$ rpki-client -vvf repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/3230322e3136352e33322e302f32302d3234203d3e203137353338.roa File: 3230322e3136352e33322e302f32302d3234203d3e203137353338.roa (raw, json) Hash identifier: bVRLDmnlkDr+Er81GecVOu1gTofkGixwnSL4beQ/iNg= Subject key identifier: 54:EB:0D:B1:D1:D9:48:61:00:AF:84:E5:BE:AB:8E:96:08:17:1C:95 Certificate issuer: /CN=233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D Certificate serial: 2FDDD4E196854AFD4004BD3CC03E91D46A83E935 Authority key identifier: 23:3A:F2:6D:7D:AE:6C:35:9E:B0:3A:D5:C6:FB:4B:4E:05:DD:F2:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/3230322e3136352e33322e302f32302d3234203d3e203137353338.roa Signing time: Mon 02 Jun 2025 02:03:11 +0000 ROA not before: Mon 02 Jun 2025 01:58:11 +0000 ROA not after: Mon 01 Jun 2026 02:03:11 +0000 asID: 17538 IP address blocks: 202.165.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.crl rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:dd:d4:e1:96:85:4a:fd:40:04:bd:3c:c0:3e:91:d4:6a:83:e9:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D Validity Not Before: Jun 2 01:58:11 2025 GMT Not After : Jun 1 02:03:11 2026 GMT Subject: CN=54EB0DB1D1D9486100AF84E5BEAB8E9608171C95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:66:9f:2a:e0:a5:2d:ec:30:88:bb:f7:0d:33: 65:4d:12:dc:84:71:09:70:d0:18:60:0d:01:c8:f1: e8:b2:c9:8a:1c:26:d7:7f:aa:e2:55:ed:29:44:88: ca:27:a8:7c:2a:d4:26:aa:ca:28:ec:a3:65:e1:b4: e9:6b:b8:ef:7d:91:7c:ab:fe:ee:cd:36:70:92:be: 30:aa:fc:80:73:ab:2e:72:4f:dd:b4:64:05:f3:4f: 63:c8:a0:69:b2:4c:41:c5:ea:dc:5e:1a:46:27:cf: 41:9d:58:0a:fd:76:0b:af:bb:4f:1d:4e:a5:0e:5b: ae:b3:90:29:42:4e:66:05:b5:07:bd:a0:23:43:e9: e9:bc:1f:5e:e0:15:cf:44:8a:c4:a3:66:7c:8e:aa: e5:66:cd:65:96:02:20:14:57:31:7f:be:31:37:3b: 2b:d7:37:47:8f:1e:6f:db:db:5d:cb:2a:6d:d5:e8: 50:a1:9e:0b:b3:6d:81:de:4d:98:16:13:c4:75:22: 4f:c5:76:ae:23:a5:22:4c:64:f1:4b:0c:49:a5:d6: a5:5c:37:cb:b1:5a:37:66:5f:ce:85:f2:ce:d9:c4: d2:89:6f:d9:15:61:b6:6e:36:ec:dd:b0:35:67:f4: c2:be:5b:87:54:23:ce:ef:b0:f3:fd:bc:fc:d0:14: 16:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:EB:0D:B1:D1:D9:48:61:00:AF:84:E5:BE:AB:8E:96:08:17:1C:95 X509v3 Authority Key Identifier: keyid:23:3A:F2:6D:7D:AE:6C:35:9E:B0:3A:D5:C6:FB:4B:4E:05:DD:F2:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/3230322e3136352e33322e302f32302d3234203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.165.32.0/20 Signature Algorithm: sha256WithRSAEncryption 