$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137302e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3137302e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: FcauiWQCAo10b4251JHpBxlXw/DF6Tp3LqTDNrIkFZE= Subject key identifier: 46:BD:4C:35:58:12:EE:0D:41:5B:B3:C2:4F:22:54:95:0B:9E:34:E7 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 5356B8E56CF33D06DE2C673FBE958C79BE3D2545 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137302e302f32342d3234203d3e203137373639.roa Signing time: Fri 29 Aug 2025 07:00:02 +0000 ROA not before: Fri 29 Aug 2025 06:55:02 +0000 ROA not after: Fri 28 Aug 2026 07:00:02 +0000 asID: 17769 IP address blocks: 202.55.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 16:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:56:b8:e5:6c:f3:3d:06:de:2c:67:3f:be:95:8c:79:be:3d:25:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Aug 29 06:55:02 2025 GMT Not After : Aug 28 07:00:02 2026 GMT Subject: CN=46BD4C355812EE0D415BB3C24F2254950B9E34E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:73:63:03:ea:e6:a3:12:11:e4:5a:2d:b3:23: b1:68:bb:0b:d6:ef:b7:ef:bb:21:ab:0c:fe:5c:6f: 75:72:36:ba:52:c7:b0:ba:bf:e1:a1:6b:ae:7a:5b: 60:56:3a:4a:0e:5a:d0:72:9c:a7:63:5b:b4:c3:03: 6d:a3:65:b4:2e:d3:a1:65:f9:ab:2a:33:9f:e1:95: 87:7f:10:9f:49:97:80:ee:84:14:9f:9b:3c:bc:04: 96:2b:7f:6a:65:62:f6:4c:f7:da:d9:0e:93:a8:66: d4:fa:52:2d:a7:40:6a:51:ff:5c:6e:9f:c5:57:36: 7e:53:85:32:ab:c2:ed:32:74:cf:b2:7f:db:3e:d1: 5b:a4:a5:71:4e:1a:8f:9a:ba:7a:db:07:e0:6a:f3: 0e:13:93:d2:89:be:f3:b5:38:47:ae:24:0c:10:f5: 15:f1:09:28:33:55:62:b1:5d:f1:15:4a:c9:8c:68: 55:c1:a6:50:8a:74:72:65:9c:01:03:6e:af:9d:58: b7:3f:90:ad:5e:f4:22:d7:10:55:13:10:a0:da:5f: 33:7f:ee:52:49:d4:13:17:16:5f:d9:df:4a:2e:d0: 4c:6c:09:48:50:c9:27:81:f6:bc:11:04:e4:ee:74: 69:48:a4:a5:b5:b1:61:95:e0:80:d6:99:b8:d9:41: ce:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:BD:4C:35:58:12:EE:0D:41:5B:B3:C2:4F:22:54:95:0B:9E:34:E7 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137302e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.170.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:e9:17:8e:56:9a:f5:c4:73:66:16:8f:d6:d7:b0:33:1d:aa: b8:bd:4f:e4:1a:2d:09:b2:ef:8b:3e:d9:27:2d:e9:53:c2:8c: 6f:90:04:92:87:46:53:30:0b:f7:58:7f:ae:fb:06:36:c1:28: 00:ac:35:0e:50:a6:4e:c8:1c:90:6e:07:96:79:ef:7f:17:07: d2:d6:b4:44:fa:80:54:4e:bc:a9:62:a1:fc:ad:7f:e4:01:84: 1b:f7:77:46:52:18:70:d5:b3:e0:d0:9e:24:4c:2a:95:71:aa: b9:e9:d9:d3:ed:a6:9d:c0:3e:02:4d:9c:c8:d6:13:37:a8:a9: 76:e2:1a:0d:7a:21:0d:ff:62:e5:b5:b6:c8:f8:87:05:75:38: 91:64:96:06:03:2b:f4:e8:43:0e:d6:59:6e:c4:ef:49:2d:e6: 41:00:47:00:3e:5c:6a:30:cb:58:10:57:d0:71:0d:a9:5b:4f: 9e:d0:2a:70:68:70:24:61:b8:f0:64:0b:6c:cc:94:66:7e:f7: 62:ec:a1:14:13:62:78:9f:40:d9:fe:5d:ac:0d:b8:a3:a6:55: 4f:fd:57:4e:f0:76:86:5f:f8:53:e7:da:2c:f6:9b:13:72:08: 1e:f7:ca:47:58:2d:71:7e:32:44:7f:98:ac:53:ee:fc:0a:d6: 93:cc:fe:b3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUU1a45WzzPQbeLGc/vpWMeb49JUUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNTA4MjkwNjU1MDJaFw0yNjA4MjgwNzAwMDJaMDMxMTAvBgNV BAMTKDQ2QkQ0QzM1NTgxMkVFMEQ0MTVCQjNDMjRGMjI1NDk1MEI5RTM0RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmc2MD6uajEhHkWi2zI7FouwvW 77fvuyGrDP5cb3VyNrpSx7C6v+Gha656W2BWOkoOWtBynKdjW7TDA22jZbQu06Fl +asqM5/hlYd/EJ9Jl4DuhBSfmzy8BJYrf2plYvZM99rZDpOoZtT6Ui2nQGpR/1xu n8VXNn5ThTKrwu0ydM+yf9s+0VukpXFOGo+aunrbB+Bq8w4Tk9KJvvO1OEeuJAwQ 9RXxCSgzVWKxXfEVSsmMaFXBplCKdHJlnAEDbq+dWLc/kK1e9CLXEFUTEKDaXzN/ 7lJJ1BMXFl/Z30ou0ExsCUhQySeB9rwRBOTudGlIpKW1sWGV4IDWmbjZQc5bAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURr1MNVgS7g1BW7PCTyJUlQueNOcwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3qjANBgkqhkiG 9w0BAQsFAAOCAQEAmukXjlaa9cRzZhaP1tewMx2quL1P5BotCbLviz7ZJy3pU8KM b5AEkodGUzAL91h/rvsGNsEoAKw1DlCmTsgckG4HlnnvfxcH0ta0RPqAVE68qWKh /K1/5AGEG/d3RlIYcNWz4NCeJEwqlXGquenZ0+2mncA+Ak2cyNYTN6ipduIaDXoh Df9i5bW2yPiHBXU4kWSWBgMr9OhDDtZZbsTvSS3mQQBHAD5cajDLWBBX0HENqVtP ntAqcGhwJGG48GQLbMyUZn73YuyhFBNieJ9A2f5drA24o6ZVT/1XTvB2hl/4U+fa LPabE3IIHvfKR1gtcX4yRH+YrFPu/ArWk8z+sw== -----END CERTIFICATE-----Generated at Mon Sep 8 09:56:48 2025 by rpki-client