$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3230322e3136392e3232342e302f32302d3234203d3e203233363731.roa File: 3230322e3136392e3232342e302f32302d3234203d3e203233363731.roa (raw, json) Hash identifier: oro99xPF0g8Z1jg47VoAobJMfgIUYlWHNueiwIHbC6Q= Subject key identifier: 14:D2:A1:DA:5C:75:C6:A2:75:80:27:FD:CF:4B:19:1A:2F:ED:C8:EF Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 4A83576F03569CF6A674843972A180B7FA80AC0A Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3230322e3136392e3232342e302f32302d3234203d3e203233363731.roa Signing time: Mon 02 Jun 2025 01:03:23 +0000 ROA not before: Mon 02 Jun 2025 00:58:23 +0000 ROA not after: Mon 01 Jun 2026 01:03:23 +0000 asID: 23671 IP address blocks: 202.169.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:53:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:83:57:6f:03:56:9c:f6:a6:74:84:39:72:a1:80:b7:fa:80:ac:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Jun 2 00:58:23 2025 GMT Not After : Jun 1 01:03:23 2026 GMT Subject: CN=14D2A1DA5C75C6A2758027FDCF4B191A2FEDC8EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ca:25:b8:dc:ba:b2:27:af:73:d1:fe:01:e7: 0d:a3:97:ba:54:e6:d1:af:5d:5f:94:69:02:06:56: 60:64:16:43:d4:18:76:83:4a:7e:1c:15:dd:74:df: d3:ba:29:1f:53:a0:9d:4a:ea:a4:68:9d:5f:7e:c8: 70:21:f3:de:d8:2d:e2:7a:8f:b8:6f:6b:d7:9d:92: 4d:59:27:07:f3:db:db:5b:80:f5:7f:ac:02:39:c2: be:e2:3a:4e:65:80:33:5f:a7:cf:d9:88:fb:09:27: 0f:4a:31:1f:04:a7:79:41:01:3c:13:74:b3:1a:57: de:0f:3d:56:ed:d2:a9:c9:7e:99:2c:13:3d:54:85: 84:4e:35:2a:a7:2e:e2:03:05:35:2f:45:6a:68:e9: 6a:c5:e8:9a:46:34:12:0e:5e:8c:35:a9:52:d6:80: 84:4d:2b:27:1e:4c:21:fa:1a:37:ce:13:3c:e5:8c: 32:24:3d:f7:d2:9c:6d:1e:53:64:b0:a6:b9:89:50: 07:2a:20:cc:3d:a2:19:7a:7f:03:c7:9d:b5:f7:40: 35:33:9b:54:a0:f7:35:76:45:94:67:ad:b7:b2:de: cb:02:a5:11:27:7e:02:e4:ab:95:99:4f:e1:72:8b: 61:82:f3:16:73:0e:52:d3:04:6c:e1:62:18:84:ca: ec:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:D2:A1:DA:5C:75:C6:A2:75:80:27:FD:CF:4B:19:1A:2F:ED:C8:EF X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3230322e3136392e3232342e302f32302d3234203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.224.0/20 Signature Algorithm: sha256WithRSAEncryption 52:b5:7f:1b:e4:8f:64:59:13:95:74:5e:ca:27:e9:0a:d0:20: 7a:e0:f1:74:bc:f8:f8:ce:9d:20:65:0f:0f:b1:bf:e3:97:3d: 83:45:a9:55:7f:f9:10:b8:41:62:5e:02:2a:aa:12:1d:85:91: d0:c4:c5:ae:fd:ee:70:b6:69:fd:7a:5f:4b:47:ee:5a:4c:dd: 83:6a:a6:83:1a:c2:1d:02:a8:05:38:96:1e:04:73:75:a0:7f: a4:1e:3d:63:31:2d:de:0c:c2:64:fc:86:fb:a9:29:c1:e4:bd: 04:14:c5:73:c3:bc:ab:41:bd:1c:6c:d0:db:1c:fc:d5:d0:dc: 83:ab:c5:24:53:ad:c1:2a:66:98:2c:ce:6b:27:56:85:85:3b: da:04:22:7a:4c:35:85:67:73:74:3f:3e:1e:6f:f4:b1:3b:4c: b0:2e:2a:f7:d0:8a:80:1e:a8:20:78:3b:05:28:90:b9:2c:d8: ec:e5:95:6b:71:ed:9e:00:cf:2f:d6:e3:e3:08:f7:2b:0e:c3: 93:9a:69:f7:c8:25:12:c7:17:3e:78:fb:41:1f:3a:98:54:b7: eb:05:54:68:df:15:41:98:15:46:f4:c3:9a:ca:85:c6:a4:ff: 4f:dd:64:15:6f:50:29:41:95:aa:1e:38:53:1e:47:d6:f0:e4: d5:9b:36:13 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSoNXbwNWnPamdIQ5cqGAt/qArAowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNTA2MDIwMDU4MjNaFw0yNjA2MDEwMTAzMjNaMDMxMTAvBgNV BAMTKDE0RDJBMURBNUM3NUM2QTI3NTgwMjdGRENGNEIxOTFBMkZFREM4RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcyiW43LqyJ69z0f4B5w2jl7pU 5tGvXV+UaQIGVmBkFkPUGHaDSn4cFd1039O6KR9ToJ1K6qRonV9+yHAh897YLeJ6 j7hva9edkk1ZJwfz29tbgPV/rAI5wr7iOk5lgDNfp8/ZiPsJJw9KMR8Ep3lBATwT dLMaV94PPVbt0qnJfpksEz1UhYRONSqnLuIDBTUvRWpo6WrF6JpGNBIOXow1qVLW gIRNKyceTCH6GjfOEzzljDIkPffSnG0eU2SwprmJUAcqIMw9ohl6fwPHnbX3QDUz m1Sg9zV2RZRnrbey3ssCpREnfgLkq5WZT+Fyi2GC8xZzDlLTBGzhYhiEyuyXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFNKh2lx1xqJ1gCf9z0sZGi/tyO8wHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMyMzAzMjJlMzEzNjM5MmUzMjMyMzQyZTMwMmYz MjMwMmQzMjM0MjAzZDNlMjAzMjMzMzYzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEyqngMA0GCSqG SIb3DQEBCwUAA4IBAQBStX8b5I9kWROVdF7KJ+kK0CB64PF0vPj4zp0gZQ8Psb/j lz2DRalVf/kQuEFiXgIqqhIdhZHQxMWu/e5wtmn9el9LR+5aTN2DaqaDGsIdAqgF OJYeBHN1oH+kHj1jMS3eDMJk/Ib7qSnB5L0EFMVzw7yrQb0cbNDbHPzV0NyDq8Uk U63BKmaYLM5rJ1aFhTvaBCJ6TDWFZ3N0Pz4eb/SxO0ywLir30IqAHqggeDsFKJC5 LNjs5ZVrce2eAM8v1uPjCPcrDsOTmmn3yCUSxxc+ePtBHzqYVLfrBVRo3xVBmBVG 9MOayoXGpP9P3WQVb1ApQZWqHjhTHkfW8OTVmzYT -----END CERTIFICATE-----Generated at Sun Jun 8 16:38:21 2025 by rpki-client