$ rpki-client -vvf repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36322e302f32342d3234203d3e20323031333431.roa File: 3230322e35312e36322e302f32342d3234203d3e20323031333431.roa (raw, json) Hash identifier: gQMVqNF5pbofU8fWwfLf24IOx5Rve68FRF/gYFgAFMM= Subject key identifier: B8:E3:3E:CE:2A:CE:B5:99:C8:2B:1D:82:1E:6C:AE:60:7F:FA:10:E9 Certificate issuer: /CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C Certificate serial: 704408A5837ECEDD91D6E3DE7235DC8ECDC4E53A Authority key identifier: 3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36322e302f32342d3234203d3e20323031333431.roa Signing time: Wed 26 Mar 2025 06:00:58 +0000 ROA not before: Wed 26 Mar 2025 05:55:58 +0000 ROA not after: Wed 25 Mar 2026 06:00:58 +0000 asID: 201341 IP address blocks: 202.51.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.crl rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:59:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:44:08:a5:83:7e:ce:dd:91:d6:e3:de:72:35:dc:8e:cd:c4:e5:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C Validity Not Before: Mar 26 05:55:58 2025 GMT Not After : Mar 25 06:00:58 2026 GMT Subject: CN=B8E33ECE2ACEB599C82B1D821E6CAE607FFA10E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:de:f9:bb:ec:55:2b:46:9b:a9:b8:6d:00:a8: f0:3e:56:16:7a:74:7e:0f:57:1c:2d:43:d9:3a:5d: ec:83:5a:31:6c:de:eb:a7:c9:61:d7:c2:bb:d1:43: 9d:53:a5:dc:98:b1:40:e5:20:c5:c6:59:89:32:ad: e7:16:18:a9:c9:7b:b5:58:b3:8f:d5:0c:5f:5d:8d: 4b:4b:18:07:9c:f0:8c:08:0c:19:5e:c6:b6:03:d6: e0:5a:b0:73:61:69:42:b5:32:0f:ea:ad:84:4a:5f: c8:89:d6:af:57:4e:21:3d:4f:b3:53:dd:f7:84:ef: e6:88:f2:56:86:6d:ca:ff:b4:38:69:bb:ec:11:26: 13:e8:92:03:be:91:29:2c:f6:8d:2f:66:92:bf:5b: 56:ef:2b:09:22:ea:aa:56:e5:f7:a2:52:73:53:de: 0b:b1:cc:c8:21:fe:50:e6:c6:93:19:74:0b:ce:9a: f0:a8:e8:32:bd:d9:34:5d:17:b3:6d:d7:d8:9c:cd: 66:6a:9a:ce:35:f7:5c:40:d4:8c:56:a0:35:e1:2b: 4d:77:19:c1:49:50:66:02:da:65:dd:79:d3:7b:0a: 0f:70:a8:16:28:be:99:44:44:1f:e8:1d:fa:4f:97: a0:ef:6b:d9:7f:d4:e0:2c:89:2f:3a:83:ce:56:78: 33:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E3:3E:CE:2A:CE:B5:99:C8:2B:1D:82:1E:6C:AE:60:7F:FA:10:E9 X509v3 Authority Key Identifier: keyid:3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36322e302f32342d3234203d3e20323031333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.62.0/24 Signature Algorithm: sha256WithRSAEncryption 19:76:eb:cc:fa:bb:ce:9d:d9:2b:48:e0:f0:aa:05:b4:0e:20: a1:b5:d6:9b:54:cf:b3:7f:ac:58:a2:35:fb:ef:40:44:8f:a4: