$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139352e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3139352e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: xIwOhaK9F8GaMLO+48a1gHgLSh8/QXMa+ox/aPfD8ZE= Subject key identifier: C5:B9:72:61:CE:17:A0:FB:69:6E:1D:04:51:46:AF:F0:01:6E:E2:F0 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 42E555FC67FF24987B47443C25FDD55D051B50E7 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139352e302f32342d3234203d3e203633383539.roa Signing time: Tue 10 Jun 2025 03:36:44 +0000 ROA not before: Tue 10 Jun 2025 03:31:44 +0000 ROA not after: Tue 09 Jun 2026 03:36:44 +0000 asID: 63859 IP address blocks: 202.152.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 08:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:e5:55:fc:67:ff:24:98:7b:47:44:3c:25:fd:d5:5d:05:1b:50:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Jun 10 03:31:44 2025 GMT Not After : Jun 9 03:36:44 2026 GMT Subject: CN=C5B97261CE17A0FB696E1D045146AFF0016EE2F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:95:6a:5e:a4:39:eb:6b:a0:5f:b3:59:5f:e3: ee:b9:db:0c:61:b0:98:08:88:d8:09:79:2e:92:46: 50:dd:0a:fb:92:fe:8e:f1:d0:5a:e1:52:a9:22:78: ac:8a:1a:a4:d5:ac:81:d3:b0:f3:f9:83:3c:9d:17: 34:2e:9c:a6:ce:3f:7f:d5:1b:ec:27:99:0f:8d:a9: 10:9a:21:48:85:08:fc:63:71:6e:66:24:c8:00:27: ee:c5:3d:94:7d:48:c2:f6:61:cb:77:20:4e:bc:4b: 8b:03:84:7b:36:a4:49:c8:a9:59:2b:b2:cf:ea:ee: 17:ac:8e:60:d9:6a:13:6e:e1:dc:ae:d0:46:10:70: f0:f3:ed:d3:95:36:a2:3c:8a:2d:85:0c:92:e3:ff: 6a:a0:f1:c8:3d:f2:e7:97:dd:05:fa:e1:6a:a1:d8: 43:24:5b:4f:35:ca:2c:77:10:28:c6:02:57:54:6b: f6:89:70:70:95:3c:97:86:7b:13:4a:b0:c4:f4:df: b2:50:31:8f:a1:57:11:a1:8e:d8:6b:7b:27:51:bd: 03:b6:62:b7:58:3c:67:bd:90:25:4d:06:a6:97:63: 20:6d:9a:85:25:12:b5:95:a4:70:f5:41:8a:cf:d2: 38:2b:27:0b:89:4c:1b:4f:92:48:1e:2b:83:f8:01: 05:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:B9:72:61:CE:17:A0:FB:69:6E:1D:04:51:46:AF:F0:01:6E:E2:F0 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139352e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.195.0/24 Signature Algorithm: sha256WithRSAEncryption 10:21:46:11:27:98:77:f6:97:bc:a3:81:1a:8d:0d:66:3e:5b: fe:69:10:aa:bd:41:e0:f6:1a:1a:ea:ab:8d:fc:0f:70:97:8c: 46:e2:f0:56:b5:c8:04:75:51:c3:e4:90:81:7c:d9:f7:e3:aa: 42:c4:bc:68:0d:46:aa:ff:36:aa:1b:af:54:b7:f2:23:31:aa: ef:d7:e9:ea:52:09:38:8b:45:d5:9d:aa:da:1d:3e:f8:54:7b: 30:e0:1f:0f:c8:40:90:89:f9:26:f1:44:0e:73:e1:38:3d:29: 53:d9:b6:a3:e8:75:9e:5f:9a:b8:b7:26:23:b4:77:5a:50:bb: c6:67:d6:ae:7d:1d:40:7d:d6:3b:c9:76:77:31:5b:43:ee:e0: 84:63:d9:c7:1c:2f:e8:2f:1d:83:85:78:ef:96:69:61:ce:89: b7:77:08:c3:cb:fd:71:e4:4b:62:a0:4f:68:93:24:d2:76:1e: 8e:3a:f6:1a:1b:51:a2:a2:bb:71:e7:68:53:06:4c:31:2f:33: 33:22:42:45:79:44:9c:53:39:88:b6:bf:ed:26:a1:ed:04:63: 30:94:51:22:4e:af:79:2c:dc:55:0d:45:53:5e:14:4c:b9:e9: 28:c2:21:53:91:a3:d2:db:d1:19:98:5d:c2:ae:34:a9:76:ed: 32:b2:1c:e7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQuVV/Gf/JJh7R0Q8Jf3VXQUbUOcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNTA2MTAwMzMxNDRaFw0yNjA2MDkwMzM2NDRaMDMxMTAvBgNV BAMTKEM1Qjk3MjYxQ0UxN0EwRkI2OTZFMUQwNDUxNDZBRkYwMDE2RUUyRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFlWpepDnra6Bfs1lf4+652wxh sJgIiNgJeS6SRlDdCvuS/o7x0FrhUqkieKyKGqTVrIHTsPP5gzydFzQunKbOP3/V G+wnmQ+NqRCaIUiFCPxjcW5mJMgAJ+7FPZR9SML2Yct3IE68S4sDhHs2pEnIqVkr ss/q7hesjmDZahNu4dyu0EYQcPDz7dOVNqI8ii2FDJLj/2qg8cg98ueX3QX64Wqh 2EMkW081yix3ECjGAldUa/aJcHCVPJeGexNKsMT037JQMY+hVxGhjthreydRvQO2 YrdYPGe9kCVNBqaXYyBtmoUlErWVpHD1QYrP0jgrJwuJTBtPkkgeK4P4AQXBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxblyYc4XoPtpbh0EUUav8AFu4vAwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMTM5MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjDMA0GCSqG SIb3DQEBCwUAA4IBAQAQIUYRJ5h39pe8o4EajQ1mPlv+aRCqvUHg9hoa6quN/A9w l4xG4vBWtcgEdVHD5JCBfNn346pCxLxoDUaq/zaqG69Ut/IjMarv1+nqUgk4i0XV naraHT74VHsw4B8PyECQifkm8UQOc+E4PSlT2baj6HWeX5q4tyYjtHdaULvGZ9au fR1AfdY7yXZ3MVtD7uCEY9nHHC/oLx2DhXjvlmlhzom3dwjDy/1x5EtioE9okyTS dh6OOvYaG1Giortx52hTBkwxLzMzIkJFeUScUzmItr/tJqHtBGMwlFEiTq95LNxV DUVTXhRMuekowiFTkaPS29EZmF3CrjSpdu0yshzn -----END CERTIFICATE-----Generated at Tue Jun 17 01:54:50 2025 by rpki-client