$ rpki-client -vvf repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3232302e3135372e39362e302f32302d3234203d3e2039373835.roa File: 3232302e3135372e39362e302f32302d3234203d3e2039373835.roa (raw, json) Hash identifier: HNZfntXqIdjS6Oc1nk9EDrt/Ny6J1wp1N0wmznQcons= Subject key identifier: 4C:F4:FC:86:8B:4F:69:92:7E:D7:BE:71:CC:4F:82:90:07:30:9F:6D Certificate issuer: /CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Certificate serial: 53B9D1747B63D744AAF923E182AC2365F9D9B84C Authority key identifier: BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3232302e3135372e39362e302f32302d3234203d3e2039373835.roa Signing time: Mon 02 Jun 2025 02:04:51 +0000 ROA not before: Mon 02 Jun 2025 01:59:51 +0000 ROA not after: Mon 01 Jun 2026 02:04:51 +0000 asID: 9785 IP address blocks: 220.157.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:b9:d1:74:7b:63:d7:44:aa:f9:23:e1:82:ac:23:65:f9:d9:b8:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Validity Not Before: Jun 2 01:59:51 2025 GMT Not After : Jun 1 02:04:51 2026 GMT Subject: CN=4CF4FC868B4F69927ED7BE71CC4F829007309F6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c4:77:4f:91:42:bb:d9:75:c2:4c:c1:ca:10: 1a:48:3e:d0:45:e1:2b:14:13:6b:e2:43:05:4f:4d: 01:e7:43:aa:24:dc:ef:fe:73:b9:dc:ae:05:4b:77: f7:1d:1b:00:c8:8b:a0:22:36:6f:b4:f1:3b:78:51: 06:f0:56:46:ef:f1:9f:4b:b1:c1:0c:22:cf:90:4e: 1d:e4:3a:1f:a5:ed:fb:9e:40:b0:da:64:96:6e:fe: 2c:4e:6a:27:26:42:af:33:16:d6:99:46:18:59:81: 34:69:b5:b3:b7:3a:f2:13:1e:99:09:c3:45:8f:78: 37:9c:b1:ea:e6:fd:f7:e3:50:b0:3b:8d:da:f0:24: 5e:e7:56:60:bf:d0:5c:18:db:30:c3:78:49:ff:be: 6c:49:db:c8:87:49:31:d4:ef:f1:9b:0e:e2:61:8b: 41:77:a6:13:10:9a:64:e7:57:db:0f:ac:4d:06:44: e8:80:a1:36:bf:9b:d0:bf:01:ca:99:62:2b:3f:2d: c2:15:49:b6:1a:cc:51:30:87:75:80:f0:24:20:ba: 88:7a:4c:27:99:9b:86:ec:c6:ea:d1:d0:60:cc:10: ba:59:c9:c5:7e:be:a2:c3:ac:b2:a6:9b:be:08:3d: 40:35:1d:35:99:90:96:a4:79:51:96:d2:ff:5e:9d: 97:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:F4:FC:86:8B:4F:69:92:7E:D7:BE:71:CC:4F:82:90:07:30:9F:6D X509v3 Authority Key Identifier: keyid:BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3232302e3135372e39362e302f32302d3234203d3e2039373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.157.96.0/20 Signature Algorithm: sha256WithRSAEncryption 36:57:ef:fb:2e:a2:ca:42:6e:f6:92:1b:8c:0e:a4:4c:be:7f: 8b:2e:b0:b7:01:1b:d0:59:85:a4:93:bd:d4:94:de:1a:2e:ce: 