$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37322e302f32332d3233203d3e203435323938.roa File: 3230322e34332e37322e302f32332d3233203d3e203435323938.roa (raw, json) Hash identifier: CmCK8ZpA/FudP6hIFHJcphPOJ9k3R40wP9Auosw941k= Subject key identifier: 4B:50:4C:F9:86:8A:1F:CD:3E:8C:5C:07:69:30:8C:07:67:8F:14:F2 Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Certificate serial: 2F1E93F98BE2FA01DF8B7378C9562B4D4AFA1276 Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37322e302f32332d3233203d3e203435323938.roa Signing time: Tue 17 Jun 2025 17:00:01 +0000 ROA not before: Tue 17 Jun 2025 16:55:01 +0000 ROA not after: Tue 16 Jun 2026 17:00:01 +0000 asID: 45298 IP address blocks: 202.43.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:1e:93:f9:8b:e2:fa:01:df:8b:73:78:c9:56:2b:4d:4a:fa:12:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Validity Not Before: Jun 17 16:55:01 2025 GMT Not After : Jun 16 17:00:01 2026 GMT Subject: CN=4B504CF9868A1FCD3E8C5C0769308C07678F14F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e2:fb:62:aa:82:ef:8e:47:a8:72:2b:06:11: bc:81:49:7b:87:fa:fd:bb:34:5f:e0:3a:e3:a4:04: a8:50:cf:a0:ff:a2:2e:9f:e1:94:bf:ec:05:ac:8a: 12:3b:07:d1:63:a4:a0:42:f8:fc:99:1b:18:7c:09: 49:74:b7:dc:42:8d:8f:60:19:84:76:7b:a4:a8:f4: 08:1a:c3:62:cc:04:de:82:bc:ab:cb:ea:ea:4a:75: 9d:8a:65:18:09:f3:1e:92:44:69:db:48:dc:19:90: 50:23:bf:80:43:44:f6:96:16:28:71:bd:2a:b1:04: 6c:54:39:6a:19:0f:35:4a:80:f6:4b:d8:85:64:a1: cd:82:db:09:d5:65:f9:a3:c8:b2:87:dd:d1:a0:8a: b6:99:37:f9:0b:b8:96:05:c4:14:fc:13:d2:27:32: bc:f8:84:1f:19:14:15:6d:95:43:82:29:30:6f:43: da:f3:dd:23:80:dd:68:db:9a:3f:2c:d7:e9:2b:b4: 02:33:e3:91:e0:5f:0e:84:9d:3b:7d:26:ac:f2:33: 07:d3:7f:aa:94:64:bc:22:60:4a:97:d2:10:8c:91: df:92:00:8d:71:20:ec:ba:6d:71:3b:cb:d0:1b:d0: 60:ea:17:36:9c:6a:09:03:23:ba:df:65:c3:26:cd: 0b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:50:4C:F9:86:8A:1F:CD:3E:8C:5C:07:69:30:8C:07:67:8F:14:F2 X509v3 Authority Key Identifier: keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37322e302f32332d3233203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.72.0/23 Signature Algorithm: sha256WithRSAEncryption 17:e4:7a:29:07:0f:17:f3:77:a4:01:dc:ee:1e:aa:d6:19:47: 8d:7d:19:23:ec:72:fb:07:68:9a:67:e3:27:4b:50:ec:a8:ea: a0:dd:3b:83:12:02:fa:cb:32:5f:a5:73:fb:7c:f7:1d:90:d9: 73:a4:36:b8:55:90:9c:d8:8f:63:09:2c:41:cb:6e:9f:b9:1d: 40:bd:ff:c5:0c:db:b7:a2:95:d5:52:e9:cd:7a:e3:8f:4b:e5: 7e:3b:ec:01:51:d7:1e:35:65:67:42:c9:ec:fe:f1:14:08:40: ab:84:4f:01:eb:54:8d:25:1c:10:08:d5:9f:78:0f:77:3c:a1: 17:0c:a4:c7:f3:d1:d9:ed:35:dd:d4:2a:f7:e8:82:4d:b6:a7: f0:a7:65:c6:74:ca:92:70:6d:59:52:2d:ac:f8:47:ea:9a:e3: 65:07:fa:d8:93:13:81:9f:33:bf:43:ae:f7:2f:14:50:2f:a7: 63:00:19:25:6c:ae:68:68:c3:6f:10:00:38:65:38:16:f7:c7: 12:07:95:f3:7e:b9:8d:17:f1:51:cf:14:82:93:e8:59:ce:6c: ca:d8:eb:04:de:44:85:27:2f:7c:97:2b:d5:d9:93:24:50:5f: 63:32:06:fb:58:81:50:ae:0f:dc:d3:a0:26:d8:26:5f:24:ca: 6c:0c:c0:5d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIULx6T+Yvi+gHfi3N4yVYrTUr6EnYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD ODg2RjFERTAeFw0yNTA2MTcxNjU1MDFaFw0yNjA2MTYxNzAwMDFaMDMxMTAvBgNV BAMTKDRCNTA0Q0Y5ODY4QTFGQ0QzRThDNUMwNzY5MzA4QzA3Njc4RjE0RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV4vtiqoLvjkeocisGEbyBSXuH +v27NF/gOuOkBKhQz6D/oi6f4ZS/7AWsihI7B9FjpKBC+PyZGxh8CUl0t9xCjY9g GYR2e6So9Agaw2LMBN6CvKvL6upKdZ2KZRgJ8x6SRGnbSNwZkFAjv4BDRPaWFihx vSqxBGxUOWoZDzVKgPZL2IVkoc2C2wnVZfmjyLKH3dGgiraZN/kLuJYFxBT8E9In Mrz4hB8ZFBVtlUOCKTBvQ9rz3SOA3Wjbmj8s1+krtAIz45HgXw6EnTt9JqzyMwfT f6qUZLwiYEqX0hCMkd+SAI1xIOy6bXE7y9Ab0GDqFzacagkDI7rfZcMmzQsVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUS1BM+YaKH80+jFwHaTCMB2ePFPIwHwYDVR0j BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2 RjFERS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzMyMzAzMjJlMzQzMzJlMzczMjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM0MzUzMjM5Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKK0gwDQYJKoZIhvcN AQELBQADggEBABfkeikHDxfzd6QB3O4eqtYZR419GSPscvsHaJpn4ydLUOyo6qDd O4MSAvrLMl+lc/t89x2Q2XOkNrhVkJzYj2MJLEHLbp+5HUC9/8UM27eildVS6c16 449L5X477AFR1x41ZWdCyez+8RQIQKuETwHrVI0lHBAI1Z94D3c8oRcMpMfz0dnt Nd3UKvfogk22p/CnZcZ0ypJwbVlSLaz4R+qa42UH+tiTE4GfM79DrvcvFFAvp2MA GSVsrmhow28QADhlOBb3xxIHlfN+uY0X8VHPFIKT6FnObMrY6wTeRIUnL3yXK9XZ kyRQX2MyBvtYgVCuD9zToCbYJl8kymwMwF0= -----END CERTIFICATE-----Generated at Mon Jun 30 01:12:56 2025 by rpki-client