$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139372e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3139372e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: oYNKTwfcxqyIB1OXRbrwMgJ3fSYv5LQtaFy8X3lU6Gg= Subject key identifier: 87:BE:D1:7C:75:D7:71:06:94:89:A6:F5:3D:D4:AB:E1:CD:6A:7C:64 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 72C209B8A4D7F7A2724D6A10FF4CF62D304C9CA4 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139372e302f32342d3234203d3e203633383539.roa Signing time: Tue 10 Jun 2025 03:38:46 +0000 ROA not before: Tue 10 Jun 2025 03:33:46 +0000 ROA not after: Tue 09 Jun 2026 03:38:46 +0000 asID: 63859 IP address blocks: 202.152.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 13:46:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:c2:09:b8:a4:d7:f7:a2:72:4d:6a:10:ff:4c:f6:2d:30:4c:9c:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Jun 10 03:33:46 2025 GMT Not After : Jun 9 03:38:46 2026 GMT Subject: CN=87BED17C75D771069489A6F53DD4ABE1CD6A7C64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ed:ea:23:73:56:04:78:4c:0f:32:46:e4:9d: 33:49:9c:f1:6d:84:5a:bc:50:7b:ae:a4:26:99:32: dc:df:39:87:e8:79:68:75:f1:ff:87:db:fe:56:2c: 47:cd:52:81:ad:7f:ed:09:88:eb:2b:e9:be:ca:78: ff:2c:26:05:aa:30:90:f3:24:22:a9:7a:37:94:92: 32:24:67:05:64:1e:01:02:ce:b4:2e:a2:d0:7d:65: 01:28:c9:7c:2d:b8:c8:4a:18:3b:76:df:6a:80:1f: 85:b7:c8:b0:32:92:2a:b9:50:43:67:47:e7:14:5d: af:91:19:d7:6f:fe:8b:46:5a:7a:29:7d:b0:da:3e: bb:66:6e:85:8d:38:da:0a:f8:c4:00:41:2d:1d:d4: 0f:31:17:d2:c0:cf:a9:f7:34:e9:8a:f2:93:d7:12: 0c:64:38:c0:50:78:a7:17:25:5e:f9:2f:74:5f:47: cb:d3:4f:f7:1a:ec:d7:af:1d:ea:24:8c:5b:64:d9: 61:60:27:c4:73:40:22:37:63:3d:a2:5c:b8:e3:dd: 39:d0:e1:47:6f:94:9b:43:98:f5:7d:7f:4d:e6:ba: 71:7e:e0:de:7b:61:14:ae:66:56:2a:b4:f0:df:d8: fd:45:9d:71:b5:1e:5f:a3:fb:34:b7:57:b9:5f:74: 42:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:BE:D1:7C:75:D7:71:06:94:89:A6:F5:3D:D4:AB:E1:CD:6A:7C:64 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139372e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.197.0/24 Signature Algorithm: sha256WithRSAEncryption 57:9a:9b:24:31:28:66:b5:35:8a:aa:22:97:98:69:de:ff:6e: e7:93:16:b5:0f:c1:41:54:22:ed:5f:62:c6:84:a4:96:a2:e0: ef:f9:f7:a8:c9:74:2c:f3:0f:23:b6:91:0c:33:63:fe:2f:e9: cc:d9:72:5a:63:18:53:08:40:be:25:8c:cb:20:48:41:e0:78: 62:02:7c:b6:d0:8a:60:da:75:db:fe:35:a2:65:a7:29:e0:1b: 4a:1f:b6:fa:f9:85:28:91:37:b6:fe:22:c7:1a:3c:af:7a:72: 6b:2a:8a:b8:e5:54:c7:5b:ba:3e:f6:af:cc:e4:e6:4f:17:2a: 52:d4:cc:cf:90:16:45:b1:a6:c1:a4:5c:72:2b:ba:1a:5e:e9: 70:d2:22:fe:be:e3:cd:19:eb:24:13:4b:10:54:6e:3f:cc:23: 95:53:4f:e3:d1:84:c3:d9:01:2e:ed:0a:af:c4:bd:a2:4f:21: df:4d:ce:ba:93:0f:73:99:44:a6:46:05:01:3f:f9:3e:b0:32: 59:6f:9b:79:53:59:92:b3:6b:06:e8:cc:1e:a7:24:6e:9c:da: 76:04:93:8c:b2:7a:a6:00:49:3f:df:2e:9a:eb:74:9e:b3:e3: dd:00:bd:50:51:f8:ff:d6:db:22:f4:d5:60:37:8a:da:6e:a1: 15:b2:f6:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcsIJuKTX96JyTWoQ/0z2LTBMnKQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNTA2MTAwMzMzNDZaFw0yNjA2MDkwMzM4NDZaMDMxMTAvBgNV BAMTKDg3QkVEMTdDNzVENzcxMDY5NDg5QTZGNTNERDRBQkUxQ0Q2QTdDNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC47eojc1YEeEwPMkbknTNJnPFt hFq8UHuupCaZMtzfOYfoeWh18f+H2/5WLEfNUoGtf+0JiOsr6b7KeP8sJgWqMJDz JCKpejeUkjIkZwVkHgECzrQuotB9ZQEoyXwtuMhKGDt232qAH4W3yLAykiq5UENn R+cUXa+RGddv/otGWnopfbDaPrtmboWNONoK+MQAQS0d1A8xF9LAz6n3NOmK8pPX EgxkOMBQeKcXJV75L3RfR8vTT/ca7NevHeokjFtk2WFgJ8RzQCI3Yz2iXLjj3TnQ 4UdvlJtDmPV9f03munF+4N57YRSuZlYqtPDf2P1FnXG1Hl+j+zS3V7lfdEJvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUh77RfHXXcQaUiab1PdSr4c1qfGQwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMTM5MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjFMA0GCSqG SIb3DQEBCwUAA4IBAQBXmpskMShmtTWKqiKXmGne/27nkxa1D8FBVCLtX2LGhKSW ouDv+feoyXQs8w8jtpEMM2P+L+nM2XJaYxhTCEC+JYzLIEhB4HhiAny20Ipg2nXb /jWiZacp4BtKH7b6+YUokTe2/iLHGjyvenJrKoq45VTHW7o+9q/M5OZPFypS1MzP kBZFsabBpFxyK7oaXulw0iL+vuPNGeskE0sQVG4/zCOVU0/j0YTD2QEu7QqvxL2i TyHfTc66kw9zmUSmRgUBP/k+sDJZb5t5U1mSs2sG6MwepyRunNp2BJOMsnqmAEk/ 3y6a63Ses+PdAL1QUfj/1tsi9NVgN4rabqEVsvaP -----END CERTIFICATE-----Generated at Tue Jun 17 15:46:26 2025 by rpki-client