$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232332e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3232332e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: Zo/eyRZ8seZM2sZsVLDwUFuRMCvHDlMgzYAS9X3QA/s= Subject key identifier: 3A:18:79:DF:B7:7E:85:0D:07:0B:84:39:A1:ED:26:02:D7:33:23:BD Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 5FA040AA26424A535DB0E181F07208AD5021BDA0 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232332e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:07 +0000 ROA not before: Sat 17 May 2025 11:57:07 +0000 ROA not after: Sat 16 May 2026 12:02:07 +0000 asID: 17671 IP address blocks: 202.58.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a0:40:aa:26:42:4a:53:5d:b0:e1:81:f0:72:08:ad:50:21:bd:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:07 2025 GMT Not After : May 16 12:02:07 2026 GMT Subject: CN=3A1879DFB77E850D070B8439A1ED2602D73323BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2d:0d:53:9a:73:99:54:a3:6d:e4:07:65:02: 61:d5:00:e9:b6:5e:a8:fc:33:69:e1:2c:66:9a:d9: 24:d8:12:f2:58:5f:29:f6:45:ab:0b:5f:69:7b:dd: 30:aa:bb:15:4a:9b:d9:39:87:fa:99:b4:40:7c:cc: 19:2f:50:ef:3f:d8:d9:48:50:93:79:02:f5:83:bd: 68:1e:61:92:c1:12:5c:dc:1b:da:26:c3:33:45:62: 8c:24:03:17:93:44:73:4a:fa:a0:d8:da:af:16:01: 6a:e0:8e:6e:60:e7:c6:dd:9a:a8:3e:3f:5a:8d:5f: 1b:93:25:54:4a:c5:73:f0:bb:93:1a:86:29:48:9d: 10:43:e4:bf:50:8c:8f:83:02:47:b9:32:43:f0:55: 27:c6:19:57:59:4f:77:1d:fb:ff:e0:87:62:0c:b3: 9c:c8:46:df:19:c3:43:79:85:4f:86:36:39:5d:53: 28:3b:d0:58:18:20:a7:a0:bc:35:d2:0d:ba:a0:44: 22:e3:b5:4a:9d:fe:27:f2:a3:66:1f:50:6f:02:52: 90:ed:fd:e1:c7:ed:d2:61:f8:5e:ce:ac:5e:48:84: bb:07:5a:46:57:94:4a:82:66:78:3f:3b:63:4f:5a: 81:96:27:e3:c4:44:75:01:00:68:a3:e8:f1:b3:f0: 85:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:18:79:DF:B7:7E:85:0D:07:0B:84:39:A1:ED:26:02:D7:33:23:BD X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232332e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.223.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:9a:e3:ff:0d:55:bb:ac:19:bf:8c:83:79:8d:c1:68:8f:1a: c8:09:7f:15:4f:01:3b:0b:1b:cb:4f:4c:8f:3b:ef:04:6c:20: bf:a0:05:d1:ba:eb:56:b5:d1:70:b7:f8:ff:64:54:a3:31:be: b9:7e:0e:a9:69:65:2c:48:b6:c1:bb:dc:43:a8:31:29:49:dd: 5e:60:c6:60:54:fe:13:9a:ab:84:6c:27:50:14:d8:73:84:85: 64:f4:c3:7f:af:11:3c:31:cd:66:2a:e0:fb:40:67:6c:48:bc: c1:d0:66:7e:1c:31:69:2f:4a:21:34:f7:eb:2a:56:c4:2f:93: 92:ba:ee:b5:f1:73:59:f1:3c:98:7c:9f:ed:b3:86:ee:84:36: 25:b7:28:da:76:56:09:87:bc:f3:56:96:b4:b3:6b:d0:1c:7f: e2:12:e1:5c:c6:4c:a2:6a:c2:7f:e6:81:6e:e7:7c:8a:31:67: 70:70:25:00:89:71:24:ae:61:eb:f1:bb:85:34:ff:fa:57:d4: 3a:2c:3b:a3:ad:31:e2:94:6e:8e:b9:5d:c8:27:df:a7:9c:02: f6:cd:dd:96:d8:5b:28:89:15:e5:c8:4b:12:15:06:9e:a3:e5: cf:38:3a:2f:36:fb:ff:fc:41:c4:d6:b1:fa:b3:c2:59:33:88: da:4f:fe:83 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUX6BAqiZCSlNdsOGB8HIIrVAhvaAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MDdaFw0yNjA1MTYxMjAyMDdaMDMxMTAvBgNV BAMTKDNBMTg3OURGQjc3RTg1MEQwNzBCODQzOUExRUQyNjAyRDczMzIzQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDULQ1TmnOZVKNt5AdlAmHVAOm2 Xqj8M2nhLGaa2STYEvJYXyn2RasLX2l73TCquxVKm9k5h/qZtEB8zBkvUO8/2NlI UJN5AvWDvWgeYZLBElzcG9omwzNFYowkAxeTRHNK+qDY2q8WAWrgjm5g58bdmqg+ P1qNXxuTJVRKxXPwu5MahilInRBD5L9QjI+DAke5MkPwVSfGGVdZT3cd+//gh2IM s5zIRt8Zw0N5hU+GNjldUyg70FgYIKegvDXSDbqgRCLjtUqd/ifyo2YfUG8CUpDt /eHH7dJh+F7OrF5IhLsHWkZXlEqCZng/O2NPWoGWJ+PERHUBAGij6PGz8IWTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOhh537d+hQ0HC4Q5oe0mAtczI70wHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo63zANBgkqhkiG 9w0BAQsFAAOCAQEAjZrj/w1Vu6wZv4yDeY3BaI8ayAl/FU8BOwsby09MjzvvBGwg v6AF0brrVrXRcLf4/2RUozG+uX4OqWllLEi2wbvcQ6gxKUndXmDGYFT+E5qrhGwn UBTYc4SFZPTDf68RPDHNZirg+0BnbEi8wdBmfhwxaS9KITT36ypWxC+TkrrutfFz WfE8mHyf7bOG7oQ2Jbco2nZWCYe881aWtLNr0Bx/4hLhXMZMomrCf+aBbud8ijFn cHAlAIlxJK5h6/G7hTT/+lfUOiw7o60x4pRujrldyCffp5wC9s3dlthbKIkV5chL EhUGnqPlzzg6Lzb7//xBxNax+rPCWTOI2k/+gw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:52:27 2025 by rpki-client