$ rpki-client -vvf repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3230322e35312e39362e302f31392d3234203d3e203137393935.roa File: 3230322e35312e39362e302f31392d3234203d3e203137393935.roa (raw, json) Hash identifier: VPDdfzNp/Tnip1mpiin5tv4VXeLj0MdK1eiLLlQll+Q= Subject key identifier: 91:4D:66:F5:55:3B:4B:38:D0:64:4B:D9:38:55:06:95:A7:76:50:CC Certificate issuer: /CN=3EDBB7844714C545CED724120ED0E5A34EFB45EE Certificate serial: 4D16BC88BF7F36473D91C5C9ECCCCF64499EB44C Authority key identifier: 3E:DB:B7:84:47:14:C5:45:CE:D7:24:12:0E:D0:E5:A3:4E:FB:45:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3EDBB7844714C545CED724120ED0E5A34EFB45EE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3230322e35312e39362e302f31392d3234203d3e203137393935.roa Signing time: Mon 02 Jun 2025 02:04:33 +0000 ROA not before: Mon 02 Jun 2025 01:59:33 +0000 ROA not after: Mon 01 Jun 2026 02:04:33 +0000 asID: 17995 IP address blocks: 202.51.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3EDBB7844714C545CED724120ED0E5A34EFB45EE.crl rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3EDBB7844714C545CED724120ED0E5A34EFB45EE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3EDBB7844714C545CED724120ED0E5A34EFB45EE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 21:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:16:bc:88:bf:7f:36:47:3d:91:c5:c9:ec:cc:cf:64:49:9e:b4:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3EDBB7844714C545CED724120ED0E5A34EFB45EE Validity Not Before: Jun 2 01:59:33 2025 GMT Not After : Jun 1 02:04:33 2026 GMT Subject: CN=914D66F5553B4B38D0644BD938550695A77650CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e5:cc:41:9d:c2:c8:ad:cc:1f:d9:d2:7c:b8: d4:ac:4a:d5:c0:37:57:b3:b1:0a:d1:ad:f9:02:b2: 73:ec:09:73:a2:ee:43:96:b4:70:26:5b:3c:56:2e: 9c:c9:b6:16:d3:d6:af:c3:6b:f6:73:08:52:fd:48: 6c:19:f2:4d:aa:d2:bb:c6:47:b1:3a:5e:ca:11:7c: fb:a0:24:48:ce:f1:23:92:72:b1:3f:24:70:85:3c: 99:4f:13:ad:f8:57:63:b9:51:e2:5a:d8:61:47:ce: 2d:d8:fb:9f:07:8f:b7:ba:d0:33:ef:d9:ee:88:4d: 82:ce:58:a8:6f:78:53:37:49:9f:03:a8:04:f8:0e: 82:a6:a0:ab:2f:8d:75:36:06:40:fe:2a:da:21:42: cb:c5:ad:25:dc:26:9d:05:e6:f9:dc:dc:8e:62:ef: 13:21:df:19:68:a7:ee:6d:b0:ae:60:2a:3d:9d:d0: 50:37:74:0b:46:34:90:99:cb:3d:9e:8a:56:58:ab: 2d:9a:79:9b:99:b0:40:ac:19:48:5c:8f:2c:8c:c4: cf:4e:3d:ac:11:ad:92:44:0b:9d:40:d3:22:ed:e7: 08:3f:11:5c:22:07:40:55:03:44:69:b4:0e:72:e7: 71:86:24:8d:c4:39:e4:94:dc:97:a0:e4:c3:35:0d: 1c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:4D:66:F5:55:3B:4B:38:D0:64:4B:D9:38:55:06:95:A7:76:50:CC X509v3 Authority Key Identifier: keyid:3E:DB:B7:84:47:14:C5:45:CE:D7:24:12:0E:D0:E5:A3:4E:FB:45:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3EDBB7844714C545CED724120ED0E5A34EFB45EE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3EDBB7844714C545CED724120ED0E5A34EFB45EE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3230322e35312e39362e302f31392d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.96.0/19 