$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36392e302f32342d3234203d3e203137363731.roa File: 3230322e34372e36392e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: CwV5kwmlGYPDsKNA916IPb0oXroAYK2Vu4G26IBPSZ4= Subject key identifier: 6C:E8:97:3F:F2:94:17:53:17:C5:E1:2B:B5:11:2A:56:32:E5:97:53 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 674BB1CFBC958E4851BCF8928E9A09A9E311969A Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36392e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:10 +0000 ROA not before: Sat 17 May 2025 11:57:10 +0000 ROA not after: Sat 16 May 2026 12:02:10 +0000 asID: 17671 IP address blocks: 202.47.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:4b:b1:cf:bc:95:8e:48:51:bc:f8:92:8e:9a:09:a9:e3:11:96:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:10 2025 GMT Not After : May 16 12:02:10 2026 GMT Subject: CN=6CE8973FF294175317C5E12BB5112A5632E59753 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b3:a5:63:8c:37:9b:e3:c7:78:60:b5:91:c9: b6:17:cc:59:42:ba:32:70:97:20:a2:7b:e6:85:c8: 8f:42:9f:b9:f7:1a:e9:fd:87:b1:2e:a0:17:2f:c2: 26:03:62:48:6c:ee:b9:0d:04:83:69:4c:93:47:45: 99:cc:15:18:be:e4:e8:be:1d:9e:02:8c:e8:f6:ff: 4e:0c:1c:6e:3a:da:a5:46:ea:da:93:a0:9e:e0:53: ab:7c:73:a8:e4:85:a0:74:de:dc:dc:7c:8d:e2:68: a3:8d:ed:9b:e6:95:0b:23:40:98:44:c2:92:82:98: 60:d1:48:c7:be:c8:53:fd:9d:ae:07:31:be:2c:4d: 9d:a7:2e:47:44:f0:95:16:d4:4c:6a:b3:71:ac:e1: 32:7b:02:23:04:24:28:05:b8:ef:bb:68:3b:ac:8a: b8:08:57:b5:f1:a3:04:2e:08:28:03:05:90:58:0d: d2:65:99:b7:7b:35:1a:6d:ef:60:a3:d6:40:b0:34: 0f:be:df:95:77:c1:df:37:20:e9:ea:c2:67:cb:30: 15:79:6a:f9:f5:52:d3:ae:6b:4e:11:45:e8:61:db: 8a:3c:f9:b1:08:0f:b7:e6:30:35:d6:bf:61:b2:66: e6:17:90:9e:d9:a6:37:04:f7:a2:e6:4d:c0:61:d4: c7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:E8:97:3F:F2:94:17:53:17:C5:E1:2B:B5:11:2A:56:32:E5:97:53 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36392e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.69.0/24 Signature Algorithm: sha256WithRSAEncryption b8:ce:f8:2f:00:f3:27:c2:a8:d1:3e:ff:64:ed:0f:67:0a:5e: b7:bf:eb:71:72:07:83:a0:ed:78:51:81:25:de:97:53:27:01: f1:80:41:fa:f7:f9:45:f7:bf:13:62:3f:c5:90:a3:cc:c5:6a: 2a:80:e9:d3:dc:84:b9:3b:c4:a1:22:b9:ef:20:96:5e:3d:cf: fd:69:5d:6a:d5:a5:43:21:7b:87:c2:84:41:07:6a:7c:ad:c8: f1:42:8d:89:c7:e6:76:a1:1a:25:6f:1e:c7:51:e1:18:05:e2: 4b:c0:db:52:f2:af:52:45:86:ce:8b:be:3f:b5:70:1a:dc:cc: fd:33:72:1b:91:dc:62:64:30:b0:11:1e:b5:0c:2e:d2:47:a9: 4d:3f:51:24:b3:75:d9:9c:43:36:c9:a4:67:4d:fc:54:13:5c: 99:99:9b:5e:73:1e:87:04:5b:53:a6:7f:d4:34:7d:ed:5a:1c: 21:e3:c3:f5:fa:27:2b:6e:d1:9f:c6:42:f2:1f:61:81:2e:19: d1:c0:bf:f2:47:6e:91:1c:1b:b5:06:af:73:63:c6:de:0d:b1: 9a:12:7f:3e:2b:cb:55:57:72:9f:53:d2:d0:5b:3f:b4:0d:4d: 06:5d:b6:29:b0:4f:7b:4f:6e:74:d2:07:9f:ba:39:ec:23:41: ac:e1:1b:17 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUZ0uxz7yVjkhRvPiSjpoJqeMRlpowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MTBaFw0yNjA1MTYxMjAyMTBaMDMxMTAvBgNV BAMTKDZDRTg5NzNGRjI5NDE3NTMxN0M1RTEyQkI1MTEyQTU2MzJFNTk3NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEs6VjjDeb48d4YLWRybYXzFlC ujJwlyCie+aFyI9Cn7n3Gun9h7EuoBcvwiYDYkhs7rkNBINpTJNHRZnMFRi+5Oi+ HZ4CjOj2/04MHG462qVG6tqToJ7gU6t8c6jkhaB03tzcfI3iaKON7ZvmlQsjQJhE wpKCmGDRSMe+yFP9na4HMb4sTZ2nLkdE8JUW1Exqs3Gs4TJ7AiMEJCgFuO+7aDus irgIV7XxowQuCCgDBZBYDdJlmbd7NRpt72Cj1kCwNA++35V3wd83IOnqwmfLMBV5 avn1UtOua04RRehh24o8+bEID7fmMDXWv2GyZuYXkJ7ZpjcE96LmTcBh1MdvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUbOiXP/KUF1MXxeErtREqVjLll1MwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL0UwDQYJKoZIhvcN AQELBQADggEBALjO+C8A8yfCqNE+/2TtD2cKXre/63FyB4Og7XhRgSXel1MnAfGA Qfr3+UX3vxNiP8WQo8zFaiqA6dPchLk7xKEiue8gll49z/1pXWrVpUMhe4fChEEH anytyPFCjYnH5nahGiVvHsdR4RgF4kvA21Lyr1JFhs6Lvj+1cBrczP0zchuR3GJk MLARHrUMLtJHqU0/USSzddmcQzbJpGdN/FQTXJmZm15zHocEW1Omf9Q0fe1aHCHj w/X6Jytu0Z/GQvIfYYEuGdHAv/JHbpEcG7UGr3Njxt4NsZoSfz4ry1VXcp9T0tBb P7QNTQZdtimwT3tPbnTSB5+6OewjQazhGxc= -----END CERTIFICATE-----Generated at Sat Jun 7 12:03:26 2025 by rpki-client