$ rpki-client -vvf repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e3135312e382e302f32322d3234203d3e2039373835.roa File: 3230322e3135312e382e302f32322d3234203d3e2039373835.roa (raw, json) Hash identifier: J6bQJ2rdsim2ttJlJ/Bk72O/5PQxeXoEvre44CKnHWo= Subject key identifier: F0:7C:D6:32:49:FF:2B:F9:B0:FE:A0:D7:3C:80:12:A9:5D:3B:E5:47 Certificate issuer: /CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Certificate serial: 4B4CCD5E3ADAB681D9DAD4810C722392F283151A Authority key identifier: BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e3135312e382e302f32322d3234203d3e2039373835.roa Signing time: Mon 02 Jun 2025 02:04:51 +0000 ROA not before: Mon 02 Jun 2025 01:59:51 +0000 ROA not after: Mon 01 Jun 2026 02:04:51 +0000 asID: 9785 IP address blocks: 202.151.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 18:44:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:4c:cd:5e:3a:da:b6:81:d9:da:d4:81:0c:72:23:92:f2:83:15:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Validity Not Before: Jun 2 01:59:51 2025 GMT Not After : Jun 1 02:04:51 2026 GMT Subject: CN=F07CD63249FF2BF9B0FEA0D73C8012A95D3BE547 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:92:07:18:fe:bd:2a:9e:be:b5:d4:73:38:2e: 84:47:5b:8e:60:0e:2c:66:c9:49:93:bd:db:38:a7: a6:91:72:ea:53:39:63:65:8f:a7:7e:0e:5e:6e:c3: 27:3e:4f:3c:71:e7:78:84:df:78:c4:ff:2b:83:5d: 53:66:c4:e2:5b:41:57:6f:b8:77:27:4b:e1:30:2f: 70:3d:5f:3c:db:17:9b:31:1f:6a:a3:7f:22:d5:ea: 61:9d:71:f5:96:c9:aa:eb:99:4d:3f:68:75:ca:55: 7b:47:b9:ee:fa:32:1c:c6:ba:54:5b:0b:be:87:32: 90:e1:6b:b3:72:3e:c4:90:2f:1d:45:5f:b5:76:24: 13:96:a0:9b:77:ee:03:a9:54:08:89:83:5a:24:86: 8a:f3:9e:6b:a3:ba:c6:7a:7b:56:b0:e7:ac:67:87: 61:99:da:64:29:9e:24:c6:67:28:fd:6a:3b:15:cd: 40:6d:ce:55:9c:8e:b8:fd:05:ce:74:33:31:12:b1: 53:0f:51:44:d9:dc:86:4a:77:24:a4:70:cb:cf:f3: 77:9c:dd:40:91:c5:2a:c2:a8:b6:41:33:e8:dc:99: bc:0a:e6:61:e7:e6:52:39:21:11:c8:c0:a9:b0:98: 71:47:0b:6d:57:b3:f1:9e:52:56:6d:aa:49:33:9b: dc:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:7C:D6:32:49:FF:2B:F9:B0:FE:A0:D7:3C:80:12:A9:5D:3B:E5:47 X509v3 Authority Key Identifier: keyid:BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e3135312e382e302f32322d3234203d3e2039373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.151.8.0/22 Signature Algorithm: sha256WithRSAEncryption 55:6a:0c:95:94:28:31:a3:83:4e:48:6d:60:04:92:dd:ad:69: 