$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37342e302f32342d3234203d3e203137363731.roa File: 3230322e34372e37342e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: QdnAW3+fNntSRQUmYw3AiOOQYfUv3VxxLkSfW3lcO1M= Subject key identifier: EA:0E:C9:78:89:9C:4B:53:D4:52:4D:7A:C1:BF:7C:23:F5:4B:BC:1D Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 74A07843C3708BA97722B3F93F70A9DE666D07DA Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37342e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:07 +0000 ROA not before: Sat 17 May 2025 11:57:07 +0000 ROA not after: Sat 16 May 2026 12:02:07 +0000 asID: 17671 IP address blocks: 202.47.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:a0:78:43:c3:70:8b:a9:77:22:b3:f9:3f:70:a9:de:66:6d:07:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:07 2025 GMT Not After : May 16 12:02:07 2026 GMT Subject: CN=EA0EC978899C4B53D4524D7AC1BF7C23F54BBC1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5e:84:44:b5:86:1e:58:40:95:d7:c2:0e:d2: ab:63:c6:82:28:43:b7:08:dc:fc:57:62:dd:e1:d6: da:1c:89:3d:9b:04:8a:99:e1:77:86:71:f6:6c:9d: 33:db:3e:fa:f7:a5:e1:f4:62:62:f2:de:80:c4:7a: a7:ce:4d:a0:4e:26:c8:5a:cc:27:9d:9e:8b:59:86: 24:81:35:97:14:1e:a0:e6:f9:a5:d2:74:3f:7e:28: 33:2c:1a:0a:95:7c:0e:f9:fc:d3:24:91:8d:fa:b0: d7:68:e8:bb:d4:54:c2:87:e1:5d:b1:af:1c:56:3c: 6c:a6:f0:18:11:0c:20:2c:51:e0:38:cb:d7:10:d5: d6:d3:42:29:d3:78:3d:55:2b:0c:30:7f:3f:16:b8: 66:6b:2c:84:f5:c9:36:1a:b0:40:5b:55:e7:5b:94: 30:f3:40:b8:95:26:7b:72:7d:4c:cd:38:35:80:ac: 86:bc:df:86:88:c4:85:d5:b3:6e:09:03:f7:67:6e: c3:0e:56:ce:8b:d5:bb:ba:57:26:6e:7e:dd:0e:c6: 67:37:73:ae:4a:00:3a:9b:9e:a6:6b:71:99:4c:05: 75:96:ae:76:13:cc:f1:d6:9f:a8:c0:34:71:15:2e: ac:81:0b:d5:25:a4:72:a4:f6:14:2a:72:92:9c:ae: 5c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:0E:C9:78:89:9C:4B:53:D4:52:4D:7A:C1:BF:7C:23:F5:4B:BC:1D X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37342e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.74.0/24 Signature Algorithm: sha256WithRSAEncryption 34:36:29:07:f9:04:fc:c4:ba:e0:b1:57:01:cd:33:ab:0e:b6: ff:62:c7:db:9c:15:ac:4a:02:fb:c4:5d:70:06:5f:0b:88:85: 94:b4:c8:73:7a:cb:79:4a:f8:89:26:4a:d1:ae:71:80:27:1a: ab:ea:3e:f1:95:97:ba:df:3b:a4:de:cd:b6:df:90:ac:02:5c: 22:09:dc:7f:b8:af:97:7f:15:81:2c:c1:20:62:76:2a:4a:2e: 75:be:b7:0a:b3:6e:a8:28:0b:11:0c:7f:5d:04:ec:8d:33:d9: 93:6c:ca:36:85:f4:a4:69:fc:ef:58:9f:ad:82:16:44:8e:65: b0:43:c2:4c:e5:50:89:fb:e3:4f:56:7e:48:88:09:57:ae:39: 47:a2:64:dd:2b:71:d5:b2:af:49:de:56:e7:15:27:c3:71:7e: ef:bc:ef:f1:d2:e5:60:e8:e8:84:25:0d:e5:95:36:02:b5:73: d1:1b:d3:cd:2c:a7:34:57:2e:cd:d9:4c:b1:ab:28:38:30:ff: cb:96:75:cb:4f:36:c3:e2:a1:9f:c8:c7:85:53:5c:a7:f9:52: 58:eb:7e:67:b3:e8:04:1e:e4:e3:ce:98:11:a7:96:92:cb:e6: 7f:56:42:f6:ac:bf:c9:c8:a2:45:af:db:26:46:31:1f:19:7b: 66:3e:65:af -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUdKB4Q8Nwi6l3IrP5P3Cp3mZtB9owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MDdaFw0yNjA1MTYxMjAyMDdaMDMxMTAvBgNV BAMTKEVBMEVDOTc4ODk5QzRCNTNENDUyNEQ3QUMxQkY3QzIzRjU0QkJDMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8XoREtYYeWECV18IO0qtjxoIo Q7cI3PxXYt3h1tociT2bBIqZ4XeGcfZsnTPbPvr3peH0YmLy3oDEeqfOTaBOJsha zCednotZhiSBNZcUHqDm+aXSdD9+KDMsGgqVfA75/NMkkY36sNdo6LvUVMKH4V2x rxxWPGym8BgRDCAsUeA4y9cQ1dbTQinTeD1VKwwwfz8WuGZrLIT1yTYasEBbVedb lDDzQLiVJntyfUzNODWArIa834aIxIXVs24JA/dnbsMOVs6L1bu6VyZuft0Oxmc3 c65KADqbnqZrcZlMBXWWrnYTzPHWn6jANHEVLqyBC9UlpHKk9hQqcpKcrlxjAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU6g7JeImcS1PUUk16wb98I/VLvB0wHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzczNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL0owDQYJKoZIhvcN AQELBQADggEBADQ2KQf5BPzEuuCxVwHNM6sOtv9ix9ucFaxKAvvEXXAGXwuIhZS0 yHN6y3lK+IkmStGucYAnGqvqPvGVl7rfO6TezbbfkKwCXCIJ3H+4r5d/FYEswSBi dipKLnW+twqzbqgoCxEMf10E7I0z2ZNsyjaF9KRp/O9Yn62CFkSOZbBDwkzlUIn7 409WfkiICVeuOUeiZN0rcdWyr0neVucVJ8Nxfu+87/HS5WDo6IQlDeWVNgK1c9Eb 080spzRXLs3ZTLGrKDgw/8uWdctPNsPioZ/Ix4VTXKf5Uljrfmez6AQe5OPOmBGn lpLL5n9WQvasv8nIokWv2yZGMR8Ze2Y+Za8= -----END CERTIFICATE-----Generated at Thu Jun 5 18:35:12 2025 by rpki-client