$ rpki-client -vvf repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3230322e36372e382e302f32312d3234203d3e203234313935.roa File: 3230322e36372e382e302f32312d3234203d3e203234313935.roa (raw, json) Hash identifier: B+C/2EohdvfSLSdEWCv4uFVDG8om8Pw0dnsHmi+NJ9Y= Subject key identifier: AE:CC:5B:43:2C:7C:FA:26:DB:57:EA:E2:6F:93:71:50:7D:DC:E1:F3 Certificate issuer: /CN=1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946 Certificate serial: 32872283C690D0E40B5B14024F14DCF84AB121F6 Authority key identifier: 1F:CD:47:FB:4B:D7:29:E2:2E:4F:EE:FC:E5:B6:1B:4E:1C:7F:E9:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3230322e36372e382e302f32312d3234203d3e203234313935.roa Signing time: Sat 12 Jul 2025 10:00:00 +0000 ROA not before: Sat 12 Jul 2025 09:55:00 +0000 ROA not after: Sat 11 Jul 2026 10:00:00 +0000 asID: 24195 IP address blocks: 202.67.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.crl rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 02:36:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:87:22:83:c6:90:d0:e4:0b:5b:14:02:4f:14:dc:f8:4a:b1:21:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946 Validity Not Before: Jul 12 09:55:00 2025 GMT Not After : Jul 11 10:00:00 2026 GMT Subject: CN=AECC5B432C7CFA26DB57EAE26F9371507DDCE1F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:de:6a:8e:3a:86:ae:4d:dd:9f:89:8a:3d:dd: 15:50:72:eb:b5:f6:4e:13:f7:c5:a7:12:03:cb:3f: f1:ac:fb:83:f0:22:5f:04:41:bb:81:2a:ec:c0:c5: a9:e7:60:a4:62:75:b4:de:48:ed:64:b1:ad:be:e4: 64:d1:46:7a:5d:b4:22:da:a4:ed:88:d7:51:32:62: 58:1b:d2:76:e2:8a:ee:6b:c2:91:70:72:de:0c:e0: 0a:ca:17:bc:39:6b:8d:6d:20:da:e8:b0:0d:5c:98: ff:4a:d1:8a:56:17:bd:33:83:61:22:a9:be:14:82: 54:eb:ca:8b:fc:ca:8a:09:e7:f8:2c:e0:d0:d8:7d: ae:4a:18:48:9e:8a:69:d1:90:bc:e4:97:8d:c8:35: 17:96:1a:a0:c6:29:82:eb:70:12:07:b0:91:62:40: fe:db:e0:2b:97:92:da:25:91:2b:6c:39:c7:77:81: 24:70:7e:49:1b:32:f9:06:3c:40:01:4d:5c:35:3f: 6b:89:02:f1:94:b7:5b:54:ee:0c:89:dd:0d:d6:a8: ed:0a:e7:29:a6:10:5a:76:26:2e:99:26:d8:d9:15: d9:6b:40:fe:09:a6:a4:6f:f3:7e:75:fa:1a:c8:79: c8:19:33:0d:de:77:f3:76:c6:47:e0:24:86:4c:f1: 79:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:CC:5B:43:2C:7C:FA:26:DB:57:EA:E2:6F:93:71:50:7D:DC:E1:F3 X509v3 Authority Key Identifier: keyid:1F:CD:47:FB:4B:D7:29:E2:2E:4F:EE:FC:E5:B6:1B:4E:1C:7F:E9:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3230322e36372e382e302f32312d3234203d3e203234313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.67.8.0/21 Signature Algorithm: sha256WithRSAEncryption 