d2:df:d1:5b:a7:75:23:fb:e5:14:c5:d0:45:e0:8d:d2:32:57: 81:4a:c1:98:6f:c6:c8:91:8a:d4:98:0e:7d:49:ad:ed:71:05: 40:16:48:e9:b2:1d:f8:75:25:25:d7:79:4e:99:49:35:13:d7: 4d:4d:ba:2f:bb:71:d3:63:2a:07:b0:11:70:d6:bf:27:d7:cd: d6:7b:7c:57:3d:99:e7:09:fe:4f:9a:71:3f:f4:cb:cf:02:40: f7:aa:55:c5:f8:ca:f7:b8:7f:db:60:01:f0:36:97:9a:88:04: d6:fe:99:be:c9:ec:06:54:8b:71:0a:40:81:bc:d2:bd:19:bd: c8:c1:c5:87:f1:1b:c7:d3:60:35:3b:1a:95:9f:f3:ef:20:0d: 4a:52:f3:2f:54:cb:40:a5:e4:52:0c:6d:f5:c5:ca:d8:37:44: 5b:ac:83:ea:51:b7:15:f0:91:55:ba:7d:2b:0c:65:2a:1d:e1: 72:a9:ce:00:e7:40:de:05:02:67:a6:06:36:95:a2:0d:16:be: 0a:83:4a:af:53:22:5c:00:81:66:5c:78:fb:22:f9:b7:bf:b8: 6d:22:1c:d1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcEQIpYN+zt2R1uPecjXcjs3E5TowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2QjVBRjIzMUZEODA5RkJDOEU1OTkyMTVCMTREMzU3 QUM2NkE4QzAeFw0yNTAzMjYwNTU1NThaFw0yNjAzMjUwNjAwNThaMDMxMTAvBgNV BAMTKEI4RTMzRUNFMkFDRUI1OTlDODJCMUQ4MjFFNkNBRTYwN0ZGQTEwRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC33vm77FUrRpupuG0AqPA+VhZ6 dH4PVxwtQ9k6XeyDWjFs3uunyWHXwrvRQ51TpdyYsUDlIMXGWYkyrecWGKnJe7VY s4/VDF9djUtLGAec8IwIDBlexrYD1uBasHNhaUK1Mg/qrYRKX8iJ1q9XTiE9T7NT 3feE7+aI8laGbcr/tDhpu+wRJhPokgO+kSks9o0vZpK/W1bvKwki6qpW5feiUnNT 3guxzMgh/lDmxpMZdAvOmvCo6DK92TRdF7Nt19iczWZqms4191xA1IxWoDXhK013 GcFJUGYC2mXdedN7Cg9wqBYovplERB/oHfpPl6Dva9l/1OAsiS86g85WeDMHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuOM+zirOtZnIKx2CHmyuYH/6EOkwHwYDVR0j BBgwFoAUPmta8jH9gJ+8jlmSFbFNNXrGaowwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZTU0MDE2NC0zZDQ2LTQ3OTQtYmY1NS1iNmIxMzRkOWFiMTMvMC8zRTZCNUFGMjMx RkQ4MDlGQkM4RTU5OTIxNUIxNEQzNTdBQzY2QThDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2QjVBRjIzMUZEODA5RkJDOEU1OTkyMTVCMTREMzU3QUM2 NkE4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JlNTQwMTY0LTNkNDYtNDc5NC1i ZjU1LWI2YjEzNGQ5YWIxMy8wLzMyMzAzMjJlMzUzMTJlMzYzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzAzMTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMozPjANBgkqhkiG 9w0BAQsFAAOCAQEAGXbrzPq7zp3ZK0jg8KoFtA4gobXWm1TPs3+sWKI1++9ARI+k 0t/RW6d1I/vlFMXQReCN0jJXgUrBmG/GyJGK1JgOfUmt7XEFQBZI6bId+HUlJdd5 TplJNRPXTU26L7tx02MqB7ARcNa/J9fN1nt8Vz2Z5wn+T5pxP/TLzwJA96pVxfjK 97h/22AB8DaXmogE1v6ZvsnsBlSLcQpAgbzSvRm9yMHFh/Ebx9NgNTsalZ/z7yAN SlLzL1TLQKXkUgxt9cXK2DdEW6yD6lG3FfCRVbp9KwxlKh3hcqnOAOdA3gUCZ6YG NpWiDRa+CoNKr1MiXACBZlx4+yL5t7+4bSIc0Q== -----END CERTIFICATE-----Generated at Mon Jun 9 04:54:55 2025 by rpki-client