$ rpki-client -vvf repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/3230322e39332e32362e302f32342d3234203d3e203233393532.roa File: 3230322e39332e32362e302f32342d3234203d3e203233393532.roa (raw, json) Hash identifier: OdoRUtVMpCFrGJ6E6eEou6i5jvfLhQMLpWAp7LUsjsw= Subject key identifier: B5:F0:AA:BA:DD:09:D8:1A:6C:6F:D6:AF:48:E1:1F:07:6D:59:98:4A Certificate issuer: /CN=F389B5570A768F4811B6377427EE5A9710A3078F Certificate serial: 5E1122367D098B967BDFCD76B71057A4F54662D1 Authority key identifier: F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/3230322e39332e32362e302f32342d3234203d3e203233393532.roa Signing time: Thu 19 Jun 2025 14:44:37 +0000 ROA not before: Thu 19 Jun 2025 14:39:37 +0000 ROA not after: Thu 18 Jun 2026 14:44:37 +0000 asID: 23952 IP address blocks: 202.93.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 21:15:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:11:22:36:7d:09:8b:96:7b:df:cd:76:b7:10:57:a4:f5:46:62:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F389B5570A768F4811B6377427EE5A9710A3078F Validity Not Before: Jun 19 14:39:37 2025 GMT Not After : Jun 18 14:44:37 2026 GMT Subject: CN=B5F0AABADD09D81A6C6FD6AF48E11F076D59984A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:4c:dc:ce:d7:0d:9e:6d:cf:98:c9:35:64:3a: ce:5e:af:9d:d6:33:b0:4e:92:37:ee:f3:f7:9c:99: a2:27:5e:7a:e5:a9:05:7f:26:33:67:c0:8c:8d:df: 6e:35:4b:39:99:59:ee:46:33:1c:59:4b:cb:c9:1b: dc:c8:4d:ac:a3:28:e3:25:f2:e9:ab:b8:ad:b1:7b: 0f:2c:bc:cc:85:cb:9f:0c:e1:c3:35:e4:21:54:b9: 89:f9:47:28:30:4b:8d:aa:33:ec:c1:cc:03:83:6e: ec:e8:74:89:41:6c:62:35:34:70:cf:14:71:f7:b7: e5:bc:d1:6b:3b:0e:5a:70:07:e5:d0:b0:98:da:39: 7e:bc:6d:1f:e6:ae:39:47:78:b9:1d:e9:5b:72:03: 2a:39:71:80:93:60:4a:b9:63:37:9d:0b:b4:03:bb: 7f:8a:6b:4e:b6:11:5f:c1:ed:8c:39:af:8e:b2:b4: 7f:76:ae:a2:5b:66:d6:12:70:da:27:8f:6e:c3:3a: d6:13:f6:a2:d5:2c:ed:2e:42:d9:28:96:64:42:36: b5:a6:19:2a:2f:10:38:53:0c:6d:fb:f4:1f:f4:3e: 99:15:c0:40:08:aa:54:d4:e5:27:50:50:7f:18:64: ab:50:29:6d:c9:35:59:36:27:24:b9:39:69:d7:da: 1b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F0:AA:BA:DD:09:D8:1A:6C:6F:D6:AF:48:E1:1F:07:6D:59:98:4A X509v3 Authority Key Identifier: keyid:F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/3230322e39332e32362e302f32342d3234203d3e203233393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.26.0/24 Signature Algorithm: sha256WithRSAEncryption 96:68:24:fd:9f:6b:c9:16:97:79:8e:8a:2f:4f:f7:4c:c8:c7: