$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131322e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: eQtfqFg2eFurpnUZ/vFUaWKCMnlTQOx32ie2ceCliAI= Subject key identifier: F7:7B:BF:3A:55:CC:37:EC:0A:64:B5:F7:4D:E9:11:99:11:E6:9A:37 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 0C215B01472CAFFD7763F71A94F5156CD1748964 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32342d3234203d3e203338313536.roa Signing time: Mon 02 Jun 2025 02:04:14 +0000 ROA not before: Mon 02 Jun 2025 01:59:14 +0000 ROA not after: Mon 01 Jun 2026 02:04:14 +0000 asID: 38156 IP address blocks: 203.190.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:21:5b:01:47:2c:af:fd:77:63:f7:1a:94:f5:15:6c:d1:74:89:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jun 2 01:59:14 2025 GMT Not After : Jun 1 02:04:14 2026 GMT Subject: CN=F77BBF3A55CC37EC0A64B5F74DE9119911E69A37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:33:79:6b:ff:9e:2e:bc:0b:01:66:8f:cf:df: 93:d7:87:1e:49:35:85:ba:54:1b:b9:8d:4d:91:ba: 6a:17:d4:c9:30:a1:0f:8b:82:45:c4:f6:cf:d2:8b: 99:43:3c:8a:f0:e7:2e:a8:25:78:ff:fe:43:05:c7: ad:18:67:f3:e6:22:46:7c:9b:27:99:f8:ce:ee:b9: 5b:5b:9c:b1:d0:d1:7b:17:aa:c7:82:29:84:61:74: 66:c8:02:10:a1:04:e6:1e:b6:16:cd:ed:9e:6f:b0: e7:76:c6:43:ed:e8:e8:fd:17:11:b0:94:0b:6f:0e: fe:3e:90:5f:79:00:cc:62:9b:76:85:87:51:27:60: 1c:b0:ec:89:3a:0c:17:4a:a5:b7:d2:2f:4e:b4:1e: 52:e4:c8:ae:e8:c9:b6:5a:ff:cd:f8:6e:ee:12:d9: 77:23:37:0e:89:aa:3d:b7:4c:95:cb:19:44:7f:c4: 71:be:db:1d:7b:b2:42:9b:ec:a6:50:c2:ef:83:9c: 1e:92:85:c7:9d:51:98:23:b3:ff:40:44:ce:87:5b: 92:10:df:58:9d:fd:a4:50:d8:1a:00:a1:ef:75:ab: bb:e2:88:db:f3:a9:d2:a5:3b:45:6a:3d:0b:20:7c: 92:f2:0b:6b:8b:41:cc:d8:ef:f2:43:6b:09:e0:15: ac:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:7B:BF:3A:55:CC:37:EC:0A:64:B5:F7:4D:E9:11:99:11:E6:9A:37 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.112.0/24 Signature Algorithm: sha256WithRSAEncryption 80:88:20:8d:19:3a:57:69:95:25:ff:63:5e:a1:43:b4:c1:51: 4a:fc:21:ac:74:8d:51:b6:47:69:5b:73:33:d0:94:c6:6f:0a: 1d:87:c9:21:9d:8e:65:22:87:4d:21:29:da:1a:5c:62:d3:0d: 2c:fd:26:b1:47:6a:aa:f5:d5:0c:f7:43:1f:a8:be:13:eb:37: 77:cd:77:90:bb:ce:48:02:76:7c:b9:aa:12:41:50:a8:1c:7d: fd:a5:88:f4:a5:ce:d8:bb:db:51:db:56:f2:a9:4b:02:cf:a5: f4:e9:2b:9d:58:1b:b9:b1:4b:0e:af:a3:c2:90:1a:f8:cc:87: b7:36:1d:8e:91:4e:19:1b:1b:66:5d:04:a9:64:25:ba:31:02: cb:97:19:d6:0a:e2:d3:cb:02:cc:7c:15:66:f1:82:72:4a:42: 0e:58:9b:b4:57:ba:ce:9e:e3:e9:a4:d5:1d:20:12:13:3c:89: c1:b0:5b:1b:9d:c2:10:d0:11:28:2c:9a:4c:aa:1b:24:12:4f: 28:3e:fd:6e:fb:22:22:7e:bc:ed:d3:27:05:ef:ea:7c:5e:de: 00:a2:c9:11:fd:ce:69:81:87:79:c7:05:3c:78:27:8c:29:71: a2:2e:31:78:e5:8c:52:47:8f:eb:1d:b7:b3:8c:8e:13:3e:3e: 16:d5:eb:24 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDCFbAUcsr/13Y/calPUVbNF0iWQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNTA2MDIwMTU5MTRaFw0yNjA2MDEwMjA0MTRaMDMxMTAvBgNV BAMTKEY3N0JCRjNBNTVDQzM3RUMwQTY0QjVGNzRERTkxMTk5MTFFNjlBMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0M3lr/54uvAsBZo/P35PXhx5J NYW6VBu5jU2RumoX1MkwoQ+LgkXE9s/Si5lDPIrw5y6oJXj//kMFx60YZ/PmIkZ8 myeZ+M7uuVtbnLHQ0XsXqseCKYRhdGbIAhChBOYethbN7Z5vsOd2xkPt6Oj9FxGw lAtvDv4+kF95AMxim3aFh1EnYByw7Ik6DBdKpbfSL060HlLkyK7oybZa/834bu4S 2XcjNw6Jqj23TJXLGUR/xHG+2x17skKb7KZQwu+DnB6ShcedUZgjs/9ARM6HW5IQ 31id/aRQ2BoAoe91q7viiNvzqdKlO0VqPQsgfJLyC2uLQczY7/JDawngFawNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU93u/OlXMN+wKZLX3TekRmRHmmjcwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy75wMA0GCSqG SIb3DQEBCwUAA4IBAQCAiCCNGTpXaZUl/2NeoUO0wVFK/CGsdI1RtkdpW3Mz0JTG bwodh8khnY5lIodNISnaGlxi0w0s/SaxR2qq9dUM90MfqL4T6zd3zXeQu85IAnZ8 uaoSQVCoHH39pYj0pc7Yu9tR21byqUsCz6X06SudWBu5sUsOr6PCkBr4zIe3Nh2O kU4ZGxtmXQSpZCW6MQLLlxnWCuLTywLMfBVm8YJySkIOWJu0V7rOnuPppNUdIBIT PInBsFsbncIQ0BEoLJpMqhskEk8oPv1u+yIifrzt0ycF7+p8Xt4AoskR/c5pgYd5 xwU8eCeMKXGiLjF45YxSR4/rHbezjI4TPj4W1esk -----END CERTIFICATE-----Generated at Sun Jun 8 14:53:21 2025 by rpki-client