03:96:9a:07:c5:ea:ee:ee:9e:1a:bf:88:5e:af:5a:6a:c6:bf: 47:7f:8d:b1:8a:4a:92:90:48:cb:da:21:e1:e1:9f:8d:96:de: c8:b9:a7:cd:20:72:1e:d0:69:d3:6e:bc:71:d2:2d:3b:63:a4: 53:c9:ce:47:70:fd:4e:5a:52:05:5d:2c:27:d8:fd:cc:10:68: b6:76:c1:98:9e:41:dc:de:5e:c5:9e:32:8a:07:12:ff:7c:2e: 73:aa:3d:2f:bb:d3:78:f2:1f:1c:a2:6e:07:4a:ef:94:a5:c4: db:86:fa:ac:b6:3b:e5:c1:be:82:fb:75:10:38:0d:6f:88:df: 66:9b:a9:ce:77:cb:4d:5e:d6:1a:d5:3e:1d:1d:92:a3:18:da: 6c:75:53:a4:8e:2a:1a:66:ce:37:4d:97:6e:91:48:c7:26:19: 15:68:d4:45:1c:41:5a:27:13:f0:ad:b7:5d:a6:04:41:3b:f3: f4:f8:4d:a5:52:39:1d:a2:a7:38:f0:4b:a5:d3:32:4c:75:a2: db:57:e8:3b:79:ec:61:a5:31:73:18:fc:c5:72:5e:55:85:01: c4:3f:37:e1:22:a6:bc:85:89:3f:0a:77:a2:ef:ac:dc:eb:4d: 29:18:d0:bf:27:f5:20:40:32:d5:20:39:e1:18:a3:0b:2f:05: 67:c0:7e:c9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUL93U4ZaFSv1ABL08wD6R1GqD6TUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjMzQUYyNkQ3REFFNkMzNTlFQjAzQUQ1QzZGQjRCNEUw NURERjIzRDAeFw0yNTA2MDIwMTU4MTFaFw0yNjA2MDEwMjAzMTFaMDMxMTAvBgNV BAMTKDU0RUIwREIxRDFEOTQ4NjEwMEFGODRFNUJFQUI4RTk2MDgxNzFDOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbZp8q4KUt7DCIu/cNM2VNEtyE cQlw0BhgDQHI8eiyyYocJtd/quJV7SlEiMonqHwq1Caqyijso2XhtOlruO99kXyr /u7NNnCSvjCq/IBzqy5yT920ZAXzT2PIoGmyTEHF6txeGkYnz0GdWAr9dguvu08d TqUOW66zkClCTmYFtQe9oCND6em8H17gFc9EisSjZnyOquVmzWWWAiAUVzF/vjE3 OyvXN0ePHm/b213LKm3V6FChnguzbYHeTZgWE8R1Ik/Fdq4jpSJMZPFLDEml1qVc N8uxWjdmX86F8s7ZxNKJb9kVYbZuNuzdsDVn9MK+W4dUI87vsPP9vPzQFBbHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVOsNsdHZSGEAr4TlvquOlggXHJUwHwYDVR0j BBgwFoAUIzrybX2ubDWesDrVxvtLTgXd8j0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTVlYWM5Ny0zMWI1LTRmMzMtODJmNC01MjQxNDcwY2JiYmUvMC8yMzNBRjI2RDdE QUU2QzM1OUVCMDNBRDVDNkZCNEI0RTA1RERGMjNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjMzQUYyNkQ3REFFNkMzNTlFQjAzQUQ1QzZGQjRCNEUwNURE RjIzRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1NWVhYzk3LTMxYjUtNGYzMy04 MmY0LTUyNDE0NzBjYmJiZS8wLzMyMzAzMjJlMzEzNjM1MmUzMzMyMmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMqlIDANBgkqhkiG 9w0BAQsFAAOCAQEAA5aaB8Xq7u6eGr+IXq9aasa/R3+NsYpKkpBIy9oh4eGfjZbe yLmnzSByHtBp0268cdItO2OkU8nOR3D9TlpSBV0sJ9j9zBBotnbBmJ5B3N5exZ4y igcS/3wuc6o9L7vTePIfHKJuB0rvlKXE24b6rLY75cG+gvt1EDgNb4jfZpupznfL TV7WGtU+HR2SoxjabHVTpI4qGmbON02XbpFIxyYZFWjURRxBWicT8K23XaYEQTvz 9PhNpVI5HaKnOPBLpdMyTHWi21foO3nsYaUxcxj8xXJeVYUBxD834SKmvIWJPwp3 ou+s3OtNKRjQvyf1IEAy1SA54RijCy8FZ8B+yQ== -----END CERTIFICATE-----Generated at Thu Jun 5 18:34:32 2025 by rpki-client