$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131352e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131352e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: mAgDMMZwqHZBOF+F/jxzzqLAxZsjHi/FZlxZPFOCIX0= Subject key identifier: 0B:23:B7:A3:53:41:17:C2:6E:85:EA:5C:A2:41:F3:9F:8E:E4:31:70 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 5D9A109706025837EC9FB87D3D8B85C3C90EEBC2 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131352e302f32342d3234203d3e203338313536.roa Signing time: Mon 02 Jun 2025 02:04:14 +0000 ROA not before: Mon 02 Jun 2025 01:59:14 +0000 ROA not after: Mon 01 Jun 2026 02:04:14 +0000 asID: 38156 IP address blocks: 203.190.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 10:59:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:9a:10:97:06:02:58:37:ec:9f:b8:7d:3d:8b:85:c3:c9:0e:eb:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jun 2 01:59:14 2025 GMT Not After : Jun 1 02:04:14 2026 GMT Subject: CN=0B23B7A3534117C26E85EA5CA241F39F8EE43170 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e2:d5:fa:0b:b7:ab:b5:9d:f1:3d:ec:c2:f9: f2:c3:11:56:f5:e8:29:50:bb:8b:a7:11:ff:44:63: 1f:4c:44:bb:0d:43:5e:bb:a9:ae:0f:99:67:c3:bc: b3:72:5f:0f:c0:20:3e:1a:98:8d:37:ae:54:49:ca: cb:ce:21:b6:f6:71:4d:e1:6f:85:a6:9c:be:11:ae: c9:31:70:98:20:4c:bc:a0:b7:7a:b7:7b:7d:e1:fe: 39:09:c5:42:e3:ed:25:90:1f:7b:ad:c0:dd:c5:4f: 98:82:53:ff:ab:5d:a6:da:e5:5c:94:b0:4b:49:93: 6a:2b:81:2e:bf:88:ef:e1:47:68:15:bf:11:4e:a1: 9c:88:90:7f:1e:2a:88:c5:4c:cf:a5:3d:54:3a:68: 20:24:33:64:83:17:59:68:f3:b0:95:20:24:f8:68: 0b:a1:e8:ed:cb:84:fb:d3:9a:b0:15:43:ad:6e:37: f1:de:ba:65:9c:8e:19:46:0f:a6:fd:9a:d9:52:72: 46:0b:4a:53:85:bb:1c:8c:4c:79:99:2b:f1:a5:a1: 48:0b:1e:22:9b:56:49:54:26:08:ab:2a:e0:d6:7c: 79:43:1b:31:cc:cc:57:92:7d:89:b6:69:94:ca:e6: b1:75:96:8b:af:cb:96:5d:16:72:34:c5:e2:9f:77: a0:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:23:B7:A3:53:41:17:C2:6E:85:EA:5C:A2:41:F3:9F:8E:E4:31:70 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131352e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.115.0/24 Signature Algorithm: sha256WithRSAEncryption bb:b0:4f:5f:8d:c7:07:62:1c:28:d0:a1:ca:ad:1a:af:1c:59: f1:bc:01:a9:a4:b9:6f:18:b5:39:24:8e:03:88:2f:cb:ec:59: 55:0b:43:51:53:cd:01:8e:ce:e6:52:7a:5a:02:47:65:c3:28: 5e:8a:0b:36:5a:48:99:d2:dc:6e:3c:48:53:ec:fb:0b:a5:bc: ac:dc:a7:f3:16:a2:af:b8:e6:2d:ab:ef:9b:a2:90:9a:74:2a: 2a:f7:20:08:a8:a6:55:e0:d5:88:0d:80:e2:69:b7:90:17:3b: 4e:4c:67:d4:9e:6f:6f:00:f8:25:82:0a:cd:cd:c5:c3:83:d6: b2:37:5b:b1:74:27:13:b3:b7:f8:13:bc:b3:be:ae:ba:fe:35: dd:a2:c9:42:10:fc:5e:26:d3:e0:73:51:3b:c6:8e:2e:d1:25: b0:7c:08:a9:d8:c6:2c:73:c5:fe:f4:e8:2c:a6:0a:a9:97:be: 21:d6:3b:7f:f6:88:47:08:ae:e8:91:7e:7d:9e:e9:db:d0:4a: 6b:16:8d:27:a9:27:79:7a:8f:97:f2:3d:74:34:17:09:d6:56: 93:bb:20:0b:73:47:fe:42:e9:b7:af:cb:f1:0b:e1:ec:db:f3: 2c:82:47:c8:6f:d8:dc:50:09:99:00:33:58:a6:3b:b5:c0:55: b0:7d:84:8b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXZoQlwYCWDfsn7h9PYuFw8kO68IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNTA2MDIwMTU5MTRaFw0yNjA2MDEwMjA0MTRaMDMxMTAvBgNV BAMTKDBCMjNCN0EzNTM0MTE3QzI2RTg1RUE1Q0EyNDFGMzlGOEVFNDMxNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC04tX6C7ertZ3xPezC+fLDEVb1 6ClQu4unEf9EYx9MRLsNQ167qa4PmWfDvLNyXw/AID4amI03rlRJysvOIbb2cU3h b4WmnL4RrskxcJggTLygt3q3e33h/jkJxULj7SWQH3utwN3FT5iCU/+rXaba5VyU sEtJk2orgS6/iO/hR2gVvxFOoZyIkH8eKojFTM+lPVQ6aCAkM2SDF1lo87CVICT4 aAuh6O3LhPvTmrAVQ61uN/HeumWcjhlGD6b9mtlSckYLSlOFuxyMTHmZK/GloUgL HiKbVklUJgirKuDWfHlDGzHMzFeSfYm2aZTK5rF1louvy5ZdFnI0xeKfd6D1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCyO3o1NBF8JuhepcokHzn47kMXAwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy75zMA0GCSqG SIb3DQEBCwUAA4IBAQC7sE9fjccHYhwo0KHKrRqvHFnxvAGppLlvGLU5JI4DiC/L 7FlVC0NRU80Bjs7mUnpaAkdlwyheigs2WkiZ0txuPEhT7PsLpbys3KfzFqKvuOYt q++bopCadCoq9yAIqKZV4NWIDYDiabeQFztOTGfUnm9vAPglggrNzcXDg9ayN1ux dCcTs7f4E7yzvq66/jXdoslCEPxeJtPgc1E7xo4u0SWwfAip2MYsc8X+9Ogspgqp l74h1jt/9ohHCK7okX59nunb0EprFo0nqSd5eo+X8j10NBcJ1laTuyALc0f+Qum3 r8vxC+Hs2/MsgkfIb9jcUAmZADNYpju1wFWwfYSL -----END CERTIFICATE-----Generated at Sat Jun 7 12:31:56 2025 by rpki-client