$ rpki-client -vvf repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234372e302f32342d3234203d3e203338373738.roa File: 3230322e39332e3234372e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: 9c49vJ806rinKU2yZDXFYCFMBIoAnvTzCxv8zv5wDgg= Subject key identifier: D2:F3:BE:B9:B5:D5:90:30:3D:0C:0A:82:6F:10:5B:B2:01:50:6A:BE Certificate issuer: /CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Certificate serial: 39204673BA29502D2B070B1D8C9353EA32AE40FC Authority key identifier: F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234372e302f32342d3234203d3e203338373738.roa Signing time: Mon 02 Jun 2025 02:02:40 +0000 ROA not before: Mon 02 Jun 2025 01:57:40 +0000 ROA not after: Mon 01 Jun 2026 02:02:40 +0000 asID: 38778 IP address blocks: 202.93.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:20:46:73:ba:29:50:2d:2b:07:0b:1d:8c:93:53:ea:32:ae:40:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Validity Not Before: Jun 2 01:57:40 2025 GMT Not After : Jun 1 02:02:40 2026 GMT Subject: CN=D2F3BEB9B5D590303D0C0A826F105BB201506ABE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:11:d5:61:4a:e2:7d:47:41:2a:36:9d:05:bc: 59:db:fa:7a:e6:9a:60:02:15:e9:b2:a2:97:ca:8b: 8e:6f:46:46:ff:8f:12:2f:1e:04:42:1e:14:75:cf: 29:2b:40:9b:b9:47:49:c5:75:88:ff:09:f3:cc:25: 20:44:c9:d0:3d:34:e4:b3:f4:c4:11:90:bc:f2:44: b3:6b:c9:76:0c:73:ed:e4:bb:0d:f5:ce:31:7d:0e: 63:34:ed:18:7c:47:34:e6:bc:bd:2d:d0:b1:f5:25: 8b:d6:3d:ef:71:48:28:56:95:9c:85:67:72:9b:81: 5e:05:cb:b8:72:66:20:68:ca:f2:78:63:7c:fe:6a: e5:58:57:20:25:0c:24:4c:21:9c:9d:31:15:e3:55: 08:1a:1e:f9:81:99:11:dd:b5:1b:f0:5f:43:dc:92: cc:01:94:4d:3e:4f:1d:6d:b1:6e:a7:1d:d2:b2:84: ea:ed:71:d0:82:b8:ea:d3:14:68:99:41:56:91:e5: 95:f7:22:12:29:c1:38:4d:24:7d:16:ba:a8:8f:2f: 38:d0:f5:2c:09:97:a9:24:6f:65:e5:74:ad:dd:9b: 15:f6:74:4e:af:b8:cc:46:02:e0:34:b9:95:49:ab: e7:23:9d:16:99:31:76:0a:97:e9:6d:8c:27:bb:f7: 64:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:F3:BE:B9:B5:D5:90:30:3D:0C:0A:82:6F:10:5B:B2:01:50:6A:BE X509v3 Authority Key Identifier: keyid:F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234372e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.247.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:ab:4a:c2:50:89:aa:af:e6:3a:a1:3a:d4:7a:b1:a5:af:da: a3:cb:2f:4e:fd:a7:8c:73:a2:85:d4:b3:49:96:ce:11:c2:dd: fd:36:63:1a:f9:b5:ab:04:f2:c9:80:07:fc:16:e9:e6:47:ea: ac:d8:38:af:33:18:92:d7:57:89:6f:a7:46:a9:f4:91:ed:f4: 7e:a8:d5:ef:cb:7a:70:9b:f5:d6:27:fe:09:2c:29:43:f3:38: c9:5c:29:5f:63:90:92:be:a4:65:4a:e4:cf:2f:fb:8b:fc:b4: 2d:43:11:bc:7d:5b:a3:6a:bf:5f:b7:d0:83:c4:a9:09:26:76: 48:54:45:01:3d:cd:af:34:68:67:d7:17:d9:19:2b:66:f0:7f: bb:87:1c:fd:51:86:00:a2:d4:59:fb:ca:be:94:89:b4:84:e8: 87:1c:35:cf:10:73:0c:6d:79:45:c0:fa:61:88:8f:45:83:84: b7:a9:cf:a2:5a:e8:05:1d:26:fe:0f:f0:ed:45:86:2b:47:ad: 40:e3:e5:93:98:69:86:cd:2b:b2:0f:a1:4d:1e:61:ff:90:74: a0:ef:01:f2:78:8d:00:88:0b:42:33:af:ce:fb:52:17:cf:20: 83:a7:90:75:d5:c2:df:ec:95:d5:72:37:3d:79:73:f9:1d:77: c1:09:27:62 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOSBGc7opUC0rBwsdjJNT6jKuQPwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3 NzgwOUQwMjAeFw0yNTA2MDIwMTU3NDBaFw0yNjA2MDEwMjAyNDBaMDMxMTAvBgNV BAMTKEQyRjNCRUI5QjVENTkwMzAzRDBDMEE4MjZGMTA1QkIyMDE1MDZBQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYEdVhSuJ9R0EqNp0FvFnb+nrm mmACFemyopfKi45vRkb/jxIvHgRCHhR1zykrQJu5R0nFdYj/CfPMJSBEydA9NOSz 9MQRkLzyRLNryXYMc+3kuw31zjF9DmM07Rh8RzTmvL0t0LH1JYvWPe9xSChWlZyF Z3KbgV4Fy7hyZiBoyvJ4Y3z+auVYVyAlDCRMIZydMRXjVQgaHvmBmRHdtRvwX0Pc kswBlE0+Tx1tsW6nHdKyhOrtcdCCuOrTFGiZQVaR5ZX3IhIpwThNJH0WuqiPLzjQ 9SwJl6kkb2XldK3dmxX2dE6vuMxGAuA0uZVJq+cjnRaZMXYKl+ltjCe792SHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0vO+ubXVkDA9DAqCbxBbsgFQar4wHwYDVR0j BBgwFoAU843/CU4WhDhU6sFAPGn9f3eAnQIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWQ2ZGNjOS0xNzAwLTQ4ZWItOTA5OS02Njc4ZjkxYmY0NGUvMC9GMzhERkYwOTRF MTY4NDM4NTRFQUMxNDAzQzY5RkQ3Rjc3ODA5RDAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3Nzgw OUQwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhZDZkY2M5LTE3MDAtNDhlYi05 MDk5LTY2NzhmOTFiZjQ0ZS8wLzMyMzAzMjJlMzkzMzJlMzIzNDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpd9zANBgkqhkiG 9w0BAQsFAAOCAQEAb6tKwlCJqq/mOqE61Hqxpa/ao8svTv2njHOihdSzSZbOEcLd /TZjGvm1qwTyyYAH/Bbp5kfqrNg4rzMYktdXiW+nRqn0ke30fqjV78t6cJv11if+ CSwpQ/M4yVwpX2OQkr6kZUrkzy/7i/y0LUMRvH1bo2q/X7fQg8SpCSZ2SFRFAT3N rzRoZ9cX2RkrZvB/u4cc/VGGAKLUWfvKvpSJtITohxw1zxBzDG15RcD6YYiPRYOE t6nPolroBR0m/g/w7UWGK0etQOPlk5hphs0rsg+hTR5h/5B0oO8B8niNAIgLQjOv zvtSF88gg6eQddXC3+yV1XI3PXlz+R13wQknYg== -----END CERTIFICATE-----Generated at Sun Jun 8 19:40:16 2025 by rpki-client