$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36342e302f32342d3234203d3e203137363731.roa File: 3230322e34372e36342e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: GQqimsS9pYpCliIJp8Ur2/BXJ/lrvG/GIXvKRIWHVVE= Subject key identifier: 09:A2:2A:4B:8F:C1:7A:DA:8D:FC:EC:A4:37:AB:22:81:9E:88:B8:D2 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 5EEDD222391C96BBA3773DEC0181AA7FF2629B48 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36342e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:06 +0000 ROA not before: Sat 17 May 2025 11:57:06 +0000 ROA not after: Sat 16 May 2026 12:02:06 +0000 asID: 17671 IP address blocks: 202.47.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ed:d2:22:39:1c:96:bb:a3:77:3d:ec:01:81:aa:7f:f2:62:9b:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:06 2025 GMT Not After : May 16 12:02:06 2026 GMT Subject: CN=09A22A4B8FC17ADA8DFCECA437AB22819E88B8D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f5:72:3c:06:41:bb:7c:78:2d:8a:b8:98:58: a4:20:88:69:55:39:09:50:cd:8f:81:ae:19:f9:79: bc:2b:64:88:51:ed:00:9d:8b:47:a9:a5:16:23:aa: 2d:bb:46:7b:90:00:3a:23:af:99:22:fd:57:06:27: 23:4c:4c:cc:6f:fd:f4:7c:1e:14:bf:9a:d4:72:aa: 6d:a6:53:42:4a:d2:84:eb:45:36:97:52:3b:3d:89: f6:b4:95:a6:d7:07:55:c0:1b:e2:73:36:13:57:cb: 3f:07:73:78:5a:cf:92:ff:73:7d:e6:32:08:de:96: 69:c6:82:63:bb:0e:48:02:35:9e:51:4d:b0:2f:1f: 0b:7b:f1:88:48:bf:b9:e0:08:6e:58:68:09:b9:89: 1d:9c:9e:2f:a8:93:3d:c0:26:8d:dd:c5:e3:64:a3: 9f:41:ea:5a:bb:49:ad:53:7c:a5:04:e9:b6:de:0e: 65:48:56:fe:d6:e9:c8:0c:d2:b6:95:e9:d4:f3:8d: 41:28:00:8e:29:30:c9:1c:78:92:fa:1f:10:b5:51: d4:c4:a9:ff:70:2a:fa:d8:29:fd:3d:62:aa:82:a2: 45:99:3b:d7:c4:b4:0e:56:22:dd:82:78:f9:67:24: 15:7d:7f:5e:fe:86:f1:53:a6:b6:f6:b6:85:70:b0: 8e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:A2:2A:4B:8F:C1:7A:DA:8D:FC:EC:A4:37:AB:22:81:9E:88:B8:D2 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36342e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.64.0/24 Signature Algorithm: sha256WithRSAEncryption ba:02:14:65:a9:40:76:a3:f0:7a:9c:6b:a8:59:21:6e:46:6f: f0:dc:24:8a:69:6d:fc:3d:36:f2:84:e2:2e:9c:5e:33:99:97: b7:9b:bc:93:7e:e2:a3:87:28:3b:d4:29:ac:45:8a:4e:c4:36: de:78:76:89:ae:22:46:aa:12:c3:77:2c:35:22:80:25:e5:4c: 7e:b0:62:26:ac:7d:31:1f:d0:1b:2f:21:38:13:e1:9e:41:09: bc:bf:0e:2c:b8:98:50:a0:d8:fa:57:f5:72:6c:28:30:fc:cb: da:8a:0f:95:fc:94:4e:27:a4:d3:75:e7:fd:6d:3c:6b:04:8b: 19:85:e6:0b:1f:cd:ed:fd:d2:a2:eb:2d:f7:6e:a2:fb:62:4c: 06:8e:93:0d:6c:d4:a1:a7:e0:7f:ca:77:6d:2d:38:33:bd:83: 44:17:55:0b:e6:bf:90:cb:8e:f8:e2:a7:1f:99:44:d4:37:d5: 1b:44:81:17:fc:c9:e1:99:9a:6d:86:1d:78:30:8b:1c:77:5f: b6:40:93:3d:48:1b:54:e9:88:b5:6e:ea:e2:29:45:7a:22:9c: cf:b8:7f:9b:53:fa:0a:dd:ad:ec:6d:21:1e:fc:a7:19:1c:65: 1d:f7:b0:f6:68:e8:a6:e9:cb:ce:bb:b0:f4:d2:a7:0b:d8:5d: 07:54:ac:aa -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXu3SIjkclrujdz3sAYGqf/Jim0gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MDZaFw0yNjA1MTYxMjAyMDZaMDMxMTAvBgNV BAMTKDA5QTIyQTRCOEZDMTdBREE4REZDRUNBNDM3QUIyMjgxOUU4OEI4RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS9XI8BkG7fHgtiriYWKQgiGlV OQlQzY+Brhn5ebwrZIhR7QCdi0eppRYjqi27RnuQADojr5ki/VcGJyNMTMxv/fR8 HhS/mtRyqm2mU0JK0oTrRTaXUjs9ifa0labXB1XAG+JzNhNXyz8Hc3haz5L/c33m MgjelmnGgmO7DkgCNZ5RTbAvHwt78YhIv7ngCG5YaAm5iR2cni+okz3AJo3dxeNk o59B6lq7Sa1TfKUE6bbeDmVIVv7W6cgM0raV6dTzjUEoAI4pMMkceJL6HxC1UdTE qf9wKvrYKf09YqqCokWZO9fEtA5WIt2CePlnJBV9f17+hvFTprb2toVwsI5NAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUCaIqS4/BetqN/OykN6sigZ6IuNIwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL0AwDQYJKoZIhvcN AQELBQADggEBALoCFGWpQHaj8Hqca6hZIW5Gb/DcJIppbfw9NvKE4i6cXjOZl7eb vJN+4qOHKDvUKaxFik7ENt54domuIkaqEsN3LDUigCXlTH6wYiasfTEf0BsvITgT 4Z5BCby/Diy4mFCg2PpX9XJsKDD8y9qKD5X8lE4npNN15/1tPGsEixmF5gsfze39 0qLrLfduovtiTAaOkw1s1KGn4H/Kd20tODO9g0QXVQvmv5DLjvjipx+ZRNQ31RtE gRf8yeGZmm2GHXgwixx3X7ZAkz1IG1TpiLVu6uIpRXoinM+4f5tT+grdrextIR78 pxkcZR33sPZo6Kbpy867sPTSpwvYXQdUrKo= -----END CERTIFICATE-----Generated at Thu Jun 5 18:36:06 2025 by rpki-client