$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230372e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3230372e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: Eh7tmqkuq57xlfobk4M7FLmYqi5AfrKI1DM6fiC6my0= Subject key identifier: 3E:18:19:02:ED:27:27:D0:B9:C8:BC:0F:9F:19:0B:62:C9:26:7C:60 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 65336F667B93B4D09D30129B837FD0D444F59026 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230372e302f32342d3234203d3e203633383539.roa Signing time: Tue 10 Jun 2025 03:45:36 +0000 ROA not before: Tue 10 Jun 2025 03:40:36 +0000 ROA not after: Tue 09 Jun 2026 03:45:36 +0000 asID: 63859 IP address blocks: 202.152.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 08:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:33:6f:66:7b:93:b4:d0:9d:30:12:9b:83:7f:d0:d4:44:f5:90:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Jun 10 03:40:36 2025 GMT Not After : Jun 9 03:45:36 2026 GMT Subject: CN=3E181902ED2727D0B9C8BC0F9F190B62C9267C60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:19:04:a4:b0:7a:fa:09:c9:34:69:4d:f1:99: 74:fe:79:74:7e:1b:22:6b:f9:44:cc:06:32:18:35: 63:28:ef:8e:61:7e:81:27:1b:8c:8d:04:b9:1b:da: b6:be:fd:55:c9:5f:2c:b3:07:f1:07:12:74:65:65: cb:52:dc:89:d6:ef:14:db:ee:d5:ce:9e:66:e2:d0: 4a:1d:53:4a:d3:c8:37:c2:99:ee:d6:cb:26:d4:8a: 75:e8:92:1e:82:b9:02:70:83:60:b9:8d:58:f4:bc: 3c:28:c7:cf:ba:e4:d4:1a:d5:d2:19:7b:29:38:85: 29:59:6d:94:a4:84:01:29:b3:a1:b2:7d:ca:40:9b: 89:43:0d:6c:42:52:70:0f:e7:3d:17:e6:31:5c:57: 9f:5b:ee:34:fe:1a:ab:e3:a4:34:36:1b:40:61:88: 32:e5:90:48:9b:31:06:62:1a:5d:05:1f:f5:2a:3b: e4:c6:ed:7a:ba:b3:e2:f9:48:2a:0e:18:6d:53:68: dd:12:ba:81:df:20:24:fe:e6:37:66:18:76:04:ff: 2f:bd:7c:7c:e8:67:78:e8:78:24:14:81:b4:61:8c: df:d8:d1:d9:d3:f5:85:ee:c7:9d:51:80:73:6e:ad: 4b:0d:43:51:b5:8b:2c:e6:73:ef:19:54:f2:bc:2c: 38:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:18:19:02:ED:27:27:D0:B9:C8:BC:0F:9F:19:0B:62:C9:26:7C:60 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230372e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.207.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:ad:36:ad:87:99:44:ee:08:c7:84:6e:12:f5:05:7a:17:4f: 7a:33:42:ba:c7:ba:f9:c1:26:15:45:1c:81:b7:44:57:48:a3: 06:66:0e:8b:90:f6:bd:79:8a:f0:92:cc:d1:04:46:dc:15:36: 53:b0:35:8b:aa:f0:3a:10:fb:7f:a0:cb:6e:c9:db:9a:6d:37: d6:7c:ca:ef:9f:22:c6:25:60:07:05:49:24:2d:c8:25:87:2c: 09:d9:b3:7c:b4:4c:7a:c9:31:5c:0a:0e:13:2e:83:13:79:3c: d2:29:08:b6:34:ca:3a:84:e6:ff:81:e7:38:ae:18:14:21:32: d7:14:6b:83:a4:de:d5:16:61:39:49:9c:b5:48:f2:0a:10:1d: 95:43:a8:37:da:d9:0e:ef:dd:29:82:27:1d:0c:dc:23:e9:4e: 2e:f6:d2:80:96:7b:cb:e7:c5:a2:c3:e3:4a:b6:06:13:5e:8a: 69:de:d9:7c:7b:b6:74:18:b0:4a:36:ca:f8:42:d5:4b:f1:62: 74:94:2e:8c:91:57:73:37:d2:78:d7:c9:e1:8d:b6:c4:98:ae: a5:f1:2e:f3:c2:42:a1:0a:44:d9:f2:2b:e8:99:fd:20:ee:1a: 38:93:67:1d:26:fd:28:02:33:ee:fc:2b:4c:ee:dd:ad:0d:ed: 8d:55:84:83 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZTNvZnuTtNCdMBKbg3/Q1ET1kCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNTA2MTAwMzQwMzZaFw0yNjA2MDkwMzQ1MzZaMDMxMTAvBgNV BAMTKDNFMTgxOTAyRUQyNzI3RDBCOUM4QkMwRjlGMTkwQjYyQzkyNjdDNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgGQSksHr6Cck0aU3xmXT+eXR+ GyJr+UTMBjIYNWMo745hfoEnG4yNBLkb2ra+/VXJXyyzB/EHEnRlZctS3InW7xTb 7tXOnmbi0EodU0rTyDfCme7WyybUinXokh6CuQJwg2C5jVj0vDwox8+65NQa1dIZ eyk4hSlZbZSkhAEps6GyfcpAm4lDDWxCUnAP5z0X5jFcV59b7jT+GqvjpDQ2G0Bh iDLlkEibMQZiGl0FH/UqO+TG7Xq6s+L5SCoOGG1TaN0SuoHfICT+5jdmGHYE/y+9 fHzoZ3joeCQUgbRhjN/Y0dnT9YXux51RgHNurUsNQ1G1iyzmc+8ZVPK8LDgPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPhgZAu0nJ9C5yLwPnxkLYskmfGAwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMjMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjPMA0GCSqG SIb3DQEBCwUAA4IBAQBbrTath5lE7gjHhG4S9QV6F096M0K6x7r5wSYVRRyBt0RX SKMGZg6LkPa9eYrwkszRBEbcFTZTsDWLqvA6EPt/oMtuyduabTfWfMrvnyLGJWAH BUkkLcglhywJ2bN8tEx6yTFcCg4TLoMTeTzSKQi2NMo6hOb/gec4rhgUITLXFGuD pN7VFmE5SZy1SPIKEB2VQ6g32tkO790pgicdDNwj6U4u9tKAlnvL58Wiw+NKtgYT Xopp3tl8e7Z0GLBKNsr4QtVL8WJ0lC6MkVdzN9J418nhjbbEmK6l8S7zwkKhCkTZ 8ivomf0g7ho4k2cdJv0oAjPu/CtM7t2tDe2NVYSD -----END CERTIFICATE-----Generated at Tue Jun 17 05:18:06 2025 by rpki-client