78:34:08:66:da:c6:15:0b:ca:b8:31:cd:bb:cd:d2:70:ae:2a: e3:00:a7:33:3d:cf:b4:d6:3c:0c:cd:f7:14:24:ec:49:fd:7b: db:22:48:ff:ae:ab:34:07:f3:58:d2:70:8d:22:8b:1b:06:92: 3a:0c:73:f2:5a:d0:46:f0:e6:a9:0b:50:b5:42:38:47:00:90: 9d:f1:cb:0b:96:ca:cb:b2:6e:a4:b2:80:ea:85:7c:ef:56:06: 76:97:2a:9e:16:09:c3:fb:31:62:58:3b:10:a0:48:00:d5:5e: 91:40:00:2f:95:e0:e8:6d:7a:1b:5d:79:f1:1f:93:49:69:c4: 66:f4:d1:a3:97:1e:1e:fc:e3:0e:1c:1e:77:fa:04:e5:19:ff: d9:c5:dc:40:2e:80:40:ce:6f:12:06:a9:c5:bf:eb:be:a4:2e: 49:2f:85:72:f5:9a:5f:44:c4:44:87:eb:65:34:e9:54:2e:c6: 74:dd:eb:a5:6e:e7:b7:d1:ef:85:e5:fb:c4:fe:ff:75:48:59: 22:90:8b:fa:70:54:90:47:e3:0b:ad:7f:91:8a:10:61:25:2c: 7e:87:14:aa:d2:e1:01:a6:a3:81:a4:76:1b:53:7a:32:ce:5b: 6c:b6:f0:8c:5e:c0:34:5d:7b:4d:a8:29:16:24:9e:80:59:63: 70:50:a0:c0 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUMocig8aQ0OQLWxQCTxTc+EqxIfYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZDRDQ3RkI0QkQ3MjlFMjJFNEZFRUZDRTVCNjFCNEUx QzdGRTk0NjAeFw0yNTA3MTIwOTU1MDBaFw0yNjA3MTExMDAwMDBaMDMxMTAvBgNV BAMTKEFFQ0M1QjQzMkM3Q0ZBMjZEQjU3RUFFMjZGOTM3MTUwN0REQ0UxRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY3mqOOoauTd2fiYo93RVQcuu1 9k4T98WnEgPLP/Gs+4PwIl8EQbuBKuzAxannYKRidbTeSO1ksa2+5GTRRnpdtCLa pO2I11EyYlgb0nbiiu5rwpFwct4M4ArKF7w5a41tINrosA1cmP9K0YpWF70zg2Ei qb4UglTryov8yooJ5/gs4NDYfa5KGEieimnRkLzkl43INReWGqDGKYLrcBIHsJFi QP7b4CuXktolkStsOcd3gSRwfkkbMvkGPEABTVw1P2uJAvGUt1tU7gyJ3Q3WqO0K 5ymmEFp2Ji6ZJtjZFdlrQP4JpqRv8351+hrIecgZMw3ed/N2xkfgJIZM8Xl1AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUrsxbQyx8+ibbV+rib5NxUH3c4fMwHwYDVR0j BBgwFoAUH81H+0vXKeIuT+785bYbThx/6UYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzkyYTRjZC1kYmFjLTQzYWMtODA2MC0yZThkNDJlYWU2NTUvMC8xRkNENDdGQjRC RDcyOUUyMkU0RkVFRkNFNUI2MUI0RTFDN0ZFOTQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUZDRDQ3RkI0QkQ3MjlFMjJFNEZFRUZDRTVCNjFCNEUxQzdG RTk0Ni5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODc5MmE0Y2QtZGJhYy00M2FjLTgw NjAtMmU4ZDQyZWFlNjU1LzAvMzIzMDMyMmUzNjM3MmUzODJlMzAyZjMyMzEyZDMy MzQyMDNkM2UyMDMyMzQzMTM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPKQwgwDQYJKoZIhvcNAQEL BQADggEBAHg0CGbaxhULyrgxzbvN0nCuKuMApzM9z7TWPAzN9xQk7En9e9siSP+u qzQH81jScI0iixsGkjoMc/Ja0Ebw5qkLULVCOEcAkJ3xywuWysuybqSygOqFfO9W BnaXKp4WCcP7MWJYOxCgSADVXpFAAC+V4OhtehtdefEfk0lpxGb00aOXHh784w4c Hnf6BOUZ/9nF3EAugEDObxIGqcW/676kLkkvhXL1ml9ExESH62U06VQuxnTd66Vu 57fR74Xl+8T+/3VIWSKQi/pwVJBH4wutf5GKEGElLH6HFKrS4QGmo4GkdhtTejLO W2y28IxewDRde02oKRYknoBZY3BQoMA= -----END CERTIFICATE-----Generated at Tue Jul 22 20:06:38 2025 by rpki-client