$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36342e302f32302d3234203d3e203137363731.roa File: 3230322e34372e36342e302f32302d3234203d3e203137363731.roa (raw, json) Hash identifier: KkDsIIEEW5r+h28jqzbrp+5dJNhmjw3WNWLTtPmkuoc= Subject key identifier: FA:A4:9B:30:C2:BD:87:88:06:37:63:24:D8:20:98:16:49:DD:B7:BF Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 4452E81C1CFEF1AA925C89723C3779996896C10C Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36342e302f32302d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 10:02:23 +0000 ROA not before: Sat 17 May 2025 09:57:23 +0000 ROA not after: Sat 16 May 2026 10:02:23 +0000 asID: 17671 IP address blocks: 202.47.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:52:e8:1c:1c:fe:f1:aa:92:5c:89:72:3c:37:79:99:68:96:c1:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 09:57:23 2025 GMT Not After : May 16 10:02:23 2026 GMT Subject: CN=FAA49B30C2BD878806376324D820981649DDB7BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c0:9e:aa:f4:31:f4:8c:74:77:6c:63:23:9c: 57:b6:1c:3e:e2:c5:41:a2:b9:ee:6e:a8:ec:24:29: 22:96:f0:49:27:4f:e5:87:08:1f:4a:6f:2f:12:68: fa:78:a1:5a:c3:a9:e0:d5:cd:a3:12:0e:c1:9a:96: 52:ab:5f:ec:aa:f3:c9:cd:a4:3c:d3:b5:68:d4:23: 06:78:cf:c5:7b:dc:df:cb:d9:94:fd:52:a3:a8:76: 78:24:65:60:50:e9:27:98:56:2b:fa:09:5f:aa:1f: 73:78:78:d6:67:2c:b6:91:d9:e4:9a:27:bc:82:fe: 5f:6c:9b:d4:31:bb:bf:af:4d:3e:f0:32:d6:a3:41: 94:08:a3:5b:b5:6b:88:49:5c:06:1c:f6:d7:48:a4: de:c5:fd:17:d0:78:3a:af:4a:00:c1:fe:22:bc:80: ed:47:d0:11:4e:a2:8e:4a:c9:91:d0:e9:7a:d6:95: 63:13:de:08:42:b9:93:b4:68:82:d3:d1:4a:c0:9e: 6d:93:6e:6d:ee:02:08:12:10:2a:1f:c0:bb:d4:e8: 1b:ef:dc:5b:ed:49:58:86:40:4b:c0:d2:f5:be:99: 2f:78:bc:19:65:fe:d5:fe:eb:1b:3a:52:63:3b:36: 55:ee:80:3d:58:89:60:5f:dd:c6:aa:2e:55:5d:36: a2:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:A4:9B:30:C2:BD:87:88:06:37:63:24:D8:20:98:16:49:DD:B7:BF X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36342e302f32302d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.64.0/20 Signature Algorithm: sha256WithRSAEncryption 74:cd:aa:a9:30:30:bf:af:ad:5d:a4:2b:5f:dc:e2:46:8f:61: 0c:57:d9:a1:8e:ce:84:91:3f:2f:74:95:74:04:68:6b:b4:e4: 7f:a8:70:fb:13:69:37:33:30:92:22:7f:6f:5e:1b:10:d5:ef: 6f:b0:42:c5:9e:fe:2a:c9:8a:eb:95:a6:d7:e6:fa:69:11:9f: 8e:42:5d:97:db:01:70:00:65:1c:53:14:05:f7:9f:8a:f5:81: c1:3e:d5:33:18:ff:f0:3a:82:ae:a9:9e:07:3c:a3:3b:74:41: ce:0f:34:36:cb:25:6f:fe:d3:0f:28:58:70:a4:a1:01:65:61: 05:3c:f2:c4:7d:6e:64:39:ca:c2:e4:7b:7e:40:0d:ce:ff:03: ec:1b:60:69:9e:2b:a9:e3:58:07:8f:79:79:38:b7:b0:18:8d: 3e:a2:92:a8:e5:2e:a4:8a:e4:b2:6b:aa:ef:d1:f5:e2:57:90: d7:a5:4c:e7:be:b7:90:69:89:21:97:2e:f0:b0:2f:12:24:7a: e7:d1:fb:81:b0:ab:c2:d4:e5:e5:85:1b:e2:91:e4:ff:18:92: 12:df:6a:94:c8:92:74:10:60:52:cb:34:4b:f3:d2:0d:8b:5a: 10:04:cd:d7:20:55:4c:b8:53:cf:e4:3f:8f:65:76:c2:64:35: 3f:f9:5f:8d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIURFLoHBz+8aqSXIlyPDd5mWiWwQwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcwOTU3MjNaFw0yNjA1MTYxMDAyMjNaMDMxMTAvBgNV BAMTKEZBQTQ5QjMwQzJCRDg3ODgwNjM3NjMyNEQ4MjA5ODE2NDlEREI3QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjwJ6q9DH0jHR3bGMjnFe2HD7i xUGiue5uqOwkKSKW8EknT+WHCB9Kby8SaPp4oVrDqeDVzaMSDsGallKrX+yq88nN pDzTtWjUIwZ4z8V73N/L2ZT9UqOodngkZWBQ6SeYViv6CV+qH3N4eNZnLLaR2eSa J7yC/l9sm9Qxu7+vTT7wMtajQZQIo1u1a4hJXAYc9tdIpN7F/RfQeDqvSgDB/iK8 gO1H0BFOoo5KyZHQ6XrWlWMT3ghCuZO0aILT0UrAnm2Tbm3uAggSECofwLvU6Bvv 3FvtSViGQEvA0vW+mS94vBll/tX+6xs6UmM7NlXugD1YiWBf3caqLlVdNqJzAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU+qSbMMK9h4gGN2Mk2CCYFkndt78wHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzNDJlMzAyZjMyMzAy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKL0AwDQYJKoZIhvcN AQELBQADggEBAHTNqqkwML+vrV2kK1/c4kaPYQxX2aGOzoSRPy90lXQEaGu05H+o cPsTaTczMJIif29eGxDV72+wQsWe/irJiuuVptfm+mkRn45CXZfbAXAAZRxTFAX3 n4r1gcE+1TMY//A6gq6pngc8ozt0Qc4PNDbLJW/+0w8oWHCkoQFlYQU88sR9bmQ5 ysLke35ADc7/A+wbYGmeK6njWAePeXk4t7AYjT6ikqjlLqSK5LJrqu/R9eJXkNel TOe+t5BpiSGXLvCwLxIkeufR+4Gwq8LU5eWFG+KR5P8YkhLfapTIknQQYFLLNEvz 0g2LWhAEzdcgVUy4U8/kP49ldsJkNT/5X40= -----END CERTIFICATE-----Generated at Thu Jun 5 18:32:53 2025 by rpki-client