$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3230332e38392e32342e302f32312d3234203d3e203234353231.roa File: 3230332e38392e32342e302f32312d3234203d3e203234353231.roa (raw, json) Hash identifier: 25bjKMZwqQbYi5jKvGEGUrT2NIQ4GwrYcOU6Y3FnIcI= Subject key identifier: 92:8C:E9:EC:84:B6:29:B8:AF:46:5B:BA:38:33:7C:0F:90:11:ED:D8 Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 3C1568EA5ACA54F50AE95982C94222931B96E5F1 Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3230332e38392e32342e302f32312d3234203d3e203234353231.roa Signing time: Mon 02 Jun 2025 02:02:53 +0000 ROA not before: Mon 02 Jun 2025 01:57:53 +0000 ROA not after: Mon 01 Jun 2026 02:02:53 +0000 asID: 24521 IP address blocks: 203.89.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 03:04:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:15:68:ea:5a:ca:54:f5:0a:e9:59:82:c9:42:22:93:1b:96:e5:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Jun 2 01:57:53 2025 GMT Not After : Jun 1 02:02:53 2026 GMT Subject: CN=928CE9EC84B629B8AF465BBA38337C0F9011EDD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:1c:21:60:00:df:c9:44:b3:d4:ec:3c:db:77: 17:28:3b:37:aa:bb:43:98:b4:60:1e:eb:9f:78:91: 72:3a:8d:53:7d:ec:1b:29:c9:cd:25:1b:dc:81:3e: c2:e4:b8:4e:f8:ad:41:0a:27:8c:b7:8d:1d:b3:ca: d1:b5:ae:6e:29:e0:0c:df:fd:78:7e:76:6e:9d:50: 00:86:f6:ef:5b:23:4d:e4:eb:a8:60:6a:bc:14:d5: 86:d9:1a:08:cb:40:4b:80:d4:1a:e5:64:1e:ea:cf: 89:ee:96:40:7b:d9:c7:1a:de:5f:19:c3:4a:99:0b: 90:16:46:9a:f1:ad:dd:24:19:aa:fa:83:35:db:02: 6d:1a:f2:8e:f2:c8:9a:e9:5e:4f:a9:dd:cf:8f:57: d5:16:93:56:03:fa:c3:d9:7f:b2:6f:0a:d0:b6:2b: 8d:d3:57:f4:5f:d1:4b:da:16:de:15:15:06:f7:19: f6:a1:6a:0f:74:e3:ee:01:68:2a:e9:41:e5:c7:23: a5:ea:33:c4:02:b2:25:53:c2:18:02:3d:c4:df:5b: 0c:55:ef:7a:f0:92:3e:d5:61:7b:06:ba:39:96:e2: 7b:14:0f:0c:51:5a:6c:1a:4a:12:c2:83:ca:b8:fc: 81:d7:08:10:6d:8f:71:5b:42:73:ea:95:d0:ef:dd: c8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:8C:E9:EC:84:B6:29:B8:AF:46:5B:BA:38:33:7C:0F:90:11:ED:D8 X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3230332e38392e32342e302f32312d3234203d3e203234353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.89.24.0/21 Signature Algorithm: sha256WithRSAEncryption 15:ce:da:59:59:92:33:8b:b6:63:8b:95:a1:1e:0f:57:46:6a: 84:8e:71:6b:2f:c1:f4:43:53:75:43:e6:2d:26:8d:25:ca:37: b0:84:76:ca:29:fc:a5:9b:a2:71:e7:80:48:08:26:ab:97:01: d6:bf:cd:ef:82:d9:ed:30:61:65:40:0f:8f:be:06:93:a7:b9: c5:32:f5:32:37:47:34:6d:56:8d:1f:3c:05:95:f2:19:ac:f3: 17:5a:3d:61:87:ca:ee:a2:c0:27:4f:28:5e:77:94:6a:16:09: 1b:fc:7e:c8:44:e2:0d:a8:7f:34:5a:68:da:60:1e:c7:d6:2d: e3:53:b9:d2:4a:50:77:ca:23:6c:57:93:f0:94:0b:d5:01:df: 50:59:0a:53:62:b3:63:69:f2:0e:22:cb:76:cc:30:7d:4f:e0: 92:39:18:19:65:32:c9:1d:ee:40:5a:49:17:9f:91:2a:aa:2e: c8:04:e6:23:c1:3b:bd:a6:74:0c:00:a7:ce:8c:dd:6a:01:25: 6d:9d:79:f2:1d:a1:33:c5:72:20:75:50:a1:0d:a0:be:ba:b4: 76:27:b2:43:27:8f:0d:b6:79:3f:3c:15:22:57:58:80:6a:d8: 69:01:14:e8:67:ab:9f:e0:60:8e:0d:0b:9f:de:31:19:38:04: e1:65:d7:43 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUPBVo6lrKVPUK6VmCyUIikxuW5fEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yNTA2MDIwMTU3NTNaFw0yNjA2MDEwMjAyNTNaMDMxMTAvBgNV BAMTKDkyOENFOUVDODRCNjI5QjhBRjQ2NUJCQTM4MzM3QzBGOTAxMUVERDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyHCFgAN/JRLPU7DzbdxcoOzeq u0OYtGAe6594kXI6jVN97Bspyc0lG9yBPsLkuE74rUEKJ4y3jR2zytG1rm4p4Azf /Xh+dm6dUACG9u9bI03k66hgarwU1YbZGgjLQEuA1BrlZB7qz4nulkB72cca3l8Z w0qZC5AWRprxrd0kGar6gzXbAm0a8o7yyJrpXk+p3c+PV9UWk1YD+sPZf7JvCtC2 K43TV/Rf0UvaFt4VFQb3Gfahag904+4BaCrpQeXHI6XqM8QCsiVTwhgCPcTfWwxV 73rwkj7VYXsGujmW4nsUDwxRWmwaShLCg8q4/IHXCBBtj3FbQnPqldDv3cgFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUkozp7IS2KbivRlu6ODN8D5AR7dgwHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMyMzAzMzJlMzgzOTJlMzIzNDJlMzAyZjMyMzEy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPLWRgwDQYJKoZIhvcN AQELBQADggEBABXO2llZkjOLtmOLlaEeD1dGaoSOcWsvwfRDU3VD5i0mjSXKN7CE dsop/KWbonHngEgIJquXAda/ze+C2e0wYWVAD4++BpOnucUy9TI3RzRtVo0fPAWV 8hms8xdaPWGHyu6iwCdPKF53lGoWCRv8fshE4g2ofzRaaNpgHsfWLeNTudJKUHfK I2xXk/CUC9UB31BZClNis2Np8g4iy3bMMH1P4JI5GBllMskd7kBaSRefkSqqLsgE 5iPBO72mdAwAp86M3WoBJW2defIdoTPFciB1UKENoL66tHYnskMnjw22eT88FSJX WIBq2GkBFOhnq5/gYI4NC5/eMRk4BOFl10M= -----END CERTIFICATE-----Generated at Sat Aug 9 05:36:34 2025 by rpki-client