$ rpki-client -vvf repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/3230322e362e3232342e302f32302d3234203d3e203233373536.roa File: 3230322e362e3232342e302f32302d3234203d3e203233373536.roa (raw, json) Hash identifier: RLSgg2xBR0eY1oQJ2Fkz63ShTm+IebfyQIgkaUmONdM= Subject key identifier: 9E:D9:2C:9E:A1:81:AC:6C:12:89:E5:CA:11:C8:0E:9F:3C:4A:78:96 Certificate issuer: /CN=DBF597EA29EF8A70656446AF75CF33F0618E8282 Certificate serial: 19F74D39B328EB66BA8D47A12589639A89A6F487 Authority key identifier: DB:F5:97:EA:29:EF:8A:70:65:64:46:AF:75:CF:33:F0:61:8E:82:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF597EA29EF8A70656446AF75CF33F0618E8282.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/3230322e362e3232342e302f32302d3234203d3e203233373536.roa Signing time: Mon 02 Jun 2025 01:03:16 +0000 ROA not before: Mon 02 Jun 2025 00:58:16 +0000 ROA not after: Mon 01 Jun 2026 01:03:16 +0000 asID: 23756 IP address blocks: 202.6.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/DBF597EA29EF8A70656446AF75CF33F0618E8282.crl rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/DBF597EA29EF8A70656446AF75CF33F0618E8282.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF597EA29EF8A70656446AF75CF33F0618E8282.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:f7:4d:39:b3:28:eb:66:ba:8d:47:a1:25:89:63:9a:89:a6:f4:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBF597EA29EF8A70656446AF75CF33F0618E8282 Validity Not Before: Jun 2 00:58:16 2025 GMT Not After : Jun 1 01:03:16 2026 GMT Subject: CN=9ED92C9EA181AC6C1289E5CA11C80E9F3C4A7896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:71:8d:4a:7e:09:98:b9:18:24:f5:4f:ad:4b: da:4d:cd:7e:11:95:40:e8:18:a1:d2:1b:36:65:b2: 08:bd:9d:83:39:da:36:e1:48:30:ec:df:33:45:16: 3b:8b:67:20:c2:23:e7:06:5b:ba:53:f4:8f:98:10: 7a:a8:3a:55:a8:90:04:f0:fa:56:e5:74:ba:4d:44: ce:e8:d8:24:21:e8:0b:49:41:b7:35:69:79:b5:c3: f5:0c:c9:c3:c5:0a:14:9e:b6:fd:9a:0c:9a:cb:17: f3:9c:b5:f4:0a:4d:40:af:fd:ec:26:e1:d3:bb:7c: 9c:df:28:22:f3:cf:84:98:d6:93:c9:3b:b2:ea:73: 5d:15:45:e9:2c:d1:24:a7:77:1a:69:71:d1:32:39: 92:39:0d:fe:24:23:52:63:ec:62:cc:f4:67:d5:a6: bb:2c:7d:fd:7e:5e:53:e1:54:97:29:79:67:be:c2: 7b:f1:f0:5b:26:c1:3c:e2:71:cd:cd:0c:22:eb:3a: 97:2e:60:41:23:6e:28:4d:fa:90:45:6d:72:47:2c: d9:2b:1d:2e:7b:d8:15:79:f8:a8:ab:44:18:82:8b: 7b:ec:78:4e:80:90:77:ec:54:8a:3b:b6:41:26:30: d3:5c:c1:69:4a:92:74:72:f1:da:dd:22:40:b9:c0: bb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:D9:2C:9E:A1:81:AC:6C:12:89:E5:CA:11:C8:0E:9F:3C:4A:78:96 X509v3 Authority Key Identifier: keyid:DB:F5:97:EA:29:EF:8A:70:65:64:46:AF:75:CF:33:F0:61:8E:82:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/DBF597EA29EF8A70656446AF75CF33F0618E8282.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF597EA29EF8A70656446AF75CF33F0618E8282.