Signature Algorithm: sha256WithRSAEncryption 69:73:3c:dd:d5:94:a2:73:93:df:d8:83:1f:51:8a:72:7a:8d: 89:07:06:0d:39:5d:7c:78:74:aa:9b:0a:25:0e:de:3f:bb:da: 8b:cb:4b:b3:3c:0e:65:7f:d2:3e:82:10:3a:a5:6c:a5:f7:fd: 8c:0e:93:7f:b1:0f:01:5c:1c:9c:c6:4a:cb:d6:09:99:44:47: e1:19:61:7f:35:aa:ab:64:e2:67:dd:80:c7:de:73:b9:fa:51: ad:39:01:fb:ab:c0:3b:bf:d2:1c:8a:5d:e7:8c:08:e4:a7:ae: 62:84:62:27:43:27:07:a9:d1:11:2d:9d:28:63:f0:4d:05:8a: c7:ad:0f:50:dd:7b:70:67:e4:70:49:c1:da:ae:9a:80:99:4a: 84:f3:19:7a:44:a4:3e:43:c1:74:22:f7:2d:b0:a4:eb:6e:95: 42:9a:e5:02:18:7d:78:e7:f8:be:9e:55:87:d0:7d:3f:a0:df: 15:e9:60:24:90:ba:88:69:e6:46:63:d6:59:f5:6a:07:d0:cf: 36:bd:57:20:64:7b:bb:d2:db:31:d5:2d:b3:3b:2e:8e:8f:f7: c0:4e:99:23:ff:50:12:40:84:82:b8:66:43:bc:9c:46:86:e6: f2:ee:9b:14:1c:c5:c6:d5:d9:99:49:b3:f5:ad:d6:b6:ca:da: 58:a2:c2:fa -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTRa8iL9/Nkc9kcXJ7MzPZEmetEwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0VEQkI3ODQ0NzE0QzU0NUNFRDcyNDEyMEVEMEU1QTM0 RUZCNDVFRTAeFw0yNTA2MDIwMTU5MzNaFw0yNjA2MDEwMjA0MzNaMDMxMTAvBgNV BAMTKDkxNEQ2NkY1NTUzQjRCMzhEMDY0NEJEOTM4NTUwNjk1QTc3NjUwQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp5cxBncLIrcwf2dJ8uNSsStXA N1ezsQrRrfkCsnPsCXOi7kOWtHAmWzxWLpzJthbT1q/Da/ZzCFL9SGwZ8k2q0rvG R7E6XsoRfPugJEjO8SOScrE/JHCFPJlPE634V2O5UeJa2GFHzi3Y+58Hj7e60DPv 2e6ITYLOWKhveFM3SZ8DqAT4DoKmoKsvjXU2BkD+KtohQsvFrSXcJp0F5vnc3I5i 7xMh3xlop+5tsK5gKj2d0FA3dAtGNJCZyz2eilZYqy2aeZuZsECsGUhcjyyMxM9O PawRrZJEC51A0yLt5wg/EVwiB0BVA0RptA5y53GGJI3EOeSU3Jeg5MM1DRzPAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUkU1m9VU7SzjQZEvZOFUGlad2UMwwHwYDVR0j BBgwFoAUPtu3hEcUxUXO1yQSDtDlo077Re4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZWQ5NTVjOC1lNmQzLTQ5YzItYWJkOC1lMGY5MmMwODEyNDcvMC8zRURCQjc4NDQ3 MTRDNTQ1Q0VENzI0MTIwRUQwRTVBMzRFRkI0NUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0VEQkI3ODQ0NzE0QzU0NUNFRDcyNDEyMEVEMEU1QTM0RUZC NDVFRS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllZDk1NWM4LWU2ZDMtNDljMi1h YmQ4LWUwZjkyYzA4MTI0Ny8wLzMyMzAzMjJlMzUzMTJlMzkzNjJlMzAyZjMxMzky ZDMyMzQyMDNkM2UyMDMxMzczOTM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXKM2AwDQYJKoZIhvcN AQELBQADggEBAGlzPN3VlKJzk9/Ygx9RinJ6jYkHBg05XXx4dKqbCiUO3j+72ovL S7M8DmV/0j6CEDqlbKX3/YwOk3+xDwFcHJzGSsvWCZlER+EZYX81qqtk4mfdgMfe c7n6Ua05AfurwDu/0hyKXeeMCOSnrmKEYidDJwep0REtnShj8E0FisetD1Dde3Bn 5HBJwdqumoCZSoTzGXpEpD5DwXQi9y2wpOtulUKa5QIYfXjn+L6eVYfQfT+g3xXp YCSQuohp5kZj1ln1agfQzza9VyBke7vS2zHVLbM7Lo6P98BOmSP/UBJAhIK4ZkO8 nEaG5vLumxQcxcbV2ZlJs/Wt1rbK2liiwvo= -----END CERTIFICATE-----Generated at Fri Jun 6 16:35:40 2025 by rpki-client