$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e302e302f31382d3231203d3e2034343334.roa File: 3230322e3135342e302e302f31382d3231203d3e2034343334.roa (raw, json) Hash identifier: rsQ1KgfXFTEvdfrP64vDIgpHjFUl2VwPlIuni6poiTo= Subject key identifier: E9:A9:0C:01:44:64:32:FC:F8:0A:68:E6:34:BB:B3:88:97:FA:7C:8B Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 61F4027531A136EB98F2C2FCA27EC6D72231511E Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e302e302f31382d3231203d3e2034343334.roa Signing time: Wed 23 Jul 2025 11:02:25 +0000 ROA not before: Wed 23 Jul 2025 10:57:25 +0000 ROA not after: Wed 22 Jul 2026 11:02:25 +0000 asID: 4434 IP address blocks: 202.154.0.0/18 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 10:33:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:f4:02:75:31:a1:36:eb:98:f2:c2:fc:a2:7e:c6:d7:22:31:51:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Jul 23 10:57:25 2025 GMT Not After : Jul 22 11:02:25 2026 GMT Subject: CN=E9A90C01446432FCF80A68E634BBB38897FA7C8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:43:57:b6:f6:e8:06:21:1b:6a:6f:d6:b7:be: 4c:79:a4:00:06:30:35:45:0c:63:0e:eb:e7:22:2a: 19:e2:37:e7:89:b1:54:82:34:9a:28:06:17:57:07: e5:31:de:1c:fe:08:13:12:25:40:b4:98:2b:43:d4: ca:0f:db:01:77:7b:5c:c9:8f:8d:4c:cd:0b:e4:8b: 82:29:40:7f:69:67:ab:e1:9d:67:2a:20:6f:89:07: 0b:ee:45:64:a1:d2:8a:f0:08:fe:5e:37:2a:4a:c4: 7a:75:82:f1:10:75:9f:ef:ea:29:30:17:90:60:e6: b8:8d:da:e8:df:ea:f7:7a:e9:04:c4:4c:20:c6:c3: 36:f8:bf:0d:c7:19:65:36:64:94:8c:10:b9:8c:0e: e0:03:ba:5f:93:2f:b1:0d:02:98:83:15:c3:ac:4d: a5:c7:7b:77:8d:25:8b:1c:b1:12:e8:87:80:fe:cf: 91:f4:db:24:d3:69:81:39:29:6a:5a:02:7a:5c:c5: 05:15:f3:ba:ce:49:69:d7:6a:85:ae:8a:ea:07:a0: ea:42:90:c1:ed:0b:21:94:f5:e0:d4:07:15:3c:73: f7:7f:0e:6a:5c:0a:b9:56:e2:d3:75:0c:02:d7:7c: fd:bc:a2:9d:fc:6c:3a:87:af:8b:79:ca:51:86:17: e1:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:A9:0C:01:44:64:32:FC:F8:0A:68:E6:34:BB:B3:88:97:FA:7C:8B X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e302e302f31382d3231203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.0.0/18 Signature Algorithm: sha256WithRSAEncryption 34:8f:05:20:75:75:a9:00:4d:f5:de:b1:74:e7:5b:5f:61:1e: 91:d1:1d:d9:a6:35:a9:72:11:bf:da:20:59:f9:f0:73:a0:7d: 20:af:b5:28:5d:56:28:55:dc:66:9c:03:93:cc:ab:b6:2a:05: 10:59:44:e1:eb:d4:08:66:9d:8e:ff:67:33:2f:df:de:c9:7f: d1:68:c0:7b:95:c7:b3:80:bb:1f:c8:b6:53:8f:85:fd:3c:3d: 6e:ff:41:12:01:15:ef:46:a6:a6:02:fa:91:cb:65:ea:a4:40: cd:3f:04:b2:0e:4a:d2:93:ec:32:f5:b2:78:d9:93:a9:25:5c: 38:97:30:d5:c3:5c:5b:3d:e4:f9:0a:20:dc:57:e2:2a:7b:4a: a7:98:e6:6f:19:43:d8:dc:86:f2:06:83:e2:1e:2c:b7:4b:5f: 75:ef:47:39:d0:9f:83:1e:62:3b:59:b7:d4:40:21:9c:e3:f6: 36:d3:21:f0:31:dd:0d:b3:a3:ba:d2:70:1d:b4:b8:9b:b5:6e: 07:f8:25:93:e9:4a:55:bb:f2:61:0b:2b:01:f9:b1:db:f3:1f: 30:0c:12:fb:7c:ec:06:be:97:db:c4:07:0a:8e:df:d0:ef:12: b3:15:83:3b:98:ae:54:26:77:79:43:6d:f9:fc:66:b2:26:a5: a8:3c:2b:62 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUYfQCdTGhNuuY8sL8on7G1yIxUR4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNTA3MjMxMDU3MjVaFw0yNjA3MjIxMTAyMjVaMDMxMTAvBgNV BAMTKEU5QTkwQzAxNDQ2NDMyRkNGODBBNjhFNjM0QkJCMzg4OTdGQTdDOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAQ1e29ugGIRtqb9a3vkx5pAAG MDVFDGMO6+ciKhniN+eJsVSCNJooBhdXB+Ux3hz+CBMSJUC0mCtD1MoP2wF3e1zJ j41MzQvki4IpQH9pZ6vhnWcqIG+JBwvuRWSh0orwCP5eNypKxHp1gvEQdZ/v6ikw F5Bg5riN2ujf6vd66QTETCDGwzb4vw3HGWU2ZJSMELmMDuADul+TL7ENApiDFcOs TaXHe3eNJYscsRLoh4D+z5H02yTTaYE5KWpaAnpcxQUV87rOSWnXaoWuiuoHoOpC kMHtCyGU9eDUBxU8c/d/DmpcCrlW4tN1DALXfP28op38bDqHr4t5ylGGF+EvAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU6akMAURkMvz4CmjmNLuziJf6fIswHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMwYzE0YTktM2E3Ny00OWUyLTkx OTQtNDhkMDkxMzQ1OGIyLzAvMzIzMDMyMmUzMTM1MzQyZTMwMmUzMDJmMzEzODJk MzIzMTIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbKmgAwDQYJKoZIhvcNAQEL BQADggEBADSPBSB1dakATfXesXTnW19hHpHRHdmmNalyEb/aIFn58HOgfSCvtShd VihV3GacA5PMq7YqBRBZROHr1AhmnY7/ZzMv397Jf9FowHuVx7OAux/ItlOPhf08 PW7/QRIBFe9GpqYC+pHLZeqkQM0/BLIOStKT7DL1snjZk6klXDiXMNXDXFs95PkK INxX4ip7SqeY5m8ZQ9jchvIGg+IeLLdLX3XvRznQn4MeYjtZt9RAIZzj9jbTIfAx 3Q2zo7rScB20uJu1bgf4JZPpSlW78mELKwH5sdvzHzAMEvt87Aa+l9vEBwqO39Dv ErMVgzuYrlQmd3lDbfn8ZrImpag8K2I= -----END CERTIFICATE-----Generated at Wed Oct 29 07:43:05 2025 by rpki-client