$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230322e3135312e31322e302f32322d3232203d3e203535363939.roa File: 3230322e3135312e31322e302f32322d3232203d3e203535363939.roa (raw, json) Hash identifier: X7lH+ZABzDfLLUY93QifZSz4LLPKca9OeiY0/c7tpYs= Subject key identifier: 17:AD:0B:B9:0E:B5:F8:C5:B2:5B:2C:C0:FC:56:BB:FA:2B:2B:EF:95 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 6075B6705FE6CC6EE34323586B91CDBCEF4B7F3A Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230322e3135312e31322e302f32322d3232203d3e203535363939.roa Signing time: Mon 02 Jun 2025 02:03:06 +0000 ROA not before: Mon 02 Jun 2025 01:58:06 +0000 ROA not after: Mon 01 Jun 2026 02:03:06 +0000 asID: 55699 IP address blocks: 202.151.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 00:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:75:b6:70:5f:e6:cc:6e:e3:43:23:58:6b:91:cd:bc:ef:4b:7f:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jun 2 01:58:06 2025 GMT Not After : Jun 1 02:03:06 2026 GMT Subject: CN=17AD0BB90EB5F8C5B25B2CC0FC56BBFA2B2BEF95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:be:03:17:fb:42:d1:81:c9:42:0e:a2:06:f7: 73:cd:c7:58:27:04:9a:5b:a9:27:97:b8:36:38:f5: 5c:93:c6:d5:95:bd:2c:7e:43:d7:38:38:0b:a3:f4: 05:36:33:a4:4f:a7:7e:9a:59:19:50:1f:d4:5e:77: 33:47:05:46:b6:42:60:3b:f6:d6:ea:4d:c5:98:e7: af:62:6b:e3:9c:c2:1c:c9:27:02:6f:f2:18:35:05: 97:ce:f4:50:c4:a0:df:e4:8c:01:1e:80:ef:b8:18: 8d:a2:4f:db:d9:89:ed:e0:cd:1f:4b:9a:07:be:74: e3:ca:9d:a4:02:3a:0a:8c:46:1e:f9:b1:c3:25:4c: 13:7e:ed:9f:c7:15:02:ce:bf:14:f4:03:56:bd:13: 1c:4a:6b:2a:4e:92:50:ff:18:a6:90:28:6b:10:d2: 26:43:64:6d:44:42:95:8f:25:09:2e:2a:13:13:e6: bf:57:ba:eb:6d:f4:7d:5a:7e:97:bb:7c:da:e2:05: 44:30:ec:6d:08:a8:d4:f3:0b:a2:cf:63:98:97:f8: f4:28:ed:de:fe:92:6a:27:36:95:36:fc:48:23:fe: e5:5b:ff:7f:f4:c7:c8:28:cd:f6:d3:92:32:86:59: 70:db:cd:97:d1:b0:e0:9d:79:5a:1a:c4:c6:6e:01: 5d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:AD:0B:B9:0E:B5:F8:C5:B2:5B:2C:C0:FC:56:BB:FA:2B:2B:EF:95 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230322e3135312e31322e302f32322d3232203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.151.12.0/22 Signature Algorithm: sha256WithRSAEncryption 55:38:97:88:ba:db:ee:b1:9c:d7:21:e7:ff:67:8d:61:16:8b: 7c:ec:18:1d:14:80:ce:6a:cc:70:80:06:fe:df:ff:ad:be:75: 7e:34:2d:65:4c:d7:bb:d3:6d:77:67:3e:0c:be:68:d2:2b:a0: 19:2e:6e:f1:f1:25:9f:9f:7d:e5:ee:34:f1:73:6c:90:e5:22: 76:cc:7b:38:b1:8d:1f:60:f7:c5:66:92:1a:ca:24:e3:23:70: 81:f7:89:63:c5:77:45:53:1b:de:53:77:42:9c:8c:1b:17:77: 4f:89:22:b4:0e:e2:10:2a:a3:9d:49:09:39:a5:2b:7a:4d:53: 0c:83:46:4d:f6:90:cb:79:f8:a8:72:0d:72:48:6c:23:ac:0f: a1:e8:d6:e4:de:bd:de:85:ea:4a:6e:70:53:66:4c:a6:09:e8: 50:c3:e0:4a:7e:9a:1b:d8:86:3e:00:d4:78:e2:a8:d3:c5:0e: 08:3f:69:9e:ae:cd:a9:3c:a1:c7:ac:36:af:ef:1c:d9:c7:97: f2:64:69:b2:5d:b6:c3:45:bd:8d:8f:5f:28:58:69:72:98:f1: f5:cd:16:d0:c7:30:ed:23:d1:94:69:29:38:c5:c8:ed:1d:ca: 97:45:18:d8:2e:e4:9d:31:ef:69:2f:2d:b1:22:f7:3e:ca:c7: 6c:26:45:c8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYHW2cF/mzG7jQyNYa5HNvO9LfzowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yNTA2MDIwMTU4MDZaFw0yNjA2MDEwMjAzMDZaMDMxMTAvBgNV BAMTKDE3QUQwQkI5MEVCNUY4QzVCMjVCMkNDMEZDNTZCQkZBMkIyQkVGOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4vgMX+0LRgclCDqIG93PNx1gn BJpbqSeXuDY49VyTxtWVvSx+Q9c4OAuj9AU2M6RPp36aWRlQH9RedzNHBUa2QmA7 9tbqTcWY569ia+OcwhzJJwJv8hg1BZfO9FDEoN/kjAEegO+4GI2iT9vZie3gzR9L mge+dOPKnaQCOgqMRh75scMlTBN+7Z/HFQLOvxT0A1a9ExxKaypOklD/GKaQKGsQ 0iZDZG1EQpWPJQkuKhMT5r9Xuutt9H1afpe7fNriBUQw7G0IqNTzC6LPY5iX+PQo 7d7+kmonNpU2/Egj/uVb/3/0x8gozfbTkjKGWXDbzZfRsOCdeVoaxMZuAV1PAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUF60LuQ61+MWyWyzA/Fa7+isr75UwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMyMzAzMjJlMzEzNTMxMmUzMTMyMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzNTM2MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsqXDDANBgkqhkiG 9w0BAQsFAAOCAQEAVTiXiLrb7rGc1yHn/2eNYRaLfOwYHRSAzmrMcIAG/t//rb51 fjQtZUzXu9Ntd2c+DL5o0iugGS5u8fEln5995e408XNskOUidsx7OLGNH2D3xWaS Gsok4yNwgfeJY8V3RVMb3lN3QpyMGxd3T4kitA7iECqjnUkJOaUrek1TDINGTfaQ y3n4qHINckhsI6wPoejW5N693oXqSm5wU2ZMpgnoUMPgSn6aG9iGPgDUeOKo08UO CD9pnq7NqTyhx6w2r+8c2ceX8mRpsl22w0W9jY9fKFhpcpjx9c0W0Mcw7SPRlGkp OMXI7R3Kl0UY2C7knTHvaS8tsSL3PsrHbCZFyA== -----END CERTIFICATE-----Generated at Thu Jun 5 18:42:30 2025 by rpki-client