$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230332e3231302e38342e302f32322d3232203d3e203535363939.roa File: 3230332e3231302e38342e302f32322d3232203d3e203535363939.roa (raw, json) Hash identifier: 7SlCCBwvpXf5oNDVNUKjezl2ujoj3pY3VJsCEIji7gA= Subject key identifier: EB:EC:DE:64:6D:6D:53:7E:F9:3C:A7:A0:BC:C2:C4:1D:61:93:DB:E6 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 1F11607F963596F7F78F3A77787F4F1FF4576EC7 Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230332e3231302e38342e302f32322d3232203d3e203535363939.roa Signing time: Mon 02 Jun 2025 02:03:07 +0000 ROA not before: Mon 02 Jun 2025 01:58:07 +0000 ROA not after: Mon 01 Jun 2026 02:03:07 +0000 asID: 55699 IP address blocks: 203.210.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 00:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:11:60:7f:96:35:96:f7:f7:8f:3a:77:78:7f:4f:1f:f4:57:6e:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jun 2 01:58:07 2025 GMT Not After : Jun 1 02:03:07 2026 GMT Subject: CN=EBECDE646D6D537EF93CA7A0BCC2C41D6193DBE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a5:40:e5:38:44:40:d7:05:d6:46:aa:ba:ec: 0b:e5:bc:aa:c4:96:3a:0d:f5:b0:07:7d:d5:e3:b7: 02:1c:ac:97:56:b1:da:be:2f:b3:02:b9:5e:88:47: 2d:ab:85:29:ae:91:e7:73:16:02:5e:f5:84:42:31: fe:4b:26:8e:45:08:20:fe:06:b2:99:49:60:b9:d9: d2:c6:87:1b:a2:5c:cf:44:5f:86:7f:a2:9c:9b:d1: fb:46:38:c6:cf:2b:31:01:82:ef:1a:ca:44:e0:cc: 19:25:23:2c:8a:41:fb:71:8c:ea:31:fd:03:c9:72: 1d:80:ae:f8:c3:b9:cf:9b:90:78:c4:d7:db:87:aa: aa:f6:13:e8:35:25:4f:df:ae:8c:1e:90:78:b5:94: d2:21:7f:b2:c2:fa:80:7f:fb:ef:66:0a:cc:f1:1d: 91:95:61:47:1f:5a:03:9c:19:6c:d2:75:13:8f:03: 50:17:37:ab:d6:a6:6e:34:77:fe:90:a9:fa:74:56: 11:ea:1b:cf:5f:82:e0:27:0d:b4:a8:3f:a1:40:b9: b0:e5:10:87:1a:c4:0b:c2:07:ba:d6:97:1b:c1:cd: 10:97:de:34:63:a6:97:23:df:e3:15:b3:d6:ce:09: f4:13:68:9c:fd:64:3e:91:1e:36:3c:68:f6:43:4f: ca:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:EC:DE:64:6D:6D:53:7E:F9:3C:A7:A0:BC:C2:C4:1D:61:93:DB:E6 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230332e3231302e38342e302f32322d3232203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.210.84.0/22 Signature Algorithm: sha256WithRSAEncryption 89:81:c8:e5:da:f4:a4:fe:77:00:a4:24:47:db:d9:68:78:c7: 7d:17:83:42:9a:63:ed:5f:00:36:f2:3c:97:fa:07:8f:3c:84: 49:ad:a6:05:46:bd:23:fa:62:9d:e8:40:14:10:cc:96:6a:4f: 61:38:82:a2:39:50:ab:d6:3f:83:ec:40:eb:88:02:6a:81:f7: 41:76:a7:e6:bf:be:98:80:5e:95:bb:12:3c:e1:f5:c7:ef:94: 5a:74:fe:2f:ce:b0:5e:a3:de:64:d7:3f:9c:eb:66:8b:4f:e2: 75:c5:91:01:ac:d8:dc:9e:fb:b7:92:73:1a:e8:eb:c9:af:89: ed:74:c2:d3:24:1b:15:2f:05:27:cc:ea:f4:39:29:5c:ed:8f: 66:e1:2b:d3:1d:eb:d0:25:d0:81:a4:6a:1e:bc:54:0b:8c:85: 32:95:d1:cc:86:4f:0a:8e:11:22:42:59:c3:9f:94:b8:a2:e8: 87:b4:2f:b3:f4:be:b6:54:a7:ae:8a:4d:08:fc:4d:77:68:0f: 6b:b4:00:09:11:3c:5b:06:51:de:93:9c:58:2a:25:eb:14:fb: 7c:20:02:94:65:a8:59:d9:d6:93:a6:55:23:7b:a0:6b:df:a7: a3:1c:59:e6:3a:7f:67:50:49:e4:09:c2:be:bf:0f:22:9c:03: 07:25:8c:e3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHxFgf5Y1lvf3jzp3eH9PH/RXbscwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yNTA2MDIwMTU4MDdaFw0yNjA2MDEwMjAzMDdaMDMxMTAvBgNV BAMTKEVCRUNERTY0NkQ2RDUzN0VGOTNDQTdBMEJDQzJDNDFENjE5M0RCRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5pUDlOERA1wXWRqq67AvlvKrE ljoN9bAHfdXjtwIcrJdWsdq+L7MCuV6IRy2rhSmukedzFgJe9YRCMf5LJo5FCCD+ BrKZSWC52dLGhxuiXM9EX4Z/opyb0ftGOMbPKzEBgu8aykTgzBklIyyKQftxjOox /QPJch2ArvjDuc+bkHjE19uHqqr2E+g1JU/frowekHi1lNIhf7LC+oB/++9mCszx HZGVYUcfWgOcGWzSdROPA1AXN6vWpm40d/6Qqfp0VhHqG89fguAnDbSoP6FAubDl EIcaxAvCB7rWlxvBzRCX3jRjppcj3+MVs9bOCfQTaJz9ZD6RHjY8aPZDT8rPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6+zeZG1tU375PKegvMLEHWGT2+YwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMyMzAzMzJlMzIzMTMwMmUzODM0MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzNTM2MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsvSVDANBgkqhkiG 9w0BAQsFAAOCAQEAiYHI5dr0pP53AKQkR9vZaHjHfReDQppj7V8ANvI8l/oHjzyE Sa2mBUa9I/pinehAFBDMlmpPYTiCojlQq9Y/g+xA64gCaoH3QXan5r++mIBelbsS POH1x++UWnT+L86wXqPeZNc/nOtmi0/idcWRAazY3J77t5JzGujrya+J7XTC0yQb FS8FJ8zq9DkpXO2PZuEr0x3r0CXQgaRqHrxUC4yFMpXRzIZPCo4RIkJZw5+UuKLo h7Qvs/S+tlSnropNCPxNd2gPa7QACRE8WwZR3pOcWCol6xT7fCAClGWoWdnWk6ZV I3uga9+noxxZ5jp/Z1BJ5AnCvr8PIpwDByWM4w== -----END CERTIFICATE-----Generated at Fri Jun 6 16:47:12 2025 by rpki-client