$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36382e302f32342d3234203d3e203137363731.roa File: 3230322e34372e36382e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: qGTNSBg3jOaN8YlbKiTzvAp6zwDO016zGRm/3lEYpS8= Subject key identifier: AA:4B:25:E7:53:9B:ED:85:7E:FF:60:FF:9C:56:B6:AC:7C:D8:14:1F Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 397F327601EC28F4534263338EA37C6D8C5EE82B Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36382e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 11:02:27 +0000 ROA not before: Sat 17 May 2025 10:57:27 +0000 ROA not after: Sat 16 May 2026 11:02:27 +0000 asID: 17671 IP address blocks: 202.47.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 02:39:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:7f:32:76:01:ec:28:f4:53:42:63:33:8e:a3:7c:6d:8c:5e:e8:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 10:57:27 2025 GMT Not After : May 16 11:02:27 2026 GMT Subject: CN=AA4B25E7539BED857EFF60FF9C56B6AC7CD8141F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ab:65:0e:26:d9:7d:c6:f6:39:aa:09:e2:34: c4:be:ee:3f:59:17:5d:28:53:94:33:a3:f4:08:38: 74:e5:4b:39:8b:c0:9a:e3:6c:19:e9:14:8b:fd:69: f3:c8:0e:01:df:7d:76:3a:7f:13:ab:b0:f9:cf:c6: 20:a3:f1:e1:c5:e9:c8:8c:c0:0c:4f:ca:f9:5b:60: 82:aa:df:d2:fc:5b:61:c4:7d:b0:3c:b3:bd:82:b6: 93:d1:c2:f4:58:bc:b5:8d:24:71:59:bb:e4:07:8d: e6:ba:e7:d5:db:95:99:80:42:36:69:9e:f1:8d:9f: ed:9a:69:3b:bf:a6:e5:93:ad:28:67:70:f2:92:ea: 11:2a:60:26:03:6a:46:96:39:7a:b4:63:6c:e9:3b: 07:93:71:98:66:b1:80:dc:d1:00:74:54:35:5c:ea: e1:db:7f:fe:61:df:a4:ee:2a:cc:4b:8a:0f:b4:24: 87:22:70:89:63:46:d4:8a:dd:7f:7e:bc:46:00:49: 17:51:1a:ec:78:65:95:b1:a7:da:67:96:63:2e:f4: 92:11:98:43:c2:f7:e2:c9:0a:c9:52:07:4c:a1:67: aa:c7:dc:b7:32:84:81:ab:a4:27:d4:bd:c0:33:f8: 58:ea:c7:25:39:e7:f7:48:fe:8c:31:15:a4:9e:14: f6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:4B:25:E7:53:9B:ED:85:7E:FF:60:FF:9C:56:B6:AC:7C:D8:14:1F X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36382e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.68.0/24 Signature Algorithm: sha256WithRSAEncryption 42:cb:6f:fa:5c:49:f8:87:cf:cc:80:54:2f:83:ea:84:69:ad: 6e:0c:67:65:a8:15:b8:a6:ad:e8:19:3c:e0:e1:08:b5:c2:17: 43:ad:c0:07:6f:d2:6f:e8:4b:ef:b1:53:0a:36:4a:39:83:64: ab:c2:c6:c7:67:d6:09:98:3a:64:b6:cd:9d:18:a5:0d:82:3c: bf:ff:bc:48:2e:9c:b8:40:ff:00:50:80:64:ef:0f:a7:57:45: 68:1c:3e:2f:bb:f0:58:13:be:57:39:28:8b:93:bc:37:ac:9a: bb:33:d7:5d:70:0a:06:5c:ef:7d:a7:62:0c:4a:96:e2:06:6a: cc:28:f3:5d:c3:ea:75:70:df:63:42:ed:b7:94:d2:5d:68:20: 4b:de:67:ca:8e:fd:2a:61:c3:a8:37:87:a3:d4:d0:47:ef:7a: 50:58:83:3f:4f:1d:03:77:7b:c9:8c:29:11:73:81:59:4f:07: b3:b6:30:4e:2c:e2:b9:67:cf:98:b0:13:11:50:c7:d8:03:5a: 8c:9c:d5:f7:f7:8d:b3:3b:09:f3:03:25:df:61:60:bd:20:31: 67:7c:7b:3f:f3:fe:cf:a9:1c:c4:a3:ea:b2:ad:b9:71:f8:06: 0c:7d:23:d2:0e:d8:dc:df:a8:9f:f2:ff:5d:c0:99:71:01:ae: bb:ce:dc:21 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOX8ydgHsKPRTQmMzjqN8bYxe6CswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMDU3MjdaFw0yNjA1MTYxMTAyMjdaMDMxMTAvBgNV BAMTKEFBNEIyNUU3NTM5QkVEODU3RUZGNjBGRjlDNTZCNkFDN0NEODE0MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3q2UOJtl9xvY5qgniNMS+7j9Z F10oU5Qzo/QIOHTlSzmLwJrjbBnpFIv9afPIDgHffXY6fxOrsPnPxiCj8eHF6ciM wAxPyvlbYIKq39L8W2HEfbA8s72CtpPRwvRYvLWNJHFZu+QHjea659XblZmAQjZp nvGNn+2aaTu/puWTrShncPKS6hEqYCYDakaWOXq0Y2zpOweTcZhmsYDc0QB0VDVc 6uHbf/5h36TuKsxLig+0JIcicIljRtSK3X9+vEYASRdRGux4ZZWxp9pnlmMu9JIR mEPC9+LJCslSB0yhZ6rH3LcyhIGrpCfUvcAz+FjqxyU55/dI/owxFaSeFPYnAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUqksl51Ob7YV+/2D/nFa2rHzYFB8wHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL0QwDQYJKoZIhvcN AQELBQADggEBAELLb/pcSfiHz8yAVC+D6oRprW4MZ2WoFbimregZPODhCLXCF0Ot wAdv0m/oS++xUwo2SjmDZKvCxsdn1gmYOmS2zZ0YpQ2CPL//vEgunLhA/wBQgGTv D6dXRWgcPi+78FgTvlc5KIuTvDesmrsz111wCgZc732nYgxKluIGaswo813D6nVw 32NC7beU0l1oIEveZ8qO/Sphw6g3h6PU0EfvelBYgz9PHQN3e8mMKRFzgVlPB7O2 ME4s4rlnz5iwExFQx9gDWoyc1ff3jbM7CfMDJd9hYL0gMWd8ez/z/s+pHMSj6rKt uXH4Bgx9I9IO2NzfqJ/y/13AmXEBrrvO3CE= -----END CERTIFICATE-----Generated at Mon Oct 27 19:52:30 2025 by rpki-client