$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37312e302f32342d3234203d3e203137363731.roa File: 3230322e34372e37312e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: +hoHmBQr7ApYQgz85gxs1oJo881VmpLZspg+2dnvkNc= Subject key identifier: 76:34:B2:7C:37:E5:F3:7E:DE:38:D1:5C:D0:DB:D2:0E:B2:75:94:65 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 05F4C22AA8C9A6E0B9B4B0B5844EB6A1699AAF67 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37312e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:09 +0000 ROA not before: Sat 17 May 2025 11:57:09 +0000 ROA not after: Sat 16 May 2026 12:02:09 +0000 asID: 17671 IP address blocks: 202.47.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:f4:c2:2a:a8:c9:a6:e0:b9:b4:b0:b5:84:4e:b6:a1:69:9a:af:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:09 2025 GMT Not After : May 16 12:02:09 2026 GMT Subject: CN=7634B27C37E5F37EDE38D15CD0DBD20EB2759465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:30:6a:3e:86:21:05:4b:3a:98:89:05:59:87: 65:8f:d7:c9:57:c9:4f:47:90:97:6e:f3:40:f3:ad: 68:0c:f8:aa:3a:6b:1f:ea:32:20:10:72:f9:5c:54: f3:a7:f8:38:52:f0:6c:90:67:ed:c5:50:fd:c3:82: c0:5e:bc:2d:b1:1b:02:ed:52:59:36:f3:84:a3:04: e0:70:0e:9f:e9:28:be:3b:cb:87:21:80:61:e3:57: ac:47:6c:28:0e:b2:2e:7d:04:ec:aa:c8:3a:25:41: 85:2e:6a:d8:55:68:91:a1:0f:aa:bf:c6:cd:43:e1: e1:f3:f9:3a:2d:ac:35:d4:4e:a2:32:3f:c6:e8:5d: f6:51:24:88:41:b2:17:9b:41:a0:9f:8e:c4:e7:ce: af:25:eb:b2:08:17:2f:4e:01:da:b6:31:de:1b:f5: 7a:3c:cb:27:c8:43:80:fc:5a:6b:55:7f:f3:e6:fe: 9b:6b:9b:86:b7:4e:d1:52:ec:b7:6f:0e:11:09:93: fe:4e:92:2e:ac:27:90:a9:cb:7c:34:ea:ea:87:c0: b2:c2:70:e5:8c:54:49:62:74:ee:71:7b:28:56:44: 46:84:b9:b7:e3:60:4e:ad:36:64:7d:a6:59:01:0d: 73:9a:4b:93:34:d7:73:48:d1:2c:23:6b:81:fa:d0: ee:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:34:B2:7C:37:E5:F3:7E:DE:38:D1:5C:D0:DB:D2:0E:B2:75:94:65 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37312e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.71.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:b0:bc:c9:2c:34:2d:8a:89:48:2d:1d:58:8c:84:f9:a8:b5: e6:ea:7b:fb:43:f2:10:7f:8e:c9:7c:11:cc:47:bb:14:28:44: 67:13:0a:ac:b7:1f:19:af:2c:c0:5f:d3:6f:d9:2d:1e:b2:c1: 7e:9a:b3:24:c2:0d:c1:97:68:db:53:6c:89:1c:65:38:2c:21: c4:d0:65:ab:4e:b1:3e:4b:94:74:e4:dc:e5:b5:e0:ad:32:d3: 0b:d4:d6:10:ac:4f:cd:fb:8b:b7:bb:96:06:76:de:96:f2:72: ae:1f:02:cb:16:da:44:74:6f:27:ea:ec:c7:4a:3f:41:04:ec: 6d:bb:0e:58:fd:d8:7c:f2:a0:14:b8:6a:8b:85:61:e7:bf:0b: ef:6b:b6:c4:67:3a:b4:d9:2b:19:0a:bb:d9:c8:df:02:42:8d: f8:03:0d:cc:d9:d5:60:15:8e:6c:59:2f:bc:fd:4d:01:ff:c4: 4c:d8:9e:f8:53:05:ca:9d:29:fc:4b:19:e1:d8:20:6e:15:66: cb:56:00:0e:5c:d0:69:30:a1:eb:3c:78:e8:69:b5:98:c2:25: f1:fb:32:06:a4:6c:9a:5e:6f:ce:16:61:bd:b9:d8:f1:17:e0: d0:c6:f9:5a:5c:b4:6e:38:22:ec:30:6f:73:da:00:fa:2e:88: b4:16:8b:bd -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBfTCKqjJpuC5tLC1hE62oWmar2cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MDlaFw0yNjA1MTYxMjAyMDlaMDMxMTAvBgNV BAMTKDc2MzRCMjdDMzdFNUYzN0VERTM4RDE1Q0QwREJEMjBFQjI3NTk0NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXMGo+hiEFSzqYiQVZh2WP18lX yU9HkJdu80DzrWgM+Ko6ax/qMiAQcvlcVPOn+DhS8GyQZ+3FUP3DgsBevC2xGwLt Ulk284SjBOBwDp/pKL47y4chgGHjV6xHbCgOsi59BOyqyDolQYUuathVaJGhD6q/ xs1D4eHz+TotrDXUTqIyP8boXfZRJIhBshebQaCfjsTnzq8l67IIFy9OAdq2Md4b 9Xo8yyfIQ4D8WmtVf/Pm/ptrm4a3TtFS7LdvDhEJk/5Oki6sJ5Cpy3w06uqHwLLC cOWMVElidO5xeyhWREaEubfjYE6tNmR9plkBDXOaS5M013NI0Swja4H60O7BAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUdjSyfDfl837eONFc0NvSDrJ1lGUwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzczMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL0cwDQYJKoZIhvcN AQELBQADggEBAAqwvMksNC2KiUgtHViMhPmotebqe/tD8hB/jsl8EcxHuxQoRGcT Cqy3HxmvLMBf02/ZLR6ywX6asyTCDcGXaNtTbIkcZTgsIcTQZatOsT5LlHTk3OW1 4K0y0wvU1hCsT837i7e7lgZ23pbycq4fAssW2kR0byfq7MdKP0EE7G27Dlj92Hzy oBS4aouFYee/C+9rtsRnOrTZKxkKu9nI3wJCjfgDDczZ1WAVjmxZL7z9TQH/xEzY nvhTBcqdKfxLGeHYIG4VZstWAA5c0Gkwoes8eOhptZjCJfH7MgakbJpeb84WYb25 2PEX4NDG+VpctG44Iuwwb3PaAPouiLQWi70= -----END CERTIFICATE-----Generated at Thu Jun 5 18:41:44 2025 by rpki-client