36:16:b0:bc:e0:b8:93:89:77:01:7c:06:32:bb:c5:6b:4b:d4: 4f:ad:e5:0e:99:f8:32:38:4c:19:04:bd:f2:fb:a5:e9:3b:19: 4a:4b:2e:c9:26:16:88:8b:21:2d:f9:08:3d:13:48:98:4a:e6: ae:93:4f:e1:a7:14:00:d1:5e:7f:6f:95:de:3e:fc:75:6b:0c: df:ec:7f:43:34:14:2e:b5:3f:c7:80:fc:c7:9f:54:22:e9:a5: f1:54:8b:f7:22:76:55:37:55:10:c4:06:a6:c2:2d:23:ea:01: 22:8a:3a:e3:7c:6f:ca:5b:92:df:f6:13:3e:ec:af:76:e8:65: fc:e2:8d:66:7c:46:64:7c:b6:63:76:cd:cd:96:9b:22:1c:ad: c2:74:f1:6d:55:01:f3:9c:1d:9e:65:bc:55:bd:06:50:22:fd: 5c:74:4e:d2:2b:ad:cf:50:db:4a:7f:32:41:61:de:22:0c:86: 25:51:e8:18:49:24:3f:7a:f5:0e:b2:d0:00:0e:1f:1b:74:c9: f6:ec:2e:32:8b:b7:03:13:62:83:03:ab:90:be:78:e0:f0:7b: 29:3b:ef:bc:c1:b8:aa:8c:dd:ea:ab:06:65:4d:73:5c:c5:0d: 32:33:34:19 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUS0zNXjratoHZ2tSBDHIjkvKDFRowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMw RjFDNDg5RTAeFw0yNTA2MDIwMTU5NTFaFw0yNjA2MDEwMjA0NTFaMDMxMTAvBgNV BAMTKEYwN0NENjMyNDlGRjJCRjlCMEZFQTBENzNDODAxMkE5NUQzQkU1NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnkgcY/r0qnr611HM4LoRHW45g DixmyUmTvds4p6aRcupTOWNlj6d+Dl5uwyc+Tzxx53iE33jE/yuDXVNmxOJbQVdv uHcnS+EwL3A9XzzbF5sxH2qjfyLV6mGdcfWWyarrmU0/aHXKVXtHue76MhzGulRb C76HMpDha7NyPsSQLx1FX7V2JBOWoJt37gOpVAiJg1okhorznmujusZ6e1aw56xn h2GZ2mQpniTGZyj9ajsVzUBtzlWcjrj9Bc50MzESsVMPUUTZ3IZKdySkcMvP83ec 3UCRxSrCqLZBM+jcmbwK5mHn5lI5IRHIwKmwmHFHC21Xs/GeUlZtqkkzm9yxAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU8HzWMkn/K/mw/qDXPIASqV075UcwHwYDVR0j BBgwFoAUvztnWuvuZNALMjBWVF0fYw8cSJ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTBjOTAwOS1hZDUzLTRmYTYtYTE4My0zNGIzNDU3YmVhMDMvMC9CRjNCNjc1QUVC RUU2NEQwMEIzMjMwNTY1NDVEMUY2MzBGMUM0ODlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMwRjFD NDg5RS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjkwYzkwMDktYWQ1My00ZmE2LWEx ODMtMzRiMzQ1N2JlYTAzLzAvMzIzMDMyMmUzMTM1MzEyZTM4MmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzkzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKlwgwDQYJKoZIhvcNAQEL BQADggEBAFVqDJWUKDGjg05IbWAEkt2taTYWsLzguJOJdwF8BjK7xWtL1E+t5Q6Z +DI4TBkEvfL7pek7GUpLLskmFoiLIS35CD0TSJhK5q6TT+GnFADRXn9vld4+/HVr DN/sf0M0FC61P8eA/MefVCLppfFUi/cidlU3VRDEBqbCLSPqASKKOuN8b8pbkt/2 Ez7sr3boZfzijWZ8RmR8tmN2zc2WmyIcrcJ08W1VAfOcHZ5lvFW9BlAi/Vx0TtIr rc9Q20p/MkFh3iIMhiVR6BhJJD969Q6y0AAOHxt0yfbsLjKLtwMTYoMDq5C+eODw eyk777zBuKqM3eqrBmVNc1zFDTIzNBk= -----END CERTIFICATE-----Generated at Thu Jul 3 16:38:19 2025 by rpki-client