$ rpki-client -vvf repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/3230322e39332e32372e302f32342d3234203d3e203233393532.roa File: 3230322e39332e32372e302f32342d3234203d3e203233393532.roa (raw, json) Hash identifier: PKWTtW8nxl97mf6uggx7DQTu7mPXIE9nl3tapJJEXZg= Subject key identifier: 9D:9B:CB:C6:CC:42:17:69:80:B7:14:C8:3E:40:BC:A9:02:CE:7F:A6 Certificate issuer: /CN=F389B5570A768F4811B6377427EE5A9710A3078F Certificate serial: 4A8638D3EABD0C02DEB539E2C17CE583F15F4ADB Authority key identifier: F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/3230322e39332e32372e302f32342d3234203d3e203233393532.roa Signing time: Thu 19 Jun 2025 14:44:54 +0000 ROA not before: Thu 19 Jun 2025 14:39:54 +0000 ROA not after: Thu 18 Jun 2026 14:44:54 +0000 asID: 23952 IP address blocks: 202.93.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 21:15:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:86:38:d3:ea:bd:0c:02:de:b5:39:e2:c1:7c:e5:83:f1:5f:4a:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F389B5570A768F4811B6377427EE5A9710A3078F Validity Not Before: Jun 19 14:39:54 2025 GMT Not After : Jun 18 14:44:54 2026 GMT Subject: CN=9D9BCBC6CC42176980B714C83E40BCA902CE7FA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3b:d9:70:d6:22:bd:06:89:f8:0d:a5:1c:6d: 89:e1:b2:b0:4d:b8:00:4c:25:a8:e7:46:a5:90:07: 35:55:0a:83:27:b9:6d:6e:60:a1:f7:09:a4:4b:e4: a1:01:2e:3b:97:3b:cf:67:4c:9e:92:ed:09:e3:c0: 9e:eb:81:41:a9:4f:85:21:3f:25:95:3c:4f:c8:e3: 44:b7:e5:d6:cf:da:bc:17:3d:df:45:4e:29:60:b9: 67:68:79:c6:a3:f1:bb:bc:53:dc:64:ad:0a:73:44: 2f:ea:c0:7b:26:0c:94:ac:1b:dd:cc:3a:3c:62:2f: 61:05:b6:f9:ab:eb:26:94:80:fd:f1:da:e2:eb:81: 09:1e:d8:38:02:69:c6:8f:c1:e1:f0:1d:a3:88:00: 7d:79:35:f9:29:16:5f:59:9a:02:85:40:7e:a6:71: 30:7e:ad:db:c6:55:f1:96:8d:ab:33:47:3c:67:fb: 9f:b1:ed:cc:bc:f8:83:27:02:ba:2b:67:b4:7a:dc: ca:d8:34:7c:4d:bb:53:47:8c:d0:b9:ca:3f:7f:80: 1f:d8:c7:06:34:32:40:a9:50:ab:a2:14:68:39:6a: ec:d4:06:7b:e6:4c:f5:60:64:13:2a:bd:a1:6d:17: 14:32:39:36:9e:0d:a3:3a:08:a2:e3:8e:db:6d:f9: df:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:9B:CB:C6:CC:42:17:69:80:B7:14:C8:3E:40:BC:A9:02:CE:7F:A6 X509v3 Authority Key Identifier: keyid:F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/3230322e39332e32372e302f32342d3234203d3e203233393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.27.0/24 Signature Algorithm: sha256WithRSAEncryption 03:d9:54:f2:4d:96:6e:95:95:34:f2:c8:a5:dc:51:92:ea:59: