$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232322e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3232322e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: L3O6+bPJ6FkUpywUrNx192CibpEm+euY/WbZY0PZ9U8= Subject key identifier: 91:F4:5E:A8:81:3A:01:5D:6F:F6:5B:ED:EF:BC:70:7D:0E:FA:03:72 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 7ADA3CC3328F9D95B0B0F228C62FBE22B6EBC03A Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232322e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:10 +0000 ROA not before: Sat 17 May 2025 11:57:10 +0000 ROA not after: Sat 16 May 2026 12:02:10 +0000 asID: 17671 IP address blocks: 202.58.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:da:3c:c3:32:8f:9d:95:b0:b0:f2:28:c6:2f:be:22:b6:eb:c0:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:10 2025 GMT Not After : May 16 12:02:10 2026 GMT Subject: CN=91F45EA8813A015D6FF65BEDEFBC707D0EFA0372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:62:79:2d:3d:23:4f:24:a7:37:68:d1:28:1b: 92:12:a9:b6:c7:4d:d2:33:a0:4a:d5:36:d3:5d:23: 19:cc:b6:1c:21:aa:23:23:2c:48:84:f9:dd:b9:4b: e9:09:9f:ea:02:01:f3:d1:a1:09:b6:fa:32:38:c8: a6:af:e2:b0:b9:b5:c9:15:97:17:8b:c8:f1:99:11: f9:88:a1:b0:17:4a:10:b3:66:8d:dd:e6:06:59:62: af:d9:82:2f:c4:01:e6:36:c8:8c:b0:f2:6a:ec:f1: 18:0c:f9:17:88:b4:63:e3:60:94:28:0b:ad:00:aa: 58:dc:b3:fb:49:37:20:d0:c6:a1:c9:6c:c5:98:2a: e9:95:f3:c3:0c:a0:9a:ec:46:a8:49:2a:71:39:9c: cf:b8:14:82:58:66:45:28:57:8d:2d:b2:87:10:d9: 4c:a4:19:48:72:0c:14:1f:e0:70:dc:7a:9e:06:9f: 32:e8:8d:9e:5f:0a:9e:8e:c1:93:c0:34:dd:42:7e: 3c:be:3f:3e:ac:c3:ab:3c:fe:76:36:fc:94:25:f4: 42:fe:c5:75:59:1d:2a:3d:dc:0e:3e:d4:44:05:a7: 1a:7f:f2:9e:3b:3c:f3:1b:b8:f8:92:28:b9:75:42: da:5c:a1:d3:fb:a6:f0:88:5a:0a:8a:8d:51:07:c3: a3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:F4:5E:A8:81:3A:01:5D:6F:F6:5B:ED:EF:BC:70:7D:0E:FA:03:72 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232322e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.222.0/24 Signature Algorithm: sha256WithRSAEncryption 88:10:6a:9a:a8:7a:3b:6e:ce:f5:8c:8f:86:92:ae:26:d0:3d: 8e:27:18:c3:3e:31:fa:74:a6:2b:7c:ed:eb:9e:ba:42:41:f5: c7:12:f6:94:d7:a9:f0:b4:15:1d:05:6e:0f:cd:8e:f9:93:93: 64:2b:61:67:be:8e:a1:4a:8b:bf:25:15:fd:55:48:64:9f:15: ab:de:5e:b3:44:dd:d7:90:fa:3e:aa:1f:66:b6:6e:f8:84:51: 3c:b3:84:22:43:9e:90:53:7a:53:db:dc:08:bd:32:a6:7e:88: a8:cc:7d:26:59:f6:d1:e3:55:15:c0:12:a4:59:c1:aa:f9:32: 71:0f:f6:ea:04:af:07:2f:98:ae:77:53:e3:f7:17:61:f4:1a: cc:74:ad:e0:f2:f6:a1:c1:b1:a8:c7:78:b5:b8:ae:df:b6:84: 16:b9:bb:cc:6e:52:4a:d4:ca:72:fe:c6:b8:e1:d4:b6:a0:14: 9c:b7:2e:75:e8:f1:91:d2:3a:cb:c4:c4:c5:20:a0:06:e6:2a: b0:93:14:70:94:8b:ba:cb:b4:70:c2:89:ef:e7:1b:50:17:e8: 32:b0:cf:a1:72:d1:8b:4d:fe:f4:a5:3a:70:4d:12:fa:2d:f0: 90:06:5b:2c:64:3a:1b:89:82:71:2a:35:42:1d:f2:44:7f:c9: f9:f5:3b:de -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeto8wzKPnZWwsPIoxi++IrbrwDowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MTBaFw0yNjA1MTYxMjAyMTBaMDMxMTAvBgNV BAMTKDkxRjQ1RUE4ODEzQTAxNUQ2RkY2NUJFREVGQkM3MDdEMEVGQTAzNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTYnktPSNPJKc3aNEoG5ISqbbH TdIzoErVNtNdIxnMthwhqiMjLEiE+d25S+kJn+oCAfPRoQm2+jI4yKav4rC5tckV lxeLyPGZEfmIobAXShCzZo3d5gZZYq/Zgi/EAeY2yIyw8mrs8RgM+ReItGPjYJQo C60Aqljcs/tJNyDQxqHJbMWYKumV88MMoJrsRqhJKnE5nM+4FIJYZkUoV40tsocQ 2UykGUhyDBQf4HDcep4GnzLojZ5fCp6OwZPANN1Cfjy+Pz6sw6s8/nY2/JQl9EL+ xXVZHSo93A4+1EQFpxp/8p47PPMbuPiSKLl1QtpcodP7pvCIWgqKjVEHw6OVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkfReqIE6AV1v9lvt77xwfQ76A3IwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo63jANBgkqhkiG 9w0BAQsFAAOCAQEAiBBqmqh6O27O9YyPhpKuJtA9jicYwz4x+nSmK3zt6566QkH1 xxL2lNep8LQVHQVuD82O+ZOTZCthZ76OoUqLvyUV/VVIZJ8Vq95es0Td15D6Pqof ZrZu+IRRPLOEIkOekFN6U9vcCL0ypn6IqMx9Jln20eNVFcASpFnBqvkycQ/26gSv By+YrndT4/cXYfQazHSt4PL2ocGxqMd4tbiu37aEFrm7zG5SStTKcv7GuOHUtqAU nLcudejxkdI6y8TExSCgBuYqsJMUcJSLusu0cMKJ7+cbUBfoMrDPoXLRi03+9KU6 cE0S+i3wkAZbLGQ6G4mCcSo1Qh3yRH/J+fU73g== -----END CERTIFICATE-----Generated at Fri Jun 6 16:51:21 2025 by rpki-client