$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231362e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3231362e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: 1Gx57kSy80O6p8cV39zMvTYixmzGuWD65pwpn7gUy5o= Subject key identifier: C7:23:02:D8:58:73:10:27:78:D0:3E:F6:12:88:C5:AA:AB:34:CA:EE Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 25E149C23D63E5CE2FA1053527D4055E0C5B5F56 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231362e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:06 +0000 ROA not before: Sat 17 May 2025 11:57:06 +0000 ROA not after: Sat 16 May 2026 12:02:06 +0000 asID: 17671 IP address blocks: 202.58.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 02:39:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:e1:49:c2:3d:63:e5:ce:2f:a1:05:35:27:d4:05:5e:0c:5b:5f:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:06 2025 GMT Not After : May 16 12:02:06 2026 GMT Subject: CN=C72302D85873102778D03EF61288C5AAAB34CAEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8f:a7:a7:62:5b:b8:0f:e1:4b:4f:cf:9b:67: d3:85:05:9d:e6:72:f6:1a:43:6d:00:8d:27:66:58: 18:55:74:7f:00:21:61:c4:da:4b:5e:ab:b7:d6:96: eb:f0:bd:55:b2:e7:e2:00:be:94:cb:52:30:18:ec: a1:52:25:bc:11:77:26:7f:9e:30:a8:f7:89:b2:da: 70:79:3b:69:84:9f:78:27:15:ac:be:d8:a8:c1:56: 55:9e:88:9b:66:5c:d4:19:59:d1:09:12:9b:8d:e7: 34:4f:3f:9c:ef:19:8e:f9:62:8b:eb:9e:9f:26:d7: da:d7:98:dc:9a:56:bc:c7:93:7b:b7:44:5f:d1:bd: 02:7f:20:23:da:7c:a5:85:43:c4:75:db:cd:39:82: 2d:87:20:d2:6e:de:36:19:aa:45:83:0a:66:42:3c: d4:2f:5d:46:e9:9f:17:78:3c:79:96:ba:16:82:ef: 88:7a:20:3f:71:61:2d:7b:cb:dd:07:0f:13:ef:2c: 2b:c6:ed:70:4c:bc:bf:44:d6:d7:35:40:1b:2e:16: a9:80:fb:e4:49:ef:73:2a:7e:cf:fd:db:85:6e:3f: a8:ed:ab:2f:02:ba:09:eb:e5:57:b1:33:85:4e:8f: 3b:65:a6:b2:f6:0e:53:d3:ee:de:7a:65:2a:7b:08: b7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:23:02:D8:58:73:10:27:78:D0:3E:F6:12:88:C5:AA:AB:34:CA:EE X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231362e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.216.0/24 Signature Algorithm: sha256WithRSAEncryption 95:07:d7:e0:01:b6:2f:74:a9:a6:8f:c4:f1:0b:eb:39:f0:20: e9:de:19:07:54:33:8a:c9:73:93:6f:7d:17:94:98:ed:0d:b3: ed:b0:c7:2c:f2:18:5a:06:8b:05:0b:fa:cf:6d:1a:d0:2c:3d: 5a:13:d8:f5:d5:7e:6a:35:3c:94:66:31:75:06:6d:da:43:34: 41:a8:4f:2f:5f:b7:db:bd:8e:a9:5c:29:19:a2:75:da:06:6f: 97:16:81:e1:59:df:f8:08:c6:d2:6e:9b:8d:00:74:39:19:6e: 87:83:40:0a:ac:95:0c:f2:eb:d7:21:02:05:86:47:4f:6d:10: 36:60:23:af:aa:15:bb:dd:09:00:5c:6b:e3:64:25:50:21:bc: 9b:ae:df:4c:fd:64:cf:cf:85:65:67:ad:b1:84:2d:36:cc:09: 3e:7d:c4:dd:00:15:12:67:a3:30:e4:77:c4:49:25:8f:a9:ae: 05:2a:d5:f4:5c:45:d4:05:d1:03:4e:58:8d:20:88:96:ef:01: 2d:85:8f:20:c1:3d:b7:cf:ae:c2:2e:75:94:0e:f5:fa:9a:08: 7b:51:e9:74:13:d5:d6:e4:9b:6c:11:6f:d5:71:8d:42:db:ad: 95:aa:06:e9:fb:4b:81:54:5f:53:37:f7:65:53:2e:b0:66:2e: 2d:69:56:85 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJeFJwj1j5c4voQU1J9QFXgxbX1YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MDZaFw0yNjA1MTYxMjAyMDZaMDMxMTAvBgNV BAMTKEM3MjMwMkQ4NTg3MzEwMjc3OEQwM0VGNjEyODhDNUFBQUIzNENBRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrj6enYlu4D+FLT8+bZ9OFBZ3m cvYaQ20AjSdmWBhVdH8AIWHE2kteq7fWluvwvVWy5+IAvpTLUjAY7KFSJbwRdyZ/ njCo94my2nB5O2mEn3gnFay+2KjBVlWeiJtmXNQZWdEJEpuN5zRPP5zvGY75Yovr np8m19rXmNyaVrzHk3u3RF/RvQJ/ICPafKWFQ8R12805gi2HINJu3jYZqkWDCmZC PNQvXUbpnxd4PHmWuhaC74h6ID9xYS17y90HDxPvLCvG7XBMvL9E1tc1QBsuFqmA ++RJ73Mqfs/924VuP6jtqy8Cugnr5VexM4VOjztlprL2DlPT7t56ZSp7CLf3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxyMC2FhzECd40D72EojFqqs0yu4wHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo62DANBgkqhkiG 9w0BAQsFAAOCAQEAlQfX4AG2L3Sppo/E8QvrOfAg6d4ZB1Qzislzk299F5SY7Q2z 7bDHLPIYWgaLBQv6z20a0Cw9WhPY9dV+ajU8lGYxdQZt2kM0QahPL1+3272OqVwp GaJ12gZvlxaB4Vnf+AjG0m6bjQB0ORluh4NACqyVDPLr1yECBYZHT20QNmAjr6oV u90JAFxr42QlUCG8m67fTP1kz8+FZWetsYQtNswJPn3E3QAVEmejMOR3xEklj6mu BSrV9FxF1AXRA05YjSCIlu8BLYWPIME9t8+uwi51lA71+poIe1HpdBPV1uSbbBFv 1XGNQtutlaoG6ftLgVRfUzf3ZVMusGYuLWlWhQ== -----END CERTIFICATE-----Generated at Mon Oct 27 19:47:14 2025 by rpki-client