ca:67:16:ab:09:1c:30:4f:6c:4a:40:4b:e4:a4:41:cc:03:01: 75:11:59:9e:37:e5:00:c2:79:a9:5f:41:91:a0:d3:20:ca:09: 9f:ee:33:cd:d5:39:65:98:48:fe:fb:e5:95:a3:e1:ee:dd:17: ed:50:aa:cd:46:e0:ba:6a:b1:cb:b4:3d:cf:df:da:25:65:af: 7e:6b:e6:fb:83:1f:80:2b:3d:82:28:58:99:ac:26:9e:f5:17: 94:d0:0f:4a:50:c7:52:b2:74:03:d7:f4:cc:ad:1f:86:6a:de: af:27:c6:2b:ab:a6:fb:54:91:32:b0:a4:17:63:4b:94:6b:bd: b4:f9:39:05:9e:cf:b9:73:8f:52:f6:c6:6d:2d:1a:f9:ba:b3: 0f:be:c6:62:89:0e:3f:4d:ca:25:c5:cf:5e:bc:55:e3:7d:e0: b9:24:19:cd:f9:cd:2e:e2:80:09:96:17:ae:ec:96:ef:d6:b8: 06:ed:6e:8a:e0:ae:f9:d6:a2:8e:82:41:d1:61:bf:08:01:5a: 02:f6:3b:ae:74:1c:a9:61:d5:4f:51:b0:a5:06:f9:46:f0:24: 98:55:b9:85:84:d9:b9:20:af:98:f6:10:bd:3d:bf:6c:36:c0: 9a:7d:9d:96 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSoY40+q9DALetTniwXzlg/FfStswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcx MEEzMDc4RjAeFw0yNTA2MTkxNDM5NTRaFw0yNjA2MTgxNDQ0NTRaMDMxMTAvBgNV BAMTKDlEOUJDQkM2Q0M0MjE3Njk4MEI3MTRDODNFNDBCQ0E5MDJDRTdGQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVO9lw1iK9Bon4DaUcbYnhsrBN uABMJajnRqWQBzVVCoMnuW1uYKH3CaRL5KEBLjuXO89nTJ6S7QnjwJ7rgUGpT4Uh PyWVPE/I40S35dbP2rwXPd9FTilguWdoecaj8bu8U9xkrQpzRC/qwHsmDJSsG93M OjxiL2EFtvmr6yaUgP3x2uLrgQke2DgCacaPweHwHaOIAH15NfkpFl9ZmgKFQH6m cTB+rdvGVfGWjaszRzxn+5+x7cy8+IMnArorZ7R63MrYNHxNu1NHjNC5yj9/gB/Y xwY0MkCpUKuiFGg5auzUBnvmTPVgZBMqvaFtFxQyOTaeDaM6CKLjjttt+d8dAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUnZvLxsxCF2mAtxTIPkC8qQLOf6YwHwYDVR0j BBgwFoAU84m1Vwp2j0gRtjd0J+5alxCjB48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzhhYjNlMC1jYTY4LTQyZjYtOThmNi02NTRhMjUyYTg2NDgvMC9GMzg5QjU1NzBB NzY4RjQ4MTFCNjM3NzQyN0VFNUE5NzEwQTMwNzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcxMEEz MDc4Ri5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjOGFiM2UwLWNhNjgtNDJmNi05 OGY2LTY1NGEyNTJhODY0OC8wLzMyMzAzMjJlMzkzMzJlMzIzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzMzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXRswDQYJKoZIhvcN AQELBQADggEBAAPZVPJNlm6VlTTyyKXcUZLqWcpnFqsJHDBPbEpAS+SkQcwDAXUR WZ435QDCealfQZGg0yDKCZ/uM83VOWWYSP775ZWj4e7dF+1Qqs1G4Lpqscu0Pc/f 2iVlr35r5vuDH4ArPYIoWJmsJp71F5TQD0pQx1KydAPX9MytH4Zq3q8nxiurpvtU kTKwpBdjS5RrvbT5OQWez7lzj1L2xm0tGvm6sw++xmKJDj9NyiXFz168VeN94Lkk Gc35zS7igAmWF67slu/WuAbtborgrvnWoo6CQdFhvwgBWgL2O650HKlh1U9RsKUG +UbwJJhVuYWE2bkgr5j2EL09v2w2wJp9nZY= -----END CERTIFICATE-----Generated at Mon Jun 30 14:07:29 2025 by rpki-client