$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136392e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136392e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: E22Utfr9APhC4z7JcllyNf8HweB95Yf5C8me+CdvyFE= Subject key identifier: F1:5C:D2:4A:A0:C9:FF:BD:35:02:2C:F0:FD:7D:E6:A6:52:FB:1D:ED Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 2754E1B0ED8D170315F7C37A4CD521D91CD1A4C5 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136392e302f32342d3234203d3e203137373639.roa Signing time: Fri 29 Aug 2025 07:00:03 +0000 ROA not before: Fri 29 Aug 2025 06:55:03 +0000 ROA not after: Fri 28 Aug 2026 07:00:03 +0000 asID: 17769 IP address blocks: 202.55.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 16:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:54:e1:b0:ed:8d:17:03:15:f7:c3:7a:4c:d5:21:d9:1c:d1:a4:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Aug 29 06:55:03 2025 GMT Not After : Aug 28 07:00:03 2026 GMT Subject: CN=F15CD24AA0C9FFBD35022CF0FD7DE6A652FB1DED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:69:b0:da:e7:ef:78:51:6c:84:65:0c:79:15: d7:31:4d:30:26:ff:4b:18:48:da:a6:68:48:f1:c5: 11:36:3b:c8:68:2d:f8:d7:4f:32:2f:55:4b:46:da: 13:cc:8f:09:2c:5f:9c:6f:1c:39:94:14:58:c5:37: 99:1c:15:fb:b9:de:6a:33:f6:85:ff:e1:f0:fe:38: d1:77:72:08:a3:2c:38:59:17:d1:8b:80:10:99:4c: 0b:4b:92:84:ce:b2:55:1c:81:a8:56:43:8a:b5:51: 5b:6e:81:54:61:1b:dd:62:ff:c8:f3:d5:96:ea:4d: 3e:fa:a6:f9:6d:69:39:98:ce:8a:de:97:57:f6:c8: 5b:56:aa:43:52:2f:a3:4b:77:a0:2d:4d:34:03:0c: 87:39:07:3f:1c:13:9e:48:eb:df:6d:0a:b1:66:0c: 2c:fc:2e:ba:6d:ef:ca:8a:f7:72:61:aa:a4:41:bd: 60:a4:1a:0a:60:4a:4f:f7:c6:f4:7d:76:d3:57:d4: 34:a4:0b:ae:7b:fa:59:1d:6e:5a:9c:4b:fd:f6:9e: 7a:3e:43:c0:56:d0:a8:c4:e6:b6:89:cb:46:1f:05: db:c7:52:c4:cc:35:49:1f:f7:a3:ba:e6:a5:be:2c: a2:2b:4e:8f:1a:18:3a:9b:59:13:44:b3:80:91:5f: b7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:5C:D2:4A:A0:C9:FF:BD:35:02:2C:F0:FD:7D:E6:A6:52:FB:1D:ED X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136392e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.169.0/24 Signature Algorithm: sha256WithRSAEncryption 22:a1:2f:e9:74:25:91:08:17:a4:a6:93:56:c6:c2:da:5d:08: 6c:69:c5:89:b3:94:55:77:b5:dc:25:6c:d7:a4:b2:34:b5:70: 80:a9:93:75:01:dd:49:e4:5d:9d:72:f0:04:48:ff:e7:99:d9: 3e:87:77:b7:da:e1:a4:89:98:69:26:af:19:4e:af:e9:12:e1: 45:b8:de:83:ce:36:40:8d:d3:a0:37:6e:e8:12:bc:7b:f9:d3: 0a:99:e9:7b:d8:1b:6f:6d:27:79:aa:a9:96:89:49:53:39:57: c7:d7:07:1a:7f:64:30:79:46:cd:64:58:8a:05:2c:cc:aa:a4: 58:d6:50:a0:c0:3c:a1:5c:45:c5:a7:c4:59:94:4c:81:06:fb: b7:3c:ae:8c:19:f3:40:0e:56:88:a2:85:e1:b1:e7:5d:56:8e: aa:d1:75:10:4f:93:39:4d:3f:ac:e4:63:2d:fe:65:07:21:e7: 2a:87:19:94:bd:7a:c7:ad:ad:11:cc:9a:71:04:36:8d:2e:00: 8e:31:5c:90:c9:52:d6:0f:44:e2:d4:6d:0c:54:64:7c:4d:24: 40:4e:49:6a:bf:31:5a:c7:d3:06:94:05:c5:81:65:34:85:6e: 30:8b:71:8f:25:ce:10:e9:6d:49:95:a4:24:11:8a:d2:a2:ce: fa:18:1f:a0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJ1ThsO2NFwMV98N6TNUh2RzRpMUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNTA4MjkwNjU1MDNaFw0yNjA4MjgwNzAwMDNaMDMxMTAvBgNV BAMTKEYxNUNEMjRBQTBDOUZGQkQzNTAyMkNGMEZEN0RFNkE2NTJGQjFERUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoabDa5+94UWyEZQx5FdcxTTAm /0sYSNqmaEjxxRE2O8hoLfjXTzIvVUtG2hPMjwksX5xvHDmUFFjFN5kcFfu53moz 9oX/4fD+ONF3cgijLDhZF9GLgBCZTAtLkoTOslUcgahWQ4q1UVtugVRhG91i/8jz 1ZbqTT76pvltaTmYzorel1f2yFtWqkNSL6NLd6AtTTQDDIc5Bz8cE55I699tCrFm DCz8Lrpt78qK93JhqqRBvWCkGgpgSk/3xvR9dtNX1DSkC657+lkdblqcS/32nno+ Q8BW0KjE5raJy0YfBdvHUsTMNUkf96O65qW+LKIrTo8aGDqbWRNEs4CRX7dpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8VzSSqDJ/701Aizw/X3mplL7He0wHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3qTANBgkqhkiG 9w0BAQsFAAOCAQEAIqEv6XQlkQgXpKaTVsbC2l0IbGnFibOUVXe13CVs16SyNLVw gKmTdQHdSeRdnXLwBEj/55nZPod3t9rhpImYaSavGU6v6RLhRbjeg842QI3ToDdu 6BK8e/nTCpnpe9gbb20neaqplolJUzlXx9cHGn9kMHlGzWRYigUszKqkWNZQoMA8 oVxFxafEWZRMgQb7tzyujBnzQA5WiKKF4bHnXVaOqtF1EE+TOU0/rORjLf5lByHn KocZlL16x62tEcyacQQ2jS4AjjFckMlS1g9E4tRtDFRkfE0kQE5Jar8xWsfTBpQF xYFlNIVuMItxjyXOEOltSZWkJBGK0qLO+hgfoA== -----END CERTIFICATE-----Generated at Mon Sep 8 09:54:26 2025 by rpki-client