$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139322e302f32302d3230203d3e203633383539.roa File: 3230322e3135322e3139322e302f32302d3230203d3e203633383539.roa (raw, json) Hash identifier: f8b8ZEBPlEImYkbnkpmvkas1RzOl3JK/cPP6s/pxu7I= Subject key identifier: 56:0C:0E:D1:2C:AA:F4:DD:07:EB:69:33:46:D2:57:D1:A7:B2:F1:66 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 068B874FF70BEF2DAA8F02354D2B93F7C9234472 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139322e302f32302d3230203d3e203633383539.roa Signing time: Tue 10 Jun 2025 03:47:33 +0000 ROA not before: Tue 10 Jun 2025 03:42:33 +0000 ROA not after: Tue 09 Jun 2026 03:47:33 +0000 asID: 63859 IP address blocks: 202.152.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 08:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:8b:87:4f:f7:0b:ef:2d:aa:8f:02:35:4d:2b:93:f7:c9:23:44:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Jun 10 03:42:33 2025 GMT Not After : Jun 9 03:47:33 2026 GMT Subject: CN=560C0ED12CAAF4DD07EB693346D257D1A7B2F166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:ed:88:8c:d1:a3:ac:95:29:51:02:ff:5b:3b: e0:97:c4:c8:30:5f:dc:09:ca:a7:ec:4b:88:6f:b7: 87:50:ba:9c:c7:e5:f8:0e:f7:15:3a:e1:30:47:99: 17:15:20:50:7d:b5:e2:17:f9:17:96:c9:de:9c:37: 44:7b:4c:f7:3e:e0:9f:ff:c5:55:ff:f6:fc:b0:9a: 5f:7b:6a:b3:71:68:32:0a:1b:0b:5f:e9:f0:45:14: 4a:71:80:2d:c2:09:28:42:60:b4:8f:ff:65:53:d4: 11:39:38:ad:a6:df:dc:2a:91:27:01:b1:9c:01:4d: 15:5d:a5:57:c9:d5:08:8f:69:c1:7b:44:75:5d:d7: b8:1e:1b:ef:35:37:69:65:dd:c2:af:31:03:ab:c0: c8:4f:e2:fd:49:7f:68:a7:ca:78:ac:06:fe:eb:8b: 03:3f:ce:32:59:53:5e:cc:a2:3f:f1:f1:99:f8:49: 25:a9:a5:c0:c9:de:cd:f7:40:e1:d5:1c:2e:52:a6: 39:60:be:a2:1c:9a:a0:b1:81:28:8c:0a:df:55:45: ff:aa:54:02:47:5e:06:6a:d4:1a:9c:24:9c:4e:9f: f7:47:29:d1:6e:36:3f:35:18:c5:15:05:84:cd:a6: 87:4c:20:ef:39:16:9d:e5:65:31:ec:aa:cc:e5:79: 2d:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:0C:0E:D1:2C:AA:F4:DD:07:EB:69:33:46:D2:57:D1:A7:B2:F1:66 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139322e302f32302d3230203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.192.0/20 Signature Algorithm: sha256WithRSAEncryption 96:c9:9d:bd:e0:ac:de:08:f7:ed:ef:36:f9:1a:0c:51:46:83: 85:0f:25:2a:47:85:9b:7e:46:50:2b:88:6d:17:dc:a5:ad:40: 17:32:8b:e0:21:b0:20:e4:e1:b1:d7:64:ec:93:dc:92:e6:49: aa:53:87:6d:4b:6e:de:eb:64:71:6a:c8:f9:02:74:07:0c:50: c1:32:d3:0f:fa:a2:48:1c:3c:1a:cb:b0:66:2d:a2:a3:04:c9: 5a:d6:6b:fe:95:4e:50:8a:01:c8:3c:60:f5:9c:79:54:5d:a9: 44:f2:91:32:51:fa:9f:ff:f0:d8:89:37:13:8e:d7:30:59:de: 9d:a0:42:86:ab:da:a9:a0:11:3a:61:c3:7c:41:e9:fb:43:10: a6:97:0c:51:ef:da:08:c3:f9:9d:0b:b2:c0:0b:50:c6:51:e6: 69:4b:06:9f:dc:cf:93:29:ae:d8:30:fe:c8:7e:ec:f9:5f:fe: f6:11:e3:52:9d:2e:0b:2d:4d:9e:64:66:7c:ac:39:39:af:a8: 48:9a:78:50:bb:86:4c:47:62:04:f1:d0:d7:da:ac:36:56:ad: 39:0e:9c:e2:42:b0:da:13:75:92:83:0b:d8:ca:21:7c:f3:7a: 18:6e:48:aa:44:0d:55:1c:e4:c6:2b:18:6f:97:ff:53:da:b4: 90:20:4a:aa -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBouHT/cL7y2qjwI1TSuT98kjRHIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNTA2MTAwMzQyMzNaFw0yNjA2MDkwMzQ3MzNaMDMxMTAvBgNV BAMTKDU2MEMwRUQxMkNBQUY0REQwN0VCNjkzMzQ2RDI1N0QxQTdCMkYxNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCW7YiM0aOslSlRAv9bO+CXxMgw X9wJyqfsS4hvt4dQupzH5fgO9xU64TBHmRcVIFB9teIX+ReWyd6cN0R7TPc+4J// xVX/9vywml97arNxaDIKGwtf6fBFFEpxgC3CCShCYLSP/2VT1BE5OK2m39wqkScB sZwBTRVdpVfJ1QiPacF7RHVd17geG+81N2ll3cKvMQOrwMhP4v1Jf2inynisBv7r iwM/zjJZU17Moj/x8Zn4SSWppcDJ3s33QOHVHC5SpjlgvqIcmqCxgSiMCt9VRf+q VAJHXgZq1BqcJJxOn/dHKdFuNj81GMUVBYTNpodMIO85Fp3lZTHsqszleS3pAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVgwO0Syq9N0H62kzRtJX0aey8WYwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMTM5MzIyZTMwMmYz MjMwMmQzMjMwMjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEypjAMA0GCSqG SIb3DQEBCwUAA4IBAQCWyZ294KzeCPft7zb5GgxRRoOFDyUqR4WbfkZQK4htF9yl rUAXMovgIbAg5OGx12Tsk9yS5kmqU4dtS27e62Rxasj5AnQHDFDBMtMP+qJIHDwa y7BmLaKjBMla1mv+lU5QigHIPGD1nHlUXalE8pEyUfqf//DYiTcTjtcwWd6doEKG q9qpoBE6YcN8Qen7QxCmlwxR79oIw/mdC7LAC1DGUeZpSwaf3M+TKa7YMP7Ifuz5 X/72EeNSnS4LLU2eZGZ8rDk5r6hImnhQu4ZMR2IE8dDX2qw2Vq05DpziQrDaE3WS gwvYyiF883oYbkiqRA1VHOTGKxhvl/9T2rSQIEqq -----END CERTIFICATE-----Generated at Tue Jun 17 05:10:03 2025 by rpki-client