$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139322e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3139322e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: sueljug0A0cLELzQ10q3SYM/qivmbpI6TdGOwm3lCaU= Subject key identifier: 1F:98:55:4C:C2:D7:B4:2C:8E:2C:2E:5D:9D:44:19:06:D2:7C:3F:35 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 0529F3D2EFC7AE960E1F8E84BF4A350E10A96C3C Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139322e302f32342d3234203d3e203633383539.roa Signing time: Tue 10 Jun 2025 03:34:35 +0000 ROA not before: Tue 10 Jun 2025 03:29:35 +0000 ROA not after: Tue 09 Jun 2026 03:34:35 +0000 asID: 63859 IP address blocks: 202.152.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 01:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:29:f3:d2:ef:c7:ae:96:0e:1f:8e:84:bf:4a:35:0e:10:a9:6c:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Jun 10 03:29:35 2025 GMT Not After : Jun 9 03:34:35 2026 GMT Subject: CN=1F98554CC2D7B42C8E2C2E5D9D441906D27C3F35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f6:9b:0b:d1:e1:0f:c4:c3:86:6b:11:b9:fe: 60:8f:17:2b:ac:dc:4b:69:a7:e9:3c:9a:c5:13:c3: 99:fc:53:29:0b:02:fc:6b:da:32:43:a2:1f:97:a0: f1:3d:18:b8:0a:de:0a:ce:0f:ea:fc:55:8b:30:45: 6f:58:c1:13:a9:b6:60:9b:2d:d3:f6:4e:ee:30:b1: d4:82:3e:27:cf:42:43:37:5e:df:eb:82:f6:ec:fe: 5e:ea:67:00:9d:f8:e3:af:e1:29:fa:1d:80:e9:b5: 36:cf:cf:8e:ac:35:81:7a:15:d6:b8:4c:20:2d:b2: c4:17:36:cc:dc:16:4f:f4:ef:6e:fc:ea:1b:b5:6b: 66:3d:bb:93:93:7a:de:6e:5d:64:d8:e9:9e:76:57: ed:79:5f:aa:24:3d:80:42:78:3f:eb:d7:6e:84:39: 8f:2f:9b:41:f3:94:27:1c:9c:f1:03:be:88:10:3e: 98:85:49:eb:86:86:02:5f:9e:58:76:b9:d8:6c:e5: c1:f1:21:34:b5:17:6c:6e:b2:70:5a:f2:6f:06:39: a8:5e:24:23:39:b6:f3:41:9e:66:b0:9a:da:6e:e0: 37:fa:8a:b3:5d:cc:f7:d7:57:0f:2e:13:9f:d5:66: 74:b3:81:af:61:51:c4:c2:3f:87:11:37:20:93:19: 61:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:98:55:4C:C2:D7:B4:2C:8E:2C:2E:5D:9D:44:19:06:D2:7C:3F:35 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139322e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.192.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:06:a6:ce:dc:5d:81:1e:48:a8:bf:ef:d4:a3:b9:c0:68:6b: ef:e3:61:c7:67:6e:fc:5e:92:36:25:e6:55:d5:04:48:78:ab: b3:c3:a0:f5:7d:82:1c:17:93:a1:a0:5d:1f:06:4d:88:1f:f5: 2d:3b:e0:9e:61:54:fc:45:23:d1:8b:a4:36:b0:c6:68:f3:aa: 52:31:16:34:7c:73:18:f1:af:82:de:aa:a3:23:01:23:1e:cd: a2:f0:b3:a6:9a:c4:96:0e:d5:80:45:bd:76:b0:61:33:b2:79: 07:23:d8:e0:a3:eb:54:1f:08:b4:1b:67:3e:48:17:79:ec:93: 70:64:04:90:7e:dc:f2:56:e1:a0:99:f0:e2:34:8d:85:91:25: e2:f9:b5:67:0d:32:87:f7:2a:db:e9:28:c4:c7:c2:dd:1b:42: 7b:94:e9:d1:b1:e0:ab:f3:df:d5:c7:e4:bb:ec:bd:c8:91:8f: 06:96:b1:6d:e0:07:f6:2e:5e:35:7f:5a:c2:39:9d:7e:8e:e7: 0c:1a:44:a7:1b:f7:83:da:43:01:0e:78:ed:3b:e3:e6:8c:18: 6d:3a:a1:44:5e:53:8c:71:4b:9a:05:a8:bc:77:99:28:d8:c8: 5d:e4:4e:7c:25:74:0a:83:46:11:4c:af:75:5e:55:5f:31:4f: 5e:1e:85:cd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBSnz0u/HrpYOH46Ev0o1DhCpbDwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNTA2MTAwMzI5MzVaFw0yNjA2MDkwMzM0MzVaMDMxMTAvBgNV BAMTKDFGOTg1NTRDQzJEN0I0MkM4RTJDMkU1RDlENDQxOTA2RDI3QzNGMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC49psL0eEPxMOGaxG5/mCPFyus 3Etpp+k8msUTw5n8UykLAvxr2jJDoh+XoPE9GLgK3grOD+r8VYswRW9YwROptmCb LdP2Tu4wsdSCPifPQkM3Xt/rgvbs/l7qZwCd+OOv4Sn6HYDptTbPz46sNYF6Fda4 TCAtssQXNszcFk/072786hu1a2Y9u5OTet5uXWTY6Z52V+15X6okPYBCeD/r126E OY8vm0HzlCccnPEDvogQPpiFSeuGhgJfnlh2udhs5cHxITS1F2xusnBa8m8GOahe JCM5tvNBnmawmtpu4Df6irNdzPfXVw8uE5/VZnSzga9hUcTCP4cRNyCTGWFHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUH5hVTMLXtCyOLC5dnUQZBtJ8PzUwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMTM5MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjAMA0GCSqG SIb3DQEBCwUAA4IBAQCbBqbO3F2BHkiov+/Uo7nAaGvv42HHZ278XpI2JeZV1QRI eKuzw6D1fYIcF5OhoF0fBk2IH/UtO+CeYVT8RSPRi6Q2sMZo86pSMRY0fHMY8a+C 3qqjIwEjHs2i8LOmmsSWDtWARb12sGEzsnkHI9jgo+tUHwi0G2c+SBd57JNwZASQ ftzyVuGgmfDiNI2FkSXi+bVnDTKH9yrb6SjEx8LdG0J7lOnRseCr89/Vx+S77L3I kY8GlrFt4Af2Ll41f1rCOZ1+jucMGkSnG/eD2kMBDnjtO+PmjBhtOqFEXlOMcUua Bai8d5ko2Mhd5E58JXQKg0YRTK91XlVfMU9eHoXN -----END CERTIFICATE-----Generated at Mon Jun 30 00:48:48 2025 by rpki-client