$ rpki-client -vvf repo-rpki.idnic.net/repo/b8b441ad-f1aa-48d3-9edb-b9a5d5ce9ba8/0/3230322e39342e38332e302f32342d3234203d3e203535363732.roa File: 3230322e39342e38332e302f32342d3234203d3e203535363732.roa (raw, json) Hash identifier: XIFruI1ighCiBN1KxhqbA4Dl9kZx4Bi5WaQ0ju1y2JQ= Subject key identifier: 94:12:49:63:C8:69:8B:A5:5F:C7:22:BA:EF:3A:F8:21:13:C6:E5:BF Certificate issuer: /CN=F2441731A38F6F03ED8BFDB14F3CF89CED26A880 Certificate serial: 714DCDAF45E8A583D19FB104F4A26B71B2474CB2 Authority key identifier: F2:44:17:31:A3:8F:6F:03:ED:8B:FD:B1:4F:3C:F8:9C:ED:26:A8:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2441731A38F6F03ED8BFDB14F3CF89CED26A880.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8b441ad-f1aa-48d3-9edb-b9a5d5ce9ba8/0/3230322e39342e38332e302f32342d3234203d3e203535363732.roa Signing time: Mon 02 Jun 2025 01:03:23 +0000 ROA not before: Mon 02 Jun 2025 00:58:23 +0000 ROA not after: Mon 01 Jun 2026 01:03:23 +0000 asID: 55672 IP address blocks: 202.94.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8b441ad-f1aa-48d3-9edb-b9a5d5ce9ba8/0/F2441731A38F6F03ED8BFDB14F3CF89CED26A880.crl rsync://repo-rpki.idnic.net/repo/b8b441ad-f1aa-48d3-9edb-b9a5d5ce9ba8/0/F2441731A38F6F03ED8BFDB14F3CF89CED26A880.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2441731A38F6F03ED8BFDB14F3CF89CED26A880.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 12:15:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:4d:cd:af:45:e8:a5:83:d1:9f:b1:04:f4:a2:6b:71:b2:47:4c:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2441731A38F6F03ED8BFDB14F3CF89CED26A880 Validity Not Before: Jun 2 00:58:23 2025 GMT Not After : Jun 1 01:03:23 2026 GMT Subject: CN=94124963C8698BA55FC722BAEF3AF82113C6E5BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b2:23:d1:14:b2:cf:4a:9c:86:a6:df:6d:fe: 90:59:66:2f:0f:4f:7f:3e:ed:60:bc:81:8d:73:ac: 25:78:4b:24:a7:3c:80:96:3a:40:5d:8d:6c:9f:a7: dc:b0:1a:af:dc:f3:22:2f:6a:cf:2f:d7:81:4e:25: 03:9f:a4:3d:27:b9:f9:e9:04:31:8b:bb:b9:ea:4b: 50:df:aa:bb:98:17:63:dd:82:b7:15:b5:32:bd:21: 45:34:e9:03:74:57:13:a3:d1:a7:6d:c9:c1:8d:9c: c7:57:68:66:52:8c:cb:ec:02:98:fb:e5:a4:ad:60: 68:4c:f6:8a:43:0d:95:eb:87:f8:74:42:03:a3:9f: 3e:74:03:72:01:11:4f:ee:4c:bd:4b:0c:e9:19:67: 1c:39:fb:b3:5b:a5:4c:cb:c2:5b:6a:58:0c:df:09: b7:68:5f:0a:42:ee:eb:91:7d:a0:d3:25:7e:10:36: cb:50:f0:62:0d:6c:7f:0b:12:41:49:8c:de:05:4a: b6:ec:5a:1b:2e:ef:70:9e:a0:97:d4:4c:69:d9:83: c3:3a:12:ff:56:a1:85:f8:60:f0:22:81:32:ae:6b: 5b:52:0b:f2:28:32:f2:e1:76:5d:78:06:1c:4a:ca: 7b:20:27:0e:63:d3:0f:4b:d1:61:eb:2e:b9:d1:e2: dd:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:12:49:63:C8:69:8B:A5:5F:C7:22:BA:EF:3A:F8:21:13:C6:E5:BF X509v3 Authority Key Identifier: keyid:F2:44:17:31:A3:8F:6F:03:ED:8B:FD:B1:4F:3C:F8:9C:ED:26:A8:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8b441ad-f1aa-48d3-9edb-b9a5d5ce9ba8/0/F2441731A38F6F03ED8BFDB14F3CF89CED26A880.