$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234322e302f32332d3233203d3e203234323131.roa File: 3230332e3139302e3234322e302f32332d3233203d3e203234323131.roa (raw, json) Hash identifier: +RTivfqLEwyAM8Z9a8tLky4YZfcHjdt6gpcJXVO2krI= Subject key identifier: 2D:C7:7E:69:23:19:F7:BA:B2:C1:DB:5B:A8:91:34:A9:BE:99:F3:C1 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 05B36395D848CB65DA2B1895C734A5405F93DEC7 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234322e302f32332d3233203d3e203234323131.roa Signing time: Mon 02 Jun 2025 01:03:24 +0000 ROA not before: Mon 02 Jun 2025 00:58:24 +0000 ROA not after: Mon 01 Jun 2026 01:03:24 +0000 asID: 24211 IP address blocks: 203.190.242.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 11:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:b3:63:95:d8:48:cb:65:da:2b:18:95:c7:34:a5:40:5f:93:de:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Jun 2 00:58:24 2025 GMT Not After : Jun 1 01:03:24 2026 GMT Subject: CN=2DC77E692319F7BAB2C1DB5BA89134A9BE99F3C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:25:ee:5c:20:8b:8d:ec:64:0f:99:f8:44:52: 03:8d:93:7a:5f:ce:d6:5e:ea:10:b2:b6:51:45:89: 2c:18:d7:35:e2:9e:0f:30:45:39:50:94:c9:52:11: d6:ff:88:41:cf:63:e7:ce:67:96:4a:2b:a0:e4:cf: 6c:88:d1:dd:1e:2b:be:39:61:82:ee:b7:97:69:27: c9:e9:a2:ee:16:54:75:62:a4:f3:7e:cf:c5:ea:16: 4b:bb:3f:fa:97:04:0a:71:36:8d:11:93:59:39:20: c4:c5:08:5e:22:3a:54:0a:ff:d6:0c:78:a1:08:f1: b6:f1:e8:b3:1c:f2:9c:dc:67:6b:af:24:7c:98:08: 91:72:ad:d8:44:35:44:8c:ce:2a:a4:3f:4f:a6:f6: fa:bd:98:9c:d2:77:09:85:82:96:ac:81:54:02:cf: 6d:b2:fe:5d:ec:14:fc:39:06:1e:28:7a:8d:74:f6: 1c:ef:b4:da:23:91:3d:fb:f1:e6:12:4f:62:ae:12: 8e:ca:7f:60:b0:84:71:33:19:23:2e:9a:76:c2:7f: 3c:7a:b2:8b:62:9d:89:65:48:b2:8f:c1:7f:0c:66: dd:c2:8f:11:43:8e:52:b0:6f:19:ba:ae:1d:f6:54: dc:55:c7:40:d1:1a:c3:47:09:fd:a6:10:f4:0f:40: 70:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:C7:7E:69:23:19:F7:BA:B2:C1:DB:5B:A8:91:34:A9:BE:99:F3:C1 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234322e302f32332d3233203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.242.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:cf:95:d0:36:bb:d5:52:7a:4a:a0:ed:d7:36:69:34:0e:ff: ad:ae:fd:a6:17:f3:1d:53:8d:9d:c9:ac:13:cf:42:96:6e:54: fd:9e:ce:fa:ce:f4:45:57:a0:7d:92:43:59:5b:75:b5:1a:b2: 2b:3a:31:fd:38:8c:d7:c6:60:8e:98:b2:28:77:b0:ab:1c:ea: 0f:37:35:f7:e2:d9:63:4b:06:bf:ce:53:82:eb:92:0a:a6:c7: d9:a0:9e:95:4f:35:9a:c2:66:52:f4:c3:38:d3:03:f0:e7:a5: 18:0d:70:61:87:2a:e7:9b:b5:29:e2:ea:12:5f:6d:06:4a:16: 5c:72:21:ad:65:61:8c:08:94:19:f3:bd:d4:35:47:21:2e:c9: 96:82:f9:d1:af:3e:c3:27:7d:1e:44:5c:99:b8:17:d7:f1:9d: d3:bf:28:23:5f:f7:10:33:f3:7a:7f:27:53:5e:1d:4b:36:55: 18:3c:a4:e0:98:79:81:ae:76:31:a2:03:64:a1:3d:07:ef:1a: ec:b2:db:14:0c:04:90:b8:02:1c:bc:95:c8:07:a2:3e:5f:b7: 29:52:4f:40:f7:4d:dc:2b:c8:a5:42:00:e5:86:85:22:c5:57: 31:92:c1:da:7a:8e:2d:dc:83:d0:3b:a0:02:42:6a:75:4a:a9: 99:aa:f9:80 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBbNjldhIy2XaKxiVxzSlQF+T3scwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNTA2MDIwMDU4MjRaFw0yNjA2MDEwMTAzMjRaMDMxMTAvBgNV BAMTKDJEQzc3RTY5MjMxOUY3QkFCMkMxREI1QkE4OTEzNEE5QkU5OUYzQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Je5cIIuN7GQPmfhEUgONk3pf ztZe6hCytlFFiSwY1zXing8wRTlQlMlSEdb/iEHPY+fOZ5ZKK6Dkz2yI0d0eK745 YYLut5dpJ8npou4WVHVipPN+z8XqFku7P/qXBApxNo0Rk1k5IMTFCF4iOlQK/9YM eKEI8bbx6LMc8pzcZ2uvJHyYCJFyrdhENUSMziqkP0+m9vq9mJzSdwmFgpasgVQC z22y/l3sFPw5Bh4oeo109hzvtNojkT378eYST2KuEo7Kf2CwhHEzGSMumnbCfzx6 sotinYllSLKPwX8MZt3CjxFDjlKwbxm6rh32VNxVx0DRGsNHCf2mEPQPQHA5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULcd+aSMZ97qywdtbqJE0qb6Z88EwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy77yMA0GCSqG SIb3DQEBCwUAA4IBAQAsz5XQNrvVUnpKoO3XNmk0Dv+trv2mF/MdU42dyawTz0KW blT9ns76zvRFV6B9kkNZW3W1GrIrOjH9OIzXxmCOmLIod7CrHOoPNzX34tljSwa/ zlOC65IKpsfZoJ6VTzWawmZS9MM40wPw56UYDXBhhyrnm7Up4uoSX20GShZcciGt ZWGMCJQZ873UNUchLsmWgvnRrz7DJ30eRFyZuBfX8Z3TvygjX/cQM/N6fydTXh1L NlUYPKTgmHmBrnYxogNkoT0H7xrsstsUDASQuAIcvJXIB6I+X7cpUk9A903cK8il QgDlhoUixVcxksHaeo4t3IPQO6ACQmp1SqmZqvmA -----END CERTIFICATE-----Generated at Thu Jun 5 18:29:58 2025 by rpki-client