$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37322e302f32342d3234203d3e203137363731.roa File: 3230322e34372e37322e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: z0Sv37EqWulezugs4tkdJdCi8TQQVOz+RAMb9RgGue4= Subject key identifier: 58:5A:34:B6:F2:F9:10:00:C5:BA:0C:7D:21:3B:03:1D:45:69:25:CA Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 4E1C87558725CE34BDD83CAE46E3880916D4EA7B Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37322e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:10 +0000 ROA not before: Sat 17 May 2025 11:57:10 +0000 ROA not after: Sat 16 May 2026 12:02:10 +0000 asID: 17671 IP address blocks: 202.47.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:1c:87:55:87:25:ce:34:bd:d8:3c:ae:46:e3:88:09:16:d4:ea:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:10 2025 GMT Not After : May 16 12:02:10 2026 GMT Subject: CN=585A34B6F2F91000C5BA0C7D213B031D456925CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:be:3c:00:93:66:69:94:23:74:65:b3:c4:17: 7f:71:45:d5:45:99:07:65:48:fd:c1:25:a9:7b:ab: 94:54:b4:34:29:ad:bf:5e:70:fc:b8:75:21:c8:51: 3d:f6:eb:e8:f0:af:e4:7d:79:f7:fd:60:8e:08:c1: fa:f0:f9:69:91:90:2f:d1:10:0b:e1:d3:27:c9:4b: 45:55:7f:11:a0:f1:41:8c:0a:47:f4:4a:3a:70:aa: 0f:c7:3d:f5:da:5f:6e:4c:86:67:32:2c:e5:21:e4: b4:58:95:69:d6:31:62:a2:77:59:18:ef:74:70:6c: 58:6f:13:16:f9:6a:65:a3:d7:1e:49:dc:49:6b:ca: 50:59:e2:47:10:db:47:b1:6d:4b:c7:25:bf:7a:1a: 5f:d9:ee:bb:73:99:68:da:fb:a7:ec:75:f9:74:9f: 4c:1d:cc:0a:ff:7a:85:8f:8c:32:e6:23:69:3c:14: e4:59:55:4d:85:7e:ca:52:5c:f3:88:8d:68:5c:96: 19:1e:7c:67:b9:9d:34:3c:be:5a:bd:21:68:7a:5b: 8f:ba:b8:a6:13:a2:b4:c4:69:14:00:e2:76:a5:89: 76:93:ac:26:81:71:c5:c6:3e:c8:82:93:21:f2:95: d6:0f:5f:99:70:61:65:de:77:6f:94:e8:56:14:c5: 3c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:5A:34:B6:F2:F9:10:00:C5:BA:0C:7D:21:3B:03:1D:45:69:25:CA X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37322e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.72.0/24 Signature Algorithm: sha256WithRSAEncryption 56:e0:d0:ef:b8:74:03:a3:96:cf:5a:c4:e2:72:07:d3:31:8c: 63:e6:09:47:15:fb:de:81:32:56:3e:a4:3d:75:27:35:0a:02: 6a:b6:21:99:0d:51:5c:c0:d6:67:1a:5b:94:21:2b:d8:b7:4b: 0a:b8:a1:29:be:61:5f:42:a0:f4:2a:40:01:89:89:e5:8f:ff: e1:4f:5d:8d:6e:8d:51:30:7f:84:dd:b0:21:0f:bc:63:85:67: 14:ad:35:a5:e0:81:a2:c4:8d:35:26:3b:e3:51:71:8b:bd:bc: 8a:01:90:b9:89:f5:5b:c8:61:4e:c0:32:ee:55:95:41:ff:32: 51:5c:70:7d:1d:cd:00:28:2b:c8:72:08:ee:04:08:92:e0:9e: e0:d6:87:ea:2c:30:d9:e3:ec:2b:95:60:61:20:a7:47:4e:22: f5:ea:35:87:b6:b2:08:e3:87:1c:d8:87:c6:6f:18:67:0e:6b: 6c:ca:93:c1:5b:2a:4a:b0:d7:14:44:72:0a:51:8d:da:82:41: 7e:64:45:38:46:1b:e8:ab:ad:e0:cd:71:1c:29:6d:f4:0c:13: 56:6a:57:c3:83:47:03:9c:a1:91:c3:b8:fc:41:17:6c:1a:08: 6e:f4:c1:07:6b:4e:01:76:df:e8:d4:d6:fb:50:dd:aa:0d:16: 51:1e:b6:e4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUThyHVYclzjS92DyuRuOICRbU6nswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MTBaFw0yNjA1MTYxMjAyMTBaMDMxMTAvBgNV BAMTKDU4NUEzNEI2RjJGOTEwMDBDNUJBMEM3RDIxM0IwMzFENDU2OTI1Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhvjwAk2ZplCN0ZbPEF39xRdVF mQdlSP3BJal7q5RUtDQprb9ecPy4dSHIUT326+jwr+R9eff9YI4Iwfrw+WmRkC/R EAvh0yfJS0VVfxGg8UGMCkf0Sjpwqg/HPfXaX25MhmcyLOUh5LRYlWnWMWKid1kY 73RwbFhvExb5amWj1x5J3ElrylBZ4kcQ20exbUvHJb96Gl/Z7rtzmWja+6fsdfl0 n0wdzAr/eoWPjDLmI2k8FORZVU2FfspSXPOIjWhclhkefGe5nTQ8vlq9IWh6W4+6 uKYTorTEaRQA4naliXaTrCaBccXGPsiCkyHyldYPX5lwYWXed2+U6FYUxTzDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUWFo0tvL5EADFugx9ITsDHUVpJcowHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzczMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL0gwDQYJKoZIhvcN AQELBQADggEBAFbg0O+4dAOjls9axOJyB9MxjGPmCUcV+96BMlY+pD11JzUKAmq2 IZkNUVzA1mcaW5QhK9i3Swq4oSm+YV9CoPQqQAGJieWP/+FPXY1ujVEwf4TdsCEP vGOFZxStNaXggaLEjTUmO+NRcYu9vIoBkLmJ9VvIYU7AMu5VlUH/MlFccH0dzQAo K8hyCO4ECJLgnuDWh+osMNnj7CuVYGEgp0dOIvXqNYe2sgjjhxzYh8ZvGGcOa2zK k8FbKkqw1xREcgpRjdqCQX5kRThGG+irreDNcRwpbfQME1ZqV8ODRwOcoZHDuPxB F2waCG70wQdrTgF23+jU1vtQ3aoNFlEetuQ= -----END CERTIFICATE-----Generated at Fri Jun 6 16:46:34 2025 by rpki-client