$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233382e302f32342d3234203d3e20313331373735.roa File: 3230322e37342e3233382e302f32342d3234203d3e20313331373735.roa (raw, json) Hash identifier: PNF09SxEelapDmbcZhAv/JlSjlnccRnMVMsb6Vjd5Cs= Subject key identifier: 39:00:7A:61:93:21:7C:A9:25:E0:71:24:FF:88:02:11:CF:96:0A:AA Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Certificate serial: 59FD4C26BB4AAA07490B0F7E411F9F5E8C0F6D09 Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233382e302f32342d3234203d3e20313331373735.roa Signing time: Mon 02 Jun 2025 02:02:49 +0000 ROA not before: Mon 02 Jun 2025 01:57:49 +0000 ROA not after: Mon 01 Jun 2026 02:02:49 +0000 asID: 131775 IP address blocks: 202.74.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 08:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:fd:4c:26:bb:4a:aa:07:49:0b:0f:7e:41:1f:9f:5e:8c:0f:6d:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Validity Not Before: Jun 2 01:57:49 2025 GMT Not After : Jun 1 02:02:49 2026 GMT Subject: CN=39007A6193217CA925E07124FF880211CF960AAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ce:e7:9e:3c:ec:d4:f8:2b:3a:d1:9a:1f:90: f3:c0:53:d8:b5:13:dc:fa:6c:fd:3a:15:ea:e8:1f: 04:69:c1:a1:84:73:5f:98:55:18:f2:a3:22:92:87: 80:11:a0:a6:ef:57:f9:98:10:8a:d1:91:0f:94:f3: bc:48:e6:bc:c9:7a:ee:d7:be:60:ce:9d:ae:79:ac: 84:e5:d9:2b:16:80:54:ee:4e:fa:11:b6:b0:54:52: 13:cd:ad:e2:52:60:94:e4:13:eb:0c:d4:c2:60:37: 95:4c:b7:12:71:a0:75:16:d2:66:9a:82:1f:2d:b0: 79:c7:bc:0e:a7:5d:73:72:d4:eb:9b:16:1b:45:db: 9b:07:ab:44:72:ba:7e:2e:8e:4e:ec:8f:da:4c:a9: 1a:55:10:4c:94:76:91:e5:c0:4a:61:d8:8b:0a:36: 19:74:da:07:b5:ee:c6:05:71:40:f1:9e:ad:10:6b: f9:a5:68:c5:ff:e6:49:b9:e4:6a:0c:1f:02:41:ac: 93:b3:13:df:22:b8:00:46:f8:23:a8:1d:6d:8d:7d: 6a:65:bd:2f:f1:8d:b9:c6:e5:f4:e3:29:a6:4b:8a: 65:0c:ed:b1:9f:83:d2:36:6c:03:c3:94:58:b7:2b: 7f:b5:5e:bc:bd:58:dc:1e:08:13:17:60:81:f3:67: c8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:00:7A:61:93:21:7C:A9:25:E0:71:24:FF:88:02:11:CF:96:0A:AA X509v3 Authority Key Identifier: keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233382e302f32342d3234203d3e20313331373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.74.238.0/24 Signature Algorithm: sha256WithRSAEncryption 35:5c:d7:53:6c:cf:72:c4:dd:a7:c4:a9:ad:d2:98:bc:e4:7a: 2e:68:40:4a:04:25:99:f9:6e:e2:36:6e:ad:7e:aa:95:b7:b1: