$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36352e302f32342d3234203d3e203137363731.roa File: 3230322e34372e36352e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: pMpCCe1Hy4mKrMAoTNVpPCTdWuHWThvt6WKFojySHE4= Subject key identifier: D7:87:7E:DD:8F:98:9F:EB:12:91:D7:A8:D7:10:87:FB:D2:5F:BE:9B Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 4C959F5F48BC0B3911F780FAF2A931675E36607A Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36352e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:09 +0000 ROA not before: Sat 17 May 2025 11:57:09 +0000 ROA not after: Sat 16 May 2026 12:02:09 +0000 asID: 17671 IP address blocks: 202.47.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:95:9f:5f:48:bc:0b:39:11:f7:80:fa:f2:a9:31:67:5e:36:60:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:09 2025 GMT Not After : May 16 12:02:09 2026 GMT Subject: CN=D7877EDD8F989FEB1291D7A8D71087FBD25FBE9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b4:d8:94:c2:03:68:c1:96:f2:c7:b2:a9:56: 9e:0b:98:79:7b:c1:80:7f:61:72:e8:79:0d:43:0b: af:7c:a5:78:1f:0a:59:31:02:e2:f9:48:b8:95:61: 0e:5c:40:b9:1f:c8:58:dd:12:5f:84:50:c6:78:1f: 40:59:8e:b9:12:46:e9:18:05:1e:e4:19:58:3d:1e: 6a:ea:47:cf:96:e4:21:27:7e:36:73:e0:ff:85:a7: fa:92:d6:08:14:24:03:0a:81:49:cb:b8:fe:0b:1f: 5b:ea:79:6a:40:c4:77:f5:d8:83:20:af:60:69:a9: fd:67:fa:f8:5f:34:b8:8a:b9:0d:53:1e:b0:59:e3: c8:5f:90:be:50:11:61:98:a3:6c:98:65:58:05:b4: 8b:07:b7:63:f6:0d:d8:97:04:3d:dc:51:34:cc:da: aa:56:a1:d0:16:c3:cb:33:98:ba:85:94:1d:bf:a2: 12:af:5b:9b:a5:0f:2e:32:83:a4:06:dc:56:52:8b: be:19:ad:7d:6e:cc:5c:a8:92:1e:44:33:ad:b5:62: db:df:b0:05:06:38:66:c6:1d:f5:78:23:97:cc:a0: c2:16:0e:77:5f:d8:5d:a7:94:8e:16:d5:52:b6:79: 10:81:63:64:aa:69:fa:2e:91:9f:97:fe:ac:23:ac: a5:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:87:7E:DD:8F:98:9F:EB:12:91:D7:A8:D7:10:87:FB:D2:5F:BE:9B X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36352e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.65.0/24 Signature Algorithm: sha256WithRSAEncryption af:c3:60:75:3c:fc:9c:9a:70:f6:cb:49:ce:25:0f:ef:87:10: c7:72:9a:b5:49:df:d7:c6:d2:b8:67:79:9c:81:0e:b5:44:12: 9a:d5:0b:91:db:59:27:fe:26:6b:09:17:49:f6:c6:5a:f9:98: c4:59:ed:c4:75:0c:1a:83:ca:d2:bd:a2:8b:5c:cb:1e:b4:62: 64:67:d4:c9:4c:06:a0:fe:12:a5:76:5e:89:ac:6e:c0:fd:11: fc:0a:4e:8d:3e:c2:55:32:f3:0e:02:d8:51:96:22:0f:60:7d: c0:cf:47:2c:e8:dd:d0:80:d7:f5:bb:92:26:bb:55:30:4b:f1: ed:99:e1:1f:c3:60:99:94:25:c6:f0:da:71:a4:1e:64:97:84: 6c:03:1a:9f:9d:98:d3:42:62:14:23:a1:27:37:75:61:8b:ca: 9b:d2:28:df:fd:51:c8:c5:c1:9f:89:09:be:49:75:5e:91:20: ce:12:08:83:99:9a:a7:1d:16:e8:c2:71:03:69:91:2d:c3:1e: a3:a0:dd:6e:1d:16:6d:7e:c5:6f:f0:ec:d1:cc:31:24:cb:0d: 53:ee:a6:f2:b1:53:3e:58:b9:d8:bd:45:c1:15:98:5f:8b:8f: 52:32:8b:2a:56:fa:4d:a3:07:df:ae:b7:a3:85:44:3f:e1:43: 17:78:f7:b1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTJWfX0i8CzkR94D68qkxZ142YHowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MDlaFw0yNjA1MTYxMjAyMDlaMDMxMTAvBgNV BAMTKEQ3ODc3RUREOEY5ODlGRUIxMjkxRDdBOEQ3MTA4N0ZCRDI1RkJFOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDetNiUwgNowZbyx7KpVp4LmHl7 wYB/YXLoeQ1DC698pXgfClkxAuL5SLiVYQ5cQLkfyFjdEl+EUMZ4H0BZjrkSRukY BR7kGVg9HmrqR8+W5CEnfjZz4P+Fp/qS1ggUJAMKgUnLuP4LH1vqeWpAxHf12IMg r2Bpqf1n+vhfNLiKuQ1THrBZ48hfkL5QEWGYo2yYZVgFtIsHt2P2DdiXBD3cUTTM 2qpWodAWw8szmLqFlB2/ohKvW5ulDy4yg6QG3FZSi74ZrX1uzFyokh5EM621Ytvf sAUGOGbGHfV4I5fMoMIWDndf2F2nlI4W1VK2eRCBY2SqafoukZ+X/qwjrKU7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU14d+3Y+Yn+sSkdeo1xCH+9JfvpswHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL0EwDQYJKoZIhvcN AQELBQADggEBAK/DYHU8/JyacPbLSc4lD++HEMdymrVJ39fG0rhneZyBDrVEEprV C5HbWSf+JmsJF0n2xlr5mMRZ7cR1DBqDytK9ootcyx60YmRn1MlMBqD+EqV2Xoms bsD9EfwKTo0+wlUy8w4C2FGWIg9gfcDPRyzo3dCA1/W7kia7VTBL8e2Z4R/DYJmU Jcbw2nGkHmSXhGwDGp+dmNNCYhQjoSc3dWGLypvSKN/9UcjFwZ+JCb5JdV6RIM4S CIOZmqcdFujCcQNpkS3DHqOg3W4dFm1+xW/w7NHMMSTLDVPupvKxUz5Yudi9RcEV mF+Lj1IyiypW+k2jB9+ut6OFRD/hQxd497E= -----END CERTIFICATE-----Generated at Sun Jun 8 12:47:52 2025 by rpki-client