$ rpki-client -vvf repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/3230332e3136312e32342e302f32312d3234203d3e20313338383233.roa File: 3230332e3136312e32342e302f32312d3234203d3e20313338383233.roa (raw, json) Hash identifier: pFuk/AGngpWFrOWsfA6YRJueZJFWOC8v02Ywbm8rUMw= Subject key identifier: 0F:F1:E2:9B:82:0F:E3:02:A7:08:09:27:C7:AA:C4:B2:F9:54:C2:5C Certificate issuer: /CN=E2111F10F01C17C4A322DAF5076425FBD824219D Certificate serial: 2924D256A5913FB8392437BBFAEAC3E75D1DE14F Authority key identifier: E2:11:1F:10:F0:1C:17:C4:A3:22:DA:F5:07:64:25:FB:D8:24:21:9D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2111F10F01C17C4A322DAF5076425FBD824219D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/3230332e3136312e32342e302f32312d3234203d3e20313338383233.roa Signing time: Sun 20 Jul 2025 10:00:00 +0000 ROA not before: Sun 20 Jul 2025 09:55:00 +0000 ROA not after: Sun 19 Jul 2026 10:00:00 +0000 asID: 138823 IP address blocks: 203.161.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/E2111F10F01C17C4A322DAF5076425FBD824219D.crl rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/E2111F10F01C17C4A322DAF5076425FBD824219D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2111F10F01C17C4A322DAF5076425FBD824219D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 17:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:24:d2:56:a5:91:3f:b8:39:24:37:bb:fa:ea:c3:e7:5d:1d:e1:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E2111F10F01C17C4A322DAF5076425FBD824219D Validity Not Before: Jul 20 09:55:00 2025 GMT Not After : Jul 19 10:00:00 2026 GMT Subject: CN=0FF1E29B820FE302A7080927C7AAC4B2F954C25C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:10:9d:3b:ff:12:06:c8:5c:2f:34:ee:73:89: a3:6d:18:8e:54:b2:99:58:9e:a5:0f:8f:8c:84:4b: 3d:04:12:8d:57:63:8f:62:91:76:26:16:97:dd:30: 63:2f:17:60:48:06:ec:af:ca:bd:14:58:d4:64:0e: 4a:61:5b:b2:ea:dc:e2:f0:8b:38:af:5b:3c:7c:70: 3d:0d:71:e4:d4:1b:df:8f:18:9c:cc:cb:26:ba:c2: 59:b6:4d:6a:f9:04:a3:03:5b:8c:2d:5b:d5:ea:dd: 2d:ea:f3:f2:89:eb:a4:0b:2a:3d:bd:de:1f:25:38: 77:b8:c4:0a:0f:f4:13:81:e7:1f:73:b5:da:ef:03: 9e:11:e6:f3:e1:a4:18:63:6d:08:c8:b0:d1:58:18: 4c:75:86:17:2b:43:25:3f:78:e5:1c:43:34:dc:76: 45:9c:33:c4:ae:79:cc:0d:48:8d:64:3d:da:b4:4b: bd:2a:fc:80:fc:11:8b:52:58:02:a3:70:06:8c:55: d1:d8:fd:b0:ec:81:93:ac:b7:a5:90:b8:c3:5d:07: 57:ee:be:8a:ae:a9:2b:89:d3:38:78:5f:0e:4e:68: db:cd:c1:d6:bb:07:9b:e3:5f:ca:fa:0e:91:ce:ba: e1:7a:58:91:ff:59:fc:8b:bf:b8:55:80:67:24:b1: d3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:F1:E2:9B:82:0F:E3:02:A7:08:09:27:C7:AA:C4:B2:F9:54:C2:5C X509v3 Authority Key Identifier: keyid:E2:11:1F:10:F0:1C:17:C4:A3:22:DA:F5:07:64:25:FB:D8:24:21:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/E2111F10F01C17C4A322DAF5076425FBD824219D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2111F10F01C17C4A322DAF5076425FBD824219D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/3230332e3136312e32342e302f32312d3234203d3e20313338383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.161.24.0/21 Signature Algorithm: sha256WithRSAEncryption 16:1b:ee:73:35:e1:1b:b4:52:1a:63:5a:07:cc:9f:34:af:63: f2:2e:f1:ec:48:98:49:c0:54:5a:71:20:c4:ce:f2:81:7a:69: 09:1d:8e:82:ac:d1:e8:ad:45:2b:ff:77:44:ab:28:69:88:ab: e9:38:71:71:31:da:28:19:36:1e:10:08:70:96:d4:16:5f:af: 03:6a:f5:66:50:96:12:ae:60:2f:32:7e:61:a4:cb:0a:f3:e5: e6:22:1f:6e:d8:72:fd:5a:07:d3:d2:cd:c3:0c:0a:5f:8f:40: 3f:48:49:4a:8c:26:bb:00:3f:47:44:af:17:62:f7:a3:bd:d1: 9d:05:50:62:0d:3c:71:6f:37:d8:dd:52:86:03:13:fa:43:b8: f2:db:13:be:8c:af:18:1e:16:05:84:b1:55:97:4e:1d:10:dc: 7f:a8:fe:dd:a0:d2:74:2c:1e:5b:fd:2c:86:31:6c:e2:24:43: b9:80:28:5e:92:38:bf:1b:28:e0:9b:30:d8:37:c9:e2:44:dc: ca:2f:6d:47:6b:bd:dd:68:c9:f4:5e:da:88:04:68:a4:50:88: 01:df:ee:4d:70:0a:26:69:74:2f:c4:6e:b8:2e:12:b4:b5:22: 3f:ec:d2:f4:c0:9f:91:c3:3b:a0:4b:2b:6a:26:91:7a:4a:c9: f3:33:be:6d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKSTSVqWRP7g5JDe7+urD510d4U8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTIxMTFGMTBGMDFDMTdDNEEzMjJEQUY1MDc2NDI1RkJE ODI0MjE5RDAeFw0yNTA3MjAwOTU1MDBaFw0yNjA3MTkxMDAwMDBaMDMxMTAvBgNV BAMTKDBGRjFFMjlCODIwRkUzMDJBNzA4MDkyN0M3QUFDNEIyRjk1NEMyNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2EJ07/xIGyFwvNO5ziaNtGI5U splYnqUPj4yESz0EEo1XY49ikXYmFpfdMGMvF2BIBuyvyr0UWNRkDkphW7Lq3OLw izivWzx8cD0NceTUG9+PGJzMyya6wlm2TWr5BKMDW4wtW9Xq3S3q8/KJ66QLKj29 3h8lOHe4xAoP9BOB5x9ztdrvA54R5vPhpBhjbQjIsNFYGEx1hhcrQyU/eOUcQzTc dkWcM8SuecwNSI1kPdq0S70q/ID8EYtSWAKjcAaMVdHY/bDsgZOst6WQuMNdB1fu voquqSuJ0zh4Xw5OaNvNwda7B5vjX8r6DpHOuuF6WJH/WfyLv7hVgGcksdMtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUD/Him4IP4wKnCAknx6rEsvlUwlwwHwYDVR0j BBgwFoAU4hEfEPAcF8SjItr1B2Ql+9gkIZ0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjE1OGFlYy01MjgxLTQyZTYtOTc5Yi1mY2E2MWQ0N2M4NDUvMC9FMjExMUYxMEYw MUMxN0M0QTMyMkRBRjUwNzY0MjVGQkQ4MjQyMTlELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTIxMTFGMTBGMDFDMTdDNEEzMjJEQUY1MDc2NDI1RkJEODI0 MjE5RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyMTU4YWVjLTUyODEtNDJlNi05 NzliLWZjYTYxZDQ3Yzg0NS8wLzMyMzAzMzJlMzEzNjMxMmUzMjM0MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDy6EYMA0GCSqG SIb3DQEBCwUAA4IBAQAWG+5zNeEbtFIaY1oHzJ80r2PyLvHsSJhJwFRacSDEzvKB emkJHY6CrNHorUUr/3dEqyhpiKvpOHFxMdooGTYeEAhwltQWX68DavVmUJYSrmAv Mn5hpMsK8+XmIh9u2HL9WgfT0s3DDApfj0A/SElKjCa7AD9HRK8XYvejvdGdBVBi DTxxbzfY3VKGAxP6Q7jy2xO+jK8YHhYFhLFVl04dENx/qP7doNJ0LB5b/SyGMWzi JEO5gChekji/GyjgmzDYN8niRNzKL21Ha73daMn0XtqIBGikUIgB3+5NcAomaXQv xG64LhK0tSI/7NL0wJ+RwzugSytqJpF6SsnzM75t -----END CERTIFICATE-----Generated at Mon Jul 21 14:38:57 2025 by rpki-client