a0:ed:27:79:37:3b:f3:f2:4f:32:cf:0f:2c:76:ed:fa:50:db: a8:fe:5e:db:70:19:69:e3:cb:14:3f:74:a2:ab:4e:1d:59:7b: 4a:49:8a:9a:5e:d0:7a:dc:dc:87:4e:e6:c5:53:13:30:23:86: 95:d1:71:03:f7:01:ca:fd:38:ae:12:35:42:01:01:14:20:fd: 16:f9:b9:9b:31:25:ba:d3:bd:64:0c:71:17:b4:e4:ea:b5:43: 20:97:e7:1f:4b:c5:42:79:b6:68:eb:f3:67:ae:d8:2d:4d:fa: f5:fa:fc:53:0f:da:29:a0:ec:86:8c:91:ec:df:12:c1:d7:ac: 24:04:19:5a:b6:1e:df:ee:60:6b:25:d3:a8:01:20:df:e4:c1: d1:42:f5:36:71:61:bf:cc:2f:17:32:de:b0:82:d0:22:14:20: 77:30:6d:4c:97:0f:a8:24:e3:93:63:8c:3c:4e:93:31:77:a1: 13:61:e0:6e:1f:25:5f:aa:3c:41:38:fd:ee:1e:11:2b:6f:d2: 66:64:39:07:fb:5e:59:05:18:ec:57:c2:e3:0e:40:13:86:1e: 1a:46:63:0a:75:68:89:84:e4:1d:e0:32:df:5b:aa:2f:ce:a7: ba:b9:2b:23 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXhEiNn0Ji5Z73812txBXpPVGYtEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcx MEEzMDc4RjAeFw0yNTA2MTkxNDM5MzdaFw0yNjA2MTgxNDQ0MzdaMDMxMTAvBgNV BAMTKEI1RjBBQUJBREQwOUQ4MUE2QzZGRDZBRjQ4RTExRjA3NkQ1OTk4NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeTNzO1w2ebc+YyTVkOs5er53W M7BOkjfu8/ecmaInXnrlqQV/JjNnwIyN3241SzmZWe5GMxxZS8vJG9zITayjKOMl 8umruK2xew8svMyFy58M4cM15CFUuYn5RygwS42qM+zBzAODbuzodIlBbGI1NHDP FHH3t+W80Ws7DlpwB+XQsJjaOX68bR/mrjlHeLkd6VtyAyo5cYCTYEq5YzedC7QD u3+Ka062EV/B7Yw5r46ytH92rqJbZtYScNonj27DOtYT9qLVLO0uQtkolmRCNrWm GSovEDhTDG379B/0PpkVwEAIqlTU5SdQUH8YZKtQKW3JNVk2JyS5OWnX2htdAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUtfCqut0J2Bpsb9avSOEfB21ZmEowHwYDVR0j BBgwFoAU84m1Vwp2j0gRtjd0J+5alxCjB48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzhhYjNlMC1jYTY4LTQyZjYtOThmNi02NTRhMjUyYTg2NDgvMC9GMzg5QjU1NzBB NzY4RjQ4MTFCNjM3NzQyN0VFNUE5NzEwQTMwNzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcxMEEz MDc4Ri5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjOGFiM2UwLWNhNjgtNDJmNi05 OGY2LTY1NGEyNTJhODY0OC8wLzMyMzAzMjJlMzkzMzJlMzIzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzMzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXRowDQYJKoZIhvcN AQELBQADggEBAJZoJP2fa8kWl3mOii9P90zIx6DtJ3k3O/PyTzLPDyx27fpQ26j+ XttwGWnjyxQ/dKKrTh1Ze0pJippe0Hrc3IdO5sVTEzAjhpXRcQP3Acr9OK4SNUIB ARQg/Rb5uZsxJbrTvWQMcRe05Oq1QyCX5x9LxUJ5tmjr82eu2C1N+vX6/FMP2img 7IaMkezfEsHXrCQEGVq2Ht/uYGsl06gBIN/kwdFC9TZxYb/MLxcy3rCC0CIUIHcw bUyXD6gk45NjjDxOkzF3oRNh4G4fJV+qPEE4/e4eEStv0mZkOQf7XlkFGOxXwuMO QBOGHhpGYwp1aImE5B3gMt9bqi/Op7q5KyM= -----END CERTIFICATE-----Generated at Mon Jun 30 14:17:51 2025 by rpki-client