$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139362e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3139362e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: q9iza0H2rtEt+ACiqvHrrsVLjS6bvi7IjiExCl+Gt50= Subject key identifier: 97:58:39:29:CB:DB:FA:89:36:D6:94:C1:5C:49:35:00:AA:C5:3E:31 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 64223CC00BCE22912FCD812B0473A9332819166B Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139362e302f32342d3234203d3e203633383539.roa Signing time: Tue 10 Jun 2025 03:37:02 +0000 ROA not before: Tue 10 Jun 2025 03:32:02 +0000 ROA not after: Tue 09 Jun 2026 03:37:02 +0000 asID: 63859 IP address blocks: 202.152.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 08:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:22:3c:c0:0b:ce:22:91:2f:cd:81:2b:04:73:a9:33:28:19:16:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Jun 10 03:32:02 2025 GMT Not After : Jun 9 03:37:02 2026 GMT Subject: CN=97583929CBDBFA8936D694C15C493500AAC53E31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e8:6f:35:49:74:80:5d:a0:74:42:ac:23:dd: 3a:ad:a7:7c:e9:90:76:65:36:70:c4:b8:0c:32:f1: 26:1c:8c:61:04:7e:45:ed:eb:6c:22:2a:a1:c8:d5: 98:85:f4:17:84:de:ee:8e:a2:77:ec:27:5f:16:f3: 08:24:35:b1:15:8d:28:d8:c6:f9:32:9b:2f:f1:02: 6c:6a:18:52:a3:a5:f0:98:52:23:89:eb:ed:bb:cc: 97:35:84:c1:4e:5e:08:2c:a0:00:b8:a5:81:6d:27: da:14:fe:4e:5c:a2:ff:77:02:7b:b2:bb:d7:ea:71: c9:ed:2d:79:2f:b0:f7:f7:d8:84:3f:51:51:a3:d3: a7:61:7e:0a:20:e4:4d:ec:e0:f6:49:b8:58:44:29: 59:72:ca:17:ae:47:df:24:f3:53:b5:bb:80:27:e0: 40:cd:24:e6:97:66:a8:8a:99:63:9c:68:4e:44:6a: c5:0d:d9:27:9b:11:f7:49:1f:bd:3d:fe:3d:bb:4b: 94:34:08:33:1f:8b:8b:52:85:98:50:31:f8:77:0c: 26:40:7f:aa:f7:c4:90:0f:b3:60:e7:e7:a4:c6:1c: b8:9e:d1:2b:7c:25:d8:86:4c:5e:e2:a1:a7:dc:d5: 65:fe:76:c8:83:2b:b7:6d:6b:ec:0c:47:d7:8a:36: b1:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:58:39:29:CB:DB:FA:89:36:D6:94:C1:5C:49:35:00:AA:C5:3E:31 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139362e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.196.0/24 Signature Algorithm: sha256WithRSAEncryption 27:15:68:55:bc:14:da:e4:69:bc:f8:cf:de:c0:a4:5d:22:5c: 85:f3:01:59:62:32:5b:2d:8a:c7:6a:5e:93:30:41:8c:42:06: 92:39:1a:c9:3d:2f:0b:82:fb:6d:a1:0a:ce:25:2c:86:39:0d: 53:31:61:24:1f:b4:c5:3d:39:33:80:98:60:53:f8:a3:72:22: 5c:b9:6a:24:a2:f5:fd:c2:e1:40:f5:c6:be:50:b5:1e:50:06: 5e:40:ab:0c:58:20:f5:b2:a0:41:5c:57:e1:03:d5:ae:ae:1b: cc:a6:d3:68:94:4a:30:02:4e:52:74:a4:7d:40:6e:94:30:a8: ea:bd:b0:de:91:84:cb:36:49:7d:15:3a:c2:cd:d6:16:07:2f: 93:c6:d1:c8:f3:81:7a:d6:75:a9:e8:e7:d4:b9:91:f3:e6:2e: 98:6e:94:b9:63:ad:87:f1:a5:80:dd:ca:12:09:3c:ac:52:55: c1:e8:b6:6a:e2:84:d4:d2:59:45:dd:9d:e2:5a:bf:20:31:fb: af:b0:ae:c5:83:6e:2f:9d:62:26:17:86:bc:14:e6:18:e1:84: 78:1c:5b:0e:59:73:4a:99:3b:f0:1f:7b:92:29:fb:de:ee:bc: 0b:71:a0:b0:3c:8d:71:4a:ff:d6:0c:47:d0:a0:4f:a0:28:b4: 62:38:93:68 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZCI8wAvOIpEvzYErBHOpMygZFmswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNTA2MTAwMzMyMDJaFw0yNjA2MDkwMzM3MDJaMDMxMTAvBgNV BAMTKDk3NTgzOTI5Q0JEQkZBODkzNkQ2OTRDMTVDNDkzNTAwQUFDNTNFMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk6G81SXSAXaB0Qqwj3Tqtp3zp kHZlNnDEuAwy8SYcjGEEfkXt62wiKqHI1ZiF9BeE3u6OonfsJ18W8wgkNbEVjSjY xvkymy/xAmxqGFKjpfCYUiOJ6+27zJc1hMFOXggsoAC4pYFtJ9oU/k5cov93Anuy u9fqccntLXkvsPf32IQ/UVGj06dhfgog5E3s4PZJuFhEKVlyyheuR98k81O1u4An 4EDNJOaXZqiKmWOcaE5EasUN2SebEfdJH709/j27S5Q0CDMfi4tShZhQMfh3DCZA f6r3xJAPs2Dn56TGHLie0St8JdiGTF7ioafc1WX+dsiDK7dta+wMR9eKNrERAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUl1g5Kcvb+ok21pTBXEk1AKrFPjEwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMTM5MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjEMA0GCSqG SIb3DQEBCwUAA4IBAQAnFWhVvBTa5Gm8+M/ewKRdIlyF8wFZYjJbLYrHal6TMEGM QgaSORrJPS8LgvttoQrOJSyGOQ1TMWEkH7TFPTkzgJhgU/ijciJcuWokovX9wuFA 9ca+ULUeUAZeQKsMWCD1sqBBXFfhA9WurhvMptNolEowAk5SdKR9QG6UMKjqvbDe kYTLNkl9FTrCzdYWBy+TxtHI84F61nWp6OfUuZHz5i6YbpS5Y62H8aWA3coSCTys UlXB6LZq4oTU0llF3Z3iWr8gMfuvsK7Fg24vnWImF4a8FOYY4YR4HFsOWXNKmTvw H3uSKfve7rwLcaCwPI1xSv/WDEfQoE+gKLRiOJNo -----END CERTIFICATE-----Generated at Tue Jun 17 05:15:46 2025 by rpki-client