$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36362e302f32342d3234203d3e203137363731.roa File: 3230322e34372e36362e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: 17fEqri4JUAUXxgdu/DILoU+kG4T3VkhdKb44stMtbs= Subject key identifier: F9:B9:F4:79:01:3A:7A:16:2F:F5:23:97:16:BA:77:31:EF:3D:5E:F0 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 060159041D6ED51F04BC22FB813FF5E267FB094F Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36362e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:06 +0000 ROA not before: Sat 17 May 2025 11:57:06 +0000 ROA not after: Sat 16 May 2026 12:02:06 +0000 asID: 17671 IP address blocks: 202.47.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:01:59:04:1d:6e:d5:1f:04:bc:22:fb:81:3f:f5:e2:67:fb:09:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:06 2025 GMT Not After : May 16 12:02:06 2026 GMT Subject: CN=F9B9F479013A7A162FF5239716BA7731EF3D5EF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:af:59:49:c9:b7:0a:cb:7b:05:0e:4d:0c:60: 47:b9:77:a8:ed:0a:8e:e1:57:ff:c8:31:e5:8a:86: dd:ab:08:2a:b5:e5:fe:06:6c:40:28:22:e6:53:b6: 4f:06:31:42:42:b5:86:d0:07:42:e8:ae:c5:d9:c2: a8:eb:f8:7b:59:0d:d6:cd:12:25:55:d3:11:fc:41: c6:61:e5:cb:78:bc:3c:65:a4:cf:a9:c0:7f:54:b9: 6f:a1:f3:99:c2:5b:4c:18:f9:f1:4d:99:29:dd:54: 35:13:6b:a5:54:8d:d0:60:a4:dc:d6:c2:cf:35:0d: 22:a1:09:ac:81:9e:ba:49:86:8c:4b:d3:6f:97:f7: 97:be:58:73:44:94:0b:14:59:53:56:b0:8d:b2:63: 1c:9e:69:16:7c:d7:7f:11:0b:a1:59:d3:64:a7:cf: c3:59:f1:00:06:12:2b:c5:f9:0e:ed:90:14:91:41: 6a:2b:48:f3:10:fc:c6:16:fd:2f:48:c6:e7:14:f1: 1f:ec:14:5b:85:82:b5:a7:6d:84:80:e4:8e:ff:82: d2:cb:08:84:95:b6:9a:eb:6a:8b:77:0b:ee:6b:df: 4d:e0:01:ed:41:bc:6c:0b:87:f3:29:9d:6c:4a:fc: e0:b0:29:a3:67:5d:79:46:06:40:36:72:d4:89:06: d9:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B9:F4:79:01:3A:7A:16:2F:F5:23:97:16:BA:77:31:EF:3D:5E:F0 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36362e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.66.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:45:9d:31:ef:36:37:7c:ee:3a:9d:3d:41:af:f6:bf:d7:2b: 6b:c6:1b:38:c4:fa:c8:78:3d:9a:12:a0:60:71:b3:35:97:0e: cc:18:bb:90:8f:73:f8:be:04:8c:7e:3c:fb:4e:af:99:82:fb: 00:70:cf:cf:41:a8:01:79:fe:ff:26:02:f6:60:be:1c:25:89: 8b:9b:8b:ea:7a:47:d8:17:1f:c5:80:d6:fe:96:b3:e0:4a:75: 52:25:d0:35:06:42:88:50:54:b0:45:a4:36:e6:fe:85:98:a9: c1:62:a8:1b:e5:4b:8f:59:be:82:6c:57:4a:eb:56:5f:bf:3c: fd:94:a7:5c:92:ae:92:02:ce:f0:6d:47:2e:e9:00:bb:11:cc: 2b:ff:53:62:c7:ce:06:9f:9a:d3:f4:e9:d7:1d:9a:42:9b:7d: 95:63:2f:1a:eb:51:95:37:fc:b5:1b:89:88:45:e6:ad:5e:ef: b0:53:94:e4:77:10:75:f6:fa:4f:bb:fe:44:94:38:42:21:e7: 28:ee:59:ae:e2:84:1e:1f:9b:36:94:db:77:6c:60:60:73:8f: da:b6:cd:12:10:ca:0a:70:11:4c:29:1c:57:d8:b3:16:e7:bb: 82:57:ab:39:e2:a1:ec:01:31:30:1d:7c:88:a6:25:9c:45:21: b4:48:e8:10 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBgFZBB1u1R8EvCL7gT/14mf7CU8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MDZaFw0yNjA1MTYxMjAyMDZaMDMxMTAvBgNV BAMTKEY5QjlGNDc5MDEzQTdBMTYyRkY1MjM5NzE2QkE3NzMxRUYzRDVFRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOr1lJybcKy3sFDk0MYEe5d6jt Co7hV//IMeWKht2rCCq15f4GbEAoIuZTtk8GMUJCtYbQB0LorsXZwqjr+HtZDdbN EiVV0xH8QcZh5ct4vDxlpM+pwH9UuW+h85nCW0wY+fFNmSndVDUTa6VUjdBgpNzW ws81DSKhCayBnrpJhoxL02+X95e+WHNElAsUWVNWsI2yYxyeaRZ8138RC6FZ02Sn z8NZ8QAGEivF+Q7tkBSRQWorSPMQ/MYW/S9IxucU8R/sFFuFgrWnbYSA5I7/gtLL CISVtprraot3C+5r303gAe1BvGwLh/MpnWxK/OCwKaNnXXlGBkA2ctSJBtkfAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU+bn0eQE6ehYv9SOXFrp3Me89XvAwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL0IwDQYJKoZIhvcN AQELBQADggEBAD1FnTHvNjd87jqdPUGv9r/XK2vGGzjE+sh4PZoSoGBxszWXDswY u5CPc/i+BIx+PPtOr5mC+wBwz89BqAF5/v8mAvZgvhwliYubi+p6R9gXH8WA1v6W s+BKdVIl0DUGQohQVLBFpDbm/oWYqcFiqBvlS49ZvoJsV0rrVl+/PP2Up1ySrpIC zvBtRy7pALsRzCv/U2LHzgafmtP06dcdmkKbfZVjLxrrUZU3/LUbiYhF5q1e77BT lOR3EHX2+k+7/kSUOEIh5yjuWa7ihB4fmzaU23dsYGBzj9q2zRIQygpwEUwpHFfY sxbnu4JXqznioewBMTAdfIimJZxFIbRI6BA= -----END CERTIFICATE-----Generated at Thu Jun 5 18:40:02 2025 by rpki-client