$ rpki-client -vvf repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3230322e3135332e31362e302f32302d3234203d3e203233363636.roa File: 3230322e3135332e31362e302f32302d3234203d3e203233363636.roa (raw, json) Hash identifier: 5FOROrvQq+0t+Mk/ACrrEVqg06jInBJCBz0qroNhCeU= Subject key identifier: 1D:7A:52:C8:CC:79:8D:D4:0A:00:A9:E2:78:84:DE:C9:0D:C9:DF:B1 Certificate issuer: /CN=0BB3D1874063172B5374865233070332233FB7B3 Certificate serial: 3FFA01F4BE7E0A2AB145A9244FAB5B7A0E3A33BB Authority key identifier: 0B:B3:D1:87:40:63:17:2B:53:74:86:52:33:07:03:32:23:3F:B7:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB3D1874063172B5374865233070332233FB7B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3230322e3135332e31362e302f32302d3234203d3e203233363636.roa Signing time: Mon 02 Jun 2025 02:04:33 +0000 ROA not before: Mon 02 Jun 2025 01:59:33 +0000 ROA not after: Mon 01 Jun 2026 02:04:33 +0000 asID: 23666 IP address blocks: 202.153.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/0BB3D1874063172B5374865233070332233FB7B3.crl rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/0BB3D1874063172B5374865233070332233FB7B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB3D1874063172B5374865233070332233FB7B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:35:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:fa:01:f4:be:7e:0a:2a:b1:45:a9:24:4f:ab:5b:7a:0e:3a:33:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB3D1874063172B5374865233070332233FB7B3 Validity Not Before: Jun 2 01:59:33 2025 GMT Not After : Jun 1 02:04:33 2026 GMT Subject: CN=1D7A52C8CC798DD40A00A9E27884DEC90DC9DFB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ec:7f:e0:0d:ae:33:cf:14:bd:0e:36:45:50: b3:c9:53:33:0e:91:9f:b2:14:fb:b8:d6:49:35:b7: 1d:ec:15:97:1a:d2:cd:ce:9d:87:4f:b1:cb:41:1b: af:79:24:d9:4e:da:59:8e:50:e1:9f:84:66:86:23: b3:0a:59:8c:57:fd:4a:35:fd:94:f5:91:ea:60:6a: eb:41:a0:5a:1f:db:9a:51:d0:89:f2:8d:51:3b:7b: e2:d4:0c:30:8a:05:ca:42:cf:58:86:4f:37:e0:8f: 5a:f0:c6:94:0c:9f:e4:0a:83:60:ed:dd:dd:ec:72: 15:0e:2f:be:7f:cb:f8:28:08:94:9a:b7:95:20:fc: bc:68:cb:e1:8e:2f:34:8c:d3:d0:2d:fd:fc:4f:0f: d9:a1:47:db:fd:01:7f:74:fd:c8:1e:18:c9:f3:ec: d8:84:96:6f:8f:c3:bd:2a:66:7a:43:27:b3:ca:88: fa:f2:56:b2:a0:2b:e7:90:8a:cd:9e:24:16:59:d6: 1d:2c:44:79:6f:f2:f1:9f:10:c6:e7:56:ee:60:6d: 4c:69:7f:81:4e:f8:eb:c5:31:73:06:1e:a2:7c:af: cf:4e:6a:d7:a6:8b:da:38:bd:22:77:45:97:c1:d5: a8:42:99:fd:27:f0:f7:9b:82:a7:a9:41:40:2d:95: 42:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:7A:52:C8:CC:79:8D:D4:0A:00:A9:E2:78:84:DE:C9:0D:C9:DF:B1 X509v3 Authority Key Identifier: keyid:0B:B3:D1:87:40:63:17:2B:53:74:86:52:33:07:03:32:23:3F:B7:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/0BB3D1874063172B5374865233070332233FB7B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB3D1874063172B5374865233070332233FB7B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3230322e3135332e31362e302f32302d3234203d3e203233363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.153.16.0/20 