$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232312e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3232312e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: NQnLihc3rIsn0oRPp4k7z+uE8ME37YgOG3cS++ymF8g= Subject key identifier: 6C:BD:84:DF:E7:0A:93:30:C4:30:47:6A:8D:B2:0A:78:39:7F:85:E7 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 1C5A5ECD509E331821F9814E866FA4AB0AF66134 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232312e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:08 +0000 ROA not before: Sat 17 May 2025 11:57:08 +0000 ROA not after: Sat 16 May 2026 12:02:08 +0000 asID: 17671 IP address blocks: 202.58.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:5a:5e:cd:50:9e:33:18:21:f9:81:4e:86:6f:a4:ab:0a:f6:61:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:08 2025 GMT Not After : May 16 12:02:08 2026 GMT Subject: CN=6CBD84DFE70A9330C430476A8DB20A78397F85E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f5:9e:74:c0:02:c5:3c:43:55:b7:dd:6b:96: 4a:dc:a3:80:21:b0:f7:dd:62:9a:42:44:9a:b2:87: 3d:50:de:78:0b:ca:0e:ee:9b:4e:07:de:1b:f0:b0: 67:e3:d8:ef:51:0e:42:04:03:c6:ae:86:a5:85:ef: a0:68:1b:2b:23:7d:d8:14:07:cf:50:be:25:ba:17: de:4f:59:3e:31:7f:0b:94:e7:65:53:e8:79:9f:b1: ca:3a:23:c6:1a:ea:58:9b:ac:2e:9d:8e:49:92:72: 1b:22:e7:89:62:f7:53:b6:3e:5c:7f:fd:6f:5c:17: aa:14:0b:ac:2a:c5:d4:8d:66:11:d6:7a:9c:93:86: d7:1a:e0:c7:9b:7b:57:ff:47:cd:e2:55:21:a0:8e: 7c:5d:d5:c4:87:e7:ac:56:f3:e1:81:d9:d4:6d:96: b1:d9:17:11:5e:13:ec:78:3f:28:1b:c4:02:31:64: 27:3d:4d:c4:32:e3:f8:82:8c:45:25:aa:84:6f:18: 1a:dc:5d:a2:5b:43:b7:f4:6e:9a:66:30:85:dc:52: 15:c2:51:a9:21:e1:73:81:c5:39:ce:a8:4d:4d:99: 9e:9f:2a:7d:c3:6a:31:ec:aa:db:aa:79:d7:0c:bf: 3f:09:0d:e4:75:77:27:1d:73:72:92:8a:51:25:e4: ea:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:BD:84:DF:E7:0A:93:30:C4:30:47:6A:8D:B2:0A:78:39:7F:85:E7 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232312e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.221.0/24 Signature Algorithm: sha256WithRSAEncryption 34:6e:41:63:2d:2a:6e:59:5e:70:f3:cf:12:88:8d:8b:f0:e1: a8:77:0c:bb:a4:57:5d:fd:5a:ce:9e:5f:f7:24:09:c6:bb:c9: d9:94:8d:ad:8c:a0:34:b4:a1:b4:ad:20:36:af:db:1c:fb:a0: 4a:0e:4d:ac:c5:b2:a6:ae:94:ab:9d:d4:b2:b7:0d:fe:51:89: f2:02:f9:43:8e:6a:25:c2:51:60:75:c5:38:1a:b2:e7:e5:dc: 6e:c2:cb:1d:bc:d0:4d:be:00:96:45:11:0f:15:1a:c5:58:8a: 5d:63:79:c3:c5:20:b3:a2:d7:1d:f8:b2:37:28:52:67:97:65: 56:1e:81:75:18:79:a4:2a:22:42:8a:d8:10:df:ae:29:fb:f2: 14:7d:c0:6e:68:4b:8d:83:c0:79:9f:9f:ec:18:73:6d:c3:32: 11:62:15:4f:af:26:d7:27:15:cd:d0:37:6c:a3:84:f3:61:a9: f2:86:44:30:cb:ba:3d:c2:43:32:58:68:17:61:e6:be:29:a8: 99:e9:d7:3a:69:9e:2b:3c:14:3a:46:89:ca:b4:33:47:2c:7d: f9:e3:1c:68:bc:0f:27:e6:fc:24:b2:2d:6f:e4:de:c4:0f:84: 8b:38:d0:4e:ec:8d:dd:e7:17:37:f1:cb:e4:02:a3:69:67:17: 59:df:b9:a8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHFpezVCeMxgh+YFOhm+kqwr2YTQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MDhaFw0yNjA1MTYxMjAyMDhaMDMxMTAvBgNV BAMTKDZDQkQ4NERGRTcwQTkzMzBDNDMwNDc2QThEQjIwQTc4Mzk3Rjg1RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV9Z50wALFPENVt91rlkrco4Ah sPfdYppCRJqyhz1Q3ngLyg7um04H3hvwsGfj2O9RDkIEA8auhqWF76BoGysjfdgU B89QviW6F95PWT4xfwuU52VT6Hmfsco6I8Ya6librC6djkmSchsi54li91O2Plx/ /W9cF6oUC6wqxdSNZhHWepyThtca4Mebe1f/R83iVSGgjnxd1cSH56xW8+GB2dRt lrHZFxFeE+x4PygbxAIxZCc9TcQy4/iCjEUlqoRvGBrcXaJbQ7f0bppmMIXcUhXC Uakh4XOBxTnOqE1NmZ6fKn3DajHsqtuqedcMvz8JDeR1dycdc3KSilEl5OplAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbL2E3+cKkzDEMEdqjbIKeDl/hecwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo63TANBgkqhkiG 9w0BAQsFAAOCAQEANG5BYy0qbllecPPPEoiNi/DhqHcMu6RXXf1azp5f9yQJxrvJ 2ZSNrYygNLShtK0gNq/bHPugSg5NrMWypq6Uq53UsrcN/lGJ8gL5Q45qJcJRYHXF OBqy5+XcbsLLHbzQTb4AlkURDxUaxViKXWN5w8Ugs6LXHfiyNyhSZ5dlVh6BdRh5 pCoiQorYEN+uKfvyFH3AbmhLjYPAeZ+f7BhzbcMyEWIVT68m1ycVzdA3bKOE82Gp 8oZEMMu6PcJDMlhoF2HmvimomenXOmmeKzwUOkaJyrQzRyx9+eMcaLwPJ+b8JLIt b+TexA+EizjQTuyN3ecXN/HL5AKjaWcXWd+5qA== -----END CERTIFICATE-----Generated at Sat Jun 7 05:07:45 2025 by rpki-client