$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139392e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3139392e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: hEA8tWNHo/TIh0zdljEtCOyHV35vtVjy/xEF9Jp2eSk= Subject key identifier: 3B:61:49:79:EB:95:B0:39:82:3A:3C:2B:07:01:7C:C7:D2:D9:5D:FA Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 5A4E459F79DB6DBF6E95C6DC11B09EE2E1C8EB14 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139392e302f32342d3234203d3e203633383539.roa Signing time: Tue 10 Jun 2025 03:39:59 +0000 ROA not before: Tue 10 Jun 2025 03:34:59 +0000 ROA not after: Tue 09 Jun 2026 03:39:59 +0000 asID: 63859 IP address blocks: 202.152.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 08:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:4e:45:9f:79:db:6d:bf:6e:95:c6:dc:11:b0:9e:e2:e1:c8:eb:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Jun 10 03:34:59 2025 GMT Not After : Jun 9 03:39:59 2026 GMT Subject: CN=3B614979EB95B039823A3C2B07017CC7D2D95DFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:2c:36:2a:9f:c4:8e:40:44:f0:91:12:6e:e1: 45:c8:f1:79:d7:fc:bb:55:ef:a8:57:2c:7d:ca:36: 37:e1:2f:e8:d4:86:20:a9:c1:43:ef:82:db:e6:b8: e5:e8:c6:bf:62:0c:eb:03:78:26:77:d8:fc:0a:c8: ef:9d:ef:79:90:9a:44:3d:a4:e5:b1:9b:78:ce:3d: 94:ca:c3:f6:ff:c7:2d:00:87:52:a7:3e:14:f1:11: 91:14:5f:f0:a5:4f:3f:1a:b1:74:69:62:21:9e:2e: df:6d:06:6f:d2:e1:7b:fc:93:d9:c0:bf:45:70:ef: bb:d7:0a:a1:9e:72:36:df:32:0e:98:d6:71:88:21: c8:98:9c:e2:d5:1d:91:c2:fb:c9:71:50:8d:5a:59: 36:42:b5:02:60:f9:d7:6c:c2:92:c4:0d:be:1b:73: 72:6f:e3:78:7d:e0:f5:e3:30:1a:0a:aa:7c:84:99: 42:50:de:ab:d2:4d:57:e6:cc:59:9b:12:4b:95:bd: 2e:37:eb:16:96:35:e1:b9:30:81:d9:a2:4d:d6:40: 94:06:ea:f2:8b:99:af:58:b4:2b:d7:e7:a5:25:17: 09:76:29:6f:a8:18:79:1f:1e:96:36:ea:7a:80:bb: 58:57:43:b9:e4:c6:8a:02:ba:7e:25:bf:0e:10:e9: 40:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:61:49:79:EB:95:B0:39:82:3A:3C:2B:07:01:7C:C7:D2:D9:5D:FA X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139392e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.199.0/24 Signature Algorithm: sha256WithRSAEncryption 03:15:84:76:81:76:b4:3f:c3:b8:cc:49:5c:17:f5:9f:cb:97: bd:24:99:f5:d1:b4:ce:93:e9:11:7a:77:d2:74:7c:52:d6:6d: 2b:a5:d7:b6:91:97:18:27:c5:2e:d0:9d:77:70:1f:96:4a:d7: 23:b0:22:32:87:e0:48:82:41:db:77:71:6f:d0:a7:4b:fe:67: 5e:c0:c2:bc:b6:89:c9:cf:13:ae:b3:d1:73:b2:01:69:5d:d6: aa:02:5b:ec:17:34:d8:23:36:cd:77:ac:c8:8f:4f:02:2b:dc: 1a:97:ed:2f:52:ae:3e:19:52:c8:14:06:9f:ba:0a:14:35:a3: f7:fc:02:48:bb:ae:49:a0:0a:0b:df:01:01:e3:87:a9:06:e8: 37:0e:cd:2c:fd:ae:ef:06:9d:d9:d3:e2:35:37:32:ca:07:af: a3:47:16:da:0c:73:e5:24:a0:0b:f6:a5:a6:bd:f1:75:0a:08: 92:b1:2f:dd:2c:9b:0f:ff:5b:84:17:f1:1d:54:93:03:c1:78: 34:46:40:0f:1f:72:8a:4b:b0:67:f3:ce:00:04:49:a0:5b:02: d4:f9:a8:20:5c:59:fc:71:02:e9:e9:f5:ec:9d:92:a6:46:d9: 39:f5:9c:1e:75:50:6e:63:93:5c:a2:4f:7b:f4:8f:22:d1:ea: a7:e5:ac:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWk5Fn3nbbb9ulcbcEbCe4uHI6xQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNTA2MTAwMzM0NTlaFw0yNjA2MDkwMzM5NTlaMDMxMTAvBgNV BAMTKDNCNjE0OTc5RUI5NUIwMzk4MjNBM0MyQjA3MDE3Q0M3RDJEOTVERkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRLDYqn8SOQETwkRJu4UXI8XnX /LtV76hXLH3KNjfhL+jUhiCpwUPvgtvmuOXoxr9iDOsDeCZ32PwKyO+d73mQmkQ9 pOWxm3jOPZTKw/b/xy0Ah1KnPhTxEZEUX/ClTz8asXRpYiGeLt9tBm/S4Xv8k9nA v0Vw77vXCqGecjbfMg6Y1nGIIciYnOLVHZHC+8lxUI1aWTZCtQJg+ddswpLEDb4b c3Jv43h94PXjMBoKqnyEmUJQ3qvSTVfmzFmbEkuVvS436xaWNeG5MIHZok3WQJQG 6vKLma9YtCvX56UlFwl2KW+oGHkfHpY26nqAu1hXQ7nkxooCun4lvw4Q6UCHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUO2FJeeuVsDmCOjwrBwF8x9LZXfowHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMTM5MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjHMA0GCSqG SIb3DQEBCwUAA4IBAQADFYR2gXa0P8O4zElcF/Wfy5e9JJn10bTOk+kRenfSdHxS 1m0rpde2kZcYJ8Uu0J13cB+WStcjsCIyh+BIgkHbd3Fv0KdL/mdewMK8tonJzxOu s9FzsgFpXdaqAlvsFzTYIzbNd6zIj08CK9wal+0vUq4+GVLIFAafugoUNaP3/AJI u65JoAoL3wEB44epBug3Ds0s/a7vBp3Z0+I1NzLKB6+jRxbaDHPlJKAL9qWmvfF1 CgiSsS/dLJsP/1uEF/EdVJMDwXg0RkAPH3KKS7Bn884ABEmgWwLU+aggXFn8cQLp 6fXsnZKmRtk59ZwedVBuY5Ncok979I8i0eqn5awy -----END CERTIFICATE-----Generated at Tue Jun 17 01:55:36 2025 by rpki-client