$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231392e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3231392e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: ys/9e5PWPAXuTo/Wlh1t1FxESj9yRQl91Bh52CcgQO4= Subject key identifier: 32:4F:A2:D5:9E:92:4B:C6:8E:44:BA:0C:B1:CA:E6:24:48:9C:70:18 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 148ADB7DBEEAE47FB45F8C6C10E8406C78B7372C Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231392e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:09 +0000 ROA not before: Sat 17 May 2025 11:57:09 +0000 ROA not after: Sat 16 May 2026 12:02:09 +0000 asID: 17671 IP address blocks: 202.58.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:8a:db:7d:be:ea:e4:7f:b4:5f:8c:6c:10:e8:40:6c:78:b7:37:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:09 2025 GMT Not After : May 16 12:02:09 2026 GMT Subject: CN=324FA2D59E924BC68E44BA0CB1CAE624489C7018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:33:54:e6:47:01:60:18:8c:da:cd:a9:11:63: 52:8f:85:b2:fa:76:36:fa:ae:e2:01:22:5a:be:cb: 7e:ed:7e:71:fe:78:9a:9b:2f:62:79:d3:03:ba:26: 73:6e:e6:d8:cc:ae:77:f1:94:bf:bc:4b:9c:95:70: a0:0e:11:06:44:db:66:80:06:33:e8:ea:4c:f9:4a: 5d:69:99:5d:28:e7:8c:fe:41:f5:8e:f0:2d:16:85: 66:79:4c:a0:0b:96:a7:42:d3:b6:b0:78:e7:0a:35: df:21:84:aa:88:82:a9:37:c6:f8:8e:a3:a4:1f:ff: 89:61:2a:51:03:dd:ef:c5:4c:f6:bc:da:60:42:9a: 33:ac:b2:6e:0d:09:fa:56:80:9b:23:18:3f:b0:66: e8:f3:e7:3d:76:17:fc:43:85:02:8a:88:33:18:a0: a5:c9:07:19:44:4e:4e:e0:ea:5a:fa:ce:1d:2c:3e: e0:61:50:21:13:62:f8:25:55:3e:69:92:1c:a4:a9: a9:a0:83:c5:7b:d1:de:88:4b:9c:4e:6f:82:9d:37: f5:ab:4d:85:f3:19:8d:fe:3c:51:4f:cb:24:7a:70: f2:c5:4c:ae:ea:73:55:a0:76:b9:35:0c:41:4f:07: 0c:58:9a:de:7d:4f:3b:39:0d:cb:c1:ce:a7:df:0d: b9:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:4F:A2:D5:9E:92:4B:C6:8E:44:BA:0C:B1:CA:E6:24:48:9C:70:18 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231392e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.219.0/24 Signature Algorithm: sha256WithRSAEncryption 24:ce:96:c0:b6:28:b1:86:25:8e:3e:7e:06:53:dd:9b:b4:59: cc:86:35:b4:6a:13:48:22:cb:7c:f9:81:f8:be:35:b8:76:bf: bb:bc:d6:45:a3:93:bb:e2:85:59:ce:4b:ce:6b:e8:1a:33:61: 48:83:bd:3a:55:4b:9f:8c:da:58:9e:8a:cf:1c:b0:f6:ff:52: b9:fe:c4:8b:9e:9e:26:f5:3d:f6:4e:e6:89:79:db:08:41:eb: 61:7e:b2:bc:c9:6d:6e:5a:1b:bc:09:f7:45:95:9b:57:ca:4e: 9f:91:03:fb:09:02:38:78:79:d4:37:d5:59:64:25:e0:d8:31: 2b:93:cd:9a:f9:71:cd:ed:6e:c5:e9:35:81:10:62:a6:cd:b5: 44:82:a5:55:0d:c3:77:33:58:70:66:3c:60:21:65:ba:6d:f8: 46:6b:ea:dc:3b:ec:5d:77:43:73:17:d9:fe:94:0a:6c:4f:60: 00:dc:5d:a5:77:4c:e3:d3:8c:e7:67:d8:9d:29:3c:87:c1:48: af:95:ef:8c:7d:92:90:84:a3:af:41:f8:cf:48:27:94:93:5a: 56:fd:19:24:10:ab:08:ed:91:3b:2e:c9:cc:7d:dd:20:68:4d: 07:4d:c5:da:c6:ec:09:3e:d6:4b:af:e0:e1:7e:fe:92:3e:e6: b5:82:dd:41 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFIrbfb7q5H+0X4xsEOhAbHi3NywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MDlaFw0yNjA1MTYxMjAyMDlaMDMxMTAvBgNV BAMTKDMyNEZBMkQ1OUU5MjRCQzY4RTQ0QkEwQ0IxQ0FFNjI0NDg5QzcwMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsM1TmRwFgGIzazakRY1KPhbL6 djb6ruIBIlq+y37tfnH+eJqbL2J50wO6JnNu5tjMrnfxlL+8S5yVcKAOEQZE22aA BjPo6kz5Sl1pmV0o54z+QfWO8C0WhWZ5TKALlqdC07aweOcKNd8hhKqIgqk3xviO o6Qf/4lhKlED3e/FTPa82mBCmjOssm4NCfpWgJsjGD+wZujz5z12F/xDhQKKiDMY oKXJBxlETk7g6lr6zh0sPuBhUCETYvglVT5pkhykqamgg8V70d6IS5xOb4KdN/Wr TYXzGY3+PFFPyyR6cPLFTK7qc1Wgdrk1DEFPBwxYmt59Tzs5DcvBzqffDblJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMk+i1Z6SS8aORLoMscrmJEiccBgwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo62zANBgkqhkiG 9w0BAQsFAAOCAQEAJM6WwLYosYYljj5+BlPdm7RZzIY1tGoTSCLLfPmB+L41uHa/ u7zWRaOTu+KFWc5LzmvoGjNhSIO9OlVLn4zaWJ6Kzxyw9v9Suf7Ei56eJvU99k7m iXnbCEHrYX6yvMltblobvAn3RZWbV8pOn5ED+wkCOHh51DfVWWQl4NgxK5PNmvlx ze1uxek1gRBips21RIKlVQ3DdzNYcGY8YCFlum34Rmvq3DvsXXdDcxfZ/pQKbE9g ANxdpXdM49OM52fYnSk8h8FIr5XvjH2SkISjr0H4z0gnlJNaVv0ZJBCrCO2ROy7J zH3dIGhNB03F2sbsCT7WS6/g4X7+kj7mtYLdQQ== -----END CERTIFICATE-----Generated at Sun Jun 8 18:43:03 2025 by rpki-client