$ rpki-client -vvf repo-rpki.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/3230322e35322e35392e302f32342d3234203d3e203436303538.roa File: 3230322e35322e35392e302f32342d3234203d3e203436303538.roa (raw, json) Hash identifier: Du41YA1NCiK2HlEV88F/QDnyK1sLmVF33xCMfe54rMI= Subject key identifier: 8A:58:A8:35:EB:C2:D1:46:D5:17:86:5E:6E:6A:34:97:9C:C6:DB:B4 Certificate issuer: /CN=2E55483B906244D2DA357F014F9AFA606D95C345 Certificate serial: 144A3D4CFCEBBFF8B41962DFF6FE2DBF66570A74 Authority key identifier: 2E:55:48:3B:90:62:44:D2:DA:35:7F:01:4F:9A:FA:60:6D:95:C3:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E55483B906244D2DA357F014F9AFA606D95C345.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/3230322e35322e35392e302f32342d3234203d3e203436303538.roa Signing time: Sat 19 Apr 2025 07:00:01 +0000 ROA not before: Sat 19 Apr 2025 06:55:01 +0000 ROA not after: Sat 18 Apr 2026 07:00:01 +0000 asID: 46058 IP address blocks: 202.52.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/2E55483B906244D2DA357F014F9AFA606D95C345.crl rsync://repo-rpki.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/2E55483B906244D2DA357F014F9AFA606D95C345.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E55483B906244D2DA357F014F9AFA606D95C345.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 01:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:4a:3d:4c:fc:eb:bf:f8:b4:19:62:df:f6:fe:2d:bf:66:57:0a:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E55483B906244D2DA357F014F9AFA606D95C345 Validity Not Before: Apr 19 06:55:01 2025 GMT Not After : Apr 18 07:00:01 2026 GMT Subject: CN=8A58A835EBC2D146D517865E6E6A34979CC6DBB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:78:85:df:77:5f:48:1e:77:18:88:8f:92:b4: 74:2f:59:76:8d:f0:0e:ad:44:83:21:0e:73:2a:78: a1:a3:b8:3c:3d:39:48:6c:e8:b6:26:43:00:e3:87: b7:c1:69:63:53:c5:5a:76:7d:60:d7:02:d9:26:95: 12:d0:64:88:17:a3:9f:a8:91:e2:d0:71:40:b3:53: 92:b5:b6:01:08:a7:98:65:34:d4:e1:f7:b0:62:ac: 7e:ff:3d:b5:98:1f:9c:18:ec:dc:1f:7d:a6:05:d8: 57:fa:81:23:9c:71:d9:02:bf:3f:1f:fa:31:78:a5: e1:16:73:bd:2d:37:c0:ba:be:e1:ad:10:51:a2:8d: e3:de:86:b5:e2:e3:a5:0d:72:e8:fb:12:69:6e:8b: 0a:7d:0f:72:c2:b6:49:e3:4e:07:7d:13:fd:1a:b7: 53:db:65:5d:a2:2d:6e:fe:ff:11:04:4e:b7:b1:fd: 3f:33:c0:5c:94:51:ca:c8:93:83:ef:1e:cf:dc:ff: a1:3a:bd:7c:48:71:bb:12:a0:2c:77:70:7d:6e:58: ef:2a:1f:61:ec:cf:19:11:6b:47:d0:a4:5f:2d:62: 13:dd:0a:86:14:1b:66:bf:02:1c:0a:71:c0:38:30: 4e:aa:02:d5:2a:05:72:73:c9:08:bc:8e:60:59:a9: 46:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:58:A8:35:EB:C2:D1:46:D5:17:86:5E:6E:6A:34:97:9C:C6:DB:B4 X509v3 Authority Key Identifier: keyid:2E:55:48:3B:90:62:44:D2:DA:35:7F:01:4F:9A:FA:60:6D:95:C3:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/2E55483B906244D2DA357F014F9AFA606D95C345.