$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136332e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136332e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: fj4+D3FnvWC2jZGh29lA6NhBfEm+9p3F5NFsLJJnOOA= Subject key identifier: F9:15:B3:57:F9:33:A6:FE:11:D1:5F:E9:21:C9:B4:1D:6E:CB:BA:88 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 0C45F5CA1C18A1036111DD5765963DF18BCEF6AC Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136332e302f32342d3234203d3e203137373639.roa Signing time: Fri 29 Aug 2025 05:00:02 +0000 ROA not before: Fri 29 Aug 2025 04:55:02 +0000 ROA not after: Fri 28 Aug 2026 05:00:02 +0000 asID: 17769 IP address blocks: 202.55.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 16:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:45:f5:ca:1c:18:a1:03:61:11:dd:57:65:96:3d:f1:8b:ce:f6:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Aug 29 04:55:02 2025 GMT Not After : Aug 28 05:00:02 2026 GMT Subject: CN=F915B357F933A6FE11D15FE921C9B41D6ECBBA88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:94:96:83:66:3d:62:53:c2:7a:91:3c:39:4c: bc:84:51:07:52:6f:a8:3d:31:2e:63:36:29:77:7d: 44:f8:f9:24:a1:96:1d:82:93:68:25:26:1c:aa:12: 44:22:1f:b7:e9:3c:6f:d8:4f:2d:d0:7b:d5:81:6e: 1c:98:94:22:47:28:09:4d:95:75:d5:69:19:c2:b5: 30:b2:f8:e9:c5:23:0a:d2:83:23:62:93:2a:fe:66: 23:d7:6c:a5:0a:18:8c:80:b3:b1:b0:8b:10:4d:03: 4d:d0:4c:65:37:b9:c7:d4:c0:ff:87:c2:ed:23:52: a8:f3:57:14:11:79:a2:83:70:a7:cb:fe:2b:49:3c: a1:95:84:13:0a:12:69:84:f4:7a:cc:8c:3e:79:1b: d9:1e:79:39:6c:3b:61:56:c6:65:03:79:84:24:bc: d8:79:8d:4f:6a:ae:f8:c1:cb:3f:d0:67:2a:88:a6: c4:8b:0c:50:35:86:98:82:09:26:26:58:e9:fd:fd: 77:93:65:d1:07:c6:11:eb:c9:ba:0b:47:15:38:4c: c1:4f:0a:39:66:f9:71:c2:25:f1:c4:6b:95:bd:40: 32:39:e7:b1:74:75:45:9d:2f:be:06:da:ee:02:35: a6:26:8b:a4:f3:55:21:4a:2e:6b:f8:f2:d3:c3:1e: c3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:15:B3:57:F9:33:A6:FE:11:D1:5F:E9:21:C9:B4:1D:6E:CB:BA:88 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136332e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.163.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:44:0d:79:5c:47:1d:c3:ca:00:a3:43:b9:7e:c1:61:6b:b6: 67:d2:26:ee:b7:97:d0:2c:4d:90:2b:7f:d4:18:21:07:c7:96: a7:ad:50:69:8f:f2:92:c7:a0:d1:b0:73:b0:46:21:81:bf:9f: 15:ca:0a:7b:fd:96:16:e5:79:56:4c:db:8a:49:35:2d:b1:71: d1:41:50:1d:dc:45:2c:b6:7b:74:09:86:d0:86:49:14:cf:12: 86:fd:39:d8:32:34:8e:97:2d:62:68:55:b1:7e:1a:4f:f6:f0: ad:6d:71:c1:18:9a:55:71:0e:5e:6b:52:99:8e:ce:f3:b9:57: 11:4d:96:68:0c:16:5a:b6:cb:26:c3:36:85:4c:f3:b2:19:ae: c1:ef:8f:7a:e6:d0:e3:79:06:cf:1b:f4:af:6f:59:39:71:48: 8f:0a:04:e2:2e:9f:8a:de:3b:dd:92:67:19:3d:be:92:37:ea: 51:22:d2:17:83:b1:26:da:ea:4a:e0:54:83:d6:5c:a8:9f:64: 7c:0c:e6:91:9b:ef:94:29:9e:0e:3a:1e:24:5f:6b:5b:00:09: a4:73:ce:79:56:42:ee:a9:ed:dd:ae:2c:67:f7:f4:89:e9:fb: cc:c5:5a:09:6b:34:c8:12:2c:ce:ff:82:c0:f5:75:0b:88:d6: 49:e2:5d:c4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDEX1yhwYoQNhEd1XZZY98YvO9qwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNTA4MjkwNDU1MDJaFw0yNjA4MjgwNTAwMDJaMDMxMTAvBgNV BAMTKEY5MTVCMzU3RjkzM0E2RkUxMUQxNUZFOTIxQzlCNDFENkVDQkJBODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUlJaDZj1iU8J6kTw5TLyEUQdS b6g9MS5jNil3fUT4+SShlh2Ck2glJhyqEkQiH7fpPG/YTy3Qe9WBbhyYlCJHKAlN lXXVaRnCtTCy+OnFIwrSgyNikyr+ZiPXbKUKGIyAs7GwixBNA03QTGU3ucfUwP+H wu0jUqjzVxQReaKDcKfL/itJPKGVhBMKEmmE9HrMjD55G9keeTlsO2FWxmUDeYQk vNh5jU9qrvjByz/QZyqIpsSLDFA1hpiCCSYmWOn9/XeTZdEHxhHryboLRxU4TMFP Cjlm+XHCJfHEa5W9QDI557F0dUWdL74G2u4CNaYmi6TzVSFKLmv48tPDHsONAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+RWzV/kzpv4R0V/pIcm0HW7LuogwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3ozANBgkqhkiG 9w0BAQsFAAOCAQEAD0QNeVxHHcPKAKNDuX7BYWu2Z9Im7reX0CxNkCt/1BghB8eW p61QaY/ykseg0bBzsEYhgb+fFcoKe/2WFuV5Vkzbikk1LbFx0UFQHdxFLLZ7dAmG 0IZJFM8Shv052DI0jpctYmhVsX4aT/bwrW1xwRiaVXEOXmtSmY7O87lXEU2WaAwW WrbLJsM2hUzzshmuwe+PeubQ43kGzxv0r29ZOXFIjwoE4i6fit473ZJnGT2+kjfq USLSF4OxJtrqSuBUg9ZcqJ9kfAzmkZvvlCmeDjoeJF9rWwAJpHPOeVZC7qnt3a4s Z/f0ien7zMVaCWs0yBIszv+CwPV1C4jWSeJdxA== -----END CERTIFICATE-----Generated at Mon Sep 8 09:54:30 2025 by rpki-client