$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230352e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3230352e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: vVq7LUx06+oQEtVvYge1Q2+hkKlr27bVyXKL74EChRk= Subject key identifier: 96:A8:EA:42:27:46:0E:45:77:02:B1:D9:D6:23:CA:11:8B:F7:76:91 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 4C6B769A1D73DF883AD09072598E3B695541D5AD Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230352e302f32342d3234203d3e203633383539.roa Signing time: Tue 10 Jun 2025 03:44:55 +0000 ROA not before: Tue 10 Jun 2025 03:39:55 +0000 ROA not after: Tue 09 Jun 2026 03:44:55 +0000 asID: 63859 IP address blocks: 202.152.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 18:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:6b:76:9a:1d:73:df:88:3a:d0:90:72:59:8e:3b:69:55:41:d5:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Jun 10 03:39:55 2025 GMT Not After : Jun 9 03:44:55 2026 GMT Subject: CN=96A8EA4227460E457702B1D9D623CA118BF77691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:29:89:49:7d:08:d1:7e:34:9a:76:00:4c:2a: a8:16:3e:1b:d9:0a:d6:75:80:1a:d8:80:e8:33:44: d0:23:82:08:43:61:30:6b:8a:a5:18:2b:ff:98:f5: 24:32:33:c6:8f:cf:8b:af:ba:4a:a5:25:da:0c:47: e6:9b:4e:61:24:41:01:0a:f1:56:1f:56:57:ae:7a: d4:65:14:35:de:23:9c:cd:51:0d:ab:2c:9e:83:72: 1b:3d:15:f2:f5:ef:10:35:d4:cc:0c:f7:4f:ac:e3: 0c:6a:59:da:a1:a2:ee:ed:2f:20:d5:f4:4f:a8:c5: 2c:bc:e6:ac:b2:51:41:25:d0:cd:e1:ad:a5:51:f8: f0:98:cd:df:45:8a:1d:c6:12:94:e6:44:4b:44:2e: ad:86:57:e0:80:15:4c:f0:1f:be:16:c1:62:e7:77: f0:ec:4d:11:d2:28:50:e3:c1:3c:37:55:02:95:c9: 06:66:50:8d:ab:92:90:24:58:91:74:96:bd:91:04: cb:2a:57:fc:41:14:62:a3:70:81:ba:d4:4b:f6:f1: 72:1e:69:29:0d:21:75:60:5d:66:4a:bf:d1:82:86: f6:49:68:d4:6d:3b:ea:00:02:94:13:a4:a2:0b:ae: 4a:55:ef:a9:4c:04:09:03:db:37:af:36:af:89:ba: c9:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:A8:EA:42:27:46:0E:45:77:02:B1:D9:D6:23:CA:11:8B:F7:76:91 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230352e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.205.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:45:16:23:d6:7d:88:1d:72:df:87:12:60:55:8c:a9:d4:d1: 16:44:4c:19:b3:f1:7b:01:8f:d6:69:34:74:3c:c7:ae:51:82: 1d:a0:60:6b:ae:35:84:55:1b:a7:40:5c:70:c1:47:66:49:f1: f3:43:a3:ed:f3:c1:63:9a:ca:6e:9e:c2:4f:97:7a:2b:ea:6e: 21:a5:0a:a3:fd:c8:c4:ee:29:c8:98:6c:e0:5c:88:da:2b:23: 00:ad:68:8c:82:b5:2a:50:10:fe:76:c6:ae:e8:a3:67:7a:e9: a6:8d:a3:65:91:56:67:47:f5:db:ff:37:23:1d:57:8e:6c:a1: d0:3a:89:ab:09:93:7b:c5:e2:88:60:ad:32:ca:5e:2a:14:22: 44:65:f1:0c:cd:db:67:76:21:07:b6:40:c4:51:0c:61:31:16: 06:c7:6f:45:81:a8:45:66:44:fd:38:cd:e3:f4:39:00:d9:35: f5:3e:d5:60:80:05:2b:f1:55:f4:bf:77:8d:b1:29:47:97:7d: fd:7a:9a:91:83:e8:6a:a5:8d:2e:7f:a7:64:a1:10:bc:c0:61: 13:7f:f1:e8:a0:a2:5a:57:e8:f6:e8:52:a2:56:c2:39:76:2f: 42:3a:85:8d:15:de:96:5e:10:a1:5c:45:68:f6:85:05:16:d7: b4:59:52:c4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTGt2mh1z34g60JByWY47aVVB1a0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNTA2MTAwMzM5NTVaFw0yNjA2MDkwMzQ0NTVaMDMxMTAvBgNV BAMTKDk2QThFQTQyMjc0NjBFNDU3NzAyQjFEOUQ2MjNDQTExOEJGNzc2OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsKYlJfQjRfjSadgBMKqgWPhvZ CtZ1gBrYgOgzRNAjgghDYTBriqUYK/+Y9SQyM8aPz4uvukqlJdoMR+abTmEkQQEK 8VYfVleuetRlFDXeI5zNUQ2rLJ6Dchs9FfL17xA11MwM90+s4wxqWdqhou7tLyDV 9E+oxSy85qyyUUEl0M3hraVR+PCYzd9Fih3GEpTmREtELq2GV+CAFUzwH74WwWLn d/DsTRHSKFDjwTw3VQKVyQZmUI2rkpAkWJF0lr2RBMsqV/xBFGKjcIG61Ev28XIe aSkNIXVgXWZKv9GChvZJaNRtO+oAApQTpKILrkpV76lMBAkD2zevNq+Jusk7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlqjqQidGDkV3ArHZ1iPKEYv3dpEwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMjMwMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjNMA0GCSqG SIb3DQEBCwUAA4IBAQBcRRYj1n2IHXLfhxJgVYyp1NEWREwZs/F7AY/WaTR0PMeu UYIdoGBrrjWEVRunQFxwwUdmSfHzQ6Pt88FjmspunsJPl3or6m4hpQqj/cjE7inI mGzgXIjaKyMArWiMgrUqUBD+dsau6KNneummjaNlkVZnR/Xb/zcjHVeObKHQOomr CZN7xeKIYK0yyl4qFCJEZfEMzdtndiEHtkDEUQxhMRYGx29FgahFZkT9OM3j9DkA 2TX1PtVggAUr8VX0v3eNsSlHl339epqRg+hqpY0uf6dkoRC8wGETf/HooKJaV+j2 6FKiVsI5di9COoWNFd6WXhChXEVo9oUFFte0WVLE -----END CERTIFICATE-----Generated at Wed Jun 18 01:55:37 2025 by rpki-client