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/3230322e362e3232342e302f32302d3234203d3e203233373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.6.224.0/20 Signature Algorithm: sha256WithRSAEncryption 49:d5:65:b4:79:4b:55:e8:88:64:df:92:31:73:53:ce:8b:53: cd:c8:f3:e8:ae:03:11:20:48:a7:13:b8:20:58:11:f6:2f:1e: 02:b0:b0:db:71:f7:b0:fe:e0:fc:e9:6e:2c:20:fb:30:03:1d: 0d:06:03:54:cb:1b:20:1d:1e:f4:7d:1c:4c:ab:c4:d5:3b:e2: a1:f2:df:b9:34:30:0e:00:11:13:65:ba:44:a9:8d:46:79:57: 38:d6:1d:3f:b3:dc:18:a2:ea:be:cd:28:53:ca:7c:63:1e:14: 67:48:75:d6:48:6f:b7:28:90:fa:5d:b7:25:60:fd:7c:31:a7: e0:8b:50:0b:8a:ba:a2:79:8e:21:cc:28:52:8a:ed:c3:6e:1c: ab:56:0d:31:94:d3:d0:19:d8:a2:6e:8a:8c:54:06:b4:c8:c6: 57:32:1c:bd:43:79:29:c0:81:12:3d:e9:46:d1:3a:5b:8b:48: 8f:22:af:1c:3b:15:e3:cb:e1:c8:fa:19:6d:4a:f9:2a:fc:4e: aa:fb:37:26:80:6d:10:62:a2:29:2e:b4:7e:1c:91:6a:ca:16: 02:c2:60:bb:5d:59:08:99:4d:46:cd:a7:41:17:d4:47:53:a7: 59:3a:66:25:82:9f:de:56:a4:e3:6a:4e:82:77:ed:42:50:62: 04:08:52:70 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUGfdNObMo62a6jUehJYljmomm9IcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJGNTk3RUEyOUVGOEE3MDY1NjQ0NkFGNzVDRjMzRjA2 MThFODI4MjAeFw0yNTA2MDIwMDU4MTZaFw0yNjA2MDEwMTAzMTZaMDMxMTAvBgNV BAMTKDlFRDkyQzlFQTE4MUFDNkMxMjg5RTVDQTExQzgwRTlGM0M0QTc4OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1cY1KfgmYuRgk9U+tS9pNzX4R lUDoGKHSGzZlsgi9nYM52jbhSDDs3zNFFjuLZyDCI+cGW7pT9I+YEHqoOlWokATw +lbldLpNRM7o2CQh6AtJQbc1aXm1w/UMycPFChSetv2aDJrLF/OctfQKTUCv/ewm 4dO7fJzfKCLzz4SY1pPJO7Lqc10VReks0SSndxppcdEyOZI5Df4kI1Jj7GLM9GfV prssff1+XlPhVJcpeWe+wnvx8FsmwTzicc3NDCLrOpcuYEEjbihN+pBFbXJHLNkr HS572BV5+KirRBiCi3vseE6AkHfsVIo7tkEmMNNcwWlKknRy8drdIkC5wLtFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUntksnqGBrGwSieXKEcgOnzxKeJYwHwYDVR0j BBgwFoAU2/WX6invinBlZEavdc8z8GGOgoIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZDBmMWE2ZS04M2I2LTQ1MzQtOTY3ZC1mOGRiM2MzNzExZjQvMC9EQkY1OTdFQTI5 RUY4QTcwNjU2NDQ2QUY3NUNGMzNGMDYxOEU4MjgyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREJGNTk3RUEyOUVGOEE3MDY1NjQ0NkFGNzVDRjMzRjA2MThF ODI4Mi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FkMGYxYTZlLTgzYjYtNDUzNC05 NjdkLWY4ZGIzYzM3MTFmNC8wLzMyMzAzMjJlMzYyZTMyMzIzNDJlMzAyZjMyMzAy ZDMyMzQyMDNkM2UyMDMyMzMzNzM1MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKBuAwDQYJKoZIhvcN AQELBQADggEBAEnVZbR5S1XoiGTfkjFzU86LU83I8+iuAxEgSKcTuCBYEfYvHgKw sNtx97D+4Pzpbiwg+zADHQ0GA1TLGyAdHvR9HEyrxNU74qHy37k0MA4AERNlukSp jUZ5VzjWHT+z3Bii6r7NKFPKfGMeFGdIddZIb7cokPpdtyVg/Xwxp+CLUAuKuqJ5 jiHMKFKK7cNuHKtWDTGU09AZ2KJuioxUBrTIxlcyHL1DeSnAgRI96UbROluLSI8i rxw7FePL4cj6GW1K+Sr8Tqr7NyaAbRBioikutH4ckWrKFgLCYLtdWQiZTUbNp0EX 1EdTp1k6ZiWCn95WpONqToJ37UJQYgQIUnA= -----END CERTIFICATE-----Generated at Sun Jun 8 02:20:30 2025 by rpki-client