$ rpki-client -vvf repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3230322e35362e3136302e302f32322d3234203d3e203435323837.roa File: 3230322e35362e3136302e302f32322d3234203d3e203435323837.roa (raw, json) Hash identifier: rZ6xFcdvrZepULyMbdGd+kxrh/vJFiCfrx4GSYa9yts= Subject key identifier: 6F:31:4D:0B:B5:A4:70:5C:51:46:C8:37:75:16:1A:FC:81:54:0D:0C Certificate issuer: /CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Certificate serial: 6E720B38C713972BA7F9A02B304C4F93110D0423 Authority key identifier: DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3230322e35362e3136302e302f32322d3234203d3e203435323837.roa Signing time: Mon 02 Jun 2025 01:02:34 +0000 ROA not before: Mon 02 Jun 2025 00:57:34 +0000 ROA not after: Mon 01 Jun 2026 01:02:34 +0000 asID: 45287 IP address blocks: 202.56.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:10:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:72:0b:38:c7:13:97:2b:a7:f9:a0:2b:30:4c:4f:93:11:0d:04:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Validity Not Before: Jun 2 00:57:34 2025 GMT Not After : Jun 1 01:02:34 2026 GMT Subject: CN=6F314D0BB5A4705C5146C83775161AFC81540D0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9b:16:86:05:9b:19:41:87:32:84:b1:2e:70: 72:4c:75:84:f3:a1:cd:28:9b:d1:d8:33:bd:ab:9d: 21:3c:88:11:0a:f0:37:ef:76:cd:4f:e5:b9:bd:0d: 9a:49:f1:53:8f:87:f7:5f:2e:07:fe:95:45:64:ed: 00:c5:b0:90:e1:66:cf:b2:c2:1c:64:75:e5:2c:2e: 43:c1:de:b0:f5:62:18:2c:04:fc:38:06:2e:83:8a: 49:64:04:64:b4:bf:84:6d:fd:ec:55:f8:8b:7d:b2: a4:b6:6e:2d:bc:9a:e6:10:eb:c8:b8:95:ff:42:b6: a6:70:ac:a0:b5:12:d4:b3:37:bf:2f:d8:e5:20:59: 8d:80:2b:9d:fe:56:03:b8:14:5c:26:e1:d9:9c:f4: 9e:70:62:2f:64:93:61:73:35:9c:87:cc:0b:68:b7: 02:0f:4f:11:d0:3c:36:41:57:95:02:10:a3:85:72: 72:08:86:28:cb:0f:e6:d7:01:ad:97:c2:c7:e3:7f: 06:03:65:27:6f:39:1c:a2:bc:05:7c:60:84:73:22: 46:b0:48:08:d4:5e:3d:e9:05:7d:7e:56:d3:21:ff: db:90:fb:e4:99:26:46:20:9d:09:03:79:0e:2a:de: 39:bb:69:cb:83:32:bf:92:0f:6a:60:f1:12:8a:b9: 34:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:31:4D:0B:B5:A4:70:5C:51:46:C8:37:75:16:1A:FC:81:54:0D:0C X509v3 Authority Key Identifier: keyid:DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3230322e35362e3136302e302f32322d3234203d3e203435323837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.56.160.0/22 Signature Algorithm: sha256WithRSAEncryption 18:cb:86:57:63:bc:ff:90:59:92:8b:21:19:73:eb:a1:6c:eb: 