$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137332e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3137332e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: 39FnZF9lwp6Zy6W9tvLZyBge1M+UPl6WPVxqAcRECPc= Subject key identifier: 71:8E:9C:F4:2F:D5:2D:57:CF:AB:D4:B4:64:46:32:BE:74:27:F4:01 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 7A37FED437D1B89C28A494EAE92EC02F5F996AFD Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137332e302f32342d3234203d3e203137373639.roa Signing time: Fri 29 Aug 2025 07:00:03 +0000 ROA not before: Fri 29 Aug 2025 06:55:03 +0000 ROA not after: Fri 28 Aug 2026 07:00:03 +0000 asID: 17769 IP address blocks: 202.55.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 16:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:37:fe:d4:37:d1:b8:9c:28:a4:94:ea:e9:2e:c0:2f:5f:99:6a:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Aug 29 06:55:03 2025 GMT Not After : Aug 28 07:00:03 2026 GMT Subject: CN=718E9CF42FD52D57CFABD4B4644632BE7427F401 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e5:ba:06:51:2d:87:eb:2d:e9:e3:5c:1c:af: ea:58:37:63:9c:ab:37:93:74:5a:7f:29:5c:73:0e: b1:9c:94:90:f7:3b:ed:d8:3c:a6:21:27:01:e7:26: 84:25:84:58:d0:0b:fc:21:88:f3:e4:a7:af:a0:2c: 1f:ad:d4:da:c5:96:57:64:b0:04:c8:70:b9:93:c7: 0a:90:ed:bf:e4:d2:88:99:92:7a:01:3b:72:59:75: 5e:2e:52:20:c4:23:70:1b:7f:01:b2:f2:2c:b0:70: 74:83:1a:55:af:97:ff:a2:e9:08:56:77:f6:59:c4: 50:82:6e:de:b5:e4:83:38:b1:58:e1:88:42:d8:ae: da:b9:41:03:fa:7e:2c:18:9c:d1:11:51:9e:30:8c: fa:73:f9:62:59:a8:36:b0:44:62:04:61:da:3e:80: bb:c7:b1:7e:16:9e:c2:91:7a:f9:b0:2b:d1:ec:f7: bc:fa:ce:d5:6f:14:73:b4:e4:56:0a:2c:32:91:42: bb:2d:91:43:89:77:0c:d1:6d:0a:65:a4:dd:e3:2c: 7f:79:92:e4:cf:b0:bb:af:d6:58:0e:92:f1:5b:d8: db:c9:6b:e1:75:c7:cf:3b:50:07:0c:01:a9:22:eb: d6:06:15:a7:09:28:8b:aa:be:e4:c9:f8:f2:75:31: e0:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:8E:9C:F4:2F:D5:2D:57:CF:AB:D4:B4:64:46:32:BE:74:27:F4:01 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137332e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.173.0/24 Signature Algorithm: sha256WithRSAEncryption 90:7f:ac:b3:13:2b:1f:00:03:c3:5a:cf:c6:3d:bf:47:a1:89: b7:27:38:1b:b4:55:24:d0:f9:d5:63:65:bb:4b:0e:11:58:d0: 60:c5:cf:be:ca:6a:7a:12:c3:94:98:74:71:e3:94:86:c9:53: 15:ba:e8:86:69:00:f5:cd:ad:1e:43:e1:c4:bf:0f:a2:c1:69: 9a:ec:75:71:15:3c:ad:0a:af:ff:ea:54:c3:a4:da:c1:ed:19: d2:4c:fa:de:bd:e4:bd:5d:e8:5d:bf:b2:f7:bc:3e:13:ab:f2: 52:40:6e:66:77:30:23:03:74:0c:c2:54:93:03:83:f9:28:09: 9d:a2:58:d2:a6:37:33:a2:04:00:3a:54:16:a7:c6:2e:56:b2: 61:19:8c:fa:77:31:94:d0:d9:1e:a8:98:0a:b8:65:0f:bb:f5: 08:cb:6b:db:92:99:ff:dc:88:11:89:32:be:7d:51:cc:7b:8b: 6f:c2:eb:14:3a:14:6d:aa:79:0c:71:33:07:5e:42:2b:58:e0: 2b:a1:75:68:ca:08:c4:91:50:fc:2e:66:53:2b:cd:ef:5d:29: 14:56:11:01:f1:01:b3:60:11:4a:20:3b:8e:8c:ed:2e:c2:9a: e9:f2:de:99:db:08:75:1b:03:55:f5:ab:81:86:29:be:73:55: ad:ec:8b:9c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUejf+1DfRuJwopJTq6S7AL1+Zav0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNTA4MjkwNjU1MDNaFw0yNjA4MjgwNzAwMDNaMDMxMTAvBgNV BAMTKDcxOEU5Q0Y0MkZENTJENTdDRkFCRDRCNDY0NDYzMkJFNzQyN0Y0MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl5boGUS2H6y3p41wcr+pYN2Oc qzeTdFp/KVxzDrGclJD3O+3YPKYhJwHnJoQlhFjQC/whiPPkp6+gLB+t1NrFlldk sATIcLmTxwqQ7b/k0oiZknoBO3JZdV4uUiDEI3AbfwGy8iywcHSDGlWvl/+i6QhW d/ZZxFCCbt615IM4sVjhiELYrtq5QQP6fiwYnNERUZ4wjPpz+WJZqDawRGIEYdo+ gLvHsX4WnsKRevmwK9Hs97z6ztVvFHO05FYKLDKRQrstkUOJdwzRbQplpN3jLH95 kuTPsLuv1lgOkvFb2NvJa+F1x887UAcMAaki69YGFacJKIuqvuTJ+PJ1MeDrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcY6c9C/VLVfPq9S0ZEYyvnQn9AEwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3rTANBgkqhkiG 9w0BAQsFAAOCAQEAkH+ssxMrHwADw1rPxj2/R6GJtyc4G7RVJND51WNlu0sOEVjQ YMXPvspqehLDlJh0ceOUhslTFbrohmkA9c2tHkPhxL8PosFpmux1cRU8rQqv/+pU w6Tawe0Z0kz63r3kvV3oXb+y97w+E6vyUkBuZncwIwN0DMJUkwOD+SgJnaJY0qY3 M6IEADpUFqfGLlayYRmM+ncxlNDZHqiYCrhlD7v1CMtr25KZ/9yIEYkyvn1RzHuL b8LrFDoUbap5DHEzB15CK1jgK6F1aMoIxJFQ/C5mUyvN710pFFYRAfEBs2ARSiA7 joztLsKa6fLemdsIdRsDVfWrgYYpvnNVreyLnA== -----END CERTIFICATE-----Generated at Mon Sep 8 09:56:50 2025 by rpki-client