$ rpki-client -vvf repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230372e302f32342d3234203d3e203538353532.roa File: 3230322e37322e3230372e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: SgsotEI1SZ9oJNKPcNIzjjmNECtgKeHbBcJfhx89iX4= Subject key identifier: E2:1B:26:87:17:BE:B2:F5:36:42:E3:5A:D1:BB:46:24:F6:B1:89:00 Certificate issuer: /CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Certificate serial: 4EEABD43D6B8500B3FFB24800AE4AD0710CA1C22 Authority key identifier: 9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230372e302f32342d3234203d3e203538353532.roa Signing time: Mon 23 Jun 2025 09:00:01 +0000 ROA not before: Mon 23 Jun 2025 08:55:01 +0000 ROA not after: Mon 22 Jun 2026 09:00:01 +0000 asID: 58552 IP address blocks: 202.72.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 05:26:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ea:bd:43:d6:b8:50:0b:3f:fb:24:80:0a:e4:ad:07:10:ca:1c:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Validity Not Before: Jun 23 08:55:01 2025 GMT Not After : Jun 22 09:00:01 2026 GMT Subject: CN=E21B268717BEB2F53642E35AD1BB4624F6B18900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4c:54:eb:55:69:2b:ec:54:b8:f6:40:e3:31: c5:19:6a:ae:c1:cc:78:5f:b6:92:e8:af:a3:58:09: c1:8d:b1:6d:4d:b5:86:d1:a0:e0:17:4c:7d:f1:52: 05:2e:e6:dd:a0:94:73:71:93:14:bd:f3:0e:6f:28: 1f:d2:63:b5:f2:dd:8a:a7:92:53:fc:a7:ce:ea:89: a6:17:7f:1d:0e:42:d2:9d:52:ca:46:2d:94:15:c1: ef:c1:1e:3a:c5:cb:3c:02:e7:30:06:e0:9f:e3:b5: ad:fe:41:23:47:4e:e1:2b:f2:e7:9e:17:bf:b8:c3: ab:06:db:72:ab:fe:d1:77:a0:b4:8d:44:0b:47:8d: 6f:e1:92:fb:9e:57:6b:25:30:b7:17:0f:d2:d5:61: 85:0f:f0:e6:49:79:af:12:d9:7b:c8:9f:09:29:ef: 56:41:ca:6c:fe:ef:34:52:ec:d1:75:7e:dc:35:79: b0:59:66:0a:c3:38:07:a1:a6:70:58:3a:bf:7a:77: 0b:04:58:d9:7c:b4:5c:0c:10:25:20:e6:74:d2:8c: f1:65:f6:f5:0e:eb:f4:c5:a7:d6:e5:69:ee:9f:00: a6:aa:ad:27:b7:f9:a0:9a:f2:0d:56:f3:f7:02:80: 6c:7c:53:6a:68:9c:27:5d:5c:42:ca:89:ea:44:80: 06:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:1B:26:87:17:BE:B2:F5:36:42:E3:5A:D1:BB:46:24:F6:B1:89:00 X509v3 Authority Key Identifier: keyid:9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230372e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.72.207.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:d4:40:1d:b0:65:2c:63:06:1b:29:56:2e:dc:80:69:67:c2: 6f:89:9a:fc:d0:36:e9:5c:2c:3c:e3:ad:11:51:02:c9:5c:06: c8:13:3b:23:ca:a9:1b:3a:e6:24:a0:97:dc:d6:c8:eb:45:f9: 70:07:cd:ed:c2:0c:03:ff:32:ba:74:b6:26:56:b3:7a:74:f8: 51:cb:e2:3d:0e:84:48:f3:fa:d0:ba:39:ac:37:4f:94:f9:8a: c3:61:58:11:cd:a9:27:f8:51:f3:40:c6:f0:89:c8:45:31:60: 63:d3:62:66:cb:d7:88:7f:15:9c:e8:ad:39:c0:98:05:44:76: a9:6d:31:77:5b:38:b6:f7:97:e3:5b:61:1a:24:c2:cf:93:a9: 89:5a:07:69:94:cc:8e:cc:f6:de:8f:e9:69:1d:a6:c4:0c:ae: 6a:f9:77:8b:eb:f6:fc:10:d3:bc:ee:fb:71:64:a6:61:c0:21: 2c:64:5f:bb:59:92:51:d1:42:8a:d9:1b:d0:13:76:16:26:c0: cb:6f:3e:cc:77:28:33:d4:13:d8:02:93:58:5f:e8:3c:48:ea: 3c:3c:16:96:45:37:ea:ee:30:48:d9:2c:7b:dd:7b:bb:1d:73: fa:16:e6:95:d1:e1:fb:51:09:0d:b9:43:61:e4:47:41:97:2e: e6:5b:2e:ea -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTuq9Q9a4UAs/+ySACuStBxDKHCIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4 Rjc4ODFFRTAeFw0yNTA2MjMwODU1MDFaFw0yNjA2MjIwOTAwMDFaMDMxMTAvBgNV BAMTKEUyMUIyNjg3MTdCRUIyRjUzNjQyRTM1QUQxQkI0NjI0RjZCMTg5MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpTFTrVWkr7FS49kDjMcUZaq7B zHhftpLor6NYCcGNsW1NtYbRoOAXTH3xUgUu5t2glHNxkxS98w5vKB/SY7Xy3Yqn klP8p87qiaYXfx0OQtKdUspGLZQVwe/BHjrFyzwC5zAG4J/jta3+QSNHTuEr8uee F7+4w6sG23Kr/tF3oLSNRAtHjW/hkvueV2slMLcXD9LVYYUP8OZJea8S2XvInwkp 71ZBymz+7zRS7NF1ftw1ebBZZgrDOAehpnBYOr96dwsEWNl8tFwMECUg5nTSjPFl 9vUO6/TFp9blae6fAKaqrSe3+aCa8g1W8/cCgGx8U2ponCddXELKiepEgAYlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4hsmhxe+svU2QuNa0btGJPaxiQAwHwYDVR0j BBgwFoAUnt5k28QJiIHxG3ASPfUU0494ge4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWFjYjRhOC03ODA0LTQ1MjYtODRkMi04NjliOTFhNjcxOWQvMC85RURFNjREQkM0 MDk4ODgxRjExQjcwMTIzREY1MTREMzhGNzg4MUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4Rjc4 ODFFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5YWNiNGE4LTc4MDQtNDUyNi04 NGQyLTg2OWI5MWE2NzE5ZC8wLzMyMzAzMjJlMzczMjJlMzIzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpIzzANBgkqhkiG 9w0BAQsFAAOCAQEAW9RAHbBlLGMGGylWLtyAaWfCb4ma/NA26VwsPOOtEVECyVwG yBM7I8qpGzrmJKCX3NbI60X5cAfN7cIMA/8yunS2JlazenT4UcviPQ6ESPP60Lo5 rDdPlPmKw2FYEc2pJ/hR80DG8InIRTFgY9NiZsvXiH8VnOitOcCYBUR2qW0xd1s4 tveX41thGiTCz5OpiVoHaZTMjsz23o/paR2mxAyuavl3i+v2/BDTvO77cWSmYcAh LGRfu1mSUdFCitkb0BN2FibAy28+zHcoM9QT2AKTWF/oPEjqPDwWlkU36u4wSNks e917ux1z+hbmldHh+1EJDblDYeRHQZcu5lsu6g== -----END CERTIFICATE-----Generated at Tue Jul 1 16:08:34 2025 by rpki-client