$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131362e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131362e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: +qtp+CFAtWov+tk0R+jWXsOpaspLBuir0Q0r1VgigbU= Subject key identifier: 7F:58:3C:A6:16:C6:DA:86:95:E5:1E:5E:7B:87:BA:0D:78:38:BB:11 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 7790315AF1BB3659F3232A3E6248C1B5779A9736 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131362e302f32342d3234203d3e203338313536.roa Signing time: Mon 02 Jun 2025 02:04:13 +0000 ROA not before: Mon 02 Jun 2025 01:59:13 +0000 ROA not after: Mon 01 Jun 2026 02:04:13 +0000 asID: 38156 IP address blocks: 203.190.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 10:59:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:90:31:5a:f1:bb:36:59:f3:23:2a:3e:62:48:c1:b5:77:9a:97:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jun 2 01:59:13 2025 GMT Not After : Jun 1 02:04:13 2026 GMT Subject: CN=7F583CA616C6DA8695E51E5E7B87BA0D7838BB11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7c:8e:1a:7c:cb:9d:0d:f3:e5:c5:2c:fd:5e: 3a:4b:0c:16:e5:01:ce:43:f2:4c:50:fe:ec:24:85: 87:c1:8d:15:3c:eb:07:e8:ec:b2:fe:ef:bc:02:c6: 73:22:46:a9:ca:2f:d7:d8:4d:86:7c:a8:2b:d5:9b: c2:ab:e9:04:48:a9:57:18:e9:7c:21:74:82:27:98: e7:82:06:09:84:13:31:42:08:44:58:02:9d:13:e7: 4d:dd:21:6e:f9:3f:70:30:87:a6:44:4a:3b:a9:1d: e6:5c:9d:3b:a5:72:e0:62:e3:3a:d4:5b:9a:bf:77: 59:32:b9:46:c5:15:3a:b9:95:69:3c:aa:44:68:30: 57:46:79:8e:be:d1:d6:19:64:13:ab:52:1f:a0:45: e5:8e:f4:d0:a2:9c:ab:75:8c:18:6c:7c:36:d5:94: ee:9b:f5:6d:dc:4d:ab:62:00:36:a7:c8:d0:c0:02: 39:f5:e5:e9:61:2a:73:fc:cd:d1:d4:6e:15:91:4d: 5e:ce:49:8a:0f:28:3b:71:1c:11:87:1a:b2:3e:94: 38:80:8a:8f:57:f7:69:cd:a7:96:f4:fe:4c:0a:1f: 14:98:62:f4:a9:fe:2c:df:37:84:f7:bb:a0:8d:fd: 0b:d3:d8:92:4e:8b:2d:aa:ab:22:01:9e:e2:8d:db: 5c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:58:3C:A6:16:C6:DA:86:95:E5:1E:5E:7B:87:BA:0D:78:38:BB:11 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131362e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.116.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:1c:a7:71:ff:db:2e:6d:0a:99:5f:ca:32:23:d9:db:25:6d: e8:86:04:aa:50:bc:82:66:4a:d6:56:81:83:da:97:f3:55:4c: 41:e2:66:69:53:8d:65:f8:95:f6:32:57:f6:7b:d5:11:3a:1e: b9:08:c6:f5:3d:14:f7:d1:e8:f4:01:27:5a:a6:e7:22:60:73: 31:df:a7:b8:08:ae:a4:9a:e1:db:e1:aa:82:0f:f6:4e:9f:0a: 29:73:53:f5:b3:59:35:5c:6b:67:40:ac:13:b3:da:d6:ce:c9: c0:ea:d8:e9:ca:ce:79:19:62:42:eb:70:c7:59:eb:33:c5:10: 20:7f:2d:32:3b:88:1d:0a:ef:e4:fa:f2:6c:ea:15:59:70:17: d6:d5:b7:95:1e:2d:2e:6b:a1:c2:71:2f:8d:39:e4:6d:be:48: 49:50:89:69:13:3d:94:d4:1e:06:2e:d2:95:84:bc:a2:a4:27: ad:80:91:f9:27:c4:68:85:46:e8:18:f8:93:08:5a:93:9a:c0: 53:73:3e:c6:5b:83:be:33:6d:f2:24:d1:e4:df:be:44:54:6a: 94:a6:fc:1e:c8:94:d7:75:91:89:e0:20:0c:d2:d6:5e:d4:a7: 49:5c:10:43:ff:0e:f6:94:2c:21:5f:e0:8a:e4:6a:59:16:db: 49:95:a6:00 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUd5AxWvG7NlnzIyo+YkjBtXealzYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNTA2MDIwMTU5MTNaFw0yNjA2MDEwMjA0MTNaMDMxMTAvBgNV BAMTKDdGNTgzQ0E2MTZDNkRBODY5NUU1MUU1RTdCODdCQTBENzgzOEJCMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCofI4afMudDfPlxSz9XjpLDBbl Ac5D8kxQ/uwkhYfBjRU86wfo7LL+77wCxnMiRqnKL9fYTYZ8qCvVm8Kr6QRIqVcY 6XwhdIInmOeCBgmEEzFCCERYAp0T503dIW75P3Awh6ZESjupHeZcnTulcuBi4zrU W5q/d1kyuUbFFTq5lWk8qkRoMFdGeY6+0dYZZBOrUh+gReWO9NCinKt1jBhsfDbV lO6b9W3cTatiADanyNDAAjn15elhKnP8zdHUbhWRTV7OSYoPKDtxHBGHGrI+lDiA io9X92nNp5b0/kwKHxSYYvSp/izfN4T3u6CN/QvT2JJOiy2qqyIBnuKN21xDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUf1g8phbG2oaV5R5ee4e6DXg4uxEwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy750MA0GCSqG SIb3DQEBCwUAA4IBAQCKHKdx/9subQqZX8oyI9nbJW3ohgSqULyCZkrWVoGD2pfz VUxB4mZpU41l+JX2Mlf2e9UROh65CMb1PRT30ej0ASdapuciYHMx36e4CK6kmuHb 4aqCD/ZOnwopc1P1s1k1XGtnQKwTs9rWzsnA6tjpys55GWJC63DHWeszxRAgfy0y O4gdCu/k+vJs6hVZcBfW1beVHi0ua6HCcS+NOeRtvkhJUIlpEz2U1B4GLtKVhLyi pCetgJH5J8RohUboGPiTCFqTmsBTcz7GW4O+M23yJNHk375EVGqUpvweyJTXdZGJ 4CAM0tZe1KdJXBBD/w72lCwhX+CK5GpZFttJlaYA -----END CERTIFICATE-----Generated at Sat Jun 7 12:29:05 2025 by rpki-client