$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137322e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3137322e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: IjrbLlYEZOkT769gFvToei/FjO23eUDwwXgDIinpfEU= Subject key identifier: 47:FF:3D:5E:5A:22:79:20:8B:5C:55:91:AA:95:13:68:4A:22:4E:B7 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 647B09DE83126EB05DA763E9383A0C8F18AEEE97 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137322e302f32342d3234203d3e203137373639.roa Signing time: Fri 29 Aug 2025 07:00:02 +0000 ROA not before: Fri 29 Aug 2025 06:55:02 +0000 ROA not after: Fri 28 Aug 2026 07:00:02 +0000 asID: 17769 IP address blocks: 202.55.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 16:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:7b:09:de:83:12:6e:b0:5d:a7:63:e9:38:3a:0c:8f:18:ae:ee:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Aug 29 06:55:02 2025 GMT Not After : Aug 28 07:00:02 2026 GMT Subject: CN=47FF3D5E5A2279208B5C5591AA9513684A224EB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ce:13:98:43:13:a3:05:0d:bb:54:e1:4d:68: eb:53:fa:ca:ee:95:3d:a1:c1:d1:85:7b:10:f8:50: b3:56:e1:28:0e:b4:8d:2b:a1:71:0a:b9:11:16:2d: 6e:e0:be:c1:5d:34:16:61:38:5c:49:89:14:d0:a5: 34:76:fa:c6:bb:b5:07:bc:e5:d0:ca:30:45:3a:3c: 00:c4:c7:d8:8d:eb:76:57:90:7e:cd:7a:b2:60:ca: 42:cc:10:4d:52:37:b5:52:8f:02:f9:ce:fc:5d:3c: 73:b9:96:80:f2:4f:4d:74:7f:21:28:98:bd:c6:e2: 7d:8e:e2:b6:3d:85:85:c5:fb:30:c0:5e:1f:39:87: dc:08:e0:9d:ff:c5:a2:7c:ee:22:3c:82:ed:03:20: 86:73:c7:44:d8:d0:ea:21:d4:d5:93:75:0f:6a:a9: 3a:26:30:d0:ee:37:33:f4:6b:60:87:fa:19:cd:e2: 79:70:ec:86:c6:95:ef:15:05:77:d5:df:84:cf:d9: 35:e9:40:58:03:75:b5:cd:7f:03:e5:43:62:6a:a3: eb:85:b5:0d:2d:58:4d:33:49:92:4e:11:47:c5:2a: b9:ac:dd:3d:1b:d4:bd:d7:76:72:7d:67:0c:93:19: a5:ba:32:2f:f6:58:3a:03:5d:21:5c:89:72:f2:d9: b5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:FF:3D:5E:5A:22:79:20:8B:5C:55:91:AA:95:13:68:4A:22:4E:B7 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137322e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.172.0/24 Signature Algorithm: sha256WithRSAEncryption 82:da:4d:96:70:f4:92:98:39:a1:95:36:fb:72:6f:cb:b5:a0: e2:1c:78:35:8e:eb:2e:f9:75:31:70:6f:60:a4:1a:1d:31:f8: 51:e5:08:08:51:a2:30:2f:fa:6d:a8:b2:76:57:87:e9:84:07: 26:97:76:22:7a:4b:71:70:8a:96:f4:47:97:7e:d2:0b:d9:7d: 23:d6:30:e1:d1:37:d4:6a:69:b5:5a:c7:d5:8a:a8:bc:ae:69: d5:19:92:11:67:07:cc:ea:1a:5c:60:28:03:a0:ac:16:fe:26: 8a:f7:b1:4d:3b:a2:de:5c:a3:5b:f1:22:bd:8c:a1:48:fb:d6: 36:0c:4b:17:92:9a:14:19:15:cb:a1:0e:ce:a8:5e:88:a4:8a: cb:1e:51:43:58:60:c6:46:4e:2b:1f:d2:5b:dc:50:94:b7:c6: b1:ae:53:fd:75:95:97:95:6c:8e:c8:af:86:56:b0:d2:58:fb: 4c:74:2b:bf:08:47:dc:b0:9a:91:fb:8a:15:01:39:3e:d3:b0: 6a:4a:34:90:ac:f5:f3:5a:0e:52:21:ed:53:fe:b4:d9:5a:be: b4:a4:83:47:60:3b:de:d6:43:7b:13:02:37:c7:37:1a:50:0a: ba:6e:6d:7d:c0:f7:b5:d4:cd:36:24:fa:37:22:c6:db:42:f2: 0c:4a:2b:51 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZHsJ3oMSbrBdp2PpODoMjxiu7pcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNTA4MjkwNjU1MDJaFw0yNjA4MjgwNzAwMDJaMDMxMTAvBgNV BAMTKDQ3RkYzRDVFNUEyMjc5MjA4QjVDNTU5MUFBOTUxMzY4NEEyMjRFQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdzhOYQxOjBQ27VOFNaOtT+sru lT2hwdGFexD4ULNW4SgOtI0roXEKuREWLW7gvsFdNBZhOFxJiRTQpTR2+sa7tQe8 5dDKMEU6PADEx9iN63ZXkH7NerJgykLMEE1SN7VSjwL5zvxdPHO5loDyT010fyEo mL3G4n2O4rY9hYXF+zDAXh85h9wI4J3/xaJ87iI8gu0DIIZzx0TY0Ooh1NWTdQ9q qTomMNDuNzP0a2CH+hnN4nlw7IbGle8VBXfV34TP2TXpQFgDdbXNfwPlQ2Jqo+uF tQ0tWE0zSZJOEUfFKrms3T0b1L3XdnJ9ZwyTGaW6Mi/2WDoDXSFciXLy2bXHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUR/89XloieSCLXFWRqpUTaEoiTrcwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3rDANBgkqhkiG 9w0BAQsFAAOCAQEAgtpNlnD0kpg5oZU2+3Jvy7Wg4hx4NY7rLvl1MXBvYKQaHTH4 UeUICFGiMC/6baiydleH6YQHJpd2InpLcXCKlvRHl37SC9l9I9Yw4dE31GpptVrH 1YqovK5p1RmSEWcHzOoaXGAoA6CsFv4mivexTTui3lyjW/EivYyhSPvWNgxLF5Ka FBkVy6EOzqheiKSKyx5RQ1hgxkZOKx/SW9xQlLfGsa5T/XWVl5Vsjsivhlaw0lj7 THQrvwhH3LCakfuKFQE5PtOwako0kKz181oOUiHtU/602Vq+tKSDR2A73tZDexMC N8c3GlAKum5tfcD3tdTNNiT6NyLG20LyDEorUQ== -----END CERTIFICATE-----Generated at Mon Sep 8 09:56:47 2025 by rpki-client