$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132312e302f32342d3234203d3e203233393531.roa File: 3230322e36352e3132312e302f32342d3234203d3e203233393531.roa (raw, json) Hash identifier: W+avD/27cuz8u7PAdTFS+byjySE6cCdTL/goNcaSuQ0= Subject key identifier: 85:68:A5:87:B1:E6:1F:3E:E9:46:62:0E:32:83:76:FA:F4:43:E6:50 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 79F560202A1444F9521729B77946DE5462166CB7 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132312e302f32342d3234203d3e203233393531.roa Signing time: Fri 04 Jul 2025 03:00:00 +0000 ROA not before: Fri 04 Jul 2025 02:55:00 +0000 ROA not after: Fri 03 Jul 2026 03:00:00 +0000 asID: 23951 IP address blocks: 202.65.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 01:30:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:f5:60:20:2a:14:44:f9:52:17:29:b7:79:46:de:54:62:16:6c:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Jul 4 02:55:00 2025 GMT Not After : Jul 3 03:00:00 2026 GMT Subject: CN=8568A587B1E61F3EE946620E328376FAF443E650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e9:ff:88:0f:73:e1:ec:a1:e2:e8:29:67:25: 8e:35:d6:41:0b:98:12:58:96:66:5a:a7:05:15:d4: d7:6b:fe:c0:b9:be:bb:b2:39:80:fd:33:fe:d9:a1: 47:b3:eb:6c:72:96:bf:64:7f:df:e5:b1:c8:44:4b: be:f5:5d:ad:e8:ff:6d:43:f5:96:de:c6:c5:d0:e7: bf:0b:4e:23:d0:d9:e1:ec:f3:ba:ed:28:76:66:b8: 49:05:12:5a:3c:e7:56:d4:16:1d:01:2f:ea:04:18: a7:52:3f:82:e2:b2:07:4f:32:aa:7a:0b:ee:7b:47: 90:b7:03:4c:cd:be:e9:af:7b:eb:83:21:44:de:b0: 6f:6e:b1:03:77:7d:fc:52:ce:80:1d:8f:6a:73:c6: 77:8c:2c:08:e6:34:a9:35:59:04:2e:11:27:96:41: d7:c8:b2:85:c0:39:da:39:cb:94:08:3b:4d:bf:12: 3d:97:6a:ae:b2:93:e9:bf:77:98:4d:ed:4c:2f:02: dd:d4:21:ee:0c:4f:1a:b2:8f:93:2e:3b:8d:28:b4: 9b:85:2b:b0:ae:1b:de:1b:54:ad:3b:7d:70:9c:d0: 01:8e:cf:93:b2:83:73:4e:c1:10:c3:1e:b0:e6:c1: 4f:b8:08:20:7f:ab:6d:ed:67:9d:2d:4c:b0:68:1e: 51:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:68:A5:87:B1:E6:1F:3E:E9:46:62:0E:32:83:76:FA:F4:43:E6:50 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132312e302f32342d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.121.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:0c:7d:99:96:af:77:11:73:0b:18:22:e4:2a:5b:9e:42:64: d1:0a:23:a1:92:96:38:76:92:5c:c6:10:75:63:00:24:cf:58: f0:6d:d8:1c:dc:02:fb:5c:1d:8b:e3:d4:97:1f:7a:c9:a3:f9: af:90:fe:a8:a1:d7:6b:d4:e4:49:23:b4:e3:c7:cc:dd:92:e9: 10:16:5b:b7:22:b0:ab:5e:81:1d:ef:c4:58:37:aa:ad:53:8a: 8b:da:f4:38:66:10:f0:b7:8c:a4:78:a8:c9:62:2d:e9:39:b6: af:23:f7:b1:b9:c4:f8:0b:31:4f:30:46:a9:be:01:cc:58:e5: 2f:d9:5f:2c:76:3c:69:1a:53:68:f6:62:a7:09:80:eb:29:a9: 5e:23:ea:22:fa:a5:7a:b0:6a:74:73:ef:65:e0:d4:c0:34:88: e6:9e:69:b1:2f:10:5b:7c:c1:0a:68:d6:ba:15:7d:3d:1c:e8: e8:40:e7:66:ee:cb:33:06:77:e2:b0:2e:6b:8c:60:de:04:8c: fc:0e:d4:94:06:2e:74:ed:eb:47:05:b0:50:99:32:70:f4:c9: 91:53:9e:f2:4e:a9:83:1b:31:fa:80:17:7e:2b:71:2f:b5:b2: 4a:d9:fd:0e:ea:63:86:fa:d3:ac:1b:75:67:fb:5d:45:0f:61: 23:dd:fb:46 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUefVgICoURPlSFym3eUbeVGIWbLcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNTA3MDQwMjU1MDBaFw0yNjA3MDMwMzAwMDBaMDMxMTAvBgNV BAMTKDg1NjhBNTg3QjFFNjFGM0VFOTQ2NjIwRTMyODM3NkZBRjQ0M0U2NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi6f+ID3Ph7KHi6ClnJY411kEL mBJYlmZapwUV1Ndr/sC5vruyOYD9M/7ZoUez62xylr9kf9/lschES771Xa3o/21D 9ZbexsXQ578LTiPQ2eHs87rtKHZmuEkFElo851bUFh0BL+oEGKdSP4LisgdPMqp6 C+57R5C3A0zNvumve+uDIUTesG9usQN3ffxSzoAdj2pzxneMLAjmNKk1WQQuESeW QdfIsoXAOdo5y5QIO02/Ej2Xaq6yk+m/d5hN7UwvAt3UIe4MTxqyj5MuO40otJuF K7CuG94bVK07fXCc0AGOz5Oyg3NOwRDDHrDmwU+4CCB/q23tZ50tTLBoHlEnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhWilh7HmHz7pRmIOMoN2+vRD5lAwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpBeTANBgkqhkiG 9w0BAQsFAAOCAQEASwx9mZavdxFzCxgi5CpbnkJk0QojoZKWOHaSXMYQdWMAJM9Y 8G3YHNwC+1wdi+PUlx96yaP5r5D+qKHXa9TkSSO048fM3ZLpEBZbtyKwq16BHe/E WDeqrVOKi9r0OGYQ8LeMpHioyWIt6Tm2ryP3sbnE+AsxTzBGqb4BzFjlL9lfLHY8 aRpTaPZipwmA6ympXiPqIvqlerBqdHPvZeDUwDSI5p5psS8QW3zBCmjWuhV9PRzo 6EDnZu7LMwZ34rAua4xg3gSM/A7UlAYudO3rRwWwUJkycPTJkVOe8k6pgxsx+oAX fitxL7WyStn9DupjhvrTrBt1Z/tdRQ9hI937Rg== -----END CERTIFICATE-----Generated at Mon Jul 21 23:24:52 2025 by rpki-client