$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234302e302f32332d3233203d3e203234323131.roa File: 3230332e3139302e3234302e302f32332d3233203d3e203234323131.roa (raw, json) Hash identifier: etbWGeSjVYbqYZZMPVvxJ5PNehJHsptjSIChJ05okfk= Subject key identifier: 04:86:D6:34:81:9D:33:73:3D:53:7D:9D:3D:04:07:C4:DA:84:F9:01 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 69A8EC5194054030E52EB585699DA1891517D9A2 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234302e302f32332d3233203d3e203234323131.roa Signing time: Mon 02 Jun 2025 01:03:24 +0000 ROA not before: Mon 02 Jun 2025 00:58:24 +0000 ROA not after: Mon 01 Jun 2026 01:03:24 +0000 asID: 24211 IP address blocks: 203.190.240.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 11:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:a8:ec:51:94:05:40:30:e5:2e:b5:85:69:9d:a1:89:15:17:d9:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Jun 2 00:58:24 2025 GMT Not After : Jun 1 01:03:24 2026 GMT Subject: CN=0486D634819D33733D537D9D3D0407C4DA84F901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:13:07:72:50:e2:db:76:76:02:49:6c:2c:a6: 5d:96:32:4d:41:df:92:9f:6c:87:28:ad:41:d4:f6: ec:7a:b2:a0:e9:c3:72:0a:33:cc:ba:dc:71:0e:cd: 99:21:c5:f4:44:4d:0f:75:4c:68:72:65:11:9e:d1: 93:ea:00:33:0f:f4:66:6a:16:d9:ff:78:3a:20:e7: 8d:4a:29:c6:c6:5f:ea:93:c2:55:87:1b:96:b0:05: a8:05:12:6a:2d:fc:54:82:b3:44:96:a7:aa:37:6d: b2:11:ae:93:8f:f0:b5:5f:51:06:7e:db:00:3c:5c: 97:ba:c8:0e:b5:a5:53:c9:84:50:5d:c9:8a:1c:30: 18:84:cf:af:2d:49:32:2d:cc:63:83:74:78:be:18: 46:17:03:9d:a8:7a:21:45:4f:aa:b1:0a:dd:ce:a5: c4:18:f3:c8:8f:fe:f3:06:ab:2d:ca:de:05:60:9c: 0b:c9:bb:a0:bc:eb:05:95:05:fd:9e:e4:85:3e:fc: 22:a6:f9:95:09:76:a4:d4:a5:0e:9c:c8:94:07:5f: 18:41:ee:67:f2:84:33:5d:a7:8e:3c:2d:f4:57:20: cd:25:c1:13:f8:85:58:20:e1:fa:fc:aa:17:fc:ff: 0a:90:41:dc:53:66:cf:44:0d:30:9a:b0:37:ee:46: ff:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:86:D6:34:81:9D:33:73:3D:53:7D:9D:3D:04:07:C4:DA:84:F9:01 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234302e302f32332d3233203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.240.0/23 Signature Algorithm: sha256WithRSAEncryption c1:96:53:db:9c:a9:0a:65:cf:be:8d:9e:ed:21:58:32:0f:70: 50:0b:63:20:72:67:7d:e7:2e:a0:89:27:71:b8:91:53:47:e3: 88:bb:6a:7c:2c:9c:38:b7:df:b1:9b:44:f2:c4:86:61:44:f5: 82:f8:fa:25:6f:c4:c5:58:07:d3:6d:e5:15:b6:05:03:38:94: ed:13:a5:ad:66:cb:d9:27:7d:f8:f8:fa:78:43:0f:08:b1:80: 07:f4:f6:7d:00:5c:0c:ca:f8:17:82:b7:c4:6f:c3:ed:06:5c: 9a:2d:8c:10:9c:95:6a:6e:cf:bf:c4:5d:ea:fe:c0:31:78:76: a8:b7:f5:17:a4:6c:de:cb:8d:6e:3e:29:9a:7f:0b:02:98:66: 59:ca:16:69:31:e4:af:5e:9b:00:00:ad:71:5a:1e:ea:84:e3: d1:e8:f4:5f:2b:88:88:0b:05:b5:c5:d0:e8:a5:5c:ae:35:f7: 38:af:5b:23:2a:86:66:68:5c:a2:6c:92:92:27:f0:84:07:d4: 28:25:7a:0d:e5:41:55:e9:9c:c4:5c:56:4c:9a:67:d9:44:52: 10:59:e3:cd:33:77:56:ed:e6:4d:1d:d7:74:cf:73:eb:9a:10: a4:ae:7c:cc:19:c9:c9:34:12:99:2d:70:37:02:5d:e7:95:6b: 14:fe:14:d2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaajsUZQFQDDlLrWFaZ2hiRUX2aIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNTA2MDIwMDU4MjRaFw0yNjA2MDEwMTAzMjRaMDMxMTAvBgNV BAMTKDA0ODZENjM0ODE5RDMzNzMzRDUzN0Q5RDNEMDQwN0M0REE4NEY5MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1EwdyUOLbdnYCSWwspl2WMk1B 35KfbIcorUHU9ux6sqDpw3IKM8y63HEOzZkhxfRETQ91TGhyZRGe0ZPqADMP9GZq Ftn/eDog541KKcbGX+qTwlWHG5awBagFEmot/FSCs0SWp6o3bbIRrpOP8LVfUQZ+ 2wA8XJe6yA61pVPJhFBdyYocMBiEz68tSTItzGODdHi+GEYXA52oeiFFT6qxCt3O pcQY88iP/vMGqy3K3gVgnAvJu6C86wWVBf2e5IU+/CKm+ZUJdqTUpQ6cyJQHXxhB 7mfyhDNdp448LfRXIM0lwRP4hVgg4fr8qhf8/wqQQdxTZs9EDTCasDfuRv9rAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBIbWNIGdM3M9U32dPQQHxNqE+QEwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy77wMA0GCSqG SIb3DQEBCwUAA4IBAQDBllPbnKkKZc++jZ7tIVgyD3BQC2Mgcmd95y6giSdxuJFT R+OIu2p8LJw4t9+xm0TyxIZhRPWC+Polb8TFWAfTbeUVtgUDOJTtE6WtZsvZJ334 +Pp4Qw8IsYAH9PZ9AFwMyvgXgrfEb8PtBlyaLYwQnJVqbs+/xF3q/sAxeHaot/UX pGzey41uPimafwsCmGZZyhZpMeSvXpsAAK1xWh7qhOPR6PRfK4iICwW1xdDopVyu Nfc4r1sjKoZmaFyibJKSJ/CEB9QoJXoN5UFV6ZzEXFZMmmfZRFIQWePNM3dW7eZN Hdd0z3PrmhCkrnzMGcnJNBKZLXA3Al3nlWsU/hTS -----END CERTIFICATE-----Generated at Thu Jun 5 18:36:37 2025 by rpki-client