$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136372e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136372e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: cWz9uXSlQWLa9Ng0/c4IO1YEuQsv0PGxvtj/Shq2axY= Subject key identifier: CF:CB:D6:67:8E:22:58:44:E9:E0:D2:13:DA:B0:C0:F0:45:5C:E1:53 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 52A12C5D2DD981C2045D4200D54DDA6F5AF8BF11 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136372e302f32342d3234203d3e203137373639.roa Signing time: Fri 29 Aug 2025 07:00:02 +0000 ROA not before: Fri 29 Aug 2025 06:55:02 +0000 ROA not after: Fri 28 Aug 2026 07:00:02 +0000 asID: 17769 IP address blocks: 202.55.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 16:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:a1:2c:5d:2d:d9:81:c2:04:5d:42:00:d5:4d:da:6f:5a:f8:bf:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Aug 29 06:55:02 2025 GMT Not After : Aug 28 07:00:02 2026 GMT Subject: CN=CFCBD6678E225844E9E0D213DAB0C0F0455CE153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b2:eb:d1:66:36:68:57:67:a7:36:2f:7b:87: ca:15:b4:c1:36:a2:23:73:db:a9:5d:78:5c:26:94: 4b:4a:c8:f6:ba:80:f5:4d:3c:8a:ae:4b:dd:c4:80: 6f:f6:38:f6:b1:5d:94:5c:9c:5d:71:5b:f0:9d:cc: 46:c6:36:55:ce:88:c1:67:e7:6e:01:1a:88:8b:58: 4b:37:dc:0c:46:63:d0:1a:58:1c:17:2a:c2:aa:c7: 80:19:1a:6a:77:0d:2c:c8:fd:3b:e9:6c:0a:e3:ca: 7f:e9:18:85:19:f4:a3:3a:3c:b8:c5:82:1d:f7:20: b3:ef:b1:32:ae:f4:92:46:2a:43:eb:06:da:bb:b5: e4:2e:8f:5d:c9:dd:6c:15:b5:0f:17:0a:4e:b7:2d: 99:fc:df:6c:e4:53:7b:33:17:6b:6e:a6:b9:08:18: 24:07:e2:30:0d:32:cf:aa:63:66:e9:ae:d7:ce:19: fc:10:00:83:59:db:6b:53:54:87:4f:b0:75:15:79: 9b:0a:76:72:6e:77:59:51:26:8a:06:12:bb:b4:51: b6:04:97:3e:04:d0:ab:27:02:97:1e:9d:40:85:6d: 3c:27:ca:e8:c5:cf:2d:96:e3:36:e0:36:92:35:74: e7:36:26:f6:6c:d7:92:30:68:fd:fd:8f:ea:4b:7a: 56:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:CB:D6:67:8E:22:58:44:E9:E0:D2:13:DA:B0:C0:F0:45:5C:E1:53 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136372e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.167.0/24 Signature Algorithm: sha256WithRSAEncryption 97:70:d1:62:ba:c7:93:80:61:01:3c:f6:96:31:86:dd:1c:7a: 4e:ec:20:e2:d7:01:c4:6f:29:a5:15:50:d6:b3:79:16:0f:7a: ca:81:82:80:9b:04:8e:e6:47:2c:90:7c:8e:65:d6:17:44:f0: 5c:ad:33:ad:ff:9e:d5:6c:c0:e4:54:19:71:7b:34:2e:bb:b9: 89:32:3c:21:e0:84:c3:0b:b6:85:88:fa:86:9d:fe:c0:75:bc: db:34:db:38:18:8d:65:74:60:32:97:b5:6d:b0:4c:92:82:b2: 20:3f:1d:ea:4d:6a:08:dc:46:61:f6:0d:ac:ec:06:1e:45:c9: 01:7e:87:76:68:9d:e7:ca:34:cd:92:79:6a:5c:4b:0a:40:41: db:da:e8:84:33:66:f0:45:d1:40:3b:14:64:81:8e:54:fb:c7: c8:88:a9:df:7d:35:e2:cb:00:c3:84:6e:70:76:e6:75:91:d3: cd:23:4f:98:aa:12:1b:a3:9d:34:64:37:1b:dd:70:b8:84:68: cd:72:35:b1:32:9c:e3:47:13:1e:1b:5c:a9:2e:1f:82:12:22: dd:e1:e8:3e:8c:02:b8:80:4d:bd:e6:f5:b6:d5:b7:39:44:be: 7e:44:22:22:87:36:88:19:8c:b7:f2:96:70:a1:c9:9d:53:cb: ed:e4:d5:82 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUqEsXS3ZgcIEXUIA1U3ab1r4vxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNTA4MjkwNjU1MDJaFw0yNjA4MjgwNzAwMDJaMDMxMTAvBgNV BAMTKENGQ0JENjY3OEUyMjU4NDRFOUUwRDIxM0RBQjBDMEYwNDU1Q0UxNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCsuvRZjZoV2enNi97h8oVtME2 oiNz26ldeFwmlEtKyPa6gPVNPIquS93EgG/2OPaxXZRcnF1xW/CdzEbGNlXOiMFn 524BGoiLWEs33AxGY9AaWBwXKsKqx4AZGmp3DSzI/TvpbArjyn/pGIUZ9KM6PLjF gh33ILPvsTKu9JJGKkPrBtq7teQuj13J3WwVtQ8XCk63LZn832zkU3szF2tuprkI GCQH4jANMs+qY2bprtfOGfwQAINZ22tTVIdPsHUVeZsKdnJud1lRJooGEru0UbYE lz4E0KsnApcenUCFbTwnyujFzy2W4zbgNpI1dOc2JvZs15IwaP39j+pLela9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUz8vWZ44iWETp4NIT2rDA8EVc4VMwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3pzANBgkqhkiG 9w0BAQsFAAOCAQEAl3DRYrrHk4BhATz2ljGG3Rx6Tuwg4tcBxG8ppRVQ1rN5Fg96 yoGCgJsEjuZHLJB8jmXWF0TwXK0zrf+e1WzA5FQZcXs0Lru5iTI8IeCEwwu2hYj6 hp3+wHW82zTbOBiNZXRgMpe1bbBMkoKyID8d6k1qCNxGYfYNrOwGHkXJAX6Hdmid 58o0zZJ5alxLCkBB29rohDNm8EXRQDsUZIGOVPvHyIip33014ssAw4RucHbmdZHT zSNPmKoSG6OdNGQ3G91wuIRozXI1sTKc40cTHhtcqS4fghIi3eHoPowCuIBNveb1 ttW3OUS+fkQiIoc2iBmMt/KWcKHJnVPL7eTVgg== -----END CERTIFICATE-----Generated at Mon Sep 8 09:54:32 2025 by rpki-client