$ rpki-client -vvf repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230342e302f32342d3234203d3e203538353532.roa File: 3230322e37322e3230342e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: IOVVBORu5O/pgeUVzl7VawBTg7EM0DqmgCa3hNVO+Xc= Subject key identifier: FE:7E:BB:ED:F9:76:F4:6F:42:27:36:39:0E:4F:11:6B:F5:EF:34:AF Certificate issuer: /CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Certificate serial: 2947CB46FBD35FDDD0A1627F0AEFF00F78FF7A65 Authority key identifier: 9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230342e302f32342d3234203d3e203538353532.roa Signing time: Mon 02 Jun 2025 02:02:54 +0000 ROA not before: Mon 02 Jun 2025 01:57:54 +0000 ROA not after: Mon 01 Jun 2026 02:02:54 +0000 asID: 58552 IP address blocks: 202.72.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:11:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:47:cb:46:fb:d3:5f:dd:d0:a1:62:7f:0a:ef:f0:0f:78:ff:7a:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Validity Not Before: Jun 2 01:57:54 2025 GMT Not After : Jun 1 02:02:54 2026 GMT Subject: CN=FE7EBBEDF976F46F422736390E4F116BF5EF34AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4d:20:76:10:d0:ec:d0:60:b2:3b:21:81:ee: 18:e9:49:6f:dc:72:46:06:41:f6:f7:01:2f:b6:57: 19:3d:b3:0e:9b:ab:f2:a1:30:4c:41:1b:79:03:19: 76:cc:af:a7:9e:93:a2:c3:53:1f:7c:0f:4f:37:06: 9f:52:2c:90:67:8c:3e:8c:bd:60:ce:6d:f8:0f:c8: 5e:e2:09:3d:50:d9:53:12:16:70:9d:68:f8:f3:2d: fc:16:d5:84:45:bf:b3:0b:25:b3:2d:bd:4d:11:b7: 61:66:8e:7d:7c:90:33:b7:d7:2a:1c:44:2d:51:b6: d8:7f:dc:a6:81:d1:93:f8:34:6e:fe:ab:e5:20:0c: 6c:6e:c8:6d:7a:61:68:1a:b3:98:4d:77:22:0e:ba: 1a:f8:f5:b6:c9:2f:89:78:a0:86:e5:5a:fc:ff:64: 11:6e:64:b5:b5:a7:a0:d0:73:59:26:b5:8b:12:9a: 80:d4:73:f1:51:90:c4:72:4a:ca:20:c8:6c:80:97: 00:f5:32:77:20:49:79:f0:a7:d1:1f:35:0e:60:98: 43:a8:84:23:2c:07:96:fa:a9:60:e3:db:c7:c2:f7: c4:f0:c0:bf:fa:36:8e:29:27:6c:80:b2:ae:01:0f: a9:ec:d3:e7:c9:05:de:db:14:ea:9f:e2:8d:d1:91: 97:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:7E:BB:ED:F9:76:F4:6F:42:27:36:39:0E:4F:11:6B:F5:EF:34:AF X509v3 Authority Key Identifier: keyid:9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230342e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.72.204.0/24 Signature Algorithm: sha256WithRSAEncryption 40:08:ef:7d:77:4e:1b:95:ad:96:80:5e:42:86:d7:2a:8b:2e: