$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137342e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3137342e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: AZl1WqvrrGaN/Hqm3PzVhhQNyD550/D+bGuAXNwzmmo= Subject key identifier: 24:8F:07:F2:46:37:EA:68:C4:C1:CF:6E:2F:3C:54:CE:48:0E:68:71 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 0485F403ADE167E894D660E714B3FBDE87BDC8D2 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137342e302f32342d3234203d3e203137373639.roa Signing time: Fri 29 Aug 2025 05:00:02 +0000 ROA not before: Fri 29 Aug 2025 04:55:02 +0000 ROA not after: Fri 28 Aug 2026 05:00:02 +0000 asID: 17769 IP address blocks: 202.55.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 16:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:85:f4:03:ad:e1:67:e8:94:d6:60:e7:14:b3:fb:de:87:bd:c8:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Aug 29 04:55:02 2025 GMT Not After : Aug 28 05:00:02 2026 GMT Subject: CN=248F07F24637EA68C4C1CF6E2F3C54CE480E6871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8b:87:a6:06:52:45:77:3c:b6:36:66:36:78: 9a:76:b6:83:1c:bc:88:36:a4:75:49:de:28:0f:ba: 43:1b:7b:e7:92:69:2e:e1:70:d9:66:16:99:6e:23: be:36:43:62:ca:5a:8d:59:3c:1f:91:da:28:57:8e: 4c:10:5f:18:ce:77:77:a8:66:4c:7d:1a:d1:37:60: fc:8f:ca:4b:9a:60:50:29:ec:eb:b4:6c:8f:60:bb: 2a:74:aa:88:bd:56:3a:9c:d0:cf:4a:4b:f4:31:c6: dd:65:e4:a8:b6:87:0b:82:36:e3:25:52:35:da:0b: 46:05:68:97:11:a7:c3:6e:59:4b:88:72:a5:05:83: 8c:74:62:83:54:83:a9:2e:27:62:df:09:4e:c3:92: ed:75:b9:e0:4a:e2:cc:5c:8c:e3:29:aa:23:33:75: 81:aa:6f:04:c3:37:fd:f2:9d:32:f3:e4:c8:af:74: a7:a2:4d:c9:cb:34:b4:34:19:a6:1c:8d:af:a5:24: 89:96:f3:7c:b1:16:14:0e:fd:39:92:65:6f:ce:fa: c1:d8:38:34:06:9d:72:1a:90:e0:ae:61:f1:dd:a0: 27:e1:59:73:80:9e:e6:5b:ea:1a:88:45:f7:75:58: 69:40:88:56:9b:df:b3:82:3f:9b:86:b5:17:ff:6e: b4:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:8F:07:F2:46:37:EA:68:C4:C1:CF:6E:2F:3C:54:CE:48:0E:68:71 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137342e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.174.0/24 Signature Algorithm: sha256WithRSAEncryption 63:32:3b:14:09:48:7f:32:7d:95:75:4f:67:0c:ec:79:27:fd: 1c:cd:c9:02:dd:f4:c7:d8:7d:3f:c1:c8:78:ab:a1:a9:b7:e0: b7:36:94:77:88:3c:c1:0f:58:f5:bd:f4:33:52:f0:bb:06:97: b4:f8:14:30:06:af:4b:fd:c7:53:84:4f:b5:b0:47:2f:01:0c: c7:b7:e5:0e:3f:22:2c:43:20:73:96:c6:4e:f0:b7:de:ff:d9: 94:7a:4b:85:ab:e0:60:22:4f:f0:fa:3c:74:de:81:39:ae:95: 6a:67:0d:a2:ff:42:e7:6a:b2:22:6a:9b:f5:00:54:18:9c:08: 26:4c:89:05:9f:0d:ae:f6:9a:07:64:d3:bc:f3:e7:93:cb:0c: 13:64:b6:d3:de:ea:5e:66:3d:b2:1e:ff:8b:a9:90:75:5d:b0: 49:b2:39:60:60:01:88:49:db:1d:ed:92:aa:1b:7f:55:92:47: d2:ff:18:42:ce:d3:dc:7f:44:a6:90:c7:5b:4d:d3:a2:b8:e7: 38:63:2d:89:a5:a0:35:6a:e3:d2:4a:7d:07:3d:d2:2d:31:44: db:4a:6b:a3:6e:4f:0f:80:6b:a1:b4:b5:f5:a0:12:cd:a0:bc: 6c:43:a3:bd:14:2d:08:d3:08:21:f4:6c:97:1f:60:69:d6:c8: 64:b7:df:10 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBIX0A63hZ+iU1mDnFLP73oe9yNIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNTA4MjkwNDU1MDJaFw0yNjA4MjgwNTAwMDJaMDMxMTAvBgNV BAMTKDI0OEYwN0YyNDYzN0VBNjhDNEMxQ0Y2RTJGM0M1NENFNDgwRTY4NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLi4emBlJFdzy2NmY2eJp2toMc vIg2pHVJ3igPukMbe+eSaS7hcNlmFpluI742Q2LKWo1ZPB+R2ihXjkwQXxjOd3eo Zkx9GtE3YPyPykuaYFAp7Ou0bI9guyp0qoi9Vjqc0M9KS/Qxxt1l5Ki2hwuCNuMl UjXaC0YFaJcRp8NuWUuIcqUFg4x0YoNUg6kuJ2LfCU7Dku11ueBK4sxcjOMpqiMz dYGqbwTDN/3ynTLz5MivdKeiTcnLNLQ0GaYcja+lJImW83yxFhQO/TmSZW/O+sHY ODQGnXIakOCuYfHdoCfhWXOAnuZb6hqIRfd1WGlAiFab37OCP5uGtRf/brSVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJI8H8kY36mjEwc9uLzxUzkgOaHEwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3rjANBgkqhkiG 9w0BAQsFAAOCAQEAYzI7FAlIfzJ9lXVPZwzseSf9HM3JAt30x9h9P8HIeKuhqbfg tzaUd4g8wQ9Y9b30M1LwuwaXtPgUMAavS/3HU4RPtbBHLwEMx7flDj8iLEMgc5bG TvC33v/ZlHpLhavgYCJP8Po8dN6BOa6VamcNov9C52qyImqb9QBUGJwIJkyJBZ8N rvaaB2TTvPPnk8sME2S2097qXmY9sh7/i6mQdV2wSbI5YGABiEnbHe2Sqht/VZJH 0v8YQs7T3H9EppDHW03TorjnOGMtiaWgNWrj0kp9Bz3SLTFE20pro25PD4BrobS1 9aASzaC8bEOjvRQtCNMIIfRslx9gadbIZLffEA== -----END CERTIFICATE-----Generated at Mon Sep 8 09:56:51 2025 by rpki-client