$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230342e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3230342e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: Axn8ERr+dCmvsiqqyuPKnJfBVVJriYKk4K22F1CTADk= Subject key identifier: 03:87:07:BF:A8:0B:F4:64:D4:24:21:2D:69:23:13:2E:2C:E2:2A:55 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 2B77C0E4F3348DE2D5A38F689A3BEA8E1F53E80B Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230342e302f32342d3234203d3e203633383539.roa Signing time: Tue 10 Jun 2025 03:46:55 +0000 ROA not before: Tue 10 Jun 2025 03:41:55 +0000 ROA not after: Tue 09 Jun 2026 03:46:55 +0000 asID: 63859 IP address blocks: 202.152.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 01:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:77:c0:e4:f3:34:8d:e2:d5:a3:8f:68:9a:3b:ea:8e:1f:53:e8:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Jun 10 03:41:55 2025 GMT Not After : Jun 9 03:46:55 2026 GMT Subject: CN=038707BFA80BF464D424212D6923132E2CE22A55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c6:6a:14:66:c2:7c:a8:a3:2d:b4:47:bb:3d: d9:94:0e:e9:33:f3:ab:e9:96:cb:4e:b5:70:d8:e5: 8c:a5:57:4e:07:9e:ac:c0:36:d8:2f:e5:68:a5:9a: 27:be:c2:d3:e0:8f:b9:c1:45:61:2e:10:cb:a1:3d: e1:56:d2:c7:91:d1:9d:24:4c:ca:6c:b9:11:06:1e: 93:b7:5e:a5:9c:4f:2f:9a:94:45:8d:bb:0c:11:96: b3:83:7e:60:81:93:65:46:5d:f9:15:66:d6:a9:86: 85:ce:bb:d7:90:38:ca:82:ec:52:c4:2f:7b:ff:28: da:1e:98:6e:bd:3e:8d:a0:20:5c:0b:55:ad:98:62: 92:7e:8c:07:8f:84:ef:6a:e5:be:50:77:f3:e9:fa: 49:c0:d2:3f:18:4e:9e:3d:51:73:fe:f5:c6:df:5a: aa:02:0a:bf:d3:3e:96:83:1a:9d:ac:55:da:49:90: c1:a5:6e:c8:fd:9f:0e:28:ea:2a:1f:38:fb:32:a0: 16:a0:51:4e:e6:1f:5d:ea:04:ff:93:49:6d:41:c8: 15:35:cd:35:46:ba:4c:d1:2b:b2:fd:bc:7b:f5:a5: 63:5f:52:9b:6e:a1:42:44:f9:5c:60:57:61:39:c1: c9:d9:78:d7:80:d9:11:20:63:dc:4a:45:72:f5:1d: e1:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:87:07:BF:A8:0B:F4:64:D4:24:21:2D:69:23:13:2E:2C:E2:2A:55 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230342e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.204.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:ec:58:1a:25:a6:d7:71:7f:9a:a0:68:30:2a:e5:57:ee:be: 9e:bf:cf:bb:e9:79:ab:d7:1d:40:2f:65:c2:40:29:ec:5d:93: ab:d6:35:9a:ef:c8:63:7a:3c:14:da:20:b7:7b:5b:10:9c:22: 78:ff:67:d9:b2:f2:a5:51:74:ce:71:1b:4b:e8:25:92:2a:60: f9:1e:64:a3:7f:f2:0d:8b:a1:4f:02:46:8e:45:4c:40:a9:a6: 4c:fa:7f:d7:34:4c:bc:57:7c:88:95:56:b0:e3:fd:e5:18:ae: c4:e6:58:79:e3:06:80:40:7e:6d:fb:a2:29:88:61:62:d7:ae: 54:f6:35:ba:1d:f8:ed:8e:fb:32:dd:f9:a2:f9:28:ac:17:a9: 8e:82:c5:3e:0c:93:20:19:cd:f7:05:12:12:09:f4:7f:d0:be: 25:c9:9b:85:10:50:73:b6:6e:03:64:c0:26:7d:1f:d6:a1:24: cf:25:41:ca:52:a7:ee:4b:06:59:cc:b9:f4:73:62:aa:e1:17: 38:6e:70:ad:75:6b:cb:ea:c5:b8:e5:ce:09:70:e0:e1:39:65: 6e:0c:e1:6c:6d:7f:c8:c2:8c:90:af:11:47:3e:62:b9:f3:ed: b1:d2:da:97:33:fc:35:33:9a:59:42:a2:bb:f1:0f:2d:96:52: 83:0f:94:0c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUK3fA5PM0jeLVo49omjvqjh9T6AswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNTA2MTAwMzQxNTVaFw0yNjA2MDkwMzQ2NTVaMDMxMTAvBgNV BAMTKDAzODcwN0JGQTgwQkY0NjRENDI0MjEyRDY5MjMxMzJFMkNFMjJBNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDxmoUZsJ8qKMttEe7PdmUDukz 86vplstOtXDY5YylV04HnqzANtgv5Wilmie+wtPgj7nBRWEuEMuhPeFW0seR0Z0k TMpsuREGHpO3XqWcTy+alEWNuwwRlrODfmCBk2VGXfkVZtaphoXOu9eQOMqC7FLE L3v/KNoemG69Po2gIFwLVa2YYpJ+jAePhO9q5b5Qd/Pp+knA0j8YTp49UXP+9cbf WqoCCr/TPpaDGp2sVdpJkMGlbsj9nw4o6iofOPsyoBagUU7mH13qBP+TSW1ByBU1 zTVGukzRK7L9vHv1pWNfUptuoUJE+VxgV2E5wcnZeNeA2REgY9xKRXL1HeFFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUA4cHv6gL9GTUJCEtaSMTLiziKlUwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMjMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjMMA0GCSqG SIb3DQEBCwUAA4IBAQAt7FgaJabXcX+aoGgwKuVX7r6ev8+76Xmr1x1AL2XCQCns XZOr1jWa78hjejwU2iC3e1sQnCJ4/2fZsvKlUXTOcRtL6CWSKmD5HmSjf/INi6FP AkaORUxAqaZM+n/XNEy8V3yIlVaw4/3lGK7E5lh54waAQH5t+6IpiGFi165U9jW6 Hfjtjvsy3fmi+SisF6mOgsU+DJMgGc33BRISCfR/0L4lyZuFEFBztm4DZMAmfR/W oSTPJUHKUqfuSwZZzLn0c2Kq4Rc4bnCtdWvL6sW45c4JcODhOWVuDOFsbX/IwoyQ rxFHPmK58+2x0tqXM/w1M5pZQqK78Q8tllKDD5QM -----END CERTIFICATE-----Generated at Mon Jun 30 00:56:00 2025 by rpki-client