$ rpki-client -vvf repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139342e302f32342d3234203d3e203538353532.roa File: 3230322e37322e3139342e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: RQlHQFKjRMocIaoJ23CKpmV6pCLM6t6aYekY3LLmG4U= Subject key identifier: A4:1F:C7:CE:AA:12:13:0C:79:DD:06:0E:60:5B:6B:5C:21:F5:85:A2 Certificate issuer: /CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Certificate serial: 744FD5E061C0D2D7565CDF0752DC72C7ABA2FDCA Authority key identifier: 9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139342e302f32342d3234203d3e203538353532.roa Signing time: Mon 02 Jun 2025 02:02:55 +0000 ROA not before: Mon 02 Jun 2025 01:57:55 +0000 ROA not after: Mon 01 Jun 2026 02:02:55 +0000 asID: 58552 IP address blocks: 202.72.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 19:23:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:4f:d5:e0:61:c0:d2:d7:56:5c:df:07:52:dc:72:c7:ab:a2:fd:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Validity Not Before: Jun 2 01:57:55 2025 GMT Not After : Jun 1 02:02:55 2026 GMT Subject: CN=A41FC7CEAA12130C79DD060E605B6B5C21F585A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4b:fc:ab:b8:d4:b8:00:57:d1:39:f8:a4:1f: ef:e1:90:f4:d0:10:0a:b6:7d:60:3b:10:d6:69:6a: 54:1d:9d:b9:da:c1:f1:62:62:73:fa:67:1d:b4:01: 00:1c:a2:eb:74:11:51:23:b6:e6:a0:5d:2f:41:8c: cc:f9:cc:a2:30:74:9c:42:17:d5:fe:ae:2f:c6:f6: 47:c2:78:83:91:d5:c2:5d:23:88:c4:03:56:e4:1b: c1:db:a2:ae:cd:46:f5:c1:cd:88:d1:00:7f:ae:4b: 09:ab:2c:91:92:f8:8b:d9:01:09:13:63:f4:c8:c6: 9b:62:e5:57:72:c1:6a:1e:8c:52:02:82:eb:aa:95: 64:16:57:da:9c:51:53:f3:d5:48:3e:60:71:06:e4: 22:60:95:3e:9e:5b:56:db:1a:ec:3b:36:94:94:fe: 37:15:43:34:09:8e:04:d8:43:ec:8b:11:9e:81:c5: c3:62:c1:de:ca:2c:2a:c7:2a:d6:e9:1e:14:da:eb: 9a:b6:7d:30:19:78:f7:1f:89:4a:4c:44:c5:51:f1: 4b:5f:7c:7b:17:6a:22:04:63:d7:65:1d:73:bf:9d: e6:4d:a6:0b:eb:7d:26:d0:f9:4f:27:ed:a6:00:a2: 84:30:bd:fd:db:03:0f:4b:05:ff:34:fa:44:38:5f: ec:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:1F:C7:CE:AA:12:13:0C:79:DD:06:0E:60:5B:6B:5C:21:F5:85:A2 X509v3 Authority Key Identifier: keyid:9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139342e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.72.194.0/24 Signature Algorithm: sha256WithRSAEncryption 39:40:72:3b:eb:ba:47:84:c7:a9:b9:96:7d:27:0b:1b:5c:c4: 64:17:05:cb:cd:c6:d6:89:4c:2a:bb:86:ef:60:cc:9d:91:96: 58:8c:42:d9:43:40:6e:9e:d9:14:d3:df:29:9f:62:9d:70:71: cc:cf:18:e2:27:80:37:2a:37:a8:55:32:6a:c9:4e:fc:ac:71: e8:fe:28:83:8f:03:2d:5b:52:ef:bb:69:97:d3:e5:d2:f0:3a: 30:c5:b4:a1:98:99:b9:7a:4d:94:5d:2c:f1:ef:52:4d:c1:e6: 12:0b:38:ed:70:b2:04:f0:c6:c3:89:be:e6:6b:54:b5:f4:96: 58:db:bc:bc:2b:5e:ff:b4:ec:54:b2:5a:47:21:bf:f4:06:63: 81:2d:b5:cb:77:21:5e:bc:8b:be:f5:6b:c9:3e:ee:4c:f7:20: 45:85:33:d7:0c:65:19:97:af:7d:d9:2d:13:c4:cb:81:14:fe: a5:6f:c4:fe:ff:53:cf:0e:6f:a4:08:78:8f:5a:f0:ce:12:70: 97:b6:1c:89:3e:a9:f9:72:52:73:36:e8:05:9c:f0:1d:68:75: 9c:51:9d:d7:7e:eb:c4:b9:31:2b:c0:ba:15:ae:70:a7:82:6b: 12:4a:33:80:33:b1:f8:de:83:55:be:c2:7f:9a:c2:cd:05:c1: cb:ea:b0:56 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdE/V4GHA0tdWXN8HUtxyx6ui/cowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4 Rjc4ODFFRTAeFw0yNTA2MDIwMTU3NTVaFw0yNjA2MDEwMjAyNTVaMDMxMTAvBgNV BAMTKEE0MUZDN0NFQUExMjEzMEM3OUREMDYwRTYwNUI2QjVDMjFGNTg1QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQS/yruNS4AFfROfikH+/hkPTQ EAq2fWA7ENZpalQdnbnawfFiYnP6Zx20AQAcout0EVEjtuagXS9BjMz5zKIwdJxC F9X+ri/G9kfCeIOR1cJdI4jEA1bkG8Hboq7NRvXBzYjRAH+uSwmrLJGS+IvZAQkT Y/TIxpti5VdywWoejFICguuqlWQWV9qcUVPz1Ug+YHEG5CJglT6eW1bbGuw7NpSU /jcVQzQJjgTYQ+yLEZ6BxcNiwd7KLCrHKtbpHhTa65q2fTAZePcfiUpMRMVR8Utf fHsXaiIEY9dlHXO/neZNpgvrfSbQ+U8n7aYAooQwvf3bAw9LBf80+kQ4X+wHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpB/HzqoSEwx53QYOYFtrXCH1haIwHwYDVR0j BBgwFoAUnt5k28QJiIHxG3ASPfUU0494ge4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWFjYjRhOC03ODA0LTQ1MjYtODRkMi04NjliOTFhNjcxOWQvMC85RURFNjREQkM0 MDk4ODgxRjExQjcwMTIzREY1MTREMzhGNzg4MUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4Rjc4 ODFFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5YWNiNGE4LTc4MDQtNDUyNi04 NGQyLTg2OWI5MWE2NzE5ZC8wLzMyMzAzMjJlMzczMjJlMzEzOTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpIwjANBgkqhkiG 9w0BAQsFAAOCAQEAOUByO+u6R4THqbmWfScLG1zEZBcFy83G1olMKruG72DMnZGW WIxC2UNAbp7ZFNPfKZ9inXBxzM8Y4ieANyo3qFUyaslO/Kxx6P4og48DLVtS77tp l9Pl0vA6MMW0oZiZuXpNlF0s8e9STcHmEgs47XCyBPDGw4m+5mtUtfSWWNu8vCte /7TsVLJaRyG/9AZjgS21y3chXryLvvVryT7uTPcgRYUz1wxlGZevfdktE8TLgRT+ pW/E/v9Tzw5vpAh4j1rwzhJwl7YciT6p+XJSczboBZzwHWh1nFGd137rxLkxK8C6 Fa5wp4JrEkozgDOx+N6DVb7Cf5rCzQXBy+qwVg== -----END CERTIFICATE-----Generated at Mon Jun 16 07:00:40 2025 by rpki-client