$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32322d3234203d3e203137363731.roa File: 3230322e35322e382e302f32322d3234203d3e203137363731.roa (raw, json) Hash identifier: tpvXDmXyqfBEiieUemN2Ig5wH3PBigf9A/HOg8htJ9c= Subject key identifier: 4C:E0:91:98:6C:EB:8A:84:0E:4F:0C:90:39:F6:46:E9:F1:FF:8D:E2 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 704563DD5A6382DD16AB7BD977CC5BEB1774D7B9 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32322d3234203d3e203137363731.roa Signing time: Thu 15 May 2025 11:00:02 +0000 ROA not before: Thu 15 May 2025 10:55:02 +0000 ROA not after: Thu 14 May 2026 11:00:02 +0000 asID: 17671 IP address blocks: 202.52.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 02:39:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:45:63:dd:5a:63:82:dd:16:ab:7b:d9:77:cc:5b:eb:17:74:d7:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 15 10:55:02 2025 GMT Not After : May 14 11:00:02 2026 GMT Subject: CN=4CE091986CEB8A840E4F0C9039F646E9F1FF8DE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fb:7b:61:9e:04:00:12:99:c4:8b:55:13:66: 03:cc:c8:7c:24:46:c6:66:61:9c:14:f7:a0:1e:76: 0e:61:49:8d:bb:35:f7:ce:2c:b5:4d:e3:63:3c:ff: 33:00:c0:22:b5:aa:42:74:09:30:d0:e2:2e:1f:4e: 4f:15:09:10:88:0f:86:8d:22:75:ea:2e:39:2b:7c: b1:4f:f2:01:d9:2e:79:45:61:a0:b1:74:0f:fc:72: 1c:36:ae:ed:3b:54:4a:30:37:bc:e9:82:6c:24:5f: a2:b3:9b:6e:c6:d7:32:06:66:3e:f8:5c:bd:7e:e7: 37:c7:e2:92:81:3f:3e:61:89:6c:4f:d5:cc:f1:7f: 6a:7f:b8:d5:07:3f:8f:64:46:90:9b:4d:40:48:2a: df:28:72:37:cf:b9:cf:bd:e1:7f:99:91:38:c9:37: c8:5a:37:de:8a:cb:98:a5:06:52:6c:21:5c:8e:05: de:e0:7c:4b:40:6a:ee:db:39:b2:ad:c8:c2:51:18: a3:35:4f:36:ad:0b:ae:9a:e0:65:4c:6e:5e:b8:39: 14:da:9c:44:78:1c:7d:b6:9b:c1:28:4a:00:a4:28: be:17:42:ef:45:a4:8d:32:62:71:8b:a1:e8:df:99: 8f:88:6c:6a:16:b9:5f:41:5d:47:4f:89:f1:be:a1: 1c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:E0:91:98:6C:EB:8A:84:0E:4F:0C:90:39:F6:46:E9:F1:FF:8D:E2 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32322d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.8.0/22 Signature Algorithm: sha256WithRSAEncryption 36:63:e6:6a:1e:b1:b0:e9:18:c0:a3:d9:82:04:fb:1d:d5:0e: 01:a2:86:dc:a4:ac:90:05:02:a7:2b:3f:28:9c:c3:36:a9:fc: d8:d4:f7:15:9d:9a:0d:d0:63:3f:eb:4e:64:cf:3d:1d:ce:60: 9f:89:38:ac:a1:7a:ca:ab:8a:13:c8:91:fd:08:cc:55:ed:f9: 26:dc:37:96:43:74:b2:50:3a:24:65:18:cf:5c:ad:18:ef:c3: f1:79:0d:40:50:15:54:ce:59:29:33:43:48:bd:f3:78:a2:e8: 06:44:fe:bb:4f:8b:31:b0:14:2d:5a:1d:3a:fd:96:26:1c:83: 4d:53:3a:50:4e:53:de:69:bb:33:ae:98:04:41:4a:18:1e:0a: 7e:9b:69:61:ad:81:8d:a9:4b:e1:31:02:8d:3e:11:01:16:6a: 43:85:10:34:9e:2d:22:97:b6:3f:41:93:9e:e3:28:11:44:9a: e9:aa:48:77:06:d5:0b:c9:85:c2:79:70:72:1f:0b:0b:d5:21: 8b:8d:d5:92:46:2b:95:96:86:79:2b:94:d8:8c:97:e8:f8:e8: f9:96:39:56:8f:a3:fb:74:29:4e:60:57:32:c9:b6:5a:dd:95: dc:39:a7:7b:6a:e7:c7:62:a7:67:a0:42:09:25:e8:c3:e5:8f: 4a:ec:67:5c -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUcEVj3Vpjgt0Wq3vZd8xb6xd017kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTUxMDU1MDJaFw0yNjA1MTQxMTAwMDJaMDMxMTAvBgNV BAMTKDRDRTA5MTk4NkNFQjhBODQwRTRGMEM5MDM5RjY0NkU5RjFGRjhERTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh+3thngQAEpnEi1UTZgPMyHwk RsZmYZwU96Aedg5hSY27NffOLLVN42M8/zMAwCK1qkJ0CTDQ4i4fTk8VCRCID4aN InXqLjkrfLFP8gHZLnlFYaCxdA/8chw2ru07VEowN7zpgmwkX6Kzm27G1zIGZj74 XL1+5zfH4pKBPz5hiWxP1czxf2p/uNUHP49kRpCbTUBIKt8ocjfPuc+94X+ZkTjJ N8haN96Ky5ilBlJsIVyOBd7gfEtAau7bObKtyMJRGKM1TzatC66a4GVMbl64ORTa nER4HH22m8EoSgCkKL4XQu9FpI0yYnGLoejfmY+IbGoWuV9BXUdPifG+oRx5AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUTOCRmGzrioQOTwyQOfZG6fH/jeIwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGNlYmYxMTYtZmUyYS00OTFiLWFh YzgtMjIwZWFkMGI1NGUyLzAvMzIzMDMyMmUzNTMyMmUzODJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKNAgwDQYJKoZIhvcNAQEL BQADggEBADZj5moesbDpGMCj2YIE+x3VDgGihtykrJAFAqcrPyicwzap/NjU9xWd mg3QYz/rTmTPPR3OYJ+JOKyhesqrihPIkf0IzFXt+SbcN5ZDdLJQOiRlGM9crRjv w/F5DUBQFVTOWSkzQ0i983ii6AZE/rtPizGwFC1aHTr9liYcg01TOlBOU95puzOu mARBShgeCn6baWGtgY2pS+ExAo0+EQEWakOFEDSeLSKXtj9Bk57jKBFEmumqSHcG 1QvJhcJ5cHIfCwvVIYuN1ZJGK5WWhnkrlNiMl+j46PmWOVaPo/t0KU5gVzLJtlrd ldw5p3tq58dip2egQgkl6MPlj0rsZ1w= -----END CERTIFICATE-----Generated at Mon Oct 27 19:52:29 2025 by rpki-client