$ rpki-client -vvf repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230322e302f32342d3234203d3e203138313533.roa File: 3230322e37322e3230322e302f32342d3234203d3e203138313533.roa (raw, json) Hash identifier: Jse+7YyAFU6B19QF+EnGon6ubeg0wEMkIY6HtcfnBwc= Subject key identifier: CE:8E:F8:4F:2C:FC:54:BC:B8:67:0F:A5:C0:BA:D0:49:73:59:57:99 Certificate issuer: /CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Certificate serial: 7B7209B9F14491935A2D5F6F578CA02215D5B463 Authority key identifier: 9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230322e302f32342d3234203d3e203138313533.roa Signing time: Mon 02 Jun 2025 02:02:55 +0000 ROA not before: Mon 02 Jun 2025 01:57:55 +0000 ROA not after: Mon 01 Jun 2026 02:02:55 +0000 asID: 18153 IP address blocks: 202.72.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:25:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:72:09:b9:f1:44:91:93:5a:2d:5f:6f:57:8c:a0:22:15:d5:b4:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Validity Not Before: Jun 2 01:57:55 2025 GMT Not After : Jun 1 02:02:55 2026 GMT Subject: CN=CE8EF84F2CFC54BCB8670FA5C0BAD04973595799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5a:38:71:c3:46:e5:be:29:cd:be:49:f2:e3: fe:4a:fe:88:3a:81:46:25:ad:d2:bc:0a:17:85:10: 13:93:96:ef:11:90:f3:90:c6:a7:14:d6:0e:30:ab: e9:b2:02:d1:d7:7e:78:86:3e:a4:9d:06:64:d6:c0: fa:0f:f1:d3:b7:7a:74:0d:0b:c9:5d:47:0a:1f:a8: 99:e6:24:63:95:e8:14:98:4b:56:08:1d:0c:5e:24: 9d:1b:38:96:9a:16:75:20:19:2b:c1:86:e4:d5:1d: 25:43:81:a1:25:ec:5a:e9:d5:53:d4:13:d8:2f:49: 54:f3:25:8c:12:3c:fc:13:66:37:c6:a2:61:f1:fb: 26:1f:0c:e0:25:45:34:87:da:a0:07:71:db:9d:22: 65:b7:63:49:ea:1e:bc:13:31:e7:77:83:56:90:09: 20:e8:18:2d:fd:67:08:f9:a1:c9:9f:dc:bf:4c:43: 75:87:bb:a4:01:b6:a1:45:eb:4c:cc:6f:ad:f6:49: f3:93:75:a2:79:42:c1:96:fc:a2:b4:4f:0d:00:89: cc:93:4d:1b:36:c1:86:7b:d1:ca:89:aa:29:21:80: 3a:c5:aa:b6:ce:2e:b4:e8:52:e2:be:3f:43:ec:fa: b9:5b:9b:b8:17:c0:eb:8e:50:96:ec:a7:9a:fc:c9: 68:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:8E:F8:4F:2C:FC:54:BC:B8:67:0F:A5:C0:BA:D0:49:73:59:57:99 X509v3 Authority Key Identifier: keyid:9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230322e302f32342d3234203d3e203138313533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.72.202.0/24 Signature Algorithm: sha256WithRSAEncryption ba:31:20:d2:9c:e8:ee:2f:07:b0:3c:52:a2:4a:92:a4:7d:7e: 