$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232302e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3232302e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: Kp6hGwCGyGljeujbbbqSffFk9wLWV+G8ij/2bSRySwk= Subject key identifier: CD:CB:53:3A:3D:61:C0:03:19:8A:6E:CE:AB:C8:E0:23:95:D0:94:0A Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 1078D9E59D5BA84FCE838B1DE7989D6482275C53 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232302e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:10 +0000 ROA not before: Sat 17 May 2025 11:57:10 +0000 ROA not after: Sat 16 May 2026 12:02:10 +0000 asID: 17671 IP address blocks: 202.58.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 02:39:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:78:d9:e5:9d:5b:a8:4f:ce:83:8b:1d:e7:98:9d:64:82:27:5c:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:10 2025 GMT Not After : May 16 12:02:10 2026 GMT Subject: CN=CDCB533A3D61C003198A6ECEABC8E02395D0940A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3e:88:81:5f:0f:b0:f7:db:a0:c7:18:03:6b: 7a:fc:e6:4b:0c:56:53:12:57:f8:42:10:09:d1:b0: 00:3d:c0:eb:e0:48:fe:72:31:3d:a1:3c:b1:fc:6d: b5:fd:06:11:41:72:86:a3:be:e0:e0:99:7a:f5:1a: 25:96:90:bd:12:64:ba:72:50:3d:e9:40:58:95:ad: 32:d5:30:ea:1d:00:f9:35:fb:cd:4c:f0:53:1e:92: 54:77:87:36:f6:03:fe:e9:d1:4a:fc:87:51:e8:43: fd:d6:7d:c3:60:60:f5:64:c8:f3:8f:e0:a0:23:44: 6b:7a:5b:16:52:54:4a:a6:29:2a:8e:3c:72:57:c4: 66:f7:1e:db:7a:75:07:f1:f6:6e:e6:25:59:e1:df: 2b:77:97:eb:53:55:25:f0:ab:9b:3f:98:1f:17:fd: 5e:b8:0b:70:cd:ff:88:a6:b0:fa:bf:12:39:1b:ad: ec:c8:aa:a6:65:e7:b1:f3:b9:f0:41:da:cb:a7:17: 16:ef:ac:17:ca:8f:73:ab:55:c4:13:0d:01:0f:75: f7:37:03:06:89:73:7f:77:21:29:0e:1c:6e:ff:5d: 74:5a:12:90:3c:48:0d:ed:87:e8:58:74:de:07:72: c5:54:79:8e:68:b3:45:2c:6c:26:a1:8b:96:d9:c0: b0:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:CB:53:3A:3D:61:C0:03:19:8A:6E:CE:AB:C8:E0:23:95:D0:94:0A X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232302e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.220.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:b8:87:f9:da:83:9c:fd:95:e0:fe:d1:42:4f:58:62:3e:5e: b3:b4:33:6b:ac:98:85:5c:20:52:2a:90:46:d1:de:a2:bd:5c: 04:9c:80:17:ba:ed:dd:07:4e:9f:3a:38:d9:c5:ed:98:3b:70: 5d:a6:87:89:e8:f1:4f:5f:e9:b0:5f:89:22:fc:50:99:65:8b: df:3c:3e:d5:5b:b3:67:69:2d:98:b9:d8:11:36:50:85:41:8e: d7:20:14:39:b2:09:ed:ee:6b:80:01:0e:85:5e:b5:8f:04:e8: 99:b8:74:58:2d:f8:bf:e0:fe:da:92:b3:05:c4:51:c6:f5:ca: af:9d:3e:ba:d1:60:3c:be:98:72:9e:81:bf:7d:08:ca:fe:55: 91:4f:cd:3a:49:a2:ff:6b:20:a3:34:e6:cf:f6:a9:8e:d0:94: 2e:dd:a7:ea:9c:65:69:d8:66:01:f7:e3:83:6b:70:81:4d:b3: df:52:70:67:c6:ac:3b:67:62:d9:3d:f3:da:51:49:7d:a0:8d: 3a:34:a7:2f:8e:0e:6d:c4:f1:21:c5:d0:ae:89:e9:4d:19:ff: 70:f3:01:47:16:da:02:77:80:fb:5a:d6:54:08:06:bd:4b:63: e5:3c:47:30:8d:79:80:f8:4e:98:c8:9e:07:1c:bc:bf:12:31: 7f:92:31:83 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEHjZ5Z1bqE/Og4sd55idZIInXFMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MTBaFw0yNjA1MTYxMjAyMTBaMDMxMTAvBgNV BAMTKENEQ0I1MzNBM0Q2MUMwMDMxOThBNkVDRUFCQzhFMDIzOTVEMDk0MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuPoiBXw+w99ugxxgDa3r85ksM VlMSV/hCEAnRsAA9wOvgSP5yMT2hPLH8bbX9BhFBcoajvuDgmXr1GiWWkL0SZLpy UD3pQFiVrTLVMOodAPk1+81M8FMeklR3hzb2A/7p0Ur8h1HoQ/3WfcNgYPVkyPOP 4KAjRGt6WxZSVEqmKSqOPHJXxGb3Htt6dQfx9m7mJVnh3yt3l+tTVSXwq5s/mB8X /V64C3DN/4imsPq/EjkbrezIqqZl57HzufBB2sunFxbvrBfKj3OrVcQTDQEPdfc3 AwaJc393ISkOHG7/XXRaEpA8SA3th+hYdN4HcsVUeY5os0UsbCahi5bZwLDdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzctTOj1hwAMZim7Oq8jgI5XQlAowHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo63DANBgkqhkiG 9w0BAQsFAAOCAQEAfbiH+dqDnP2V4P7RQk9YYj5es7Qza6yYhVwgUiqQRtHeor1c BJyAF7rt3QdOnzo42cXtmDtwXaaHiejxT1/psF+JIvxQmWWL3zw+1VuzZ2ktmLnY ETZQhUGO1yAUObIJ7e5rgAEOhV61jwTombh0WC34v+D+2pKzBcRRxvXKr50+utFg PL6Ycp6Bv30Iyv5VkU/NOkmi/2sgozTmz/apjtCULt2n6pxladhmAffjg2twgU2z 31JwZ8asO2di2T3z2lFJfaCNOjSnL44ObcTxIcXQronpTRn/cPMBRxbaAneA+1rW VAgGvUtj5TxHMI15gPhOmMieBxy8vxIxf5Ixgw== -----END CERTIFICATE-----Generated at Mon Oct 27 19:47:16 2025 by rpki-client