$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136302e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136302e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: p+Uf34Mmlfgto2vZAGmKX9zPbb85GAX+5DX29eoUl2g= Subject key identifier: 2C:5C:F2:75:A3:DB:49:33:9F:EF:5F:49:F9:47:A6:63:05:C7:6C:67 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 16917CF9070743B47241142B0308630B12576BDC Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136302e302f32342d3234203d3e203137373639.roa Signing time: Fri 29 Aug 2025 07:00:02 +0000 ROA not before: Fri 29 Aug 2025 06:55:02 +0000 ROA not after: Fri 28 Aug 2026 07:00:02 +0000 asID: 17769 IP address blocks: 202.55.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 16:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:91:7c:f9:07:07:43:b4:72:41:14:2b:03:08:63:0b:12:57:6b:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Aug 29 06:55:02 2025 GMT Not After : Aug 28 07:00:02 2026 GMT Subject: CN=2C5CF275A3DB49339FEF5F49F947A66305C76C67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:0b:c9:5f:dc:bb:7a:fe:89:17:1b:5b:4f:1b: f2:21:45:c7:89:f3:bb:93:95:ea:6d:c8:2a:9a:d9: b0:2a:d5:cb:68:47:7a:1d:c7:74:b1:68:fc:3b:eb: 1e:54:7d:f9:7b:51:84:da:c1:da:db:9b:43:af:5d: 9a:c2:e6:d2:8f:85:3c:a3:fa:97:78:64:c2:c0:22: 7e:4c:29:7f:06:25:3c:d9:b2:81:93:47:df:57:4e: c9:14:b3:6e:05:9c:12:74:6a:74:5f:8b:99:b9:fc: a3:9a:d3:aa:7a:dd:59:70:76:87:e0:ef:e6:0c:ed: a4:8b:9e:d8:41:ee:72:e4:27:d0:88:fb:4b:e6:dd: d0:74:d7:d1:18:f5:87:74:ca:54:53:94:a1:01:0b: 70:99:ba:52:ff:4b:97:e2:50:9d:de:70:c4:09:ca: 3a:c5:cf:03:40:22:1f:9b:67:89:c4:26:4f:19:57: 5e:57:1d:6d:e5:5c:bd:b7:c1:01:7e:1a:92:45:b4: bf:eb:41:f0:ec:35:9c:60:fd:d8:fe:b4:ff:ed:b9: 55:d7:5d:d3:5d:d7:01:72:c8:66:af:fa:d8:dd:1d: 1f:04:92:8b:27:e4:7c:7f:53:4d:8d:36:9e:60:b0: 8b:be:ae:a0:b5:96:5e:24:04:4e:c7:9b:c8:09:94: a1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:5C:F2:75:A3:DB:49:33:9F:EF:5F:49:F9:47:A6:63:05:C7:6C:67 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136302e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.160.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:52:9f:f8:27:16:10:09:4c:9c:ee:93:c3:bf:28:99:0f:a1: ac:ab:cf:fe:b7:29:03:f5:97:17:74:55:2f:a3:3d:b7:39:b7: 8e:99:01:a9:f4:76:77:bc:e1:a5:ca:fc:7b:bb:b1:f8:5c:9b: b8:3d:1d:e8:11:5c:b9:db:57:e6:d3:47:a8:88:ee:18:b6:5d: f7:2a:83:73:60:78:ed:2d:a1:2c:07:c9:30:5b:7c:98:39:58: 15:83:66:94:c1:dd:a4:3c:6e:62:6f:14:da:35:97:eb:2d:13: 3e:0a:d7:26:b3:c3:7f:f9:ce:4a:e2:d6:58:3d:12:ce:61:c7: 6c:f6:ae:c6:1a:ec:4b:bf:a5:52:bb:8e:29:1a:88:e9:27:ba: 6d:3a:b8:4e:37:39:8b:0c:af:23:0f:18:66:13:a8:60:23:64: 4f:20:b0:cc:83:31:24:69:b4:54:8e:15:20:6d:3e:1d:c0:6f: 6b:a1:ff:d8:39:d6:44:85:ed:90:96:8f:1f:25:21:c9:c9:07: 77:fb:16:d9:d2:3e:8c:e3:7c:38:f9:20:f4:f6:67:d3:75:28: 2f:2d:d5:50:59:cb:47:24:e0:75:53:7d:84:02:0c:e2:36:75: e5:f5:e3:23:66:03:08:2c:f9:9f:30:14:db:52:51:6b:ac:32: 2c:fb:7f:53 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFpF8+QcHQ7RyQRQrAwhjCxJXa9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNTA4MjkwNjU1MDJaFw0yNjA4MjgwNzAwMDJaMDMxMTAvBgNV BAMTKDJDNUNGMjc1QTNEQjQ5MzM5RkVGNUY0OUY5NDdBNjYzMDVDNzZDNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPC8lf3Lt6/okXG1tPG/IhRceJ 87uTleptyCqa2bAq1ctoR3odx3SxaPw76x5Uffl7UYTawdrbm0OvXZrC5tKPhTyj +pd4ZMLAIn5MKX8GJTzZsoGTR99XTskUs24FnBJ0anRfi5m5/KOa06p63Vlwdofg 7+YM7aSLnthB7nLkJ9CI+0vm3dB019EY9Yd0ylRTlKEBC3CZulL/S5fiUJ3ecMQJ yjrFzwNAIh+bZ4nEJk8ZV15XHW3lXL23wQF+GpJFtL/rQfDsNZxg/dj+tP/tuVXX XdNd1wFyyGav+tjdHR8Ekosn5Hx/U02NNp5gsIu+rqC1ll4kBE7Hm8gJlKFJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULFzydaPbSTOf719J+UemYwXHbGcwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3oDANBgkqhkiG 9w0BAQsFAAOCAQEAblKf+CcWEAlMnO6Tw78omQ+hrKvP/rcpA/WXF3RVL6M9tzm3 jpkBqfR2d7zhpcr8e7ux+FybuD0d6BFcudtX5tNHqIjuGLZd9yqDc2B47S2hLAfJ MFt8mDlYFYNmlMHdpDxuYm8U2jWX6y0TPgrXJrPDf/nOSuLWWD0SzmHHbPauxhrs S7+lUruOKRqI6Se6bTq4Tjc5iwyvIw8YZhOoYCNkTyCwzIMxJGm0VI4VIG0+HcBv a6H/2DnWRIXtkJaPHyUhyckHd/sW2dI+jON8OPkg9PZn03UoLy3VUFnLRyTgdVN9 hAIM4jZ15fXjI2YDCCz5nzAU21JRa6wyLPt/Uw== -----END CERTIFICATE-----Generated at Mon Sep 8 09:54:29 2025 by rpki-client