$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31382e302f32332d3234203d3e20313336313231.roa File: 3230322e3135342e31382e302f32332d3234203d3e20313336313231.roa (raw, json) Hash identifier: uOcunMNIUambPFjsToEaFnaHkhPIcAuSOtw/k5oRB6o= Subject key identifier: 77:2F:E1:45:C9:45:80:49:A2:98:36:EC:D2:72:B0:54:6B:A1:E6:11 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 6787AA25CE7602A11B19B608B81BB9E227E324B2 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31382e302f32332d3234203d3e20313336313231.roa Signing time: Wed 13 Aug 2025 10:00:01 +0000 ROA not before: Wed 13 Aug 2025 09:55:01 +0000 ROA not after: Wed 12 Aug 2026 10:00:01 +0000 asID: 136121 IP address blocks: 202.154.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 10:33:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:87:aa:25:ce:76:02:a1:1b:19:b6:08:b8:1b:b9:e2:27:e3:24:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 13 09:55:01 2025 GMT Not After : Aug 12 10:00:01 2026 GMT Subject: CN=772FE145C9458049A29836ECD272B0546BA1E611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:07:af:61:3d:bd:67:7d:46:c4:f7:79:61:79: eb:ed:df:b9:f3:a4:1e:72:50:19:2b:cd:75:76:46: 1d:3e:35:ef:03:14:f8:e2:9b:4b:05:98:ad:79:fe: d5:ff:f2:39:e0:61:e5:15:20:6f:5d:f6:c8:c3:e1: f0:0a:23:19:cb:cd:e6:ff:69:b1:6f:a9:62:95:4a: 28:f4:b3:3d:16:f5:aa:83:5b:8c:29:d7:6f:17:1c: 06:4e:5a:c0:7c:37:4c:08:b9:0a:78:21:ee:0d:d1: 0c:58:3e:b9:9f:12:69:b2:31:c9:58:ed:da:80:e9: 76:d7:ea:ec:f9:f9:d2:31:00:15:1b:81:56:04:c1: ad:01:fb:3d:da:b6:21:49:53:28:0e:d6:27:d5:ec: 01:8d:2f:2e:32:eb:c0:34:da:57:72:b2:d6:83:be: 6e:99:2d:df:3d:66:3c:5e:87:56:0c:3d:ea:70:ca: c4:50:b1:f8:4b:bc:57:bc:a6:d6:7a:c3:1b:52:6c: eb:4b:21:c8:d5:6f:0c:05:63:5b:6f:6f:f0:d5:8d: 55:fb:d4:96:10:6d:d5:a8:19:b7:ac:1e:d3:d4:9b: 52:8e:13:ed:dc:71:ed:a3:72:10:d0:19:cf:d9:b9: f4:1b:7b:26:e6:88:a9:7d:e2:d6:8b:98:5e:8a:1d: 4a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:2F:E1:45:C9:45:80:49:A2:98:36:EC:D2:72:B0:54:6B:A1:E6:11 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31382e302f32332d3234203d3e20313336313231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.18.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:7d:78:e8:35:7a:52:8b:71:4f:2f:5d:36:38:76:a4:ce:f5: c9:24:64:cc:23:7b:90:26:a7:91:6f:63:f8:9a:ea:b7:58:cc: ab:d9:d3:f6:55:b8:91:51:14:89:4b:ed:d1:dd:e9:09:5e:21: 87:dc:c2:ef:d9:ca:c7:19:6b:04:21:b0:71:27:bf:f3:a3:7a: 21:29:86:ed:22:a3:2f:43:2e:a4:35:54:0e:10:08:0b:52:da: 3e:ab:af:d9:27:6f:df:0e:28:8b:cb:30:1b:f0:bd:95:f2:43: 01:b2:8b:a2:8b:4c:e0:51:62:4a:54:f6:c3:4d:fb:ed:7b:08: 15:be:a0:a0:5d:67:d3:27:a9:61:a5:2c:c2:74:e3:f8:6f:d7: 17:4e:9a:21:bd:b8:b4:bc:d7:cd:98:bd:6f:bd:d3:fb:61:66: 85:de:f3:6e:1a:81:6e:49:cb:fb:8c:27:94:06:e2:d0:8f:a4: 6c:9a:6c:79:e1:3f:78:7d:be:9f:20:e4:17:62:d0:e5:ff:90: 3a:13:43:1a:49:b0:29:22:2f:f6:c4:b9:9c:96:c2:bd:62:ee: c6:70:de:0b:8b:ab:2b:c6:57:e7:98:67:20:d1:7d:7a:0e:23: 95:88:ca:25:3e:7c:95:f4:15:21:19:4b:9b:27:71:a0:7b:b3: a0:81:70:de -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ4eqJc52AqEbGbYIuBu54ifjJLIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNTA4MTMwOTU1MDFaFw0yNjA4MTIxMDAwMDFaMDMxMTAvBgNV BAMTKDc3MkZFMTQ1Qzk0NTgwNDlBMjk4MzZFQ0QyNzJCMDU0NkJBMUU2MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTB69hPb1nfUbE93lheevt37nz pB5yUBkrzXV2Rh0+Ne8DFPjim0sFmK15/tX/8jngYeUVIG9d9sjD4fAKIxnLzeb/ abFvqWKVSij0sz0W9aqDW4wp128XHAZOWsB8N0wIuQp4Ie4N0QxYPrmfEmmyMclY 7dqA6XbX6uz5+dIxABUbgVYEwa0B+z3atiFJUygO1ifV7AGNLy4y68A02ldystaD vm6ZLd89Zjxeh1YMPepwysRQsfhLvFe8ptZ6wxtSbOtLIcjVbwwFY1tvb/DVjVX7 1JYQbdWoGbesHtPUm1KOE+3cce2jchDQGc/ZufQbeybmiKl94taLmF6KHUpZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdy/hRclFgEmimDbs0nKwVGuh5hEwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBypoSMA0GCSqG SIb3DQEBCwUAA4IBAQAufXjoNXpSi3FPL102OHakzvXJJGTMI3uQJqeRb2P4muq3 WMyr2dP2VbiRURSJS+3R3ekJXiGH3MLv2crHGWsEIbBxJ7/zo3ohKYbtIqMvQy6k NVQOEAgLUto+q6/ZJ2/fDiiLyzAb8L2V8kMBsouii0zgUWJKVPbDTfvtewgVvqCg XWfTJ6lhpSzCdOP4b9cXTpohvbi0vNfNmL1vvdP7YWaF3vNuGoFuScv7jCeUBuLQ j6Rsmmx54T94fb6fIOQXYtDl/5A6E0MaSbApIi/2xLmclsK9Yu7GcN4Li6srxlfn mGcg0X16DiOViMolPnyV9BUhGUubJ3Gge7OggXDe -----END CERTIFICATE-----Generated at Wed Oct 29 07:38:36 2025 by rpki-client