$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139332e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3139332e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: aHFMnyhh47UaoLaj5P570D9nqN6nQjfKB0KyJ10Bqlo= Subject key identifier: DA:C9:BC:D0:B5:3E:FD:AE:33:9C:D0:FB:76:FE:B0:06:73:FE:5A:98 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 068C9E0C75DE0DC97605EF5E55A33421CB3D9EAE Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139332e302f32342d3234203d3e203633383539.roa Signing time: Tue 10 Jun 2025 03:35:28 +0000 ROA not before: Tue 10 Jun 2025 03:30:28 +0000 ROA not after: Tue 09 Jun 2026 03:35:28 +0000 asID: 63859 IP address blocks: 202.152.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 01:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:8c:9e:0c:75:de:0d:c9:76:05:ef:5e:55:a3:34:21:cb:3d:9e:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Jun 10 03:30:28 2025 GMT Not After : Jun 9 03:35:28 2026 GMT Subject: CN=DAC9BCD0B53EFDAE339CD0FB76FEB00673FE5A98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b8:34:46:6a:25:f3:9c:d0:b7:ef:f5:ad:8e: 49:48:d9:91:6b:9d:cb:5d:7f:b5:f1:c2:6b:a1:56: 9d:c1:f5:7e:a8:0a:00:af:22:c2:f4:60:8f:1b:79: b6:35:09:a6:2d:7a:5c:3a:b6:a6:78:e4:84:11:08: 53:0d:6f:d8:d3:7f:35:17:28:6b:65:bd:04:84:04: bf:73:0b:3a:c3:88:2b:9b:15:f0:45:35:99:4d:2d: 54:65:34:40:61:16:07:4d:78:3e:79:31:9e:79:1e: 3e:06:f3:f1:92:2b:e5:22:f8:4a:0e:d5:a7:6a:44: 35:4a:06:c1:7c:63:ff:64:33:9e:a7:d5:f6:6c:6a: aa:f5:6b:f4:32:f7:3b:77:ff:b6:af:b4:1b:c3:0d: 74:bc:40:a2:46:ab:63:8b:db:4f:18:92:19:a9:9d: 4f:07:77:4f:c6:e1:01:1a:8c:38:80:fc:67:03:ff: d0:87:c2:6d:4c:b2:b2:f2:6c:12:52:68:36:f5:0e: 45:6f:1a:23:98:7a:0b:28:c9:c1:df:9b:e6:16:e6: 0f:ff:42:3f:2f:06:9d:aa:2c:c6:c5:a4:60:a3:7e: f3:9c:e6:11:c3:d5:e8:c9:f9:61:09:1b:44:74:cd: 02:f9:cd:56:08:78:04:a5:d4:28:bf:26:76:9f:9c: e9:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C9:BC:D0:B5:3E:FD:AE:33:9C:D0:FB:76:FE:B0:06:73:FE:5A:98 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139332e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.193.0/24 Signature Algorithm: sha256WithRSAEncryption 21:e0:90:f5:6a:90:8c:b0:b0:70:c1:5f:16:46:2e:b4:08:32: ce:d0:86:de:46:cb:f7:e2:21:47:52:30:d6:f8:23:a5:18:5a: b9:48:2d:09:44:db:e6:85:3e:f0:55:58:55:80:e2:44:fe:5e: ed:3b:3f:ec:b6:28:bd:f6:c3:48:72:14:e6:f7:6e:e5:4d:9a: ea:a7:74:5c:7a:54:71:c2:71:f5:c9:9b:43:87:33:26:6d:72: 34:57:68:e0:be:da:5f:0b:ac:1d:6f:9e:37:ea:ca:b6:cd:92: d7:c3:c5:1d:45:3e:36:c7:7e:1a:6f:cd:9b:6c:47:84:54:c4: 5c:1b:9a:c2:87:08:6c:d9:c1:70:2c:4c:89:ee:98:33:38:7f: 87:7a:b1:e2:d8:62:f5:bc:8d:39:21:fb:6b:42:8b:47:11:71: 2b:c0:00:7d:9e:43:3e:64:e2:08:2a:51:65:c7:42:a2:f3:2d: 38:6d:b7:1f:93:8f:93:b7:76:7e:75:23:17:60:f6:68:8d:72: 20:dd:72:10:4e:86:db:99:44:f4:f2:a3:e1:3e:a8:d3:87:3c: dd:a3:71:9d:f1:82:b2:b7:e1:e5:a1:40:ed:b5:4d:e2:f8:28: a0:16:6b:ce:2d:4b:11:ae:d2:99:4d:43:31:c4:83:ef:b5:48: aa:45:fd:29 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBoyeDHXeDcl2Be9eVaM0Ics9nq4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNTA2MTAwMzMwMjhaFw0yNjA2MDkwMzM1MjhaMDMxMTAvBgNV BAMTKERBQzlCQ0QwQjUzRUZEQUUzMzlDRDBGQjc2RkVCMDA2NzNGRTVBOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1uDRGaiXznNC37/WtjklI2ZFr nctdf7XxwmuhVp3B9X6oCgCvIsL0YI8bebY1CaYtelw6tqZ45IQRCFMNb9jTfzUX KGtlvQSEBL9zCzrDiCubFfBFNZlNLVRlNEBhFgdNeD55MZ55Hj4G8/GSK+Ui+EoO 1adqRDVKBsF8Y/9kM56n1fZsaqr1a/Qy9zt3/7avtBvDDXS8QKJGq2OL208Ykhmp nU8Hd0/G4QEajDiA/GcD/9CHwm1MsrLybBJSaDb1DkVvGiOYegsoycHfm+YW5g// Qj8vBp2qLMbFpGCjfvOc5hHD1ejJ+WEJG0R0zQL5zVYIeASl1Ci/JnafnOmJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2sm80LU+/a4znND7dv6wBnP+WpgwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMTM5MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjBMA0GCSqG SIb3DQEBCwUAA4IBAQAh4JD1apCMsLBwwV8WRi60CDLO0IbeRsv34iFHUjDW+COl GFq5SC0JRNvmhT7wVVhVgOJE/l7tOz/stii99sNIchTm927lTZrqp3RcelRxwnH1 yZtDhzMmbXI0V2jgvtpfC6wdb5436sq2zZLXw8UdRT42x34ab82bbEeEVMRcG5rC hwhs2cFwLEyJ7pgzOH+HerHi2GL1vI05IftrQotHEXErwAB9nkM+ZOIIKlFlx0Ki 8y04bbcfk4+Tt3Z+dSMXYPZojXIg3XIQTobbmUT08qPhPqjThzzdo3Gd8YKyt+Hl oUDttU3i+CigFmvOLUsRrtKZTUMxxIPvtUiqRf0p -----END CERTIFICATE-----Generated at Mon Jun 30 01:06:28 2025 by rpki-client