$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136352e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136352e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: g5FIe96NvzXk1l3G1SZk+E0uR323nS4gh8FFBV8v4lc= Subject key identifier: D7:D2:A9:6B:72:04:D3:A8:57:65:A5:31:74:8D:F5:44:A6:02:54:94 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 2EEBC7927F12D0A6CEDF19B7493027C5F93EFCA7 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136352e302f32342d3234203d3e203137373639.roa Signing time: Fri 29 Aug 2025 07:00:02 +0000 ROA not before: Fri 29 Aug 2025 06:55:02 +0000 ROA not after: Fri 28 Aug 2026 07:00:02 +0000 asID: 17769 IP address blocks: 202.55.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 16:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:eb:c7:92:7f:12:d0:a6:ce:df:19:b7:49:30:27:c5:f9:3e:fc:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Aug 29 06:55:02 2025 GMT Not After : Aug 28 07:00:02 2026 GMT Subject: CN=D7D2A96B7204D3A85765A531748DF544A6025494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d6:56:cf:81:62:c4:f9:87:3b:85:d3:9a:73: 86:f2:f3:e9:c5:cf:a7:ae:58:63:43:1f:ac:a5:3f: a6:07:9b:36:ec:c4:57:44:3f:a3:76:f3:50:27:57: 95:68:68:1f:94:8d:fb:d3:eb:0e:9e:8f:d0:31:26: ab:37:4a:87:63:a8:be:a7:16:6b:a8:14:79:34:09: 0c:e4:21:78:b5:c0:17:d2:31:13:a2:39:dd:df:ee: 84:4e:db:e7:ff:05:07:b0:dd:af:15:cc:0b:98:88: 76:2a:82:38:2e:79:52:5f:df:00:01:64:5d:4e:c3: 12:95:a5:1b:11:46:ba:b8:41:d0:3e:69:dd:7e:36: c5:4b:37:58:8d:23:ea:a6:b7:83:99:21:e3:d1:8a: d9:86:6c:a7:27:2a:c1:10:7d:e1:41:cf:0a:b0:b1: 02:ce:bc:6f:14:cb:de:b2:a1:25:27:13:a4:1f:19: 15:63:f6:cf:54:94:fd:5b:71:a1:d9:df:ab:23:42: d9:96:5c:f9:97:07:d3:f0:d6:e0:b1:64:40:05:24: 2e:68:11:e2:04:0b:33:25:5f:62:ba:9f:34:14:65: 81:a7:ec:d5:d7:34:97:a5:e2:0a:dc:49:54:62:80: a6:cf:cd:30:a4:13:15:59:4b:0a:dc:59:45:90:c5: 13:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D2:A9:6B:72:04:D3:A8:57:65:A5:31:74:8D:F5:44:A6:02:54:94 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136352e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.165.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:49:b2:df:cb:82:fd:06:2a:66:da:8e:6a:a6:e9:bf:67:29: aa:a3:a5:ad:58:51:66:79:ee:39:58:1b:6d:e7:d9:d5:88:98: 7a:dc:43:45:e6:64:05:4d:9d:68:87:92:2c:cf:d4:6d:cc:06: 33:4e:3b:b0:23:2b:85:f6:f1:7b:a7:ed:13:82:e6:fe:41:9c: 4a:a1:33:ad:90:33:59:b5:d0:b9:91:49:d8:14:73:2c:15:b1: c5:1a:fd:69:8c:bf:37:e3:1c:0d:0c:d6:df:6d:31:9a:e7:96: a1:74:39:96:d4:06:cc:b4:1c:1c:cd:be:f5:95:36:85:42:74: e4:f9:5a:77:d8:76:39:b7:20:ab:a3:3f:59:e8:7f:45:55:87: b8:8e:c4:1e:d8:63:11:99:ae:26:37:38:c7:d4:74:02:e6:50: 6c:3b:8b:bf:f6:69:51:61:c2:dc:b5:ec:74:b3:22:3c:d7:99: 35:a4:f9:f5:c1:42:71:05:16:a3:ec:7c:66:3d:d5:e9:86:f9: af:e2:7f:ef:ea:f4:fa:fd:92:c8:fa:f5:a0:ca:ce:06:6f:a8: f1:b5:e3:c2:df:44:9e:f2:73:67:96:f3:92:6f:4c:73:67:7a: d8:07:08:6f:10:73:26:c3:e2:9a:57:05:64:c9:b3:c0:1a:c7: 00:d4:bc:15 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULuvHkn8S0KbO3xm3STAnxfk+/KcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNTA4MjkwNjU1MDJaFw0yNjA4MjgwNzAwMDJaMDMxMTAvBgNV BAMTKEQ3RDJBOTZCNzIwNEQzQTg1NzY1QTUzMTc0OERGNTQ0QTYwMjU0OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl1lbPgWLE+Yc7hdOac4by8+nF z6euWGNDH6ylP6YHmzbsxFdEP6N281AnV5VoaB+UjfvT6w6ej9AxJqs3SodjqL6n FmuoFHk0CQzkIXi1wBfSMROiOd3f7oRO2+f/BQew3a8VzAuYiHYqgjgueVJf3wAB ZF1OwxKVpRsRRrq4QdA+ad1+NsVLN1iNI+qmt4OZIePRitmGbKcnKsEQfeFBzwqw sQLOvG8Uy96yoSUnE6QfGRVj9s9UlP1bcaHZ36sjQtmWXPmXB9Pw1uCxZEAFJC5o EeIECzMlX2K6nzQUZYGn7NXXNJel4grcSVRigKbPzTCkExVZSwrcWUWQxRMHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU19Kpa3IE06hXZaUxdI31RKYCVJQwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3pTANBgkqhkiG 9w0BAQsFAAOCAQEAfkmy38uC/QYqZtqOaqbpv2cpqqOlrVhRZnnuOVgbbefZ1YiY etxDReZkBU2daIeSLM/UbcwGM047sCMrhfbxe6ftE4Lm/kGcSqEzrZAzWbXQuZFJ 2BRzLBWxxRr9aYy/N+McDQzW320xmueWoXQ5ltQGzLQcHM2+9ZU2hUJ05Plad9h2 Obcgq6M/Weh/RVWHuI7EHthjEZmuJjc4x9R0AuZQbDuLv/ZpUWHC3LXsdLMiPNeZ NaT59cFCcQUWo+x8Zj3V6Yb5r+J/7+r0+v2SyPr1oMrOBm+o8bXjwt9EnvJzZ5bz km9Mc2d62AcIbxBzJsPimlcFZMmzwBrHANS8FQ== -----END CERTIFICATE-----Generated at Mon Sep 8 09:54:30 2025 by rpki-client