$ rpki-client -vvf repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/3230322e35322e3134362e302f32332d3234203d3e203435333234.roa File: 3230322e35322e3134362e302f32332d3234203d3e203435333234.roa (raw, json) Hash identifier: fr5BMGMZ4/JWAtuc82Bwpon8VOaBOapImuPEr/qDXGY= Subject key identifier: 23:AC:88:24:5E:FA:84:2D:FC:90:BE:A3:4C:34:CD:F0:B3:B8:40:6B Certificate issuer: /CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06 Certificate serial: 0327906508726C4ACBDCAC8973FBE6F22AB7B464 Authority key identifier: 16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/3230322e35322e3134362e302f32332d3234203d3e203435333234.roa Signing time: Fri 11 Jul 2025 07:02:23 +0000 ROA not before: Fri 11 Jul 2025 06:57:23 +0000 ROA not after: Fri 10 Jul 2026 07:02:23 +0000 asID: 45324 IP address blocks: 202.52.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 20:47:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:27:90:65:08:72:6c:4a:cb:dc:ac:89:73:fb:e6:f2:2a:b7:b4:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06 Validity Not Before: Jul 11 06:57:23 2025 GMT Not After : Jul 10 07:02:23 2026 GMT Subject: CN=23AC88245EFA842DFC90BEA34C34CDF0B3B8406B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e4:7f:8c:86:c7:da:87:40:da:8c:cf:80:7c: 45:ba:91:de:44:69:42:fc:cc:a3:70:7e:e7:e2:8c: 7f:2b:fe:3d:52:88:81:83:6e:c8:25:c0:29:74:56: 30:74:bf:60:8b:9c:03:4b:07:97:38:ae:bf:51:f5: ed:b0:56:5d:c7:fe:76:4f:cb:bb:0d:5e:f9:70:ee: 61:4a:a8:e1:55:36:2b:63:0e:14:dc:68:34:70:d8: be:41:4e:4e:94:fa:f6:17:d0:ae:3b:28:9e:37:6a: ab:cf:06:dd:6c:c6:70:b4:da:c0:22:96:24:cd:6e: a3:b7:9e:bb:3c:ad:50:84:9f:82:15:c8:f8:93:f2: 33:ec:ad:c1:02:eb:42:3b:df:7c:8c:2c:2c:33:1e: 45:13:dd:32:39:49:55:2e:ba:99:8b:3a:cb:bc:57: c9:32:16:a1:d9:8d:1f:bb:6c:89:11:bb:01:aa:6b: 1c:e4:cc:e5:be:13:0d:86:db:7f:30:2c:5a:51:1a: c4:22:80:fa:c7:01:21:6c:2e:88:10:a0:c0:45:30: 9c:59:92:a1:dc:79:d6:9c:79:27:a2:c9:7c:ca:74: 70:95:19:47:c1:df:b7:76:49:e0:33:cf:c2:f5:b7: 0f:e0:7d:ef:4a:eb:af:b9:18:85:85:30:e1:0e:ac: 20:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:AC:88:24:5E:FA:84:2D:FC:90:BE:A3:4C:34:CD:F0:B3:B8:40:6B X509v3 Authority Key Identifier: keyid:16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/3230322e35322e3134362e302f32332d3234203d3e203435333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.146.