$ rpki-client -vvf repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234332e302f32342d3234203d3e203234313938.roa File: 3230322e39332e3234332e302f32342d3234203d3e203234313938.roa (raw, json) Hash identifier: hceiRn1k+oO/x+5WpC4OSWhZbFgi/4V0uwvwpTc+nOA= Subject key identifier: E8:ED:C1:42:D3:62:1F:BB:BF:40:B7:EC:20:55:6D:52:63:0A:80:50 Certificate issuer: /CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Certificate serial: 15D4879475959ACCF80A3DCA021F09EA1FDF4D2D Authority key identifier: F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234332e302f32342d3234203d3e203234313938.roa Signing time: Mon 02 Jun 2025 02:02:39 +0000 ROA not before: Mon 02 Jun 2025 01:57:39 +0000 ROA not after: Mon 01 Jun 2026 02:02:39 +0000 asID: 24198 IP address blocks: 202.93.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 14:25:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:d4:87:94:75:95:9a:cc:f8:0a:3d:ca:02:1f:09:ea:1f:df:4d:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Validity Not Before: Jun 2 01:57:39 2025 GMT Not After : Jun 1 02:02:39 2026 GMT Subject: CN=E8EDC142D3621FBBBF40B7EC20556D52630A8050 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ac:92:15:b8:4c:67:ce:c3:cf:1e:fc:1c:f4: 47:bd:17:63:fe:4b:6f:61:78:6b:35:a2:47:d9:d1: 9b:5c:df:4c:d5:7f:72:24:63:63:3e:83:24:b6:e8: d3:d2:c9:83:44:fb:91:19:f8:9a:0a:f0:0a:f9:cb: ea:00:5f:2e:ab:90:f8:9f:e1:7d:68:87:72:31:92: 96:c1:ef:d7:10:ee:08:2c:a0:5c:a1:36:2c:e2:1e: 21:d9:2a:00:7a:1d:21:b0:cf:b9:92:b8:43:01:81: a4:c0:9e:2b:0f:6a:56:53:a7:51:2b:87:6a:2d:d0: 5d:05:1c:17:e4:c6:92:d5:2f:f7:d3:fb:94:99:be: 17:87:30:b3:93:64:ab:46:ee:f2:68:8b:a2:1c:b5: f7:58:5a:ea:b6:fa:82:9e:53:73:77:d8:b1:a2:2b: 65:53:b6:ab:0c:86:55:51:44:32:6a:80:48:ab:ee: e7:04:46:52:35:25:48:34:86:9b:0d:f2:5e:b3:40: fc:4a:39:74:fd:60:28:a5:d3:4d:40:a4:ef:2b:57: 9f:75:b2:27:c8:e4:72:e1:37:f7:2e:41:f5:88:07: 4b:23:b1:5a:de:12:dd:04:2e:cf:42:6b:e2:ed:1a: 9a:cd:25:d3:a8:dc:63:fe:7a:4d:60:ec:b2:2b:be: ed:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:ED:C1:42:D3:62:1F:BB:BF:40:B7:EC:20:55:6D:52:63:0A:80:50 X509v3 Authority Key Identifier: keyid:F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234332e302f32342d3234203d3e203234313938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.243.