$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234372e302f32342d3234203d3e203234323131.roa File: 3230332e3139302e3234372e302f32342d3234203d3e203234323131.roa (raw, json) Hash identifier: hmVwMqOMWMCg4u7PLlh1Exia8tg6dmrIe5GDT9aQuPk= Subject key identifier: 91:B3:33:3C:40:6A:8F:B8:A0:41:17:EB:D3:C9:EA:37:A0:F6:24:54 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 07E453023712C2AE5FC0F5821238E4E134DAA691 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234372e302f32342d3234203d3e203234323131.roa Signing time: Wed 07 May 2025 17:26:43 +0000 ROA not before: Wed 07 May 2025 17:21:43 +0000 ROA not after: Wed 06 May 2026 17:26:43 +0000 asID: 24211 IP address blocks: 203.190.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 23:52:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:e4:53:02:37:12:c2:ae:5f:c0:f5:82:12:38:e4:e1:34:da:a6:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: May 7 17:21:43 2025 GMT Not After : May 6 17:26:43 2026 GMT Subject: CN=91B3333C406A8FB8A04117EBD3C9EA37A0F62454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3c:da:99:ef:8a:13:b9:f7:a1:e1:dc:d1:e6: a2:ba:52:87:09:df:ea:ce:49:5c:86:d0:cc:1d:c6: 4c:eb:91:0f:ab:bf:f4:0d:48:91:d9:bf:d3:33:1d: 33:00:9b:83:a2:22:0e:de:b1:89:46:1b:84:54:2a: f4:62:93:a1:51:c0:35:ec:f0:9b:ad:1e:e0:1e:d9: 5c:67:1e:d2:e4:3f:ec:c4:96:23:1a:e5:2f:bc:5d: bb:4a:01:f5:28:06:01:a2:6e:6c:7b:2c:09:3b:41: a5:65:9f:05:36:a9:50:4e:c2:ef:ce:5b:d4:98:29: 0f:94:89:36:46:d1:9b:28:e3:af:8a:8a:44:bf:c6: 85:0a:96:88:cf:56:a0:d5:9c:b6:45:cc:8d:9a:64: 6b:d9:40:5d:c1:66:48:c4:28:01:da:1c:39:f6:ef: 6f:66:4b:a9:e3:39:05:eb:1b:62:e5:31:ef:ef:cc: 4a:09:5c:ea:c0:a0:ba:80:38:ae:c9:20:b5:00:90: 30:5d:1a:51:75:c4:06:28:f6:65:73:4c:df:55:42: 70:c9:2f:fb:da:5d:4f:35:7d:af:be:76:65:53:92: e4:75:4b:b7:51:d1:29:49:f6:c9:ce:56:76:86:7d: c7:ba:48:d1:b7:13:27:cc:8f:c5:67:fe:22:51:1e: 05:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:B3:33:3C:40:6A:8F:B8:A0:41:17:EB:D3:C9:EA:37:A0:F6:24:54 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234372e302f32342d3234203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.247.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:e9:e8:a9:a3:8c:43:4b:50:39:93:db:13:66:ab:ff:16:05: bf:43:4d:ce:ab:07:37:ae:2d:03:54:86:a1:b9:62:4b:05:d7: 89:3e:80:e3:45:ad:e9:46:2f:ee:40:25:d1:13:f6:2e:17:1c: f0:8f:df:95:b1:c2:5d:34:7f:43:43:8c:99:fb:d7:a4:f6:cb: 57:ea:fa:22:e0:49:19:ab:43:04:0e:ed:ba:12:19:bb:da:7e: 7f:98:8f:15:bf:ee:eb:2f:6a:85:61:9e:b1:e4:e1:95:77:a1: fa:de:72:35:60:43:ba:d4:68:b4:09:58:90:c9:0b:94:eb:04: 70:60:a0:e6:44:79:b6:92:60:8c:a7:86:54:59:11:89:82:1d: 46:59:c8:4d:71:64:4e:4a:55:88:a8:70:01:38:2b:02:29:df: 80:46:4a:ca:a6:8b:d9:78:2b:3a:3b:36:e4:b3:54:65:17:e5: 31:f3:98:12:d6:f5:b7:01:99:47:7e:64:02:30:39:58:43:43: fd:af:be:e7:12:80:75:5c:b5:c6:bf:62:12:f8:82:5b:8f:c5: 40:bf:a3:e0:f5:d6:5d:72:7f:b2:f3:7b:fd:8c:88:b9:df:9e: 7e:ab:57:c2:58:cc:f8:73:ef:ad:83:43:84:32:27:b3:5f:6d: 93:b3:0c:9e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUB+RTAjcSwq5fwPWCEjjk4TTappEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNTA1MDcxNzIxNDNaFw0yNjA1MDYxNzI2NDNaMDMxMTAvBgNV BAMTKDkxQjMzMzNDNDA2QThGQjhBMDQxMTdFQkQzQzlFQTM3QTBGNjI0NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwPNqZ74oTufeh4dzR5qK6UocJ 3+rOSVyG0MwdxkzrkQ+rv/QNSJHZv9MzHTMAm4OiIg7esYlGG4RUKvRik6FRwDXs 8JutHuAe2VxnHtLkP+zEliMa5S+8XbtKAfUoBgGibmx7LAk7QaVlnwU2qVBOwu/O W9SYKQ+UiTZG0Zso46+KikS/xoUKlojPVqDVnLZFzI2aZGvZQF3BZkjEKAHaHDn2 729mS6njOQXrG2LlMe/vzEoJXOrAoLqAOK7JILUAkDBdGlF1xAYo9mVzTN9VQnDJ L/vaXU81fa++dmVTkuR1S7dR0SlJ9snOVnaGfce6SNG3EyfMj8Vn/iJRHgUPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkbMzPEBqj7igQRfr08nqN6D2JFQwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy773MA0GCSqG SIb3DQEBCwUAA4IBAQCc6eipo4xDS1A5k9sTZqv/FgW/Q03Oqwc3ri0DVIahuWJL BdeJPoDjRa3pRi/uQCXRE/YuFxzwj9+VscJdNH9DQ4yZ+9ek9stX6voi4EkZq0ME Du26Ehm72n5/mI8Vv+7rL2qFYZ6x5OGVd6H63nI1YEO61Gi0CViQyQuU6wRwYKDm RHm2kmCMp4ZUWRGJgh1GWchNcWROSlWIqHABOCsCKd+ARkrKpovZeCs6Ozbks1Rl F+Ux85gS1vW3AZlHfmQCMDlYQ0P9r77nEoB1XLXGv2IS+IJbj8VAv6Pg9dZdcn+y 83v9jIi5355+q1fCWMz4c++tg0OEMiezX22Tswye -----END CERTIFICATE-----Generated at Sun May 11 11:36:11 2025 by rpki-client