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:84:bc:87:dd:d7:da:09:ed:3d:96:82:0e:ac:c7:5a:07:24: d1:e9:52:2e:25:64:56:7f:da:4d:df:87:ea:64:e3:03:0a:ea: 37:67:a1:7b:d8:cf:da:30:cb:f3:8e:6a:36:0b:07:9b:0b:82: ae:63:bd:93:17:9e:1e:b8:8f:8b:cf:29:86:81:f1:55:e8:d1: d3:a6:f4:4e:c4:ac:58:33:64:6d:85:8d:d7:11:e9:3f:d6:ce: fe:bd:db:48:6b:e6:37:85:6b:aa:ef:94:e4:3e:26:15:a9:c1: a9:ad:4b:25:74:54:2d:1a:8d:09:97:15:4b:2d:65:42:6e:8d: 02:1f:9d:70:32:92:f7:f6:b3:58:f5:a4:83:08:8f:7e:ac:9c: 9b:62:cf:83:40:95:f6:8e:0a:91:3f:99:ec:5f:9e:8b:c0:fe: 7f:f5:82:ec:76:e8:11:f6:36:90:15:94:f2:7c:7f:e9:2b:f0: b1:51:b6:f0:f4:c2:79:16:81:a1:c9:90:ff:5f:7e:e9:fb:19: 72:59:79:b0:39:e2:8b:7b:0f:e3:38:79:89:61:d9:f8:65:e9: ce:13:8a:e8:a9:db:bf:de:13:c3:e5:4e:fa:3c:34:b3:77:a9: 53:15:4f:53:e1:b3:00:43:de:f8:e1:bc:7c:85:92:cf:94:1d: 93:6e:ab:a8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAyeQZQhybErL3KyJc/vm8iq3tGQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5MDBE RTE4MUUwNjAeFw0yNTA3MTEwNjU3MjNaFw0yNjA3MTAwNzAyMjNaMDMxMTAvBgNV BAMTKDIzQUM4ODI0NUVGQTg0MkRGQzkwQkVBMzRDMzRDREYwQjNCODQwNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA5H+Mhsfah0DajM+AfEW6kd5E aUL8zKNwfufijH8r/j1SiIGDbsglwCl0VjB0v2CLnANLB5c4rr9R9e2wVl3H/nZP y7sNXvlw7mFKqOFVNitjDhTcaDRw2L5BTk6U+vYX0K47KJ43aqvPBt1sxnC02sAi liTNbqO3nrs8rVCEn4IVyPiT8jPsrcEC60I733yMLCwzHkUT3TI5SVUuupmLOsu8 V8kyFqHZjR+7bIkRuwGqaxzkzOW+Ew2G238wLFpRGsQigPrHASFsLogQoMBFMJxZ kqHcedaceSeiyXzKdHCVGUfB37d2SeAzz8L1tw/gfe9K66+5GIWFMOEOrCCDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUI6yIJF76hC38kL6jTDTN8LO4QGswHwYDVR0j BBgwFoAUFmGhvInMrdTHvnIwUq5ZAN4YHgYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MGQyZDNlMy00YzIwLTRhOTAtODMzZS1lYWQ0M2MzMzk5MWUvMC8xNjYxQTFCQzg5 Q0NBREQ0QzdCRTcyMzA1MkFFNTkwMERFMTgxRTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5MDBERTE4 MUUwNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwZDJkM2UzLTRjMjAtNGE5MC04 MzNlLWVhZDQzYzMzOTkxZS8wLzMyMzAzMjJlMzUzMjJlMzEzNDM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAco0kjANBgkqhkiG 9w0BAQsFAAOCAQEAOoS8h93X2gntPZaCDqzHWgck0elSLiVkVn/aTd+H6mTjAwrq N2ehe9jP2jDL845qNgsHmwuCrmO9kxeeHriPi88phoHxVejR06b0TsSsWDNkbYWN 1xHpP9bO/r3bSGvmN4Vrqu+U5D4mFanBqa1LJXRULRqNCZcVSy1lQm6NAh+dcDKS 9/azWPWkgwiPfqycm2LPg0CV9o4KkT+Z7F+ei8D+f/WC7HboEfY2kBWU8nx/6Svw sVG28PTCeRaBocmQ/19+6fsZcll5sDnii3sP4zh5iWHZ+GXpzhOK6Knbv94Tw+VO +jw0s3epUxVPU+GzAEPe+OG8fIWSz5Qdk26rqA== -----END CERTIFICATE-----Generated at Mon Jul 21 23:17:14 2025 by rpki-client