93:22:1a:e7:33:72:bf:2a:43:e9:ff:28:eb:3d:3b:ac:27:46: 1b:d1:5b:cc:79:44:44:73:67:b3:41:52:fa:af:bc:15:2a:40: a2:33:23:ef:2e:df:ef:7d:bc:98:4b:a2:7d:d9:14:55:d3:de: f2:f9:65:bf:dd:a5:38:3d:b0:46:88:6d:38:08:12:d1:a5:27: fa:92:cf:69:1c:38:40:7f:8f:97:d9:8f:ce:ab:6a:b8:64:6d: a0:fc:ad:bc:9a:a9:a4:f2:b6:de:69:b1:e7:4d:5e:d1:69:60: d0:04:3d:08:a1:a3:b8:73:f2:23:92:22:59:23:db:c5:62:6b: a9:e6:d1:42:b2:32:2e:04:27:66:03:91:35:ef:2f:f8:5c:39: 60:a1:9a:89:ad:85:46:47:57:e3:16:56:09:cc:38:29:9b:3d: d3:2c:ae:f8:7d:9e:55:b7:2f:10:cc:c6:4b:d7:d0:87:4b:fd: 28:2b:bf:8c:2b:03:9f:58:cb:cc:65:0c:be:07:97:87:9c:d6: d7:3e:cf:da:f2:8b:70:55:79:bf:1f:1b:bd:0f:11:9b:7d:85: 77:56:98:5b:67:3b:21:6e:c8:f5:af:15:b1:0a:5c:42:4a:2b: 6f:5f:b4:1e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUe3IJufFEkZNaLV9vV4ygIhXVtGMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4 Rjc4ODFFRTAeFw0yNTA2MDIwMTU3NTVaFw0yNjA2MDEwMjAyNTVaMDMxMTAvBgNV BAMTKENFOEVGODRGMkNGQzU0QkNCODY3MEZBNUMwQkFEMDQ5NzM1OTU3OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIWjhxw0blvinNvkny4/5K/og6 gUYlrdK8CheFEBOTlu8RkPOQxqcU1g4wq+myAtHXfniGPqSdBmTWwPoP8dO3enQN C8ldRwofqJnmJGOV6BSYS1YIHQxeJJ0bOJaaFnUgGSvBhuTVHSVDgaEl7Frp1VPU E9gvSVTzJYwSPPwTZjfGomHx+yYfDOAlRTSH2qAHcdudImW3Y0nqHrwTMed3g1aQ CSDoGC39Zwj5ocmf3L9MQ3WHu6QBtqFF60zMb632SfOTdaJ5QsGW/KK0Tw0AicyT TRs2wYZ70cqJqikhgDrFqrbOLrToUuK+P0Ps+rlbm7gXwOuOUJbsp5r8yWhBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzo74Tyz8VLy4Zw+lwLrQSXNZV5kwHwYDVR0j BBgwFoAUnt5k28QJiIHxG3ASPfUU0494ge4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWFjYjRhOC03ODA0LTQ1MjYtODRkMi04NjliOTFhNjcxOWQvMC85RURFNjREQkM0 MDk4ODgxRjExQjcwMTIzREY1MTREMzhGNzg4MUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4Rjc4 ODFFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5YWNiNGE4LTc4MDQtNDUyNi04 NGQyLTg2OWI5MWE2NzE5ZC8wLzMyMzAzMjJlMzczMjJlMzIzMDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMxMzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpIyjANBgkqhkiG 9w0BAQsFAAOCAQEAujEg0pzo7i8HsDxSokqSpH1+kyIa5zNyvypD6f8o6z07rCdG G9FbzHlERHNns0FS+q+8FSpAojMj7y7f7328mEuifdkUVdPe8vllv92lOD2wRoht OAgS0aUn+pLPaRw4QH+Pl9mPzqtquGRtoPytvJqppPK23mmx501e0Wlg0AQ9CKGj uHPyI5IiWSPbxWJrqebRQrIyLgQnZgORNe8v+Fw5YKGaia2FRkdX4xZWCcw4KZs9 0yyu+H2eVbcvEMzGS9fQh0v9KCu/jCsDn1jLzGUMvgeXh5zW1z7P2vKLcFV5vx8b vQ8Rm32Fd1aYW2c7IW7I9a8VsQpcQkorb1+0Hg== -----END CERTIFICATE-----Generated at Sat Jun 7 12:29:48 2025 by rpki-client