$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136322e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136322e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: T5jlMftgO+al5AvueUPJMaV5GzIbWRKqrYOhtXYmc+8= Subject key identifier: 53:77:F5:B7:25:B9:F5:D4:62:11:EA:35:C4:F4:B3:1E:E3:64:00:2F Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 5551B1823DA83713EB1C7CCFD07314128CFADCA0 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136322e302f32342d3234203d3e203137373639.roa Signing time: Fri 29 Aug 2025 07:00:02 +0000 ROA not before: Fri 29 Aug 2025 06:55:02 +0000 ROA not after: Fri 28 Aug 2026 07:00:02 +0000 asID: 17769 IP address blocks: 202.55.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 16:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:51:b1:82:3d:a8:37:13:eb:1c:7c:cf:d0:73:14:12:8c:fa:dc:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Aug 29 06:55:02 2025 GMT Not After : Aug 28 07:00:02 2026 GMT Subject: CN=5377F5B725B9F5D46211EA35C4F4B31EE364002F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8b:76:98:7c:bc:f8:4f:07:d7:b0:3e:42:da: 38:83:93:c3:19:21:e1:da:1a:46:3c:b0:76:21:80: 0a:df:d9:f0:0c:58:28:36:4a:11:21:c4:ba:fd:5f: a5:76:10:e0:25:99:54:49:70:d5:9a:d8:72:2a:8c: c1:9d:85:7e:72:3d:9a:8c:a3:78:a6:74:68:96:1c: d4:16:5e:fa:e4:ad:58:f6:cf:50:f4:c0:e1:d1:ae: bd:9d:11:22:2a:40:66:51:e7:fb:21:f9:c0:02:f6: 32:96:b8:b8:4d:8f:75:20:ff:bf:2d:9e:8a:74:f8: 04:ca:26:81:2e:d9:7f:ef:f9:3c:1f:58:d5:8e:7b: 52:da:87:e9:6e:86:6c:fb:e5:90:7f:40:22:a2:84: 28:1c:85:63:8e:b1:d4:35:c6:72:4c:33:f6:dd:49: f5:b7:25:7d:08:1c:50:65:22:e6:56:61:84:7c:d1: fb:d5:09:cd:4f:e3:c1:1a:79:fb:a4:4e:dc:77:87: bc:7c:38:d3:d9:9b:39:f5:78:3d:81:8a:1d:30:09: 66:0d:6e:bf:bd:32:dc:87:da:38:31:6f:2f:ae:a2: da:3a:eb:cc:5e:42:d9:88:f1:5d:d3:9a:d0:d1:1f: 5d:ec:31:26:52:c0:15:12:f9:aa:64:9c:29:db:4b: 22:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:77:F5:B7:25:B9:F5:D4:62:11:EA:35:C4:F4:B3:1E:E3:64:00:2F X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136322e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.162.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:3e:a6:c9:76:50:a8:6b:53:7d:21:22:42:b2:ec:69:66:49: 7b:0d:ec:dd:5c:21:8d:27:f7:e0:a9:e6:a6:d1:ba:54:83:f8: fb:de:9c:23:a2:68:a5:bc:ad:31:75:91:5e:92:5a:a6:e5:87: 1a:fc:c9:89:c7:c3:d2:16:c5:21:c9:be:b4:61:b4:a3:22:b1: 77:1a:45:35:ad:81:e4:41:1e:35:41:ba:e6:b7:34:e2:e5:6b: a1:a7:db:c1:5d:f4:76:c8:ab:29:eb:a3:f2:d4:8d:cf:c7:55: 4a:46:6f:08:b4:d3:63:a1:e3:c8:7e:e7:da:43:31:65:0a:79: 42:98:45:3c:7b:0c:6c:7f:9a:fa:ee:28:de:27:01:3f:49:5d: 63:df:ec:10:3b:df:72:cb:e5:4b:81:2d:04:09:ba:93:5d:ac: 97:68:ca:f3:8f:75:a4:cc:88:6a:da:0e:b2:43:d3:ac:79:39: 14:7f:0c:8f:b4:de:94:b7:61:67:eb:8f:06:6e:96:47:ba:37: 1e:4c:01:c4:ef:18:b4:12:3a:88:28:cd:39:ef:d7:89:e1:2a: 5b:31:ba:3f:a5:43:cc:7f:b5:9f:b2:07:86:6d:d4:e1:eb:d6: e9:bb:6f:9f:2c:dd:12:d9:23:3f:34:ce:44:d7:f6:78:bc:13: 7e:fd:62:55 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVVGxgj2oNxPrHHzP0HMUEoz63KAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNTA4MjkwNjU1MDJaFw0yNjA4MjgwNzAwMDJaMDMxMTAvBgNV BAMTKDUzNzdGNUI3MjVCOUY1RDQ2MjExRUEzNUM0RjRCMzFFRTM2NDAwMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9i3aYfLz4TwfXsD5C2jiDk8MZ IeHaGkY8sHYhgArf2fAMWCg2ShEhxLr9X6V2EOAlmVRJcNWa2HIqjMGdhX5yPZqM o3imdGiWHNQWXvrkrVj2z1D0wOHRrr2dESIqQGZR5/sh+cAC9jKWuLhNj3Ug/78t nop0+ATKJoEu2X/v+TwfWNWOe1Lah+luhmz75ZB/QCKihCgchWOOsdQ1xnJMM/bd SfW3JX0IHFBlIuZWYYR80fvVCc1P48EaefukTtx3h7x8ONPZmzn1eD2Bih0wCWYN br+9MtyH2jgxby+uoto668xeQtmI8V3TmtDRH13sMSZSwBUS+apknCnbSyKRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUU3f1tyW59dRiEeo1xPSzHuNkAC8wHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3ojANBgkqhkiG 9w0BAQsFAAOCAQEAiz6myXZQqGtTfSEiQrLsaWZJew3s3VwhjSf34KnmptG6VIP4 +96cI6JopbytMXWRXpJapuWHGvzJicfD0hbFIcm+tGG0oyKxdxpFNa2B5EEeNUG6 5rc04uVroafbwV30dsirKeuj8tSNz8dVSkZvCLTTY6HjyH7n2kMxZQp5QphFPHsM bH+a+u4o3icBP0ldY9/sEDvfcsvlS4EtBAm6k12sl2jK8491pMyIatoOskPTrHk5 FH8Mj7TelLdhZ+uPBm6WR7o3HkwBxO8YtBI6iCjNOe/XieEqWzG6P6VDzH+1n7IH hm3U4evW6btvnyzdEtkjPzTORNf2eLwTfv1iVQ== -----END CERTIFICATE-----Generated at Mon Sep 8 09:56:49 2025 by rpki-client