e6:8b:6a:4f:c2:fc:b9:ea:9d:65:72:c3:f7:5a:b9:ce:f7:77: 3b:f4:2e:66:49:59:a7:66:99:5e:99:a1:2a:a7:1d:50:88:c6: 55:f4:83:ec:78:8e:18:c5:e5:f5:64:72:69:dc:b5:a7:d6:54: 83:6a:fc:60:d0:53:84:7a:c3:9d:84:01:e3:4d:17:7b:f7:d8: da:25:72:5d:ca:4b:a9:9c:c2:e8:04:5b:f0:40:b3:16:0e:56: f0:db:45:c8:dc:42:5d:1a:c0:0f:60:33:af:9f:60:72:bf:9d: 91:e6:b8:57:32:97:30:1e:5d:8b:a9:6a:bc:bf:9e:4d:ec:bb: 49:62:0d:2e:e1:76:00:51:b4:fd:bf:82:0a:b7:d9:c1:0b:5e: 48:0d:59:ef:6b:42:e7:40:a1:d6:30:6f:ca:16:90:8d:4c:13: af:de:06:cf:cc:c0:d6:69:ba:74:ff:b0:c0:e6:bc:25:e8:cc: 3c:57:e2:3f:dd:a9:f9:f9:8d:80:34:17:cc:84:02:74:bc:94: 24:b1:37:9e:e3:b3:00:6a:99:74:d9:de:e3:f5:ab:71:36:d3: 54:4a:4f:43:ef:f2:57:0f:9d:62:7c:e2:9b:56:45:b1:70:c9: 78:dd:2f:79 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKUfLRvvTX93QoWJ/Cu/wD3j/emUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4 Rjc4ODFFRTAeFw0yNTA2MDIwMTU3NTRaFw0yNjA2MDEwMjAyNTRaMDMxMTAvBgNV BAMTKEZFN0VCQkVERjk3NkY0NkY0MjI3MzYzOTBFNEYxMTZCRjVFRjM0QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyTSB2ENDs0GCyOyGB7hjpSW/c ckYGQfb3AS+2Vxk9sw6bq/KhMExBG3kDGXbMr6eek6LDUx98D083Bp9SLJBnjD6M vWDObfgPyF7iCT1Q2VMSFnCdaPjzLfwW1YRFv7MLJbMtvU0Rt2Fmjn18kDO31yoc RC1Rtth/3KaB0ZP4NG7+q+UgDGxuyG16YWgas5hNdyIOuhr49bbJL4l4oIblWvz/ ZBFuZLW1p6DQc1kmtYsSmoDUc/FRkMRySsogyGyAlwD1MncgSXnwp9EfNQ5gmEOo hCMsB5b6qWDj28fC98TwwL/6No4pJ2yAsq4BD6ns0+fJBd7bFOqf4o3RkZdFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/n677fl29G9CJzY5Dk8Ra/XvNK8wHwYDVR0j BBgwFoAUnt5k28QJiIHxG3ASPfUU0494ge4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWFjYjRhOC03ODA0LTQ1MjYtODRkMi04NjliOTFhNjcxOWQvMC85RURFNjREQkM0 MDk4ODgxRjExQjcwMTIzREY1MTREMzhGNzg4MUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4Rjc4 ODFFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5YWNiNGE4LTc4MDQtNDUyNi04 NGQyLTg2OWI5MWE2NzE5ZC8wLzMyMzAzMjJlMzczMjJlMzIzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpIzDANBgkqhkiG 9w0BAQsFAAOCAQEAQAjvfXdOG5WtloBeQobXKosu5otqT8L8ueqdZXLD91q5zvd3 O/QuZklZp2aZXpmhKqcdUIjGVfSD7HiOGMXl9WRyady1p9ZUg2r8YNBThHrDnYQB 400Xe/fY2iVyXcpLqZzC6ARb8ECzFg5W8NtFyNxCXRrAD2Azr59gcr+dkea4VzKX MB5di6lqvL+eTey7SWINLuF2AFG0/b+CCrfZwQteSA1Z72tC50Ch1jBvyhaQjUwT r94Gz8zA1mm6dP+wwOa8JejMPFfiP92p+fmNgDQXzIQCdLyUJLE3nuOzAGqZdNne 4/WrcTbTVEpPQ+/yVw+dYnzim1ZFsXDJeN0veQ== -----END CERTIFICATE-----Generated at Fri Jun 6 16:47:15 2025 by rpki-client