$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3230322e3134352e362e302f32332d3234203d3e203535363636.roa File: 3230322e3134352e362e302f32332d3234203d3e203535363636.roa (raw, json) Hash identifier: xHN63AGHVhpLy6i5Ne/Rg1b8TEgYmsmsilFtTygXtok= Subject key identifier: 57:9A:9C:A7:16:70:13:C3:F0:CC:FA:E3:71:07:65:5D:C8:45:52:42 Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 1FBAED709803C247C569788C1A3282754544850B Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3230322e3134352e362e302f32332d3234203d3e203535363636.roa Signing time: Mon 02 Jun 2025 02:05:08 +0000 ROA not before: Mon 02 Jun 2025 02:00:08 +0000 ROA not after: Mon 01 Jun 2026 02:05:08 +0000 asID: 55666 IP address blocks: 202.145.6.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:ba:ed:70:98:03:c2:47:c5:69:78:8c:1a:32:82:75:45:44:85:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jun 2 02:00:08 2025 GMT Not After : Jun 1 02:05:08 2026 GMT Subject: CN=579A9CA7167013C3F0CCFAE37107655DC8455242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:aa:80:e1:1a:37:6b:01:4d:fa:df:ec:43:ed: ba:f3:05:92:b4:95:b0:ad:cc:cb:5e:13:c1:7f:78: 69:fe:e0:2c:6e:a5:dc:ac:13:51:3c:89:6c:57:15: d6:54:65:56:90:fa:2b:94:32:fa:1a:15:de:7e:6c: 41:dd:12:95:3a:5b:b9:1e:46:be:46:59:1a:0f:f4: 04:7c:58:aa:49:27:71:e9:35:a8:7a:75:4f:02:60: 7d:0a:e5:72:25:38:8f:f4:72:74:1b:a6:df:ae:06: ce:e9:76:3b:cd:1e:26:1d:44:ea:1f:4c:a0:ff:e3: cb:65:ae:f6:44:83:ad:70:3a:92:25:69:4a:17:6d: 4f:88:85:97:e0:bc:d4:00:e7:44:be:ec:f5:86:2b: aa:a4:ff:36:fc:88:24:c4:5e:3a:16:b6:33:ae:d2: 37:b6:ba:49:7d:69:e5:44:3c:4a:bf:cc:f0:3c:83: 31:c6:09:e8:94:f4:56:df:a8:3c:06:14:bb:72:a0: 79:9e:7e:aa:7a:94:9a:6d:a3:5a:58:14:ff:c0:bd: 37:81:c3:16:f4:41:f7:53:6d:d0:dc:b6:ff:3a:be: ad:14:a6:9d:1b:0c:5f:fc:c0:eb:4e:47:84:b1:f8: a2:3b:53:63:a9:d7:09:43:3d:04:19:64:6c:4b:86: 34:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:9A:9C:A7:16:70:13:C3:F0:CC:FA:E3:71:07:65:5D:C8:45:52:42 X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3230322e3134352e362e302f32332d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.145.6.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:34:4b:d9:ca:78:32:d4:3a:be:1b:f3:12:b4:41:50:04:b0: 34:76:7e:c4:83:bc:00:02:03:1b:46:27:90:79:3c:33:96:6b: 4c:e4:66:f2:5a:97:c4:0b:b1:ad:9e:f2:4b:47:09:cd:fe:ea: 75:fd:c9:1b:f2:79:76:52:c7:8b:84:bf:40:4b:17:7c:95:83: ae:20:a0:53:02:da:4d:ff:75:fa:8b:02:e7:1b:ac:58:c8:47: b7:c4:91:71:48:2d:b4:4a:8b:c9:74:a8:4b:0d:e6:d4:34:ec: 79:72:ba:0b:c6:51:d8:78:08:2e:5d:6a:1e:f1:19:84:94:e9: 93:32:f1:2d:5e:c2:4f:cb:65:fb:bb:09:ca:ad:44:87:e1:53: 5b:24:cb:5c:62:06:71:4b:4a:7c:a1:7a:24:6d:ba:50:8c:43: fb:29:0f:00:c6:88:2a:cd:3a:4d:5a:1d:63:86:e9:10:f7:11: f1:0c:9a:3e:41:b2:33:cb:83:58:f6:fa:dc:2e:41:b7:85:3f: 92:6c:cd:35:e8:a3:fa:3a:90:b4:58:bc:50:5f:73:41:fd:e0: 89:81:b2:27:c9:a9:11:8c:1a:8b:5a:ec:ba:46:da:d0:57:d7: 56:1f:7e:26:db:88:ad:b8:11:13:67:34:d4:3e:22:24:52:14: f8:93:1b:f3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUH7rtcJgDwkfFaXiMGjKCdUVEhQswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNTA2MDIwMjAwMDhaFw0yNjA2MDEwMjA1MDhaMDMxMTAvBgNV BAMTKDU3OUE5Q0E3MTY3MDEzQzNGMENDRkFFMzcxMDc2NTVEQzg0NTUyNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFqoDhGjdrAU363+xD7brzBZK0 lbCtzMteE8F/eGn+4CxupdysE1E8iWxXFdZUZVaQ+iuUMvoaFd5+bEHdEpU6W7ke Rr5GWRoP9AR8WKpJJ3HpNah6dU8CYH0K5XIlOI/0cnQbpt+uBs7pdjvNHiYdROof TKD/48tlrvZEg61wOpIlaUoXbU+IhZfgvNQA50S+7PWGK6qk/zb8iCTEXjoWtjOu 0je2ukl9aeVEPEq/zPA8gzHGCeiU9FbfqDwGFLtyoHmefqp6lJpto1pYFP/AvTeB wxb0QfdTbdDctv86vq0Upp0bDF/8wOtOR4Sx+KI7U2Op1wlDPQQZZGxLhjQvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUV5qcpxZwE8PwzPrjcQdlXchFUkIwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMyMzAzMjJlMzEzNDM1MmUzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM1MzUzNjM2MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKkQYwDQYJKoZIhvcN AQELBQADggEBAFo0S9nKeDLUOr4b8xK0QVAEsDR2fsSDvAACAxtGJ5B5PDOWa0zk ZvJal8QLsa2e8ktHCc3+6nX9yRvyeXZSx4uEv0BLF3yVg64goFMC2k3/dfqLAucb rFjIR7fEkXFILbRKi8l0qEsN5tQ07HlyugvGUdh4CC5dah7xGYSU6ZMy8S1ewk/L Zfu7CcqtRIfhU1sky1xiBnFLSnyheiRtulCMQ/spDwDGiCrNOk1aHWOG6RD3EfEM mj5BsjPLg1j2+twuQbeFP5JszTXoo/o6kLRYvFBfc0H94ImBsifJqRGMGota7LpG 2tBX11YffibbiK24ERNnNNQ+IiRSFPiTG/M= -----END CERTIFICATE-----Generated at Sat Jun 7 12:33:36 2025 by rpki-client