$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37392e302f32342d3234203d3e203137363731.roa File: 3230322e34372e37392e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: CcZ/f9UBxjacZvewtTGTBAPHEPkzq10sezCgqhKug1M= Subject key identifier: BE:2B:B3:8E:19:0A:57:03:C0:EB:2F:25:4B:4D:35:43:67:A3:29:1F Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 5F922BB71620E2DD7578666F18F36CE69EC1A5FD Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37392e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:08 +0000 ROA not before: Sat 17 May 2025 11:57:08 +0000 ROA not after: Sat 16 May 2026 12:02:08 +0000 asID: 17671 IP address blocks: 202.47.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 02:39:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:92:2b:b7:16:20:e2:dd:75:78:66:6f:18:f3:6c:e6:9e:c1:a5:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:08 2025 GMT Not After : May 16 12:02:08 2026 GMT Subject: CN=BE2BB38E190A5703C0EB2F254B4D354367A3291F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:34:6a:ac:64:9d:1b:2e:25:92:cb:64:ad:80: b6:8c:0d:da:d9:d5:65:64:27:d4:c3:2e:10:78:73: a0:b6:af:31:a4:9b:31:c6:9a:cd:a0:6e:d8:a9:3d: 23:80:0b:c7:76:df:01:34:8b:f1:ad:78:3c:20:fa: 01:d1:a8:e9:0a:92:57:67:78:64:0d:46:5a:b2:e8: dc:ff:16:73:1f:3c:d7:e3:d0:1a:35:a5:62:76:89: fd:29:47:a1:25:72:e3:1f:a2:dd:e1:73:9c:69:04: da:a2:8b:d3:48:d8:cb:68:e6:4b:d2:a2:22:96:6a: 23:78:9f:e4:19:a1:45:4a:a5:0e:31:2e:74:ae:c5: 91:6c:6f:70:02:a1:89:85:97:f9:4c:99:53:97:16: 2c:c1:8b:17:91:5e:8f:7c:49:99:63:f2:e9:e2:b5: 21:e8:08:d3:42:48:9c:41:86:68:f5:5b:e9:93:65: 73:4d:cd:66:76:c9:18:78:27:99:a8:f2:1c:87:f9: 5a:42:53:3a:47:07:8f:f5:48:fe:30:a4:27:1c:b7: ce:04:f1:07:cd:fa:db:91:2d:50:8c:f9:6e:83:2e: 20:ec:bb:95:b2:c6:ed:93:fd:d9:b9:c0:fc:13:3d: 95:00:4e:86:a9:a2:ca:d6:a7:34:ff:ba:f4:ec:55: 3e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:2B:B3:8E:19:0A:57:03:C0:EB:2F:25:4B:4D:35:43:67:A3:29:1F X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37392e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.79.0/24 Signature Algorithm: sha256WithRSAEncryption aa:6a:1a:3f:de:a6:26:45:a5:f8:fb:d2:25:66:91:19:fb:71: e5:e6:ab:86:39:d8:40:ed:3b:fb:c4:31:56:13:e5:5f:12:e0: f8:ca:4f:26:77:39:01:40:1a:a0:2b:44:40:d2:3a:e8:af:84: f6:31:26:7d:fc:29:fb:c4:07:55:c0:8a:38:6b:9a:88:3f:ff: ca:ca:43:81:dd:e4:0c:9e:90:c9:57:f7:ab:47:78:b2:1a:aa: 77:1e:39:b3:3f:48:f1:80:50:f3:45:df:5f:10:4e:1c:a5:66: 72:6c:88:ea:56:b4:0a:71:db:db:2b:0d:74:40:5a:24:1b:31: 4a:ec:04:76:0f:a0:5d:31:bb:e3:7f:5f:71:ba:af:8e:c1:44: b4:77:0d:90:0c:3c:bf:69:e5:7d:a4:4b:33:c3:4b:cc:2c:07: cf:9f:46:d2:36:9f:09:2c:72:22:53:92:92:32:53:42:5b:51: b2:9b:eb:31:f2:97:6d:7c:4e:af:78:10:7e:78:08:a1:d5:b4: d1:f2:b2:98:54:2d:f8:48:2c:2a:78:1c:ac:7d:ec:ec:f1:dd: 8c:53:85:13:85:5c:6b:23:b2:8d:3c:62:a2:ac:d7:35:6b:2e: cf:5c:72:a1:83:4a:aa:95:5e:7f:dc:e8:d8:47:d8:a6:e6:e5: c4:0c:76:1e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUX5IrtxYg4t11eGZvGPNs5p7Bpf0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MDhaFw0yNjA1MTYxMjAyMDhaMDMxMTAvBgNV BAMTKEJFMkJCMzhFMTkwQTU3MDNDMEVCMkYyNTRCNEQzNTQzNjdBMzI5MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuNGqsZJ0bLiWSy2StgLaMDdrZ 1WVkJ9TDLhB4c6C2rzGkmzHGms2gbtipPSOAC8d23wE0i/GteDwg+gHRqOkKkldn eGQNRlqy6Nz/FnMfPNfj0Bo1pWJ2if0pR6ElcuMfot3hc5xpBNqii9NI2Mto5kvS oiKWaiN4n+QZoUVKpQ4xLnSuxZFsb3ACoYmFl/lMmVOXFizBixeRXo98SZlj8uni tSHoCNNCSJxBhmj1W+mTZXNNzWZ2yRh4J5mo8hyH+VpCUzpHB4/1SP4wpCcct84E 8QfN+tuRLVCM+W6DLiDsu5Wyxu2T/dm5wPwTPZUAToaposrWpzT/uvTsVT7ZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUviuzjhkKVwPA6y8lS001Q2ejKR8wHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzczOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL08wDQYJKoZIhvcN AQELBQADggEBAKpqGj/epiZFpfj70iVmkRn7ceXmq4Y52EDtO/vEMVYT5V8S4PjK TyZ3OQFAGqArREDSOuivhPYxJn38KfvEB1XAijhrmog//8rKQ4Hd5AyekMlX96tH eLIaqnceObM/SPGAUPNF318QThylZnJsiOpWtApx29srDXRAWiQbMUrsBHYPoF0x u+N/X3G6r47BRLR3DZAMPL9p5X2kSzPDS8wsB8+fRtI2nwksciJTkpIyU0JbUbKb 6zHyl218Tq94EH54CKHVtNHysphULfhILCp4HKx97Ozx3YxThROFXGsjso08YqKs 1zVrLs9ccqGDSqqVXn/c6NhH2Kbm5cQMdh4= -----END CERTIFICATE-----Generated at Mon Oct 27 19:44:25 2025 by rpki-client