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:90:df:37:20:0f:31:02:0a:14:28:f1:b7:61:dc:77:2f:64: 65:02:67:74:28:dc:13:a4:bf:4b:0d:4a:84:0c:3a:44:3c:9a: 23:dd:66:20:db:92:e3:3a:c8:b8:65:3f:f5:7b:32:de:cd:ba: 9d:04:b4:27:b4:de:f3:e6:58:21:b5:83:43:74:01:12:d8:c4: 28:a1:b3:9c:38:00:c3:78:3e:92:69:b7:d9:d0:8c:7e:8c:9c: 37:5e:37:aa:b5:21:a2:20:b6:b0:14:a8:ca:81:3f:64:23:ef: 7d:65:cf:0a:e0:ce:84:07:b1:08:32:de:04:47:f8:5a:f6:f9: 54:05:da:ca:d3:44:10:aa:21:c7:64:bc:3a:26:10:2e:ae:91: 93:26:1d:19:de:d9:ac:95:6f:ba:cf:8a:d6:46:6d:89:1a:ad: 14:0d:94:a2:30:0d:7a:e3:2f:52:10:0e:34:21:37:26:2a:7d: de:4d:d5:f6:55:df:b8:cf:f6:00:c1:ad:82:3e:c1:16:0a:87: 47:cc:ee:61:ca:e9:69:17:fb:85:36:3b:cc:e9:87:eb:a9:90: f0:28:92:5f:8f:28:6a:ad:46:df:4c:a3:ac:dc:dd:58:c8:26: bf:fd:55:67:d5:78:5a:cd:54:05:c0:2d:ac:90:5b:d5:9a:4b: 33:d7:96:87 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFdSHlHWVmsz4Cj3KAh8J6h/fTS0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3 NzgwOUQwMjAeFw0yNTA2MDIwMTU3MzlaFw0yNjA2MDEwMjAyMzlaMDMxMTAvBgNV BAMTKEU4RURDMTQyRDM2MjFGQkJCRjQwQjdFQzIwNTU2RDUyNjMwQTgwNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdrJIVuExnzsPPHvwc9Ee9F2P+ S29heGs1okfZ0Ztc30zVf3IkY2M+gyS26NPSyYNE+5EZ+JoK8Ar5y+oAXy6rkPif 4X1oh3IxkpbB79cQ7ggsoFyhNiziHiHZKgB6HSGwz7mSuEMBgaTAnisPalZTp1Er h2ot0F0FHBfkxpLVL/fT+5SZvheHMLOTZKtG7vJoi6IctfdYWuq2+oKeU3N32LGi K2VTtqsMhlVRRDJqgEir7ucERlI1JUg0hpsN8l6zQPxKOXT9YCil001ApO8rV591 sifI5HLhN/cuQfWIB0sjsVreEt0ELs9Ca+LtGprNJdOo3GP+ek1g7LIrvu29AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6O3BQtNiH7u/QLfsIFVtUmMKgFAwHwYDVR0j BBgwFoAU843/CU4WhDhU6sFAPGn9f3eAnQIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWQ2ZGNjOS0xNzAwLTQ4ZWItOTA5OS02Njc4ZjkxYmY0NGUvMC9GMzhERkYwOTRF MTY4NDM4NTRFQUMxNDAzQzY5RkQ3Rjc3ODA5RDAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3Nzgw OUQwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhZDZkY2M5LTE3MDAtNDhlYi05 MDk5LTY2NzhmOTFiZjQ0ZS8wLzMyMzAzMjJlMzkzMzJlMzIzNDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDMxMzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpd8zANBgkqhkiG 9w0BAQsFAAOCAQEAi5DfNyAPMQIKFCjxt2Hcdy9kZQJndCjcE6S/Sw1KhAw6RDya I91mINuS4zrIuGU/9Xsy3s26nQS0J7Te8+ZYIbWDQ3QBEtjEKKGznDgAw3g+kmm3 2dCMfoycN143qrUhoiC2sBSoyoE/ZCPvfWXPCuDOhAexCDLeBEf4Wvb5VAXaytNE EKohx2S8OiYQLq6RkyYdGd7ZrJVvus+K1kZtiRqtFA2UojANeuMvUhAONCE3Jip9 3k3V9lXfuM/2AMGtgj7BFgqHR8zuYcrpaRf7hTY7zOmH66mQ8CiSX48oaq1G30yj rNzdWMgmv/1VZ9V4Ws1UBcAtrJBb1ZpLM9eWhw== -----END CERTIFICATE-----Generated at Thu Jun 19 14:29:15 2025 by rpki-client