$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233362e302f32342d3234203d3e20313331373735.roa File: 3230322e37342e3233362e302f32342d3234203d3e20313331373735.roa (raw, json) Hash identifier: 6VuJVE5V+cRzw0YC3j26AjnB200tu5ynyJ2PlMkHwdk= Subject key identifier: 3C:7B:21:AA:C3:AF:83:B7:41:0D:48:02:B8:A3:E2:BE:FE:23:1F:C9 Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Certificate serial: 4C3F7D7722ACE2C22E5EC7511D2223844E5BA485 Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233362e302f32342d3234203d3e20313331373735.roa Signing time: Mon 02 Jun 2025 02:02:48 +0000 ROA not before: Mon 02 Jun 2025 01:57:48 +0000 ROA not after: Mon 01 Jun 2026 02:02:48 +0000 asID: 131775 IP address blocks: 202.74.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 08:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:3f:7d:77:22:ac:e2:c2:2e:5e:c7:51:1d:22:23:84:4e:5b:a4:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Validity Not Before: Jun 2 01:57:48 2025 GMT Not After : Jun 1 02:02:48 2026 GMT Subject: CN=3C7B21AAC3AF83B7410D4802B8A3E2BEFE231FC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a7:16:b8:75:d4:57:f8:67:d2:a6:d5:8f:0c: 3c:21:aa:17:d2:4a:52:65:03:a0:a9:99:7d:fb:4f: ce:f0:97:fc:39:60:30:ea:a7:9c:f2:8a:97:f6:13: 1c:de:86:c5:93:4e:57:dd:06:43:e1:41:71:e9:02: 54:25:09:19:be:28:eb:ab:cb:6d:b6:54:e5:49:b3: 5f:a6:e4:42:5d:b2:56:98:3a:4a:33:ff:05:37:7b: e2:a4:ac:94:14:d1:08:de:c5:2a:41:9b:2b:2e:77: 86:96:e3:17:8e:7b:b1:9e:9b:ea:08:b8:0a:2e:c1: bd:86:dd:83:f9:e5:95:72:19:01:0b:50:38:22:3c: a3:1e:a3:2d:6c:46:05:4d:45:7f:f7:c7:f7:c8:c5: 62:f8:6c:5b:46:13:46:90:ab:26:40:37:e7:ae:d1: 3b:87:3a:b8:82:5e:80:6f:d2:b9:a5:d4:92:af:f3: 2b:10:eb:45:b5:9b:2e:88:b9:86:5b:80:d3:96:c3: fe:8d:7d:97:a0:b8:af:4a:c5:9e:22:81:76:75:0f: 95:99:6d:e2:78:4a:30:58:ca:22:d3:23:d0:e7:49: 5f:5c:98:67:6c:73:f9:64:dd:2c:09:2b:85:1d:84: 56:0f:02:b8:0c:a1:2e:76:f6:7c:e0:55:63:cf:60: dc:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:7B:21:AA:C3:AF:83:B7:41:0D:48:02:B8:A3:E2:BE:FE:23:1F:C9 X509v3 Authority Key Identifier: keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233362e302f32342d3234203d3e20313331373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.74.236.0/24 Signature Algorithm: sha256WithRSAEncryption 55:09:b8:bb:aa:c8:85:6a:00:4e:86:0d:d0:5e:0d:45:49:b2: 6a:bc:4f:c6:7d:8e:aa:17:5f:db:fc:f3:ad:4d:7d:63:0b:25: 