$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231382e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3231382e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: n3ornI3HiKvDhJRhcYlEKsvXiG8UbF+s9EDMb4jzGvo= Subject key identifier: DA:25:D3:D9:59:BF:48:A3:9C:B0:84:B6:0C:89:93:5D:15:A0:EE:C8 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 05A7F57F00705B0F96D2DE911E81087276691BBC Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231382e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:08 +0000 ROA not before: Sat 17 May 2025 11:57:08 +0000 ROA not after: Sat 16 May 2026 12:02:08 +0000 asID: 17671 IP address blocks: 202.58.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:a7:f5:7f:00:70:5b:0f:96:d2:de:91:1e:81:08:72:76:69:1b:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:08 2025 GMT Not After : May 16 12:02:08 2026 GMT Subject: CN=DA25D3D959BF48A39CB084B60C89935D15A0EEC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c6:5a:54:5f:8a:fd:f7:da:95:00:c2:2c:09: f6:8d:fb:8b:c3:ce:5b:52:23:a3:e2:d8:02:a2:0b: 00:ed:8c:3d:5c:a9:65:b1:c6:4d:5f:5e:a0:25:22: c3:ac:e2:e3:65:e1:a3:50:53:59:80:b1:be:62:d3: e0:a0:0f:4d:df:50:77:a3:dc:46:01:19:58:bb:91: 34:4c:54:5b:57:07:95:75:6a:55:3f:6a:63:54:9e: 17:02:05:06:93:e9:c2:f6:69:14:2a:fe:62:0d:e6: 2e:c4:7a:87:73:43:6f:b4:d0:0f:99:01:44:d1:a6: f4:35:d1:a1:21:ac:c0:13:0d:7e:db:16:ff:e5:80: 0e:22:d4:aa:35:73:6f:ca:e0:ce:21:19:47:18:03: 81:d6:09:18:ee:73:28:19:4a:ae:e0:eb:df:84:4f: e4:22:0b:26:d5:95:b7:7b:45:0d:1b:4a:cb:40:b4: 3e:cd:53:07:f7:64:f9:c8:49:fb:64:3d:7e:ea:10: b1:9e:0a:81:12:14:4f:9e:23:8a:74:f9:f9:32:0c: d9:a5:62:0e:73:71:e4:38:32:b9:3e:d2:bd:c3:e0: 78:8e:8a:3f:3f:27:be:20:4d:40:e2:94:32:9e:95: af:dc:6d:c7:66:3d:de:62:48:44:12:65:da:b1:30: 58:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:25:D3:D9:59:BF:48:A3:9C:B0:84:B6:0C:89:93:5D:15:A0:EE:C8 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231382e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.218.0/24 Signature Algorithm: sha256WithRSAEncryption 78:15:07:8a:4d:c0:c1:62:ea:00:8e:84:e4:37:08:55:90:bf: 83:39:c3:48:57:bd:02:34:ad:82:39:57:53:3b:00:d4:9c:64: a7:6c:b2:9a:39:90:a8:8f:f1:2f:a6:3b:1c:61:dd:30:95:d7: e1:d7:17:6c:90:8c:42:4f:41:ae:e1:67:7e:78:a5:af:86:8f: fa:ae:3d:da:e9:0b:42:97:c5:74:cf:0c:f6:d2:1f:cb:b0:a5: 14:31:76:89:1f:e3:9a:33:fd:06:e5:fb:42:de:62:21:9b:ab: 19:3d:cb:ea:ec:e5:1f:76:72:4c:9e:ca:f2:0e:37:ed:c4:90: 90:4a:30:59:51:1f:d4:ef:5e:ac:9c:53:ca:c9:48:ab:79:70: cb:8d:03:33:29:d8:d8:74:b0:bc:38:3f:0b:cd:d5:94:c9:4e: cd:74:12:53:11:4e:6a:9f:f7:14:de:df:36:ca:a4:ac:a2:40: 60:9b:19:64:8f:d6:c9:fe:e1:64:f7:a8:27:75:71:d5:e1:5a: e7:24:96:93:d0:af:7f:3c:44:bd:88:7e:0d:ba:77:37:2c:1c: 99:f5:11:5e:d3:49:fb:2b:58:bc:80:93:44:43:d7:fe:01:41: 55:1a:94:2d:5c:c6:15:aa:69:3b:e2:fa:1e:89:76:26:04:e1: bb:3a:f4:b3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBaf1fwBwWw+W0t6RHoEIcnZpG7wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MDhaFw0yNjA1MTYxMjAyMDhaMDMxMTAvBgNV BAMTKERBMjVEM0Q5NTlCRjQ4QTM5Q0IwODRCNjBDODk5MzVEMTVBMEVFQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLxlpUX4r999qVAMIsCfaN+4vD zltSI6Pi2AKiCwDtjD1cqWWxxk1fXqAlIsOs4uNl4aNQU1mAsb5i0+CgD03fUHej 3EYBGVi7kTRMVFtXB5V1alU/amNUnhcCBQaT6cL2aRQq/mIN5i7EeodzQ2+00A+Z AUTRpvQ10aEhrMATDX7bFv/lgA4i1Ko1c2/K4M4hGUcYA4HWCRjucygZSq7g69+E T+QiCybVlbd7RQ0bSstAtD7NUwf3ZPnISftkPX7qELGeCoESFE+eI4p0+fkyDNml Yg5zceQ4Mrk+0r3D4HiOij8/J74gTUDilDKela/cbcdmPd5iSEQSZdqxMFhXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2iXT2Vm/SKOcsIS2DImTXRWg7sgwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo62jANBgkqhkiG 9w0BAQsFAAOCAQEAeBUHik3AwWLqAI6E5DcIVZC/gznDSFe9AjStgjlXUzsA1Jxk p2yymjmQqI/xL6Y7HGHdMJXX4dcXbJCMQk9BruFnfnilr4aP+q492ukLQpfFdM8M 9tIfy7ClFDF2iR/jmjP9BuX7Qt5iIZurGT3L6uzlH3ZyTJ7K8g437cSQkEowWVEf 1O9erJxTyslIq3lwy40DMynY2HSwvDg/C83VlMlOzXQSUxFOap/3FN7fNsqkrKJA YJsZZI/Wyf7hZPeoJ3Vx1eFa5ySWk9CvfzxEvYh+Dbp3NywcmfURXtNJ+ytYvICT REPX/gFBVRqULVzGFappO+L6Hol2JgThuzr0sw== -----END CERTIFICATE-----Generated at Sat Jun 7 05:04:50 2025 by rpki-client