$ rpki-client -vvf repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3230332e39392e3133302e302f32332d3234203d3e203435323837.roa File: 3230332e39392e3133302e302f32332d3234203d3e203435323837.roa (raw, json) Hash identifier: k7ibyopUV9/XrMW2a9JFbhidu+OXQwQx2OObsR3bxGk= Subject key identifier: BA:FF:E2:C4:3D:A9:41:3A:85:60:48:59:20:44:4F:AE:34:B6:FC:67 Certificate issuer: /CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Certificate serial: 5A67FB4DA9D67E6A4D1D6C3BD83F9E8B9AAD0115 Authority key identifier: DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3230332e39392e3133302e302f32332d3234203d3e203435323837.roa Signing time: Mon 02 Jun 2025 01:02:34 +0000 ROA not before: Mon 02 Jun 2025 00:57:34 +0000 ROA not after: Mon 01 Jun 2026 01:02:34 +0000 asID: 45287 IP address blocks: 203.99.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:10:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:67:fb:4d:a9:d6:7e:6a:4d:1d:6c:3b:d8:3f:9e:8b:9a:ad:01:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Validity Not Before: Jun 2 00:57:34 2025 GMT Not After : Jun 1 01:02:34 2026 GMT Subject: CN=BAFFE2C43DA9413A8560485920444FAE34B6FC67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0b:e0:a5:81:dd:b1:50:cb:55:18:ab:53:71: de:48:fe:ff:6a:37:9c:c0:b8:e8:bf:18:61:83:44: ea:e3:a8:37:97:df:4d:91:4f:7a:ab:3a:2c:a8:d0: 79:a0:be:63:16:c5:28:a9:a9:fb:bd:90:f9:59:1d: 36:91:68:fe:30:75:09:0b:f6:03:2c:02:78:9d:f8: 46:ed:d6:ca:da:33:7e:c3:ab:be:e0:10:7a:a5:40: 07:84:ab:4a:1a:41:ff:91:a7:42:ee:03:b9:79:74: 20:65:72:00:be:1a:47:95:cf:ca:ed:80:ca:5b:de: f9:97:28:ab:d1:08:f5:6b:df:74:40:fc:82:8e:12: 1a:fb:05:d1:a0:37:c9:4f:fb:c0:c4:8c:6f:31:2d: 09:93:e1:0b:9f:02:8d:30:fb:9d:56:f6:eb:57:cd: 5f:69:1f:d1:55:53:7e:8b:60:98:7f:27:89:d8:1c: d6:89:34:c2:54:33:59:e4:1f:f0:23:76:42:a9:85: ed:9a:85:93:23:a7:8e:15:37:c5:8a:7f:20:3e:f2: 33:a6:f0:4c:89:f1:b0:8b:09:78:4a:26:5a:42:7c: fe:12:88:1e:19:a0:9a:0a:05:04:a3:07:f1:1a:72: a3:ca:2c:a5:2e:6b:41:fc:5a:21:3d:d5:70:5b:db: 3e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:FF:E2:C4:3D:A9:41:3A:85:60:48:59:20:44:4F:AE:34:B6:FC:67 X509v3 Authority Key Identifier: keyid:DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3230332e39392e3133302e302f32332d3234203d3e203435323837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.130.0/23 Signature Algorithm: sha256WithRSAEncryption 67:49:9b:e3:e4:ab:3e:13:88:24:66:c4:10:90:45:03:80:3a: 