$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136342e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136342e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: 9n+k1wYDMgpMgw+A5gACjEnWZSRILaiiNarAGXe5WNY= Subject key identifier: 1D:F8:A2:84:95:9A:6F:15:34:D4:DE:EC:25:2E:4D:EE:B6:AF:7C:19 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 5FDBB2B127A454D17BE2BAFBE713332B1AC9A93C Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136342e302f32342d3234203d3e203137373639.roa Signing time: Fri 29 Aug 2025 07:00:02 +0000 ROA not before: Fri 29 Aug 2025 06:55:02 +0000 ROA not after: Fri 28 Aug 2026 07:00:02 +0000 asID: 17769 IP address blocks: 202.55.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 16:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:db:b2:b1:27:a4:54:d1:7b:e2:ba:fb:e7:13:33:2b:1a:c9:a9:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Aug 29 06:55:02 2025 GMT Not After : Aug 28 07:00:02 2026 GMT Subject: CN=1DF8A284959A6F1534D4DEEC252E4DEEB6AF7C19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:90:8e:19:18:c8:48:02:2c:ed:50:11:01:37: a6:83:a1:18:70:70:24:fc:36:cb:53:b0:51:47:f9: 9d:85:87:a3:c2:e8:a5:e1:6c:2c:be:c4:16:f2:88: c6:c9:60:89:e0:3a:25:eb:89:96:37:d9:fa:37:b0: 6f:ac:d9:e8:78:2d:19:99:c0:1e:56:cd:2d:f1:d5: 7e:77:7f:c1:e6:84:69:0d:6f:cb:7d:22:1f:e3:83: 49:01:1d:64:56:54:94:a5:01:d9:9a:8e:e1:b6:dd: 98:d0:8f:00:31:51:c6:29:07:f7:17:4c:c6:51:a6: 28:d1:2d:8d:9e:46:5a:d3:ac:fc:a1:92:39:95:82: 03:7d:04:67:df:eb:8d:a5:77:6c:dd:84:ad:97:81: c2:c9:0c:54:64:a8:fd:72:b8:4c:5f:ae:1d:8d:80: d7:47:53:a9:b4:81:5c:52:22:fc:81:7c:56:e3:50: e6:e3:18:d2:e3:7c:c2:f7:61:5b:d7:03:70:94:bf: 83:de:86:30:0e:b8:13:b1:18:d2:9d:6a:c7:bf:3f: fa:2e:e6:d2:b2:3a:21:f2:93:27:08:42:62:57:16: 50:88:60:1f:71:63:77:66:73:99:08:4f:47:be:ca: b9:10:6d:a6:58:26:1a:6d:37:6d:a3:51:f6:93:9a: 23:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:F8:A2:84:95:9A:6F:15:34:D4:DE:EC:25:2E:4D:EE:B6:AF:7C:19 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136342e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.164.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:e3:ba:9a:6d:fb:0b:49:c7:dc:66:48:9f:7a:7d:01:80:99: d2:17:45:18:06:0c:5b:c5:fd:63:09:3a:4d:8a:e0:59:d2:7d: 37:8b:95:00:bc:1b:5a:75:7d:df:86:84:2f:5b:78:8e:01:59: 0e:0c:b0:34:09:d0:89:c0:71:f0:2a:ef:f2:52:60:0d:13:0a: 61:dd:6f:27:04:33:cb:bb:b9:fd:60:30:1e:7a:9e:18:65:b3: 84:0f:cc:a6:da:f7:d6:39:79:a4:c2:7a:38:04:50:d4:59:49: 8e:54:97:02:46:6b:42:c2:4e:4c:a7:45:2f:31:e4:0e:b4:51: ca:d9:e5:a7:f8:ac:97:11:c3:2e:97:4d:c4:8e:88:9d:47:88: eb:d5:07:ab:69:90:ee:2e:7c:2c:37:4e:da:74:52:4a:3e:24: e2:cd:72:ca:3b:59:e9:c3:44:80:bd:ba:87:9f:10:0c:cd:7d: 33:6e:11:ce:36:39:cd:66:8b:2e:a3:7c:d3:e0:86:e1:72:82: 69:99:14:9b:66:40:85:f1:e8:a2:df:0a:8f:61:5d:60:54:f5: ec:49:70:f7:82:d8:af:f1:9d:a5:36:ca:ee:00:c6:72:bb:e6: 8b:1f:d7:47:4f:08:8a:50:88:ea:c5:42:c9:ad:4d:7f:83:60: 38:1c:67:d8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUX9uysSekVNF74rr75xMzKxrJqTwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNTA4MjkwNjU1MDJaFw0yNjA4MjgwNzAwMDJaMDMxMTAvBgNV BAMTKDFERjhBMjg0OTU5QTZGMTUzNEQ0REVFQzI1MkU0REVFQjZBRjdDMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNkI4ZGMhIAiztUBEBN6aDoRhw cCT8NstTsFFH+Z2Fh6PC6KXhbCy+xBbyiMbJYIngOiXriZY32fo3sG+s2eh4LRmZ wB5WzS3x1X53f8HmhGkNb8t9Ih/jg0kBHWRWVJSlAdmajuG23ZjQjwAxUcYpB/cX TMZRpijRLY2eRlrTrPyhkjmVggN9BGff642ld2zdhK2XgcLJDFRkqP1yuExfrh2N gNdHU6m0gVxSIvyBfFbjUObjGNLjfML3YVvXA3CUv4PehjAOuBOxGNKdase/P/ou 5tKyOiHykycIQmJXFlCIYB9xY3dmc5kIT0e+yrkQbaZYJhptN22jUfaTmiPZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHfiihJWabxU01N7sJS5N7ravfBkwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3pDANBgkqhkiG 9w0BAQsFAAOCAQEAjuO6mm37C0nH3GZIn3p9AYCZ0hdFGAYMW8X9Ywk6TYrgWdJ9 N4uVALwbWnV934aEL1t4jgFZDgywNAnQicBx8Crv8lJgDRMKYd1vJwQzy7u5/WAw HnqeGGWzhA/Mptr31jl5pMJ6OARQ1FlJjlSXAkZrQsJOTKdFLzHkDrRRytnlp/is lxHDLpdNxI6InUeI69UHq2mQ7i58LDdO2nRSSj4k4s1yyjtZ6cNEgL26h58QDM19 M24RzjY5zWaLLqN80+CG4XKCaZkUm2ZAhfHoot8Kj2FdYFT17Elw94LYr/GdpTbK 7gDGcrvmix/XR08IilCI6sVCya1Nf4NgOBxn2A== -----END CERTIFICATE-----Generated at Mon Sep 8 09:54:33 2025 by rpki-client