$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231372e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3231372e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: HPe4jRCPDwwA5Zyt+nzGEw5v+LustK+gT9SG1i2YaBM= Subject key identifier: 2C:31:55:D6:47:1C:D9:0A:2B:9F:E8:00:37:15:94:38:7A:4C:31:49 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 0506B7F468491863BA8456732D4AE8858EA692A2 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231372e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:07 +0000 ROA not before: Sat 17 May 2025 11:57:07 +0000 ROA not after: Sat 16 May 2026 12:02:07 +0000 asID: 17671 IP address blocks: 202.58.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:06:b7:f4:68:49:18:63:ba:84:56:73:2d:4a:e8:85:8e:a6:92:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:07 2025 GMT Not After : May 16 12:02:07 2026 GMT Subject: CN=2C3155D6471CD90A2B9FE800371594387A4C3149 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bb:89:9d:59:7f:7e:85:e1:e6:6b:6a:96:95: 28:e9:12:61:65:e7:cb:59:49:ac:0b:90:ef:7d:c2: e5:39:8f:67:52:fd:0d:01:73:2a:e2:cc:a1:cb:f7: 54:e3:8b:c4:99:6c:df:c7:b4:86:71:30:e8:9e:15: ea:b0:67:8d:d9:67:6f:c6:95:ac:39:b2:e3:5f:f9: 62:19:79:da:fd:0e:ea:e7:db:e0:1d:4c:55:b1:28: f3:7f:7d:c4:38:74:84:b8:85:f5:92:97:7c:c9:52: 30:e9:98:d3:37:d9:fe:86:43:d8:7e:37:34:f3:31: f2:5e:33:75:bf:d7:e6:86:36:4f:9e:6b:38:28:12: b5:1c:87:9f:44:8f:cb:73:93:88:ed:28:18:db:9d: f6:39:fb:90:1d:cc:6a:3d:6a:ac:ad:dc:db:79:d3: 12:ac:c5:c0:31:2c:6d:69:6f:72:2b:c5:5f:dd:c8: e3:a6:ad:c4:0c:62:3a:af:7d:85:30:3c:1d:d4:83: 8e:9a:62:ee:28:94:f4:9f:72:88:63:1e:04:4b:4e: a2:18:6c:3b:f4:9b:a8:c7:71:5b:e8:cc:02:31:f5: 4c:52:01:87:41:d9:25:8f:f3:f3:1b:14:97:33:2a: 38:df:d3:56:42:c1:14:49:31:8b:03:25:57:c6:4f: 86:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:31:55:D6:47:1C:D9:0A:2B:9F:E8:00:37:15:94:38:7A:4C:31:49 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231372e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.217.0/24 Signature Algorithm: sha256WithRSAEncryption 07:0f:63:4f:2f:0c:da:6c:31:4a:61:85:ff:93:fb:b7:27:e9: 5c:66:f9:a1:fa:d2:5d:66:cd:68:96:3d:5d:65:2a:c7:08:19: 63:3b:2e:cf:07:9a:fe:88:1a:98:9d:be:3a:a5:8c:ce:a7:ab: 85:5e:8d:fb:1f:c4:f2:c2:e1:b3:87:cc:e8:3f:74:98:3d:63: d2:7e:1c:54:53:95:09:41:38:87:6a:e7:46:d3:b1:81:85:92: 09:1d:d3:1d:6b:a2:60:a7:b6:0d:c0:23:47:04:a0:3e:19:60: 09:06:57:84:29:1c:24:44:bf:51:97:56:d2:bc:bf:22:3d:ee: 1d:63:77:7a:30:39:32:d3:0f:40:f1:b4:92:56:a7:59:e5:03: 9c:b8:18:2f:9a:ba:d4:fc:6c:ae:5e:a7:7d:05:35:ea:28:64: ae:8c:1c:ee:66:e4:2b:ed:ca:14:40:b0:03:1b:99:e3:1c:f9: df:ed:44:76:a0:8f:78:41:60:63:fa:ef:1e:72:bb:53:81:a0: 6a:97:de:60:e6:98:3e:3d:66:e1:38:08:e8:00:2b:d9:f9:61: fb:90:eb:1a:fa:25:bd:d7:ae:7f:63:f0:0a:07:0f:ce:f2:57: 75:19:bf:b9:be:06:f0:40:16:30:e1:50:f6:ea:32:5f:82:cb: a1:e1:62:cd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBQa39GhJGGO6hFZzLUrohY6mkqIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MDdaFw0yNjA1MTYxMjAyMDdaMDMxMTAvBgNV BAMTKDJDMzE1NUQ2NDcxQ0Q5MEEyQjlGRTgwMDM3MTU5NDM4N0E0QzMxNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzu4mdWX9+heHma2qWlSjpEmFl 58tZSawLkO99wuU5j2dS/Q0BcyrizKHL91Tji8SZbN/HtIZxMOieFeqwZ43ZZ2/G law5suNf+WIZedr9Durn2+AdTFWxKPN/fcQ4dIS4hfWSl3zJUjDpmNM32f6GQ9h+ NzTzMfJeM3W/1+aGNk+eazgoErUch59Ej8tzk4jtKBjbnfY5+5AdzGo9aqyt3Nt5 0xKsxcAxLG1pb3IrxV/dyOOmrcQMYjqvfYUwPB3Ug46aYu4olPSfcohjHgRLTqIY bDv0m6jHcVvozAIx9UxSAYdB2SWP8/MbFJczKjjf01ZCwRRJMYsDJVfGT4ZPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULDFV1kcc2Qorn+gANxWUOHpMMUkwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo62TANBgkqhkiG 9w0BAQsFAAOCAQEABw9jTy8M2mwxSmGF/5P7tyfpXGb5ofrSXWbNaJY9XWUqxwgZ Yzsuzwea/ogamJ2+OqWMzqerhV6N+x/E8sLhs4fM6D90mD1j0n4cVFOVCUE4h2rn RtOxgYWSCR3THWuiYKe2DcAjRwSgPhlgCQZXhCkcJES/UZdW0ry/Ij3uHWN3ejA5 MtMPQPG0klanWeUDnLgYL5q61Pxsrl6nfQU16ihkrowc7mbkK+3KFECwAxuZ4xz5 3+1EdqCPeEFgY/rvHnK7U4GgapfeYOaYPj1m4TgI6AAr2flh+5DrGvolvdeuf2Pw CgcPzvJXdRm/ub4G8EAWMOFQ9uoyX4LLoeFizQ== -----END CERTIFICATE-----Generated at Thu Jun 5 18:54:10 2025 by rpki-client