65:cb:b7:d8:ec:11:14:3c:37:ee:82:18:8c:cf:58:9a:b8:d3: 3a:a2:32:0f:47:75:1d:8f:0f:49:7c:8a:0b:20:05:6b:ae:dc: c2:18:fa:28:6f:5a:2a:e8:21:e5:60:82:7b:56:da:6e:77:64: e0:35:43:94:1f:dd:71:e5:7c:77:ef:f3:ac:50:18:31:6d:e4: 8a:58:d0:b5:e7:23:de:7f:45:a7:c4:94:4f:3c:74:a2:2f:e2: 4f:c1:ed:db:b0:d3:33:87:22:b3:7f:78:73:ea:98:41:da:91: 42:6c:c4:96:c7:df:7d:c3:cd:e1:d9:6b:11:4a:a3:7a:2e:a4: 84:bc:4a:df:34:f0:c5:c9:d0:ed:2c:6b:5b:17:7c:c3:38:b7: 5f:c9:53:77:95:e3:47:86:4f:a3:c4:75:ba:c9:48:2d:3c:30: 68:cb:ff:4b:45:11:09:ba:64:fc:90:50:6e:f3:cc:88:07:d4: c1:aa:c8:71:7c:b4:4f:79:be:48:a6:bf:8c:00:e3:ef:a1:27: 82:d7:f0:17:92:2e:99:b0:de:7a:96:19:6e:11:39:ce:3a:a2: 58:90:81:b0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTD99dyKs4sIuXsdRHSIjhE5bpIUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VE NzZCNTA1NDAeFw0yNTA2MDIwMTU3NDhaFw0yNjA2MDEwMjAyNDhaMDMxMTAvBgNV BAMTKDNDN0IyMUFBQzNBRjgzQjc0MTBENDgwMkI4QTNFMkJFRkUyMzFGQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6pxa4ddRX+GfSptWPDDwhqhfS SlJlA6CpmX37T87wl/w5YDDqp5zyipf2ExzehsWTTlfdBkPhQXHpAlQlCRm+KOur y222VOVJs1+m5EJdslaYOkoz/wU3e+KkrJQU0QjexSpBmysud4aW4xeOe7Gem+oI uAouwb2G3YP55ZVyGQELUDgiPKMeoy1sRgVNRX/3x/fIxWL4bFtGE0aQqyZAN+eu 0TuHOriCXoBv0rml1JKv8ysQ60W1my6IuYZbgNOWw/6NfZeguK9KxZ4igXZ1D5WZ beJ4SjBYyiLTI9DnSV9cmGdsc/lk3SwJK4UdhFYPArgMoS529nzgVWPPYNwHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPHshqsOvg7dBDUgCuKPivv4jH8kwHwYDVR0j BBgwFoAUSc3KMIwonWiMZJwjA77LPtdrUFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZWI5OGNlZC1hZjE4LTRiZmYtYWQ3MS03M2QyYjBjOWQ4YTkvMC80OUNEQ0EzMDhD Mjg5RDY4OEM2NDlDMjMwM0JFQ0IzRUQ3NkI1MDU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VENzZC NTA1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlYjk4Y2VkLWFmMTgtNGJmZi1h ZDcxLTczZDJiMGM5ZDhhOS8wLzMyMzAzMjJlMzczNDJlMzIzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAykrsMA0GCSqG SIb3DQEBCwUAA4IBAQBVCbi7qsiFagBOhg3QXg1FSbJqvE/GfY6qF1/b/POtTX1j CyVly7fY7BEUPDfughiMz1iauNM6ojIPR3Udjw9JfIoLIAVrrtzCGPoob1oq6CHl YIJ7Vtpud2TgNUOUH91x5Xx37/OsUBgxbeSKWNC15yPef0WnxJRPPHSiL+JPwe3b sNMzhyKzf3hz6phB2pFCbMSWx999w83h2WsRSqN6LqSEvErfNPDFydDtLGtbF3zD OLdfyVN3leNHhk+jxHW6yUgtPDBoy/9LRREJumT8kFBu88yIB9TBqshxfLRPeb5I pr+MAOPvoSeC1/AXki6ZsN56lhluETnOOqJYkIGw -----END CERTIFICATE-----Generated at Thu Jun 5 18:33:22 2025 by rpki-client