$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131382e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131382e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: wozT3BtLztl/pX/DwKeiln5tMM/ZHi6uy+DBeORRK8w= Subject key identifier: 43:9A:6F:2C:8E:C7:17:9E:B9:6F:F7:7A:BA:72:E5:48:05:7B:CB:0A Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 4D83A062F7555DAFB70CC8917B285A7E46ED859D Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131382e302f32342d3234203d3e203338313536.roa Signing time: Mon 02 Jun 2025 02:04:13 +0000 ROA not before: Mon 02 Jun 2025 01:59:13 +0000 ROA not after: Mon 01 Jun 2026 02:04:13 +0000 asID: 38156 IP address blocks: 203.190.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 10:59:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:83:a0:62:f7:55:5d:af:b7:0c:c8:91:7b:28:5a:7e:46:ed:85:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jun 2 01:59:13 2025 GMT Not After : Jun 1 02:04:13 2026 GMT Subject: CN=439A6F2C8EC7179EB96FF77ABA72E548057BCB0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4f:95:ee:7a:c9:be:80:64:09:41:0f:9b:dd: 94:c6:97:cf:1e:de:ad:e0:b3:4c:2c:2e:a8:b8:70: 20:a1:fa:00:30:10:36:49:5b:33:bf:a8:c3:2c:6a: 1d:87:f2:28:18:7b:5a:27:54:ef:f1:48:db:8b:e5: 24:db:bf:71:97:8c:dc:40:16:92:39:fc:39:35:56: f6:ad:76:f9:61:69:2a:b9:2e:71:95:19:e9:df:3b: 8e:07:a6:d4:98:66:5d:59:28:28:c5:dc:5d:f6:65: cf:92:8d:50:f9:8b:e4:b9:ff:7a:b6:32:38:8d:e5: 99:67:a3:96:43:2d:4e:62:72:4b:2e:2a:07:4e:22: 88:02:aa:97:9f:b0:75:4f:88:bd:e1:ff:03:63:ea: 92:74:7f:fa:43:da:ef:a5:f6:11:45:ab:ef:4c:d7: 93:f5:35:de:dd:d1:55:7f:dd:67:83:1b:b1:97:39: 23:8c:b9:16:c4:39:68:9c:b3:ba:f4:37:73:83:a4: ef:a2:67:cb:00:2d:b8:bc:29:66:c3:e6:8d:8e:48: 3e:22:85:aa:e3:22:a6:9f:c2:b6:df:46:31:ec:6d: c4:ac:89:cf:ee:41:0c:80:01:92:81:8a:78:2f:ee: cc:11:d7:7e:81:59:4b:5c:0c:13:ca:17:e9:15:63: be:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:9A:6F:2C:8E:C7:17:9E:B9:6F:F7:7A:BA:72:E5:48:05:7B:CB:0A X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131382e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.118.0/24 Signature Algorithm: sha256WithRSAEncryption af:7e:db:d9:1d:17:ca:52:47:60:d3:bc:c1:00:8c:91:20:f0: b0:83:12:47:02:38:15:14:bf:39:40:42:25:bd:65:cf:f6:ba: 28:02:18:a1:3c:41:e9:2a:e8:aa:7c:d2:d8:20:15:4d:b9:4e: 56:c6:a1:53:bc:79:ea:1e:88:c0:bb:a9:f2:24:ef:8d:33:39: ea:61:0a:4b:6b:d3:61:f5:bb:66:90:e9:5d:1f:67:38:0d:d6: 95:65:8d:25:ad:79:d4:6e:23:85:9f:23:d9:b7:2c:3e:be:fc: 41:31:39:6e:b6:2d:16:d8:6f:d3:e0:e8:d1:c2:88:9c:85:cd: 77:b6:f7:46:49:56:d4:83:98:d5:ad:59:a8:a6:d5:54:b0:f0: ff:ba:f0:76:71:5b:5f:61:72:14:a4:77:43:57:7b:a8:89:8f: d3:82:5e:fe:41:4a:99:a1:b0:6b:c5:8a:e1:9b:2e:09:6d:8c: 88:d9:c7:2e:36:22:f7:19:69:23:34:d0:da:a5:a5:34:05:2f: 47:89:3b:c5:0d:fc:4b:96:75:dc:59:20:26:fe:1f:e4:bf:00: 1d:ae:ae:8d:05:13:0e:bc:3a:c5:b2:f2:d0:5f:d3:2f:cb:e9: cb:d8:18:bd:fd:8d:ab:75:04:de:3e:ac:f7:c4:d7:f4:54:4b: 46:1b:de:16 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTYOgYvdVXa+3DMiReyhafkbthZ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNTA2MDIwMTU5MTNaFw0yNjA2MDEwMjA0MTNaMDMxMTAvBgNV BAMTKDQzOUE2RjJDOEVDNzE3OUVCOTZGRjc3QUJBNzJFNTQ4MDU3QkNCMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjT5Xuesm+gGQJQQ+b3ZTGl88e 3q3gs0wsLqi4cCCh+gAwEDZJWzO/qMMsah2H8igYe1onVO/xSNuL5STbv3GXjNxA FpI5/Dk1VvatdvlhaSq5LnGVGenfO44HptSYZl1ZKCjF3F32Zc+SjVD5i+S5/3q2 MjiN5Zlno5ZDLU5icksuKgdOIogCqpefsHVPiL3h/wNj6pJ0f/pD2u+l9hFFq+9M 15P1Nd7d0VV/3WeDG7GXOSOMuRbEOWics7r0N3ODpO+iZ8sALbi8KWbD5o2OSD4i harjIqafwrbfRjHsbcSsic/uQQyAAZKBingv7swR136BWUtcDBPKF+kVY74FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQ5pvLI7HF565b/d6unLlSAV7ywowHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy752MA0GCSqG SIb3DQEBCwUAA4IBAQCvftvZHRfKUkdg07zBAIyRIPCwgxJHAjgVFL85QEIlvWXP 9rooAhihPEHpKuiqfNLYIBVNuU5WxqFTvHnqHojAu6nyJO+NMznqYQpLa9Nh9btm kOldH2c4DdaVZY0lrXnUbiOFnyPZtyw+vvxBMTluti0W2G/T4OjRwoichc13tvdG SVbUg5jVrVmoptVUsPD/uvB2cVtfYXIUpHdDV3uoiY/Tgl7+QUqZobBrxYrhmy4J bYyI2ccuNiL3GWkjNNDapaU0BS9HiTvFDfxLlnXcWSAm/h/kvwAdrq6NBRMOvDrF svLQX9Mvy+nL2Bi9/Y2rdQTePqz3xNf0VEtGG94W -----END CERTIFICATE-----Generated at Sat Jun 7 12:27:27 2025 by rpki-client