$ rpki-client -vvf repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139382e302f32342d3234203d3e203538353532.roa File: 3230322e37322e3139382e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: z35rtBPMp8YFiSMqabTLze0z5N+QVHUo3BCJ9n9BLFY= Subject key identifier: 65:F6:B7:6E:DB:75:10:13:D4:FB:8F:1E:34:DE:8E:DD:5C:F8:C0:99 Certificate issuer: /CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Certificate serial: 5190B8381EE9E63EB8E412938D5CF28CCE792E80 Authority key identifier: 9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139382e302f32342d3234203d3e203538353532.roa Signing time: Mon 02 Jun 2025 02:02:55 +0000 ROA not before: Mon 02 Jun 2025 01:57:55 +0000 ROA not after: Mon 01 Jun 2026 02:02:55 +0000 asID: 58552 IP address blocks: 202.72.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 05:26:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:90:b8:38:1e:e9:e6:3e:b8:e4:12:93:8d:5c:f2:8c:ce:79:2e:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Validity Not Before: Jun 2 01:57:55 2025 GMT Not After : Jun 1 02:02:55 2026 GMT Subject: CN=65F6B76EDB751013D4FB8F1E34DE8EDD5CF8C099 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:dc:c5:4f:ca:19:96:23:a8:73:35:fd:27:72: ce:cf:04:d1:03:9d:5b:39:a0:e6:b7:6e:de:a9:9c: fe:e1:25:b6:c5:4e:eb:d8:6c:ce:6b:1d:31:c6:52: e1:fb:9e:56:92:2d:e4:6b:f3:49:a2:f7:94:c9:29: 81:1d:e1:00:15:c0:71:d7:76:31:46:13:eb:32:95: 0e:bd:5f:1a:de:5f:0f:5f:38:f3:8e:74:3d:62:94: 8b:a2:6b:46:d5:c0:ca:3c:9b:6a:f2:39:ff:57:b1: e4:d1:a4:d5:86:cb:b1:f0:a3:b4:ae:4d:70:a2:4b: 13:ee:fd:8f:55:e9:7e:52:d2:76:f1:6c:37:32:ca: 45:c0:d7:ff:f3:37:b0:c2:e9:53:a7:fd:69:ed:ba: fe:a6:84:a5:ba:04:d8:6a:c2:e4:a8:e3:de:53:62: 2d:ce:01:b6:c9:b4:32:ed:6d:6c:2c:91:08:e2:50: 88:cd:2a:6a:59:1c:80:a1:08:b3:fb:c3:25:99:b0: 0b:55:e3:bb:0c:20:6d:28:e9:78:f4:35:d8:f4:7e: 5e:f2:ef:09:7a:80:fe:8f:70:ec:bc:87:99:07:ff: a0:e1:b9:1d:36:f3:86:b4:92:a6:d3:37:75:12:2c: 77:d2:c3:88:54:f9:68:e3:e1:a0:f9:5c:58:6f:93: 3d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F6:B7:6E:DB:75:10:13:D4:FB:8F:1E:34:DE:8E:DD:5C:F8:C0:99 X509v3 Authority Key Identifier: keyid:9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139382e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.72.198.0/24 Signature Algorithm: sha256WithRSAEncryption 55:d6:e0:96:c5:d2:3d:12:75:1c:c1:87:b6:94:75:7f:8a:de: