$ rpki-client -vvf repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139392e302f32342d3234203d3e203538353532.roa File: 3230322e37322e3139392e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: 5QPif0gj1bjrqgACnfODfusTFmrjqdVRY0shct/itK4= Subject key identifier: E7:D3:E9:BC:59:24:4E:2F:82:17:C3:49:BB:9A:E7:2E:41:E4:21:D6 Certificate issuer: /CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Certificate serial: 6654DA1B9A49A7CAF975BFB47414A333FFF01BBD Authority key identifier: 9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139392e302f32342d3234203d3e203538353532.roa Signing time: Thu 29 May 2025 05:02:34 +0000 ROA not before: Thu 29 May 2025 04:57:34 +0000 ROA not after: Thu 28 May 2026 05:02:34 +0000 asID: 58552 IP address blocks: 202.72.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 05:26:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:54:da:1b:9a:49:a7:ca:f9:75:bf:b4:74:14:a3:33:ff:f0:1b:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Validity Not Before: May 29 04:57:34 2025 GMT Not After : May 28 05:02:34 2026 GMT Subject: CN=E7D3E9BC59244E2F8217C349BB9AE72E41E421D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:31:9c:99:18:9b:95:9d:f5:d0:f5:d9:4a:9b: 08:0d:9c:46:b0:57:9b:5a:b9:7f:ff:5d:55:a1:b5: 4a:30:b4:f3:00:97:26:20:eb:0e:fe:1b:f4:09:a6: 6e:6f:cd:1d:8d:57:6b:b1:19:81:f7:cc:aa:fd:a3: a3:36:0d:28:29:a3:4e:b0:67:93:af:6f:f8:54:c1: 7c:07:e1:3c:f1:f1:4d:14:76:d3:28:d5:f2:33:46: 88:7c:e5:1d:31:5f:04:6a:d3:1d:a4:cf:b2:fe:5a: de:b5:61:5b:07:24:9c:0e:9a:61:a7:a8:29:76:54: b6:9a:da:90:29:f0:ee:9e:18:32:cc:fb:d4:b7:00: b0:f3:1f:aa:31:6a:b1:51:62:b5:de:2f:73:9d:18: f2:21:9e:58:48:1f:44:46:60:81:35:fe:e5:3c:79: 53:a5:59:0d:9a:0d:3a:ca:c8:0f:d3:20:90:2c:70: d0:52:b5:94:aa:ba:af:2c:84:3d:af:94:ec:3a:e3: 6c:ba:dc:06:c2:59:5c:bd:37:19:a2:fa:da:a3:80: e7:57:05:1c:d4:b3:ba:0a:e4:cc:3b:d4:54:d5:f0: 76:94:86:20:92:57:4f:ea:81:09:b8:68:11:5b:9e: 83:13:0a:7e:d2:93:f4:6f:d5:35:72:8c:71:14:3d: b8:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:D3:E9:BC:59:24:4E:2F:82:17:C3:49:BB:9A:E7:2E:41:E4:21:D6 X509v3 Authority Key Identifier: keyid:9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139392e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.72.199.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:92:22:19:86:63:01:a3:85:5a:00:aa:b6:3f:ab:61:b4:fe: 28:8f:1a:22:6b:1c:62:c3:76:dd:16:12:1d:6e:cd:c7:c4:7c: 87:a3:95:6f:5c:d5:b6:cb:c8:2f:1d:c8:93:a6:1f:98:33:ec: ad:fc:a5:0f:ca:16:da:5f:1b:e2:18:fd:fd:fe:25:9c:48:91: 95:d3:98:32:99:4c:9f:0d:1e:18:4e:1f:37:49:87:6b:19:b2: 1c:77:d4:7e:5d:8b:be:61:89:30:33:3a:d0:51:70:c7:89:06: 3d:eb:73:01:8a:73:93:47:46:6e:ef:dc:fe:d1:a5:cc:b0:2b: 56:17:56:0c:64:05:7d:e9:fc:93:0e:e3:6d:13:60:c1:3c:41: 37:b5:f9:ce:58:95:2e:56:88:2d:89:76:d5:88:20:dc:0a:44: be:65:7e:75:4e:c5:4f:4a:d3:03:c0:8b:d4:3c:07:fc:4c:81: 04:c4:8c:04:5b:5d:09:96:51:14:59:5f:4b:b7:51:e3:e5:a6: 0e:38:6b:da:18:f0:bc:a1:1c:ba:b3:2d:6a:fb:fa:78:73:30: 3a:0b:1e:00:9e:b6:a7:f4:de:b3:e2:3b:2d:a9:ee:8d:de:76: c3:0b:a1:da:ec:0a:26:98:9d:d8:37:43:0f:64:45:64:bd:95: 72:a7:12:e0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZlTaG5pJp8r5db+0dBSjM//wG70wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4 Rjc4ODFFRTAeFw0yNTA1MjkwNDU3MzRaFw0yNjA1MjgwNTAyMzRaMDMxMTAvBgNV BAMTKEU3RDNFOUJDNTkyNDRFMkY4MjE3QzM0OUJCOUFFNzJFNDFFNDIxRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvMZyZGJuVnfXQ9dlKmwgNnEaw V5tauX//XVWhtUowtPMAlyYg6w7+G/QJpm5vzR2NV2uxGYH3zKr9o6M2DSgpo06w Z5Ovb/hUwXwH4Tzx8U0UdtMo1fIzRoh85R0xXwRq0x2kz7L+Wt61YVsHJJwOmmGn qCl2VLaa2pAp8O6eGDLM+9S3ALDzH6oxarFRYrXeL3OdGPIhnlhIH0RGYIE1/uU8 eVOlWQ2aDTrKyA/TIJAscNBStZSquq8shD2vlOw642y63AbCWVy9Nxmi+tqjgOdX BRzUs7oK5Mw71FTV8HaUhiCSV0/qgQm4aBFbnoMTCn7Sk/Rv1TVyjHEUPbjrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU59PpvFkkTi+CF8NJu5rnLkHkIdYwHwYDVR0j BBgwFoAUnt5k28QJiIHxG3ASPfUU0494ge4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWFjYjRhOC03ODA0LTQ1MjYtODRkMi04NjliOTFhNjcxOWQvMC85RURFNjREQkM0 MDk4ODgxRjExQjcwMTIzREY1MTREMzhGNzg4MUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4Rjc4 ODFFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5YWNiNGE4LTc4MDQtNDUyNi04 NGQyLTg2OWI5MWE2NzE5ZC8wLzMyMzAzMjJlMzczMjJlMzEzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpIxzANBgkqhkiG 9w0BAQsFAAOCAQEAjZIiGYZjAaOFWgCqtj+rYbT+KI8aImscYsN23RYSHW7Nx8R8 h6OVb1zVtsvILx3Ik6YfmDPsrfylD8oW2l8b4hj9/f4lnEiRldOYMplMnw0eGE4f N0mHaxmyHHfUfl2LvmGJMDM60FFwx4kGPetzAYpzk0dGbu/c/tGlzLArVhdWDGQF fen8kw7jbRNgwTxBN7X5zliVLlaILYl21Ygg3ApEvmV+dU7FT0rTA8CL1DwH/EyB BMSMBFtdCZZRFFlfS7dR4+WmDjhr2hjwvKEcurMtavv6eHMwOgseAJ62p/Tes+I7 Lanujd52wwuh2uwKJpid2DdDD2RFZL2VcqcS4A== -----END CERTIFICATE-----Generated at Mon Jun 30 19:49:37 2025 by rpki-client