1c:80:f6:9c:74:5e:b3:13:40:2b:3f:db:c2:9a:54:19:4d:21: 4d:b9:23:6c:e0:80:1a:b4:be:6d:91:26:69:33:90:44:22:a5: ea:f3:17:93:3d:02:0f:bd:ae:16:9a:4e:80:af:b2:44:6d:27: 7c:0b:b2:da:b4:bc:9b:c5:f3:95:bd:d0:57:80:de:24:69:58: 0b:80:e6:e0:62:71:81:4b:9b:61:9b:05:a6:4e:0d:84:4e:82: 61:03:46:60:93:fd:ff:7d:1a:ec:4c:8f:6f:f2:d6:ae:8f:1f: bf:67:d7:56:9c:e0:fe:11:4b:ad:3f:07:6b:b9:17:fe:f8:70: ab:cd:da:53:01:a8:b4:0b:09:7d:b1:38:36:b8:6c:81:98:81: 8c:76:e8:6b:63:3b:72:09:68:33:86:e5:03:53:65:88:d0:a6: a6:1e:b2:53:8f:07:2a:df:ef:52:6a:3c:be:a2:e0:91:a4:a2: 98:f4:c3:df:74:b9:a5:a1:ed:6a:de:5b:a3:63:bc:e9:f2:b7: 92:31:fc:a1:66:04:77:0e:16:5e:fe:ba:dd:f2:8e:56:ee:46: 4b:b8:84:08 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUU7nRdHtj10Sq+SPhgqwjZfnZuEwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMw RjFDNDg5RTAeFw0yNTA2MDIwMTU5NTFaFw0yNjA2MDEwMjA0NTFaMDMxMTAvBgNV BAMTKDRDRjRGQzg2OEI0RjY5OTI3RUQ3QkU3MUNDNEY4MjkwMDczMDlGNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDixHdPkUK72XXCTMHKEBpIPtBF 4SsUE2viQwVPTQHnQ6ok3O/+c7ncrgVLd/cdGwDIi6AiNm+08Tt4UQbwVkbv8Z9L scEMIs+QTh3kOh+l7fueQLDaZJZu/ixOaicmQq8zFtaZRhhZgTRptbO3OvITHpkJ w0WPeDecserm/ffjULA7jdrwJF7nVmC/0FwY2zDDeEn/vmxJ28iHSTHU7/GbDuJh i0F3phMQmmTnV9sPrE0GROiAoTa/m9C/AcqZYis/LcIVSbYazFEwh3WA8CQguoh6 TCeZm4bsxurR0GDMELpZycV+vqLDrLKmm74IPUA1HTWZkJakeVGW0v9enZftAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUTPT8hotPaZJ+175xzE+CkAcwn20wHwYDVR0j BBgwFoAUvztnWuvuZNALMjBWVF0fYw8cSJ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTBjOTAwOS1hZDUzLTRmYTYtYTE4My0zNGIzNDU3YmVhMDMvMC9CRjNCNjc1QUVC RUU2NEQwMEIzMjMwNTY1NDVEMUY2MzBGMUM0ODlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMwRjFD NDg5RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5MGM5MDA5LWFkNTMtNGZhNi1h MTgzLTM0YjM0NTdiZWEwMy8wLzMyMzIzMDJlMzEzNTM3MmUzOTM2MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzkzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATcnWAwDQYJKoZIhvcN AQELBQADggEBADZX7/suospCbvaSG4wOpEy+f4susLcBG9BZhaSTvdSU3houzhyA 9px0XrMTQCs/28KaVBlNIU25I2zggBq0vm2RJmkzkEQiperzF5M9Ag+9rhaaToCv skRtJ3wLstq0vJvF85W90FeA3iRpWAuA5uBicYFLm2GbBaZODYROgmEDRmCT/f99 GuxMj2/y1q6PH79n11ac4P4RS60/B2u5F/74cKvN2lMBqLQLCX2xODa4bIGYgYx2 6GtjO3IJaDOG5QNTZYjQpqYeslOPByrf71JqPL6i4JGkopj0w990uaWh7WreW6Nj vOnyt5Ix/KFmBHcOFl7+ut3yjlbuRku4hAg= -----END CERTIFICATE-----Generated at Sat Jun 7 17:29:20 2025 by rpki-client