$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233392e302f32342d3234203d3e20313331373735.roa File: 3230322e37342e3233392e302f32342d3234203d3e20313331373735.roa (raw, json) Hash identifier: +XaFO38Q9dXCmJ85JQuHQCLrxReLtpZeqTNCnHE/ld8= Subject key identifier: 85:DD:59:3C:08:51:E5:E1:CD:46:D6:BE:F3:76:92:63:5E:B7:6F:B1 Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Certificate serial: 0F185D683A99FF90CCEE3EAEC553988B597A9C94 Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233392e302f32342d3234203d3e20313331373735.roa Signing time: Mon 02 Jun 2025 02:02:49 +0000 ROA not before: Mon 02 Jun 2025 01:57:49 +0000 ROA not after: Mon 01 Jun 2026 02:02:49 +0000 asID: 131775 IP address blocks: 202.74.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 08:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:18:5d:68:3a:99:ff:90:cc:ee:3e:ae:c5:53:98:8b:59:7a:9c:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Validity Not Before: Jun 2 01:57:49 2025 GMT Not After : Jun 1 02:02:49 2026 GMT Subject: CN=85DD593C0851E5E1CD46D6BEF37692635EB76FB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ea:ee:cf:88:77:45:5e:36:b6:cd:57:20:94: ec:15:58:05:14:3d:50:25:13:cd:fe:ec:ce:8c:a1: cc:27:0e:ea:f8:1b:78:89:f7:07:d6:78:2b:fd:de: da:29:e6:9e:af:82:66:8c:32:8f:3d:0f:a2:37:68: cb:71:14:50:57:cd:a6:9b:6d:22:e6:3c:0f:db:48: a2:33:c9:93:ff:fc:99:d0:12:ee:4c:8f:3f:34:93: 98:d1:a1:79:b1:6c:16:da:6c:bc:13:dd:ae:52:a3: 8f:6d:ef:e9:e8:09:f4:77:c8:4c:75:d7:b6:f6:78: 82:cc:3b:4a:87:0c:e8:58:d3:09:f2:49:2f:e6:11: df:4e:04:fd:a5:c8:af:81:7e:cb:fe:e3:3d:8c:3d: 39:33:47:33:16:36:e3:55:18:72:70:0f:e6:10:62: 16:4e:10:6c:e1:b7:58:17:1e:c5:10:04:c1:df:b4: 83:28:79:b1:b9:29:68:40:ee:d4:4b:75:40:b7:a2: 23:47:5d:0e:ae:a8:ad:7b:77:13:0c:0b:98:b5:86: c7:b7:26:9d:6e:c9:b3:08:fa:16:f1:d7:ca:54:93: 2d:08:33:51:ea:ff:ff:82:89:27:24:c6:cd:09:e2: 91:63:d3:14:14:a3:c5:52:f6:73:4c:14:54:4c:fa: ab:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:DD:59:3C:08:51:E5:E1:CD:46:D6:BE:F3:76:92:63:5E:B7:6F:B1 X509v3 Authority Key Identifier: keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233392e302f32342d3234203d3e20313331373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.74.239.0/24 Signature Algorithm: sha256WithRSAEncryption 89:c5:1b:ab:8e:c5:45:e8:5b:c8:65:b0:72:c0:1e:ce:ae:ac: 53:bb:b3:bd:c5:34:11:02:cd:80:11:80:2c:51:06:dc:b2:2c: 43:52:d5:06:c4:7a:48:0b:42:28:05:a7:b2:55:b8:21:1f:f1: bb:b0:5e:e5:a0:09:8b:54:fd:ea:55:15:ae:70:f0:ab:8b:ad: a2:3c:a9:3c:c4:fd:92:f7:32:8d:70:5f:20:5f:61:31:f3:26: 51:3f:4b:78:d0:eb:90:9f:38:55:22:5e:18:48:eb:4b:44:90: ae:8f:4d:14:c4:6a:1b:c2:ac:3b:09:ff:46:66:54:00:21:a8: 8c:f7:06:bf:d8:25:a3:4d:8d:c1:da:e1:04:3f:fc:ef:a1:04: 3a:4b:da:e9:f5:77:ef:0f:1a:2a:84:ec:38:01:d7:66:a5:ce: 4a:a4:b2:10:cf:2a:70:03:50:0d:dd:27:83:98:3a:79:91:9e: 73:50:3c:56:77:9a:0f:6b:3d:5c:91:d2:33:9f:b0:aa:58:f0: 00:97:f0:41:94:7e:8c:93:01:cc:8f:e7:91:ed:20:01:a9:26: 4b:82:f1:98:7f:d2:e5:7d:9a:59:c6:73:b1:8f:b5:d4:62:83: 40:c5:e8:16:5b:aa:36:1f:cf:9e:e4:5d:bc:73:3d:f3:9b:68: bc:41:ac:19 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDxhdaDqZ/5DM7j6uxVOYi1l6nJQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VE NzZCNTA1NDAeFw0yNTA2MDIwMTU3NDlaFw0yNjA2MDEwMjAyNDlaMDMxMTAvBgNV BAMTKDg1REQ1OTNDMDg1MUU1RTFDRDQ2RDZCRUYzNzY5MjYzNUVCNzZGQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW6u7PiHdFXja2zVcglOwVWAUU PVAlE83+7M6MocwnDur4G3iJ9wfWeCv93top5p6vgmaMMo89D6I3aMtxFFBXzaab bSLmPA/bSKIzyZP//JnQEu5Mjz80k5jRoXmxbBbabLwT3a5So49t7+noCfR3yEx1 17b2eILMO0qHDOhY0wnySS/mEd9OBP2lyK+Bfsv+4z2MPTkzRzMWNuNVGHJwD+YQ YhZOEGzht1gXHsUQBMHftIMoebG5KWhA7tRLdUC3oiNHXQ6uqK17dxMMC5i1hse3 Jp1uybMI+hbx18pUky0IM1Hq//+CiSckxs0J4pFj0xQUo8VS9nNMFFRM+qsXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhd1ZPAhR5eHNRta+83aSY163b7EwHwYDVR0j BBgwFoAUSc3KMIwonWiMZJwjA77LPtdrUFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZWI5OGNlZC1hZjE4LTRiZmYtYWQ3MS03M2QyYjBjOWQ4YTkvMC80OUNEQ0EzMDhD Mjg5RDY4OEM2NDlDMjMwM0JFQ0IzRUQ3NkI1MDU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VENzZC NTA1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlYjk4Y2VkLWFmMTgtNGJmZi1h ZDcxLTczZDJiMGM5ZDhhOS8wLzMyMzAzMjJlMzczNDJlMzIzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAykrvMA0GCSqG SIb3DQEBCwUAA4IBAQCJxRurjsVF6FvIZbBywB7OrqxTu7O9xTQRAs2AEYAsUQbc sixDUtUGxHpIC0IoBaeyVbghH/G7sF7loAmLVP3qVRWucPCri62iPKk8xP2S9zKN cF8gX2Ex8yZRP0t40OuQnzhVIl4YSOtLRJCuj00UxGobwqw7Cf9GZlQAIaiM9wa/ 2CWjTY3B2uEEP/zvoQQ6S9rp9XfvDxoqhOw4Addmpc5KpLIQzypwA1AN3SeDmDp5 kZ5zUDxWd5oPaz1ckdIzn7CqWPAAl/BBlH6MkwHMj+eR7SABqSZLgvGYf9LlfZpZ xnOxj7XUYoNAxegWW6o2H8+e5F28cz3zm2i8QawZ -----END CERTIFICATE-----Generated at Thu Jun 5 18:36:13 2025 by rpki-client