Signature Algorithm: sha256WithRSAEncryption 7c:d5:bd:8a:08:f4:9f:20:f8:b3:e2:54:50:bb:60:e5:71:cb: 65:bd:28:45:e6:e2:12:49:3b:21:7d:af:5b:3b:d4:6d:5b:95: 6e:94:6e:91:36:44:30:86:98:23:93:7d:36:01:ce:c3:a8:1c: 74:84:b0:81:40:5c:e8:2c:37:65:80:d1:30:b1:4a:92:82:69: 0d:10:2f:91:6f:0d:01:08:d2:64:76:17:10:14:89:e1:e5:c7: 1b:0e:b7:9d:3e:96:98:9e:f1:98:11:8d:db:3f:0e:2d:0f:03: 77:12:e9:54:c3:4f:87:f2:38:5e:8f:ec:fe:10:28:e7:94:ad: 43:83:cf:7a:49:28:a2:63:e6:45:9e:79:6e:4f:43:38:26:70: 1d:80:ff:8a:0a:03:1e:e6:df:85:8c:6c:7f:5e:f0:3b:d4:61: 47:3b:75:fc:4a:09:22:16:6e:7e:9d:45:67:97:57:5e:85:3a: 89:09:1e:04:27:20:53:be:eb:f3:9f:24:1f:02:c1:d1:8e:f4: 5f:b8:3e:8b:c9:90:ef:3d:89:1f:29:d8:65:29:35:c3:26:83: 74:d1:26:d0:50:f6:36:1e:36:e7:fb:16:6c:2f:bb:ea:ba:98: 59:ff:3f:e0:74:9c:0a:d8:2c:bc:53:d2:b3:f6:5f:05:33:b3: 48:bd:bb:75 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP/oB9L5+CiqxRakkT6tbeg46M7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCM0QxODc0MDYzMTcyQjUzNzQ4NjUyMzMwNzAzMzIy MzNGQjdCMzAeFw0yNTA2MDIwMTU5MzNaFw0yNjA2MDEwMjA0MzNaMDMxMTAvBgNV BAMTKDFEN0E1MkM4Q0M3OThERDQwQTAwQTlFMjc4ODRERUM5MERDOURGQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw7H/gDa4zzxS9DjZFULPJUzMO kZ+yFPu41kk1tx3sFZca0s3OnYdPsctBG695JNlO2lmOUOGfhGaGI7MKWYxX/Uo1 /ZT1kepgautBoFof25pR0InyjVE7e+LUDDCKBcpCz1iGTzfgj1rwxpQMn+QKg2Dt 3d3schUOL75/y/goCJSat5Ug/Lxoy+GOLzSM09At/fxPD9mhR9v9AX90/cgeGMnz 7NiElm+Pw70qZnpDJ7PKiPryVrKgK+eQis2eJBZZ1h0sRHlv8vGfEMbnVu5gbUxp f4FO+OvFMXMGHqJ8r89Oatemi9o4vSJ3RZfB1ahCmf0n8PebgqepQUAtlUIJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHXpSyMx5jdQKAKnieITeyQ3J37EwHwYDVR0j BBgwFoAUC7PRh0BjFytTdIZSMwcDMiM/t7MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTkwOGI4My03ZjQ0LTQ2ZTAtODUzNS02ZmI4NGI1OWQ1OGEvMC8wQkIzRDE4NzQw NjMxNzJCNTM3NDg2NTIzMzA3MDMzMjIzM0ZCN0IzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCM0QxODc0MDYzMTcyQjUzNzQ4NjUyMzMwNzAzMzIyMzNG QjdCMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1OTA4YjgzLTdmNDQtNDZlMC04 NTM1LTZmYjg0YjU5ZDU4YS8wLzMyMzAzMjJlMzEzNTMzMmUzMTM2MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzIzMzM2MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMqZEDANBgkqhkiG 9w0BAQsFAAOCAQEAfNW9igj0nyD4s+JUULtg5XHLZb0oRebiEkk7IX2vWzvUbVuV bpRukTZEMIaYI5N9NgHOw6gcdISwgUBc6Cw3ZYDRMLFKkoJpDRAvkW8NAQjSZHYX EBSJ4eXHGw63nT6WmJ7xmBGN2z8OLQ8DdxLpVMNPh/I4Xo/s/hAo55StQ4PPekko omPmRZ55bk9DOCZwHYD/igoDHubfhYxsf17wO9RhRzt1/EoJIhZufp1FZ5dXXoU6 iQkeBCcgU77r858kHwLB0Y70X7g+i8mQ7z2JHynYZSk1wyaDdNEm0FD2Nh425/sW bC+76rqYWf8/4HScCtgsvFPSs/ZfBTOzSL27dQ== -----END CERTIFICATE-----Generated at Sat Jun 7 16:11:45 2025 by rpki-client