b1:5e:20:65:a4:de:e1:ba:38:6d:d8:ab:99:75:8b:f9:87:9e: 78:3b:70:11:a1:a6:6c:f8:f0:20:6d:83:bc:c6:fe:fb:92:fc: 0c:b9:84:48:4b:11:7a:c4:9e:82:4b:47:5c:b7:d7:5c:bf:b3: 01:dc:83:bd:3c:53:64:2f:30:78:b4:9a:42:61:15:e6:5d:7d: 21:31:71:b3:ea:7f:a7:f7:58:c5:a8:7f:37:fd:b1:48:12:e7: cc:db:9c:df:50:dc:31:47:0b:f7:9a:7b:04:a9:4f:59:5d:f8: bb:d7:8b:17:93:8b:15:61:c1:e1:51:9e:8c:6c:13:38:f2:dc: af:60:8f:90:fd:f3:bd:5e:2a:24:f0:36:1a:c5:1a:38:6d:34: 67:c2:1e:89:b5:8d:0f:87:f3:cf:4b:81:b2:ff:90:50:d5:63: 79:a8:7d:a2:61:1f:6d:9c:71:30:c6:10:13:7b:3b:8c:e7:33: 94:0f:9d:1f:32:10:66:dd:f7:1f:76:8a:85:f8:eb:79:f0:f8: bc:ba:3e:78:9f:4a:0c:e0:57:0f:94:c7:66:51:b6:e8:e5:59: 92:9c:40:b7:b1:3a:8f:69:70:a1:5f:c1:da:04:08:17:33:ce: 3a:7b:0f:02 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUZC4OB7p5j645BKTjVzyjM55LoAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4 Rjc4ODFFRTAeFw0yNTA2MDIwMTU3NTVaFw0yNjA2MDEwMjAyNTVaMDMxMTAvBgNV BAMTKDY1RjZCNzZFREI3NTEwMTNENEZCOEYxRTM0REU4RURENUNGOEMwOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj3MVPyhmWI6hzNf0ncs7PBNED nVs5oOa3bt6pnP7hJbbFTuvYbM5rHTHGUuH7nlaSLeRr80mi95TJKYEd4QAVwHHX djFGE+sylQ69XxreXw9fOPOOdD1ilIuia0bVwMo8m2ryOf9XseTRpNWGy7Hwo7Su TXCiSxPu/Y9V6X5S0nbxbDcyykXA1//zN7DC6VOn/Wntuv6mhKW6BNhqwuSo495T Yi3OAbbJtDLtbWwskQjiUIjNKmpZHIChCLP7wyWZsAtV47sMIG0o6Xj0Ndj0fl7y 7wl6gP6PcOy8h5kH/6DhuR0284a0kqbTN3USLHfSw4hU+Wjj4aD5XFhvkz3ZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZfa3btt1EBPU+48eNN6O3Vz4wJkwHwYDVR0j BBgwFoAUnt5k28QJiIHxG3ASPfUU0494ge4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWFjYjRhOC03ODA0LTQ1MjYtODRkMi04NjliOTFhNjcxOWQvMC85RURFNjREQkM0 MDk4ODgxRjExQjcwMTIzREY1MTREMzhGNzg4MUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4Rjc4 ODFFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5YWNiNGE4LTc4MDQtNDUyNi04 NGQyLTg2OWI5MWE2NzE5ZC8wLzMyMzAzMjJlMzczMjJlMzEzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpIxjANBgkqhkiG 9w0BAQsFAAOCAQEAVdbglsXSPRJ1HMGHtpR1f4resV4gZaTe4bo4bdirmXWL+Yee eDtwEaGmbPjwIG2DvMb++5L8DLmESEsResSegktHXLfXXL+zAdyDvTxTZC8weLSa QmEV5l19ITFxs+p/p/dYxah/N/2xSBLnzNuc31DcMUcL95p7BKlPWV34u9eLF5OL FWHB4VGejGwTOPLcr2CPkP3zvV4qJPA2GsUaOG00Z8IeibWND4fzz0uBsv+QUNVj eah9omEfbZxxMMYQE3s7jOczlA+dHzIQZt33H3aKhfjrefD4vLo+eJ9KDOBXD5TH ZlG26OVZkpxAt7E6j2lwoV/B2gQIFzPOOnsPAg== -----END CERTIFICATE-----Generated at Tue Jul 1 06:03:03 2025 by rpki-client