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2441731A38F6F03ED8BFDB14F3CF89CED26A880.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8b441ad-f1aa-48d3-9edb-b9a5d5ce9ba8/0/3230322e39342e38332e302f32342d3234203d3e203535363732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.94.83.0/24 Signature Algorithm: sha256WithRSAEncryption a8:35:94:0f:9f:24:4a:2d:02:4c:20:d4:ba:83:0e:46:59:dd: ee:56:13:df:3b:b2:2b:52:a1:66:d1:57:cf:8d:e3:66:6e:3d: 22:97:da:ce:f9:51:82:4c:89:58:96:1d:55:cc:3a:f1:11:8f: 77:a8:35:87:85:87:4e:a5:5f:57:c9:61:e1:4f:af:66:20:92: 82:b1:e9:8d:07:21:ea:51:ac:50:45:86:23:e6:0c:e9:b5:d0: 69:fb:19:1c:87:0e:83:c4:7e:75:f3:2c:78:0b:b5:57:aa:dd: 8e:50:83:da:06:10:33:12:f9:83:d3:a2:55:79:3f:09:c8:a0: 1d:7b:cd:92:20:3d:7f:a8:02:ad:00:a5:db:ba:7a:e8:ac:db: e6:44:2b:2d:f5:15:21:32:e4:33:6a:84:b5:7b:fa:4c:95:0e: 44:b4:99:a3:e3:37:ba:b4:89:d5:c9:de:3c:e4:6f:e8:65:b7: 33:a6:29:12:82:60:5a:8b:0e:63:13:37:3d:fa:a3:6e:03:92: 91:fd:88:15:8c:00:87:95:1d:f2:29:62:ce:22:cb:3d:c7:63: 9e:26:0f:b5:85:51:81:4c:74:85:63:bb:b6:09:32:8f:2f:df: e7:e4:44:6d:69:cf:d8:ea:fa:f0:55:70:66:96:46:ba:1b:6e: ab:2d:a1:b4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUcU3Nr0XopYPRn7EE9KJrcbJHTLIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjI0NDE3MzFBMzhGNkYwM0VEOEJGREIxNEYzQ0Y4OUNF RDI2QTg4MDAeFw0yNTA2MDIwMDU4MjNaFw0yNjA2MDEwMTAzMjNaMDMxMTAvBgNV BAMTKDk0MTI0OTYzQzg2OThCQTU1RkM3MjJCQUVGM0FGODIxMTNDNkU1QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqsiPRFLLPSpyGpt9t/pBZZi8P T38+7WC8gY1zrCV4SySnPICWOkBdjWyfp9ywGq/c8yIvas8v14FOJQOfpD0nufnp BDGLu7nqS1DfqruYF2PdgrcVtTK9IUU06QN0VxOj0adtycGNnMdXaGZSjMvsApj7 5aStYGhM9opDDZXrh/h0QgOjnz50A3IBEU/uTL1LDOkZZxw5+7NbpUzLwltqWAzf CbdoXwpC7uuRfaDTJX4QNstQ8GINbH8LEkFJjN4FSrbsWhsu73CeoJfUTGnZg8M6 Ev9WoYX4YPAigTKua1tSC/IoMvLhdl14BhxKynsgJw5j0w9L0WHrLrnR4t3HAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUlBJJY8hpi6VfxyK67zr4IRPG5b8wHwYDVR0j BBgwFoAU8kQXMaOPbwPti/2xTzz4nO0mqIAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGI0NDFhZC1mMWFhLTQ4ZDMtOWVkYi1iOWE1ZDVjZTliYTgvMC9GMjQ0MTczMUEz OEY2RjAzRUQ4QkZEQjE0RjNDRjg5Q0VEMjZBODgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjI0NDE3MzFBMzhGNkYwM0VEOEJGREIxNEYzQ0Y4OUNFRDI2 QTg4MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4YjQ0MWFkLWYxYWEtNDhkMy05 ZWRiLWI5YTVkNWNlOWJhOC8wLzMyMzAzMjJlMzkzNDJlMzgzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM3MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXlMwDQYJKoZIhvcN AQELBQADggEBAKg1lA+fJEotAkwg1LqDDkZZ3e5WE987sitSoWbRV8+N42ZuPSKX 2s75UYJMiViWHVXMOvERj3eoNYeFh06lX1fJYeFPr2YgkoKx6Y0HIepRrFBFhiPm DOm10Gn7GRyHDoPEfnXzLHgLtVeq3Y5Qg9oGEDMS+YPTolV5PwnIoB17zZIgPX+o Aq0Apdu6euis2+ZEKy31FSEy5DNqhLV7+kyVDkS0maPjN7q0idXJ3jzkb+hltzOm KRKCYFqLDmMTNz36o24DkpH9iBWMAIeVHfIpYs4iyz3HY54mD7WFUYFMdIVju7YJ Mo8v3+fkRG1pz9jq+vBVcGaWRrobbqstobQ= -----END CERTIFICATE-----Generated at Thu Jun 5 18:15:11 2025 by rpki-client