5c:3a:22:d4:f9:c4:db:2e:96:89:56:f2:e3:f8:9b:15:90:bb: 70:00:93:4e:b4:4c:9b:2a:2a:a1:5d:f5:21:f1:9f:bf:e0:5b: c7:45:3d:9c:ba:c2:2d:91:d7:8f:c0:66:35:8c:2d:a8:bc:fe: e1:ab:d3:42:b5:54:8e:f8:8e:e5:5b:b5:3f:ac:01:e0:6c:8e: 6c:13:f2:8f:fc:a8:fa:d3:e1:20:18:b9:90:84:78:24:e4:4e: 11:27:ca:67:cf:0b:90:42:2a:1d:e6:89:49:ec:43:a8:54:85: c5:c9:1c:10:c7:f9:78:84:80:f6:53:7b:d8:d1:e6:3d:95:34: b6:2b:49:08:9e:a3:21:9c:bb:a4:04:30:cb:d5:58:e5:4b:7c: 14:52:95:87:b9:a6:82:13:fb:4d:83:f8:3e:ed:f9:93:7c:f7: 52:82:02:f2:22:92:d7:d3:bf:64:c7:73:37:6e:8e:f9:6c:f3: 36:ac:4b:e4:1b:bc:1d:8e:bf:73:be:16:12:82:0c:6b:66:58: de:59:6c:8b:13:d2:cd:f7:19:bc:18:3a:26:6e:85:b3:25:ef: 3d:b4:bf:fe:e8:0f:b1:1f:95:f6:56:4d:a5:e1:22:fc:b8:e0: f6:8e:8e:00 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbnILOMcTlyun+aArMExPkxENBCMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQx QkMwNkVCNzAeFw0yNTA2MDIwMDU3MzRaFw0yNjA2MDEwMTAyMzRaMDMxMTAvBgNV BAMTKDZGMzE0RDBCQjVBNDcwNUM1MTQ2QzgzNzc1MTYxQUZDODE1NDBEMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcmxaGBZsZQYcyhLEucHJMdYTz oc0om9HYM72rnSE8iBEK8Dfvds1P5bm9DZpJ8VOPh/dfLgf+lUVk7QDFsJDhZs+y whxkdeUsLkPB3rD1YhgsBPw4Bi6DiklkBGS0v4Rt/exV+It9sqS2bi28muYQ68i4 lf9CtqZwrKC1EtSzN78v2OUgWY2AK53+VgO4FFwm4dmc9J5wYi9kk2FzNZyHzAto twIPTxHQPDZBV5UCEKOFcnIIhijLD+bXAa2XwsfjfwYDZSdvORyivAV8YIRzIkaw SAjUXj3pBX1+VtMh/9uQ++SZJkYgnQkDeQ4q3jm7acuDMr+SD2pg8RKKuTRbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbzFNC7WkcFxRRsg3dRYa/IFUDQwwHwYDVR0j BBgwFoAU3B/Kacpbejo+SCWzyvzDvRvAbrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ODI0OWZjMy02Yzg0LTRlOTEtYjA2Ny1hMGM2YTg0MGEzYTkvMC9EQzFGQ0E2OUNB NUI3QTNBM0U0ODI1QjNDQUZDQzNCRDFCQzA2RUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQxQkMw NkVCNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk4MjQ5ZmMzLTZjODQtNGU5MS1i MDY3LWEwYzZhODQwYTNhOS8wLzMyMzAzMjJlMzUzNjJlMzEzNjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzQzNTMyMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAso4oDANBgkqhkiG 9w0BAQsFAAOCAQEAGMuGV2O8/5BZkoshGXProWzrXDoi1PnE2y6WiVby4/ibFZC7 cACTTrRMmyoqoV31IfGfv+Bbx0U9nLrCLZHXj8BmNYwtqLz+4avTQrVUjviO5Vu1 P6wB4GyObBPyj/yo+tPhIBi5kIR4JOROESfKZ88LkEIqHeaJSexDqFSFxckcEMf5 eISA9lN72NHmPZU0titJCJ6jIZy7pAQwy9VY5Ut8FFKVh7mmghP7TYP4Pu35k3z3 UoIC8iKS19O/ZMdzN26O+WzzNqxL5Bu8HY6/c74WEoIMa2ZY3llsixPSzfcZvBg6 Jm6FsyXvPbS//ugPsR+V9lZNpeEi/Ljg9o6OAA== -----END CERTIFICATE-----Generated at Sat Jun 7 05:49:54 2025 by rpki-client