$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131392e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131392e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: iPDWPUdV3RLO9JdOJttPvMJGjmUf5P6oe2o5V7/J66o= Subject key identifier: 90:13:CA:69:8F:76:6F:6D:E9:5D:7A:BF:5F:C5:B2:43:F3:71:94:8D Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 47C1DA7E14B58832D0851EC53E632DAC3835C7F7 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131392e302f32342d3234203d3e203338313536.roa Signing time: Mon 02 Jun 2025 02:04:13 +0000 ROA not before: Mon 02 Jun 2025 01:59:13 +0000 ROA not after: Mon 01 Jun 2026 02:04:13 +0000 asID: 38156 IP address blocks: 203.190.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 10:59:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:c1:da:7e:14:b5:88:32:d0:85:1e:c5:3e:63:2d:ac:38:35:c7:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jun 2 01:59:13 2025 GMT Not After : Jun 1 02:04:13 2026 GMT Subject: CN=9013CA698F766F6DE95D7ABF5FC5B243F371948D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:66:42:e5:80:0a:ab:0b:da:e6:cc:7d:21:84: c3:cb:4e:51:d1:e8:fd:05:8f:a0:16:a2:41:60:b7: cc:bc:27:2d:80:5f:f0:54:41:a2:a2:6e:5d:78:2b: eb:94:d5:34:ec:8a:61:50:60:4d:73:4f:bd:e9:a5: ab:d6:eb:7a:21:2f:c2:12:9b:07:41:38:a5:24:c8: 1f:05:96:26:3d:94:b3:b0:35:f7:f0:96:ba:77:e0: 12:92:06:1a:5b:8c:17:48:7d:c1:00:43:91:aa:5c: 7a:9a:4e:2f:dd:7d:8a:b0:62:a5:3d:2e:cb:09:da: e4:c0:3f:b5:cf:60:02:4f:1e:c9:02:f5:b0:67:a8: 71:17:50:56:3c:25:81:5d:a7:1f:1c:c1:17:19:8b: 43:cf:a3:77:9e:d0:1d:3c:78:37:1f:e5:54:e3:fc: 4b:9a:84:4b:72:60:6d:3e:e5:1b:72:ce:2b:7b:82: 4e:80:66:c2:80:00:5f:71:2d:f8:e8:43:d2:b2:f4: f7:8f:52:51:1a:3f:6b:92:c4:94:30:33:99:ed:d9: 7b:28:5a:fa:2a:ab:17:07:a0:38:a2:34:83:38:51: ef:7b:c6:2f:10:06:bf:78:96:13:ae:f9:37:93:35: db:53:dc:86:74:c2:2d:8e:e2:8b:c2:a4:41:3f:61: 9e:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:13:CA:69:8F:76:6F:6D:E9:5D:7A:BF:5F:C5:B2:43:F3:71:94:8D X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131392e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.119.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:58:34:1a:d2:d5:4b:bf:56:4a:c7:6f:16:11:b4:9c:57:9c: 0b:b3:71:0f:2b:68:62:e9:2b:d7:df:c5:25:7d:89:a2:64:44: cf:98:40:6e:8e:32:7d:dd:7b:04:8f:39:1d:86:6e:87:8c:60: ab:c3:54:a8:5e:9d:6f:c2:75:bb:04:28:be:c2:73:d2:f5:53: 78:5c:b4:58:03:29:c2:31:08:e2:0f:ab:94:34:fb:62:e6:35: 45:d0:57:43:29:08:2a:fb:b4:b6:08:c2:5d:50:40:8a:93:27: 54:9d:d9:dd:92:36:5b:12:a1:81:63:f3:b8:78:eb:72:b8:81: ab:7e:81:96:81:43:98:e8:15:d3:eb:26:93:6f:bf:87:c2:d4: fb:06:cf:6a:cc:8e:58:d9:74:93:f3:6a:81:2a:99:10:1d:50: 61:04:74:9d:1a:70:44:c4:1f:93:31:94:0f:c9:f9:f9:c1:16: 20:df:fe:e1:19:4c:7d:1d:dc:bd:c4:fb:1d:13:e0:42:66:f6: 9b:6f:dd:e8:c0:63:a8:5b:4a:18:91:57:a1:49:e8:79:90:e7: 36:17:37:f4:c6:99:9a:31:af:91:24:1e:84:ca:8f:10:89:38: dd:79:90:18:9f:06:8d:7a:f1:4d:e7:0d:5d:00:e6:c6:49:68: 2d:af:78:2a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUR8HafhS1iDLQhR7FPmMtrDg1x/cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNTA2MDIwMTU5MTNaFw0yNjA2MDEwMjA0MTNaMDMxMTAvBgNV BAMTKDkwMTNDQTY5OEY3NjZGNkRFOTVEN0FCRjVGQzVCMjQzRjM3MTk0OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7ZkLlgAqrC9rmzH0hhMPLTlHR 6P0Fj6AWokFgt8y8Jy2AX/BUQaKibl14K+uU1TTsimFQYE1zT73ppavW63ohL8IS mwdBOKUkyB8FliY9lLOwNffwlrp34BKSBhpbjBdIfcEAQ5GqXHqaTi/dfYqwYqU9 LssJ2uTAP7XPYAJPHskC9bBnqHEXUFY8JYFdpx8cwRcZi0PPo3ee0B08eDcf5VTj /EuahEtyYG0+5Rtyzit7gk6AZsKAAF9xLfjoQ9Ky9PePUlEaP2uSxJQwM5nt2Xso WvoqqxcHoDiiNIM4Ue97xi8QBr94lhOu+TeTNdtT3IZ0wi2O4ovCpEE/YZ75AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkBPKaY92b23pXXq/X8WyQ/NxlI0wHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy753MA0GCSqG SIb3DQEBCwUAA4IBAQBbWDQa0tVLv1ZKx28WEbScV5wLs3EPK2hi6SvX38UlfYmi ZETPmEBujjJ93XsEjzkdhm6HjGCrw1SoXp1vwnW7BCi+wnPS9VN4XLRYAynCMQji D6uUNPti5jVF0FdDKQgq+7S2CMJdUECKkydUndndkjZbEqGBY/O4eOtyuIGrfoGW gUOY6BXT6yaTb7+HwtT7Bs9qzI5Y2XST82qBKpkQHVBhBHSdGnBExB+TMZQPyfn5 wRYg3/7hGUx9Hdy9xPsdE+BCZvabb93owGOoW0oYkVehSeh5kOc2Fzf0xpmaMa+R JB6Eyo8QiTjdeZAYnwaNevFN5w1dAObGSWgtr3gq -----END CERTIFICATE-----Generated at Sat Jun 7 12:28:16 2025 by rpki-client