$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136382e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136382e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: GjZ1cbaTXfnbMXe6NXLIE1G8vG8knT78bA2UOSSfXJY= Subject key identifier: 5A:1A:16:4F:65:3B:2D:4B:BD:20:C9:56:72:FC:A0:75:1A:25:BF:1B Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 0B711F3EA36122CA38E7D82CE31C5DC974F3C3C8 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136382e302f32342d3234203d3e203137373639.roa Signing time: Fri 29 Aug 2025 05:00:02 +0000 ROA not before: Fri 29 Aug 2025 04:55:02 +0000 ROA not after: Fri 28 Aug 2026 05:00:02 +0000 asID: 17769 IP address blocks: 202.55.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 16:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:71:1f:3e:a3:61:22:ca:38:e7:d8:2c:e3:1c:5d:c9:74:f3:c3:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Aug 29 04:55:02 2025 GMT Not After : Aug 28 05:00:02 2026 GMT Subject: CN=5A1A164F653B2D4BBD20C95672FCA0751A25BF1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:81:71:ed:c6:93:8d:ef:1e:ca:62:a2:a1:f5: 37:b7:93:5b:12:d5:c8:13:b4:0a:e1:27:48:4a:ef: 96:1d:3e:13:0b:2d:a4:13:8f:08:96:48:25:8f:9e: 83:9c:fe:03:1c:2a:ce:1d:62:7b:93:5a:ed:9e:6b: aa:b9:77:99:f6:d4:f6:a2:12:9f:f3:02:0d:ae:11: 52:da:fa:de:c8:19:f0:f8:f1:7a:a9:78:62:91:bc: 11:4d:d6:a7:fd:25:64:ce:b0:d1:ec:c5:d3:e3:19: 02:6f:fb:de:c5:42:4f:86:2b:76:94:15:a6:6f:b3: 17:fe:19:38:e7:90:4c:3d:29:5d:db:44:81:54:ce: e0:6b:09:ed:0c:07:87:0b:74:6b:95:de:2a:c0:27: 0d:d0:33:5f:88:06:58:06:91:de:41:8f:b7:05:fe: 35:d1:12:42:dd:88:31:f7:9b:d6:74:aa:83:8b:25: e5:5b:0a:6f:41:33:96:e8:64:08:91:45:54:21:79: 9d:fe:2d:9c:b1:c9:5b:e4:fa:07:e0:8b:88:ef:14: a6:79:78:f4:29:c8:22:66:87:62:2c:6c:8b:ce:3d: eb:80:19:95:39:74:12:dd:ba:a7:43:ae:b0:7e:56: e4:51:31:95:58:2a:36:7a:7f:80:cb:4b:33:5f:9b: 5f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:1A:16:4F:65:3B:2D:4B:BD:20:C9:56:72:FC:A0:75:1A:25:BF:1B X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136382e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.168.0/24 Signature Algorithm: sha256WithRSAEncryption 62:c0:f2:8e:68:b6:d5:54:7a:7c:27:37:c9:ea:ca:1a:69:c2: af:88:3a:c5:ef:a7:68:8a:25:0a:d6:79:68:51:4f:0c:ab:e7: ed:77:4b:b7:e3:b0:60:af:e0:ac:8a:da:83:e8:07:bd:0c:9d: 23:35:a9:69:e3:39:0e:d5:5c:eb:4d:4b:85:b7:4e:7c:24:39: 94:45:42:f2:de:28:fa:0e:ca:53:59:4f:02:fc:29:87:34:25: 61:eb:af:e3:dc:88:c3:ef:8a:8b:81:75:82:dc:ec:5b:54:4d: 37:df:6c:9d:a8:f6:c8:cb:8f:77:29:7f:96:54:b5:6f:3d:0c: 2f:ae:f3:12:f0:e7:7e:5a:5f:80:08:a8:13:ab:59:2d:d0:06: a1:72:83:93:84:dc:98:61:aa:b6:dd:fb:91:af:27:1f:d0:c9: 50:53:5c:d4:d3:1c:e8:74:03:6f:be:6e:0b:3d:af:e4:3c:5e: 5d:be:ac:27:5f:72:18:f0:08:8b:fe:ab:88:c3:a6:9f:d9:34: 5a:89:b8:6a:f3:1d:cf:49:fa:13:69:56:01:c4:d8:92:77:32: 47:84:3c:73:50:48:16:78:77:44:49:03:44:f7:cc:1f:ce:af: 14:35:15:53:f4:70:b0:18:4a:fb:a1:36:7f:90:6e:3f:ef:e9: fe:20:ca:a1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUC3EfPqNhIso459gs4xxdyXTzw8gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNTA4MjkwNDU1MDJaFw0yNjA4MjgwNTAwMDJaMDMxMTAvBgNV BAMTKDVBMUExNjRGNjUzQjJENEJCRDIwQzk1NjcyRkNBMDc1MUEyNUJGMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIgXHtxpON7x7KYqKh9Te3k1sS 1cgTtArhJ0hK75YdPhMLLaQTjwiWSCWPnoOc/gMcKs4dYnuTWu2ea6q5d5n21Pai Ep/zAg2uEVLa+t7IGfD48XqpeGKRvBFN1qf9JWTOsNHsxdPjGQJv+97FQk+GK3aU FaZvsxf+GTjnkEw9KV3bRIFUzuBrCe0MB4cLdGuV3irAJw3QM1+IBlgGkd5Bj7cF /jXREkLdiDH3m9Z0qoOLJeVbCm9BM5boZAiRRVQheZ3+LZyxyVvk+gfgi4jvFKZ5 ePQpyCJmh2IsbIvOPeuAGZU5dBLduqdDrrB+VuRRMZVYKjZ6f4DLSzNfm1+rAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWhoWT2U7LUu9IMlWcvygdRolvxswHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3qDANBgkqhkiG 9w0BAQsFAAOCAQEAYsDyjmi21VR6fCc3yerKGmnCr4g6xe+naIolCtZ5aFFPDKvn 7XdLt+OwYK/grIrag+gHvQydIzWpaeM5DtVc601LhbdOfCQ5lEVC8t4o+g7KU1lP AvwphzQlYeuv49yIw++Ki4F1gtzsW1RNN99snaj2yMuPdyl/llS1bz0ML67zEvDn flpfgAioE6tZLdAGoXKDk4TcmGGqtt37ka8nH9DJUFNc1NMc6HQDb75uCz2v5Dxe Xb6sJ19yGPAIi/6riMOmn9k0Wom4avMdz0n6E2lWAcTYkncyR4Q8c1BIFnh3REkD RPfMH86vFDUVU/RwsBhK+6E2f5BuP+/p/iDKoQ== -----END CERTIFICATE-----Generated at Mon Sep 8 09:54:27 2025 by rpki-client