4b: b5:c5:26:92:2e:56:0f:22:6d:39:36:e1:b3:a4:b1: 05:d5:3b:9b:4e:0a:55:2c:cc:db:b1:4b:52:c5:44: b9:30:42:92:d7:3f:c2:d0:a9:33:16:12:26:44:a0: f1:b3:b1:66:0c:c6:29:70:f8:f5:3b:2e:92:e8:d3: b1:1f:ac:2c:11:63:af:27:d8:ab:db:a5:02:94:92: f1:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:A4:43:C0:34:8A:89:DE:7D:02:34:FD:28:CE:56:20:6D:13:01:60 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e382e302f32342d3234203d3e203234323034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.80.8.0/24 Signature Algorithm: sha256WithRSAEncryption 08:aa:d2:1a:b5:42:00:f3:5e:c2:b8:a2:c8:d5:a6:04:53:d0: ce:fc:cb:4a:6b:e1:6a:0b:6b:e0:5e:f3:a0:d9:66:c6:23:ea: 37:3e:16:f6:53:c8:56:f5:28:91:51:ee:f3:d4:fc:10:02:6d: 4b:21:24:bd:2a:8e:90:82:c3:2f:ee:07:65:2d:c4:7a:3b:96: 3d:ef:32:86:93:32:4a:ca:e5:68:84:78:2b:3b:9b:4f:6f:52: e2:3a:de:3c:f5:1a:08:2d:98:9b:3a:c4:3d:f5:f4:5e:07:3d: 5b:40:d3:d4:1e:19:5e:47:fd:4c:9a:14:d0:af:02:8c:01:fe: 9e:96:e3:c3:d3:83:a8:75:53:45:a1:83:1e:45:e3:e2:a2:1c: 90:4e:3c:36:a6:fc:77:08:6d:17:ff:ed:1f:91:b1:3d:44:e9: f0:09:79:ac:08:20:82:01:d0:b7:50:91:80:14:3f:0b:8f:ac: 77:54:d0:7d:c9:4a:d8:36:81:90:1e:1a:ac:8e:67:61:43:63: 9f:6e:37:f9:2a:ad:e8:b3:01:8b:5c:ef:df:f8:2c:8c:35:76: 8e:40:41:59:8b:00:d4:e5:1e:4e:70:8d:7c:d8:53:c7:3a:c7: ff:62:bc:11:de:c0:0e:81:94:e3:29:c0:5e:98:d0:5e:c1:96: bf:10:c7:e1 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUe3defqyXXEu4Ts2sLfNVclrlp8AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNTA2MDIwMTU4MjZaFw0yNjA2MDEwMjAzMjZaMDMxMTAvBgNV BAMTKENDQTQ0M0MwMzQ4QTg5REU3RDAyMzRGRDI4Q0U1NjIwNkQxMzAxNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoOIQGbupo5wUwZ7iQqXdyzhAo uL5E0RGuVR6rRb/cD9EaR38jsPAVMvgd8NK7bKZ+191ZCq2ZNkRFSEoYVNFCB75g Rq0u52OBCiuhKrvWDQbyyX/KnR5YlExO+zEjLtSJYuw3ihjotqh1N70xUcFMVijI 7q1Wch0KfkgGPbbMfQTYU9VzT4upqyw59he3pOPMjuj1huogjPApl6/ygfvn2QGV pwNxVazSsYLX90N+hGupS7XFJpIuVg8ibTk24bOksQXVO5tOClUszNuxS1LFRLkw QpLXP8LQqTMWEiZEoPGzsWYMxilw+PU7LpLo07EfrCwRY68n2KvbpQKUkvH/AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUzKRDwDSKid59AjT9KM5WIG0TAWAwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMzIzMDMzMmUzODMwMmUzODJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMyMzQzMjMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLUAgwDQYJKoZIhvcNAQEL BQADggEBAAiq0hq1QgDzXsK4osjVpgRT0M78y0pr4WoLa+Be86DZZsYj6jc+FvZT yFb1KJFR7vPU/BACbUshJL0qjpCCwy/uB2UtxHo7lj3vMoaTMkrK5WiEeCs7m09v UuI63jz1GggtmJs6xD319F4HPVtA09QeGV5H/UyaFNCvAowB/p6W48PTg6h1U0Wh gx5F4+KiHJBOPDam/HcIbRf/7R+RsT1E6fAJeawIIIIB0LdQkYAUPwuPrHdU0H3J Stg2gZAeGqyOZ2FDY59uN/kqreizAYtc79/4LIw1do5AQVmLANTlHk5wjXzYU8c6 x/9ivBHewA6BlOMpwF6Y0F7Blr8Qx+E= -----END CERTIFICATE-----Generated at Sun Jun 8 11:13:21 2025 by rpki-client