$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34322e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e34322e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: oeTYohibSnnZXim+ZkL35QfrvFfJfarGJPwa9aJT2lg= Subject key identifier: E8:34:39:EF:C1:09:C7:78:5D:E2:47:6D:C8:06:74:45:23:12:35:0B Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 4BF6DA12DDF3FB10365028C42C87F0AC902B703C Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34322e302f32332d3234203d3e2034343334.roa Signing time: Wed 23 Jul 2025 11:02:22 +0000 ROA not before: Wed 23 Jul 2025 10:57:22 +0000 ROA not after: Wed 22 Jul 2026 11:02:22 +0000 asID: 4434 IP address blocks: 202.154.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 10:33:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:f6:da:12:dd:f3:fb:10:36:50:28:c4:2c:87:f0:ac:90:2b:70:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Jul 23 10:57:22 2025 GMT Not After : Jul 22 11:02:22 2026 GMT Subject: CN=E83439EFC109C7785DE2476DC80674452312350B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:89:37:08:51:55:fa:fc:13:ab:f2:fb:61:35: 5f:d4:73:37:bd:d9:9d:2d:f6:56:dd:ab:43:9a:39: 53:b3:8d:67:ed:b4:98:e5:29:98:bf:d5:eb:74:af: 34:40:e0:2d:ad:c0:88:b0:b3:fa:9d:5f:52:56:e0: b2:0e:dd:42:ec:36:4c:14:34:01:6c:4c:79:63:5a: b7:a4:86:10:42:b4:6d:20:ed:0c:a0:db:4e:54:86: ad:58:0f:2a:a7:4c:62:2e:34:3e:fd:36:97:b6:55: c3:5a:84:f1:c7:ba:ce:f4:08:b1:f1:91:2a:8f:26: 3c:05:e7:b8:7f:58:e2:65:b8:2b:a3:68:4d:ed:24: 42:a6:cb:88:e1:ae:85:0d:dc:76:af:6a:7a:80:af: 75:7c:4c:17:fe:95:03:6b:ab:3f:c3:33:81:42:a5: 7d:fe:ea:9d:8f:06:8a:07:aa:5e:82:9d:5a:b6:44: 00:4d:38:84:36:75:7f:f4:d7:54:b3:24:26:1a:be: 2e:e3:6a:a3:4d:f7:52:12:a8:53:80:30:52:84:30: 9a:e5:b6:4f:c4:27:91:f0:37:be:d1:37:6a:96:cf: 2e:bd:60:ec:52:49:f3:b9:49:d9:7d:db:7c:82:c1: 2f:31:57:e1:8f:a6:09:00:93:e9:91:6e:06:c0:18: 48:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:34:39:EF:C1:09:C7:78:5D:E2:47:6D:C8:06:74:45:23:12:35:0B X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34322e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.42.0/23 Signature Algorithm: sha256WithRSAEncryption bc:57:3e:f4:00:f0:26:28:41:21:e4:76:a6:08:1c:ef:63:63: 20:8e:78:2a:4c:21:48:94:37:7e:46:ca:15:bb:31:cd:b6:c0: ee:8e:ab:22:5e:8b:06:d0:2a:d8:f6:01:05:06:bc:92:51:c3: 3c:d0:2e:31:51:56:15:ab:96:2d:72:07:8e:e1:cb:df:33:07: 68:c5:20:8f:0e:6c:66:dc:91:fb:84:ad:09:82:86:c4:16:2c: a7:8f:35:ff:07:46:eb:9c:73:d7:43:62:a5:ec:09:27:74:cf: 20:5f:15:42:f0:ec:60:c2:ae:ec:2d:98:7a:96:2c:26:99:ef: 0a:22:67:db:61:c9:a6:9b:66:c3:e3:9c:2c:66:05:3d:f4:80: 69:01:79:2d:02:b8:d7:5d:9e:cb:76:7c:a2:ff:ed:44:ae:79: 18:27:67:98:3c:d9:1f:be:19:f1:18:ab:23:fb:8f:e2:a9:a1: 0f:a3:45:0c:7f:9d:b3:f9:c7:10:70:7c:fc:f0:fd:14:e4:43: 57:5d:7b:2a:63:9a:4c:76:e8:45:83:ae:14:83:85:dd:a3:80: 6f:bc:05:54:f5:4b:c6:12:b5:9c:d7:52:85:ce:ee:3d:25:71: 0a:d8:ec:47:ce:65:96:e4:44:f9:20:3e:45:66:9e:f6:2c:6c: 3e:4c:a0:cc -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUS/baEt3z+xA2UCjELIfwrJArcDwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNTA3MjMxMDU3MjJaFw0yNjA3MjIxMTAyMjJaMDMxMTAvBgNV BAMTKEU4MzQzOUVGQzEwOUM3Nzg1REUyNDc2REM4MDY3NDQ1MjMxMjM1MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdiTcIUVX6/BOr8vthNV/Ucze9 2Z0t9lbdq0OaOVOzjWfttJjlKZi/1et0rzRA4C2twIiws/qdX1JW4LIO3ULsNkwU NAFsTHljWrekhhBCtG0g7Qyg205Uhq1YDyqnTGIuND79Npe2VcNahPHHus70CLHx kSqPJjwF57h/WOJluCujaE3tJEKmy4jhroUN3HavanqAr3V8TBf+lQNrqz/DM4FC pX3+6p2PBooHql6CnVq2RABNOIQ2dX/011SzJCYavi7jaqNN91ISqFOAMFKEMJrl tk/EJ5HwN77RN2qWzy69YOxSSfO5Sdl923yCwS8xV+GPpgkAk+mRbgbAGEgLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU6DQ578EJx3hd4kdtyAZ0RSMSNQswHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzNDMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmiowDQYJKoZIhvcN AQELBQADggEBALxXPvQA8CYoQSHkdqYIHO9jYyCOeCpMIUiUN35GyhW7Mc22wO6O qyJeiwbQKtj2AQUGvJJRwzzQLjFRVhWrli1yB47hy98zB2jFII8ObGbckfuErQmC hsQWLKePNf8HRuucc9dDYqXsCSd0zyBfFULw7GDCruwtmHqWLCaZ7woiZ9thyaab ZsPjnCxmBT30gGkBeS0CuNddnst2fKL/7USueRgnZ5g82R++GfEYqyP7j+KpoQ+j RQx/nbP5xxBwfPzw/RTkQ1ddeypjmkx26EWDrhSDhd2jgG+8BVT1S8YStZzXUoXO 7j0lcQrY7EfOZZbkRPkgPkVmnvYsbD5MoMw= -----END CERTIFICATE-----Generated at Wed Oct 29 07:36:55 2025 by rpki-client