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E55483B906244D2DA357F014F9AFA606D95C345.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/3230322e35322e35392e302f32342d3234203d3e203436303538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.59.0/24 Signature Algorithm: sha256WithRSAEncryption 39:99:a1:1e:63:39:65:81:91:95:ef:25:7a:7e:93:bf:f1:86: 58:fb:bf:d9:39:06:cb:c2:b6:d4:19:b4:94:1e:99:5b:eb:67: d5:fb:8a:5c:b9:4a:89:fe:fe:35:fc:f7:5f:11:42:bc:08:36: 09:a0:e6:49:87:14:55:fe:4c:3c:7a:d4:d5:db:13:1c:42:c6: e9:b3:e6:79:09:f6:5c:be:2e:f9:75:6b:f3:10:d3:8f:fa:a3: 5c:64:65:36:47:b7:d6:c0:b1:0d:dc:07:dd:6d:4a:3b:a6:4f: 8e:ff:f7:80:05:66:59:76:46:77:e7:39:fd:56:1d:f8:b8:5f: ab:c1:48:a9:83:9d:af:a8:0b:b5:bf:d3:5e:e4:21:c5:ff:b4: 06:86:59:ee:82:c3:60:51:c2:a3:0b:f8:74:44:08:fe:ac:fd: e3:9d:0b:46:6f:e2:71:2f:66:be:ce:34:de:18:60:2a:4d:e3: 6b:4c:53:01:03:db:82:8d:79:8d:c5:e7:9c:68:2f:ce:74:e7: 11:91:fb:6d:43:90:80:f1:d9:28:84:1a:2c:13:95:e2:83:e8: 59:15:fa:09:c2:2b:0a:b7:e5:b2:f4:a8:97:53:5c:94:5a:d4: 32:64:0b:d5:2e:a6:28:7b:30:36:b8:c8:73:d7:d6:82:e3:d1: 91:cf:16:c4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUFEo9TPzrv/i0GWLf9v4tv2ZXCnQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkU1NTQ4M0I5MDYyNDREMkRBMzU3RjAxNEY5QUZBNjA2 RDk1QzM0NTAeFw0yNTA0MTkwNjU1MDFaFw0yNjA0MTgwNzAwMDFaMDMxMTAvBgNV BAMTKDhBNThBODM1RUJDMkQxNDZENTE3ODY1RTZFNkEzNDk3OUNDNkRCQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2eIXfd19IHncYiI+StHQvWXaN 8A6tRIMhDnMqeKGjuDw9OUhs6LYmQwDjh7fBaWNTxVp2fWDXAtkmlRLQZIgXo5+o keLQcUCzU5K1tgEIp5hlNNTh97BirH7/PbWYH5wY7NwffaYF2Ff6gSOccdkCvz8f +jF4peEWc70tN8C6vuGtEFGijePehrXi46UNcuj7Emluiwp9D3LCtknjTgd9E/0a t1PbZV2iLW7+/xEETrex/T8zwFyUUcrIk4PvHs/c/6E6vXxIcbsSoCx3cH1uWO8q H2HszxkRa0fQpF8tYhPdCoYUG2a/AhwKccA4ME6qAtUqBXJzyQi8jmBZqUYjAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUilioNevC0UbVF4Zebmo0l5zG27QwHwYDVR0j BBgwFoAULlVIO5BiRNLaNX8BT5r6YG2Vw0UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MmUyM2RjNC00ZmQ1LTQzZTItYmI2YS00ZmRjMzg3ZWJjNTgvMC8yRTU1NDgzQjkw NjI0NEQyREEzNTdGMDE0RjlBRkE2MDZEOTVDMzQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkU1NTQ4M0I5MDYyNDREMkRBMzU3RjAxNEY5QUZBNjA2RDk1 QzM0NS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EyZTIzZGM0LTRmZDUtNDNlMi1i YjZhLTRmZGMzODdlYmM1OC8wLzMyMzAzMjJlMzUzMjJlMzUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM1Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKNDswDQYJKoZIhvcN AQELBQADggEBADmZoR5jOWWBkZXvJXp+k7/xhlj7v9k5BsvCttQZtJQemVvrZ9X7 ily5Son+/jX8918RQrwINgmg5kmHFFX+TDx61NXbExxCxumz5nkJ9ly+Lvl1a/MQ 04/6o1xkZTZHt9bAsQ3cB91tSjumT47/94AFZll2RnfnOf1WHfi4X6vBSKmDna+o C7W/017kIcX/tAaGWe6Cw2BRwqML+HRECP6s/eOdC0Zv4nEvZr7ONN4YYCpN42tM UwED24KNeY3F55xoL8505xGR+21DkIDx2SiEGiwTleKD6FkV+gnCKwq35bL0qJdT XJRa1DJkC9Uupih7MDa4yHPX1oLj0ZHPFsQ= -----END CERTIFICATE-----Generated at Sat Jun 7 14:11:29 2025 by rpki-client