$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131342e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131342e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: ts5aXBOr0VsU9/DQ5WThD9RASrOOk/xmS9YcgNyN+QQ= Subject key identifier: 4D:B3:81:AB:2B:1F:7F:2F:A5:3F:CD:CB:6B:14:24:32:7B:8C:1E:EE Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 36C869C9F6BB6FD514958D1BDA720D544D0E4D6D Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131342e302f32342d3234203d3e203338313536.roa Signing time: Mon 02 Jun 2025 02:04:14 +0000 ROA not before: Mon 02 Jun 2025 01:59:14 +0000 ROA not after: Mon 01 Jun 2026 02:04:14 +0000 asID: 38156 IP address blocks: 203.190.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 10:59:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:c8:69:c9:f6:bb:6f:d5:14:95:8d:1b:da:72:0d:54:4d:0e:4d:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jun 2 01:59:14 2025 GMT Not After : Jun 1 02:04:14 2026 GMT Subject: CN=4DB381AB2B1F7F2FA53FCDCB6B1424327B8C1EEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:11:0b:3d:05:85:8f:9d:c7:2c:ad:7e:68:9d: ee:1a:ab:09:c8:f2:b7:76:e7:20:be:de:31:68:93: 94:dc:d4:ae:c2:73:20:02:02:41:7c:9e:a3:c9:fc: 91:25:26:de:ac:84:21:5a:22:ef:ae:f5:13:83:37: 5d:87:2b:73:91:bf:10:87:d9:62:97:33:92:4e:83: c7:0a:37:fe:24:a5:13:f0:3c:b9:87:4e:94:49:cf: bb:53:23:10:27:51:0d:25:2a:63:29:56:ab:6b:14: 91:1f:62:c2:39:d2:b4:fe:ea:b2:54:8f:44:df:b6: 17:66:f8:f9:58:c1:22:b6:3a:51:9d:ec:6a:26:0f: 9a:eb:c0:05:26:b6:fc:f4:c4:46:8b:a5:b1:d5:e0: 01:ae:89:eb:72:d4:5c:f1:5c:72:5f:05:0a:25:8c: f6:49:87:63:83:51:bd:7f:de:3b:39:3a:73:a3:d6: cb:f8:e9:e1:cc:0d:12:b6:a1:7c:37:47:b6:02:3f: 33:2b:c1:04:b5:01:64:3f:0b:91:fa:09:d1:19:24: fc:98:a2:18:22:c0:95:49:cc:68:d4:3c:98:58:7f: a0:55:e9:83:7d:e2:1d:90:06:07:55:29:24:66:69: f9:4b:59:f3:84:9f:d2:f0:95:10:9b:8a:cd:4e:07: 38:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B3:81:AB:2B:1F:7F:2F:A5:3F:CD:CB:6B:14:24:32:7B:8C:1E:EE X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131342e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.114.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:b6:25:4b:6d:84:7f:d4:27:00:62:0c:17:cf:5a:e4:aa:64: fa:c0:93:ba:71:13:2b:5f:1d:f5:10:60:5d:0f:71:0f:d9:4c: c7:1d:85:07:cb:bc:80:44:74:21:de:32:03:97:aa:5f:15:1e: 5a:e6:31:0f:d2:62:da:96:c9:1d:58:6b:0a:08:48:17:66:5a: c3:64:a3:93:76:a7:e1:a2:4f:78:95:d9:68:85:c3:d9:9b:99: e0:cd:c0:12:44:d8:12:b2:54:f7:55:33:8f:d5:b3:55:11:9c: 58:3d:05:ca:d7:0d:23:f6:8a:b1:ac:ba:fe:8b:95:71:93:04: f0:5a:18:32:a2:cf:ec:b2:72:e4:27:a3:13:f6:96:17:13:14: 1b:94:4f:f9:83:a7:0a:ee:6b:41:a1:06:2e:b6:b6:3f:71:da: 5f:b8:6d:0e:2f:76:0c:2e:51:35:e8:5f:28:37:41:6d:11:eb: c0:a8:4e:67:8e:5d:99:17:e3:95:83:dd:5e:da:1e:da:24:74: e2:28:c7:c8:95:d8:ae:a7:1e:f1:25:d2:42:b0:97:2a:4f:0d: ae:c9:ec:c7:f7:44:c1:63:f0:86:c9:20:aa:4f:f4:73:63:d3: c1:db:20:11:a8:ba:cc:0a:1b:36:30:f9:8e:24:45:e5:64:42: 32:1c:77:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNshpyfa7b9UUlY0b2nINVE0OTW0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNTA2MDIwMTU5MTRaFw0yNjA2MDEwMjA0MTRaMDMxMTAvBgNV BAMTKDREQjM4MUFCMkIxRjdGMkZBNTNGQ0RDQjZCMTQyNDMyN0I4QzFFRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5EQs9BYWPnccsrX5one4aqwnI 8rd25yC+3jFok5Tc1K7CcyACAkF8nqPJ/JElJt6shCFaIu+u9RODN12HK3ORvxCH 2WKXM5JOg8cKN/4kpRPwPLmHTpRJz7tTIxAnUQ0lKmMpVqtrFJEfYsI50rT+6rJU j0Tfthdm+PlYwSK2OlGd7GomD5rrwAUmtvz0xEaLpbHV4AGuiety1FzxXHJfBQol jPZJh2ODUb1/3js5OnOj1sv46eHMDRK2oXw3R7YCPzMrwQS1AWQ/C5H6CdEZJPyY ohgiwJVJzGjUPJhYf6BV6YN94h2QBgdVKSRmaflLWfOEn9LwlRCbis1OBzg3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTbOBqysffy+lP83LaxQkMnuMHu4wHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy75yMA0GCSqG SIb3DQEBCwUAA4IBAQCLtiVLbYR/1CcAYgwXz1rkqmT6wJO6cRMrXx31EGBdD3EP 2UzHHYUHy7yARHQh3jIDl6pfFR5a5jEP0mLalskdWGsKCEgXZlrDZKOTdqfhok94 ldlohcPZm5ngzcASRNgSslT3VTOP1bNVEZxYPQXK1w0j9oqxrLr+i5VxkwTwWhgy os/ssnLkJ6MT9pYXExQblE/5g6cK7mtBoQYutrY/cdpfuG0OL3YMLlE16F8oN0Ft EevAqE5njl2ZF+OVg91e2h7aJHTiKMfIldiupx7xJdJCsJcqTw2uyezH90TBY/CG ySCqT/RzY9PB2yARqLrMChs2MPmOJEXlZEIyHHdq -----END CERTIFICATE-----Generated at Sat Jun 7 12:37:19 2025 by rpki-client