b5:b7:3f:82:b4:3c:f3:f6:da:5f:47:f0:26:89:e2:1a:17:29: c8:5e:27:e9:29:f9:c6:c1:b9:8c:1b:48:c5:e2:c6:52:5e:e5: a7:c6:40:62:ab:de:03:9c:51:eb:f1:c0:a4:2d:9b:f8:7d:fb: a1:9d:88:33:10:cf:30:53:fe:db:13:a8:76:cc:5a:c1:42:e8: e6:7f:e3:e8:27:58:12:a9:b5:ee:07:32:a2:4b:ea:6d:46:99: b4:74:76:95:07:78:68:f3:4e:85:24:73:8f:5d:04:3e:8f:4b: ae:c1:cc:45:a6:4c:0a:5b:17:17:68:24:4c:81:ab:8b:5a:4a: b0:79:9d:4b:d5:21:34:9c:38:a4:f7:67:1a:15:ba:f4:96:92: 68:0b:7a:06:1f:4e:a8:95:8f:3d:18:a0:03:d4:62:09:de:02: e1:cf:c5:de:2f:87:29:0d:38:0a:0e:f5:99:df:13:cf:6b:1b: 6c:18:29:29:fc:71:86:97:b4:1c:1d:61:22:51:0d:6d:f9:e0: fa:b0:4e:2c:77:08:6f:5c:93:c7:e2:fa:cd:cb:fd:41:ce:46: 75:d4:69:05 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWf1MJrtKqgdJCw9+QR+fXowPbQkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VE NzZCNTA1NDAeFw0yNTA2MDIwMTU3NDlaFw0yNjA2MDEwMjAyNDlaMDMxMTAvBgNV BAMTKDM5MDA3QTYxOTMyMTdDQTkyNUUwNzEyNEZGODgwMjExQ0Y5NjBBQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgzueePOzU+Cs60ZofkPPAU9i1 E9z6bP06FeroHwRpwaGEc1+YVRjyoyKSh4ARoKbvV/mYEIrRkQ+U87xI5rzJeu7X vmDOna55rITl2SsWgFTuTvoRtrBUUhPNreJSYJTkE+sM1MJgN5VMtxJxoHUW0maa gh8tsHnHvA6nXXNy1OubFhtF25sHq0Ryun4ujk7sj9pMqRpVEEyUdpHlwEph2IsK Nhl02ge17sYFcUDxnq0Qa/mlaMX/5km55GoMHwJBrJOzE98iuABG+COoHW2NfWpl vS/xjbnG5fTjKaZLimUM7bGfg9I2bAPDlFi3K3+1Xry9WNweCBMXYIHzZ8gFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOQB6YZMhfKkl4HEk/4gCEc+WCqowHwYDVR0j BBgwFoAUSc3KMIwonWiMZJwjA77LPtdrUFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZWI5OGNlZC1hZjE4LTRiZmYtYWQ3MS03M2QyYjBjOWQ4YTkvMC80OUNEQ0EzMDhD Mjg5RDY4OEM2NDlDMjMwM0JFQ0IzRUQ3NkI1MDU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VENzZC NTA1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlYjk4Y2VkLWFmMTgtNGJmZi1h ZDcxLTczZDJiMGM5ZDhhOS8wLzMyMzAzMjJlMzczNDJlMzIzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAykruMA0GCSqG SIb3DQEBCwUAA4IBAQA1XNdTbM9yxN2nxKmt0pi85HouaEBKBCWZ+W7iNm6tfqqV t7G1tz+CtDzz9tpfR/AmieIaFynIXifpKfnGwbmMG0jF4sZSXuWnxkBiq94DnFHr 8cCkLZv4ffuhnYgzEM8wU/7bE6h2zFrBQujmf+PoJ1gSqbXuBzKiS+ptRpm0dHaV B3ho806FJHOPXQQ+j0uuwcxFpkwKWxcXaCRMgauLWkqweZ1L1SE0nDik92caFbr0 lpJoC3oGH06olY89GKAD1GIJ3gLhz8XeL4cpDTgKDvWZ3xPPaxtsGCkp/HGGl7Qc HWEiUQ1t+eD6sE4sdwhvXJPH4vrNy/1BzkZ11GkF -----END CERTIFICATE-----Generated at Thu Jun 5 18:38:18 2025 by rpki-client