$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136312e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136312e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: E6giWYKilOtzuxxyRR5Bf2onxUq+uVzIL/QgDucECFM= Subject key identifier: 62:8F:18:63:01:3E:3E:86:7D:89:63:31:2C:27:DD:72:A2:B5:9C:B5 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 5014614ECD88228FE1251E88C2A27AEC74BB77E6 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136312e302f32342d3234203d3e203137373639.roa Signing time: Fri 29 Aug 2025 07:00:03 +0000 ROA not before: Fri 29 Aug 2025 06:55:03 +0000 ROA not after: Fri 28 Aug 2026 07:00:03 +0000 asID: 17769 IP address blocks: 202.55.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 16:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:14:61:4e:cd:88:22:8f:e1:25:1e:88:c2:a2:7a:ec:74:bb:77:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Aug 29 06:55:03 2025 GMT Not After : Aug 28 07:00:03 2026 GMT Subject: CN=628F1863013E3E867D8963312C27DD72A2B59CB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:32:2e:aa:53:48:e6:df:28:e7:83:1c:c3:6c: dd:ab:46:75:38:4b:05:5a:15:8d:a9:95:e1:4a:2d: 61:32:6d:b0:8c:34:09:70:c0:80:d4:70:30:84:c8: 5f:db:06:58:6f:1d:ea:10:e0:35:98:70:1d:72:16: 6f:d3:4d:fa:97:51:2f:42:ec:86:26:a6:81:a3:78: a4:44:f5:63:95:b4:49:2f:45:44:9d:b2:2c:ae:95: 6b:bf:9b:a5:ed:15:aa:b8:54:ad:f1:8f:88:ff:f5: df:5e:83:f9:2e:fc:47:c2:5c:d8:6e:4b:05:0b:44: a1:b2:b9:bb:1e:23:9f:26:5b:89:ea:3f:2b:0a:19: 54:5e:99:98:f8:ea:c2:f5:df:82:f0:f8:52:51:4d: 50:24:63:53:8a:ed:c2:ae:af:8c:6f:b4:e6:37:f7: e6:19:cb:d6:59:78:4a:2f:ad:fc:d0:71:2b:a2:19: 21:7a:82:48:c3:d5:dd:df:a8:49:af:a1:c1:3e:8d: 8d:64:7a:0b:03:41:f4:df:1b:2a:86:40:12:99:8a: dd:4c:07:57:59:d9:46:90:38:df:a7:9c:6c:91:26: 50:e2:66:a4:18:ab:0b:5c:b2:03:3b:4d:d4:1b:af: 9f:ca:49:c1:3d:d0:11:16:a5:f6:32:06:57:1e:35: ce:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:8F:18:63:01:3E:3E:86:7D:89:63:31:2C:27:DD:72:A2:B5:9C:B5 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136312e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.161.0/24 Signature Algorithm: sha256WithRSAEncryption 13:65:1e:7c:67:ed:78:ae:88:d8:fa:9b:c3:de:ba:5b:93:f1: e3:59:50:f8:d9:9f:e7:3b:ce:6c:93:e0:12:42:5e:c1:65:64: 72:d9:de:63:14:9a:8c:6a:2f:0e:38:56:62:9a:10:3c:fd:05: 92:3e:cc:e7:39:71:ab:d7:30:9a:0c:5c:7e:74:c2:ac:60:64: 85:37:89:b8:7a:a3:36:69:cd:56:d0:6f:b4:12:4e:c3:38:6a: 0b:df:34:63:48:15:e0:31:ce:81:eb:39:85:ef:e6:75:c0:5f: cd:ba:6b:bf:b4:69:6c:d7:09:23:83:b1:86:9c:44:8d:3e:98: e8:98:c8:84:d8:42:0d:4c:20:ae:7e:f5:d0:2e:14:83:bc:da: d3:2b:70:34:e7:9b:92:8e:d9:74:7b:aa:47:fb:6d:55:2a:96: f0:d7:5d:b8:ca:79:25:3c:c5:b0:ab:43:b8:c9:e6:fc:84:e5: 12:8c:5c:c1:e7:ea:a8:f5:41:3e:09:ec:89:8b:fd:ab:bf:22: 79:15:06:dd:a5:95:97:b7:c3:9a:be:fa:1c:59:38:20:65:47: 4d:27:ed:02:5c:0b:7b:93:e6:47:a1:17:01:d4:a5:46:4a:42: 6a:8d:ae:9f:bd:30:e8:31:d9:2b:b9:04:17:cf:c1:3d:0d:bb: 3f:d5:34:ee -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUBRhTs2IIo/hJR6IwqJ67HS7d+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNTA4MjkwNjU1MDNaFw0yNjA4MjgwNzAwMDNaMDMxMTAvBgNV BAMTKDYyOEYxODYzMDEzRTNFODY3RDg5NjMzMTJDMjdERDcyQTJCNTlDQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNMi6qU0jm3yjngxzDbN2rRnU4 SwVaFY2pleFKLWEybbCMNAlwwIDUcDCEyF/bBlhvHeoQ4DWYcB1yFm/TTfqXUS9C 7IYmpoGjeKRE9WOVtEkvRUSdsiyulWu/m6XtFaq4VK3xj4j/9d9eg/ku/EfCXNhu SwULRKGyubseI58mW4nqPysKGVRemZj46sL134Lw+FJRTVAkY1OK7cKur4xvtOY3 9+YZy9ZZeEovrfzQcSuiGSF6gkjD1d3fqEmvocE+jY1kegsDQfTfGyqGQBKZit1M B1dZ2UaQON+nnGyRJlDiZqQYqwtcsgM7TdQbr5/KScE90BEWpfYyBlceNc6nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYo8YYwE+PoZ9iWMxLCfdcqK1nLUwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3oTANBgkqhkiG 9w0BAQsFAAOCAQEAE2UefGfteK6I2Pqbw966W5Px41lQ+Nmf5zvObJPgEkJewWVk ctneYxSajGovDjhWYpoQPP0Fkj7M5zlxq9cwmgxcfnTCrGBkhTeJuHqjNmnNVtBv tBJOwzhqC980Y0gV4DHOges5he/mdcBfzbprv7RpbNcJI4OxhpxEjT6Y6JjIhNhC DUwgrn710C4Ug7za0ytwNOebko7ZdHuqR/ttVSqW8NdduMp5JTzFsKtDuMnm/ITl EoxcwefqqPVBPgnsiYv9q78ieRUG3aWVl7fDmr76HFk4IGVHTSftAlwLe5PmR6EX AdSlRkpCao2un70w6DHZK7kEF8/BPQ27P9U07g== -----END CERTIFICATE-----Generated at Mon Sep 8 09:56:51 2025 by rpki-client