$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137312e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3137312e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: s4QV2LJdIkwWHWXsfO0kzma2mgtldKYGhA7Yd0ZrUKw= Subject key identifier: E7:C7:4B:95:49:06:71:CC:D3:D8:AF:49:2B:5D:DD:23:45:84:64:2A Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 6949E23A6923E3D1C19EF65A847FD0A958F1B21A Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137312e302f32342d3234203d3e203137373639.roa Signing time: Fri 29 Aug 2025 07:00:03 +0000 ROA not before: Fri 29 Aug 2025 06:55:03 +0000 ROA not after: Fri 28 Aug 2026 07:00:03 +0000 asID: 17769 IP address blocks: 202.55.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 16:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:49:e2:3a:69:23:e3:d1:c1:9e:f6:5a:84:7f:d0:a9:58:f1:b2:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Aug 29 06:55:03 2025 GMT Not After : Aug 28 07:00:03 2026 GMT Subject: CN=E7C74B95490671CCD3D8AF492B5DDD234584642A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:64:24:47:95:c6:7e:df:6d:93:d0:49:7a:1e: 0e:20:35:be:e9:16:38:59:ab:17:6b:8d:3a:03:10: 63:44:44:16:92:de:79:be:ea:6c:4d:6e:78:00:6e: 42:53:c5:7b:64:09:69:44:a6:1c:64:93:06:0d:9c: af:2b:69:30:5d:ef:84:ce:04:5a:ad:0e:75:c4:59: d6:48:4c:da:96:80:7b:2e:7d:0a:67:d3:20:2b:d2: a5:18:b2:b5:2c:de:50:a3:be:a2:10:17:75:34:ef: cf:ac:34:2f:09:9a:c4:8a:8c:3d:18:be:8a:51:02: 31:23:5f:95:45:8e:1a:af:5d:b7:4a:12:5d:69:d9: a5:ac:e9:99:a8:d7:33:b0:14:56:2f:0f:9c:b9:93: 9a:7a:59:ab:30:57:b6:1a:8a:70:d6:e6:89:e6:1c: 20:16:c3:f1:fd:a2:39:bb:70:e8:84:70:d1:74:ee: 31:2b:b3:da:1c:18:13:af:c9:dd:f9:d9:9e:7d:e4: 49:4a:e3:4b:72:35:66:01:24:90:ce:9d:8c:29:09: 55:81:a9:34:7f:fe:15:8c:cc:80:a5:c5:5d:45:86: 20:97:b5:87:00:0a:c8:4f:35:0c:fa:89:a8:1c:fa: 76:bf:1c:61:38:ed:ae:d2:b1:4b:21:c3:22:55:1b: 0f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:C7:4B:95:49:06:71:CC:D3:D8:AF:49:2B:5D:DD:23:45:84:64:2A X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137312e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.171.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:ee:19:15:63:06:75:eb:fb:37:55:b6:36:a9:f5:33:5c:5d: a5:e5:20:3b:45:2a:84:c9:f3:ba:d6:17:e2:df:25:e7:96:05: a6:cd:0e:fd:b0:b4:ac:c9:12:a2:48:d6:d3:1a:3c:87:2b:32: fd:d5:59:ea:02:d8:f0:83:00:71:ae:31:11:d6:fe:f1:df:ec: 0c:76:e7:f8:2c:6f:c1:11:f4:23:57:7c:f1:60:53:13:e0:0c: 88:e9:d2:aa:28:0b:3e:b2:84:b5:cf:24:b0:b2:a5:e7:36:32: 06:4f:f6:d8:22:3c:28:6d:02:e4:5d:27:cf:b2:9a:a4:f9:36: 33:9e:33:b1:59:bf:e2:c1:6d:d9:85:9a:72:23:55:f3:1f:2f: 50:af:87:3b:37:5d:d7:cb:3b:55:56:a5:33:d8:68:9f:72:b4: 17:2d:29:c0:0e:ba:30:a8:38:36:7b:13:62:3b:6a:29:f4:64: d6:c2:e4:7b:f4:70:b7:be:ce:a6:88:c1:ed:b3:b0:19:8d:8b: 95:d5:1e:25:83:81:f4:cc:af:7e:1f:0a:77:08:71:4a:db:48: 08:33:d2:3a:67:05:35:57:67:da:75:d3:b1:40:12:15:90:80: c2:2f:65:2a:95:82:28:3d:99:74:d7:5f:5f:31:8a:ef:d8:7b: e7:65:fc:9f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaUniOmkj49HBnvZahH/QqVjxshowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNTA4MjkwNjU1MDNaFw0yNjA4MjgwNzAwMDNaMDMxMTAvBgNV BAMTKEU3Qzc0Qjk1NDkwNjcxQ0NEM0Q4QUY0OTJCNURERDIzNDU4NDY0MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiZCRHlcZ+322T0El6Hg4gNb7p FjhZqxdrjToDEGNERBaS3nm+6mxNbngAbkJTxXtkCWlEphxkkwYNnK8raTBd74TO BFqtDnXEWdZITNqWgHsufQpn0yAr0qUYsrUs3lCjvqIQF3U078+sNC8JmsSKjD0Y vopRAjEjX5VFjhqvXbdKEl1p2aWs6Zmo1zOwFFYvD5y5k5p6WaswV7YainDW5onm HCAWw/H9ojm7cOiEcNF07jErs9ocGBOvyd352Z595ElK40tyNWYBJJDOnYwpCVWB qTR//hWMzIClxV1FhiCXtYcACshPNQz6iagc+na/HGE47a7SsUshwyJVGw/vAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU58dLlUkGcczT2K9JK13dI0WEZCowHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3qzANBgkqhkiG 9w0BAQsFAAOCAQEAXO4ZFWMGdev7N1W2Nqn1M1xdpeUgO0UqhMnzutYX4t8l55YF ps0O/bC0rMkSokjW0xo8hysy/dVZ6gLY8IMAca4xEdb+8d/sDHbn+CxvwRH0I1d8 8WBTE+AMiOnSqigLPrKEtc8ksLKl5zYyBk/22CI8KG0C5F0nz7KapPk2M54zsVm/ 4sFt2YWaciNV8x8vUK+HOzdd18s7VValM9hon3K0Fy0pwA66MKg4NnsTYjtqKfRk 1sLke/Rwt77OpojB7bOwGY2LldUeJYOB9Myvfh8KdwhxSttICDPSOmcFNVdn2nXT sUASFZCAwi9lKpWCKD2ZdNdfXzGK79h752X8nw== -----END CERTIFICATE-----Generated at Mon Sep 8 09:56:50 2025 by rpki-client