2b:cc:27:4b:85:5a:e7:1e:69:0a:6b:cf:c4:c7:78:76:97:27: d1:05:d2:09:cd:9c:a1:24:e0:ad:6b:e4:d9:55:9b:34:f8:c3: 01:7d:b3:30:53:66:af:9c:3c:54:41:59:b3:24:48:45:3c:09: 85:59:e5:2f:bd:3d:04:a8:9f:5c:cd:a1:65:2d:22:f6:08:f5: 3f:d5:f2:db:ff:2a:76:87:64:8b:74:b9:ff:39:8c:68:06:42: bb:73:25:0a:2b:fe:f8:94:fb:1e:19:10:10:eb:6f:04:82:ca: 06:09:90:cd:d6:e1:d0:e4:cb:cb:3b:8e:c2:58:8e:b4:81:d5: 7c:2e:95:6a:c7:c0:25:0c:de:52:8e:66:19:cc:62:f5:28:a1: 54:8c:b4:3a:48:c4:ad:c1:d0:4a:9c:8a:8f:6b:5d:cb:c8:76: 84:bc:72:a0:56:b3:8c:a9:76:6f:a3:1e:ce:a9:72:dd:11:3f: 92:03:a6:da:75:e4:8e:55:0f:4c:91:be:6e:d5:ef:86:54:43: d8:0e:d9:e4:d8:cc:f6:4c:28:a0:ad:ed:73:c7:af:7c:9a:45: b1:d1:59:2c:4a:c8:17:e4:78:17:b0:ee:83:66:06:d5:62:c0: a8:1d:d6:83 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWmf7TanWfmpNHWw72D+ei5qtARUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQx QkMwNkVCNzAeFw0yNTA2MDIwMDU3MzRaFw0yNjA2MDEwMTAyMzRaMDMxMTAvBgNV BAMTKEJBRkZFMkM0M0RBOTQxM0E4NTYwNDg1OTIwNDQ0RkFFMzRCNkZDNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWC+Clgd2xUMtVGKtTcd5I/v9q N5zAuOi/GGGDROrjqDeX302RT3qrOiyo0HmgvmMWxSipqfu9kPlZHTaRaP4wdQkL 9gMsAnid+Ebt1sraM37Dq77gEHqlQAeEq0oaQf+Rp0LuA7l5dCBlcgC+GkeVz8rt gMpb3vmXKKvRCPVr33RA/IKOEhr7BdGgN8lP+8DEjG8xLQmT4QufAo0w+51W9utX zV9pH9FVU36LYJh/J4nYHNaJNMJUM1nkH/AjdkKphe2ahZMjp44VN8WKfyA+8jOm 8EyJ8bCLCXhKJlpCfP4SiB4ZoJoKBQSjB/EacqPKLKUua0H8WiE91XBb2z4BAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuv/ixD2pQTqFYEhZIERPrjS2/GcwHwYDVR0j BBgwFoAU3B/Kacpbejo+SCWzyvzDvRvAbrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ODI0OWZjMy02Yzg0LTRlOTEtYjA2Ny1hMGM2YTg0MGEzYTkvMC9EQzFGQ0E2OUNB NUI3QTNBM0U0ODI1QjNDQUZDQzNCRDFCQzA2RUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQxQkMw NkVCNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk4MjQ5ZmMzLTZjODQtNGU5MS1i MDY3LWEwYzZhODQwYTNhOS8wLzMyMzAzMzJlMzkzOTJlMzEzMzMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNTMyMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEActjgjANBgkqhkiG 9w0BAQsFAAOCAQEAZ0mb4+SrPhOIJGbEEJBFA4A6K8wnS4Va5x5pCmvPxMd4dpcn 0QXSCc2coSTgrWvk2VWbNPjDAX2zMFNmr5w8VEFZsyRIRTwJhVnlL709BKifXM2h ZS0i9gj1P9Xy2/8qdodki3S5/zmMaAZCu3MlCiv++JT7HhkQEOtvBILKBgmQzdbh 0OTLyzuOwliOtIHVfC6VasfAJQzeUo5mGcxi9SihVIy0OkjErcHQSpyKj2tdy8h2 hLxyoFazjKl2b6Mezqly3RE/kgOm2nXkjlUPTJG+btXvhlRD2A7Z5NjM9kwooK3t c8evfJpFsdFZLErIF+R4F7Dug2YG1WLAqB3Wgw== -----END CERTIFICATE-----Generated at Sat Jun 7 14:48:57 2025 by rpki-client