$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35352e302f32342d3234203d3e20313430343735.roa File: 3230322e31302e35352e302f32342d3234203d3e20313430343735.roa (raw, json) Hash identifier: lL570HClg96u1KXZ9sJyqf8kPj1FRroj8cGKU/nkYi4= Subject key identifier: 88:CA:88:CD:01:41:61:63:1D:D4:DC:C0:9D:8D:88:AF:91:E7:98:83 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 2E97E19796B9A91E42A310687DC7AF565A854440 Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35352e302f32342d3234203d3e20313430343735.roa Signing time: Wed 12 Mar 2025 02:05:10 +0000 ROA not before: Wed 12 Mar 2025 02:00:10 +0000 ROA not after: Wed 11 Mar 2026 02:05:10 +0000 asID: 140475 IP address blocks: 202.10.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 15:23:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:97:e1:97:96:b9:a9:1e:42:a3:10:68:7d:c7:af:56:5a:85:44:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Mar 12 02:00:10 2025 GMT Not After : Mar 11 02:05:10 2026 GMT Subject: CN=88CA88CD014161631DD4DCC09D8D88AF91E79883 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:df:0d:4c:5b:09:37:cb:08:ba:ef:92:a1:a2: 41:d5:e6:f2:bd:ed:15:67:76:7c:fe:bb:9f:03:d1: 5f:d9:07:d9:0b:74:83:0f:65:bb:2f:01:5b:af:86: f5:7e:84:d9:09:b8:9b:5b:a7:f7:1e:9d:1d:89:f4: 5d:4e:14:90:4a:41:bd:49:21:9e:c4:3d:3d:89:a3: ac:aa:ba:f4:67:62:05:59:d6:fc:77:c5:b5:a7:08: 83:ec:21:fc:c3:1e:4a:74:85:b8:63:91:76:74:fe: 5d:fd:e0:64:16:9b:e9:19:bb:e2:8b:cc:9c:b2:a7: 00:a7:04:f9:c6:b6:c4:1b:7d:32:8f:c5:40:ef:b3: a1:30:14:47:00:d9:87:35:e0:8e:f0:87:4d:eb:32: 8c:4f:8d:58:b7:42:27:34:a2:0e:bd:db:92:55:c8: ac:47:51:fc:b1:ad:e9:42:31:ae:db:40:0c:6c:e0: 13:e3:15:45:d5:57:1a:9f:10:dd:93:29:d2:ce:9a: a1:ae:01:8e:d2:bc:6f:d2:c9:2e:c8:ce:9d:b0:f4: da:99:19:90:ca:9d:57:b3:77:5a:f7:1b:1e:32:bd: be:68:b8:6a:aa:8a:84:03:4a:ab:77:26:f6:59:f0: c7:2c:3e:f2:df:a3:21:6b:74:99:75:67:2a:78:a4: 9f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:CA:88:CD:01:41:61:63:1D:D4:DC:C0:9D:8D:88:AF:91:E7:98:83 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35352e302f32342d3234203d3e20313430343735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.55.0/24 Signature Algorithm: sha256WithRSAEncryption 11:c1:15:c1:3d:c2:21:34:03:fd:db:20:e9:48:e6:a3:a2:76: a7:83:03:38:d7:12:d3:65:4d:f4:39:7c:f1:15:e3:4f:5f:90: 8d:cc:90:a3:91:00:86:b9:76:0e:e7:a1:95:21:aa:fd:84:8a: a0:00:fd:bd:bd:5b:f6:96:2d:6c:f1:be:ea:21:62:1f:be:ba: ee:64:23:56:64:85:6a:e3:e6:1d:06:62:f1:81:78:21:66:65: 98:a2:29:0c:fc:8f:48:a4:92:4b:c2:95:d6:18:b5:4a:31:37: b7:36:21:3a:2c:25:63:18:3c:55:8a:23:58:c8:d3:5a:6e:85: a5:92:fc:29:32:3e:e9:de:47:c8:36:e6:b2:5a:55:f0:7c:72: e8:ca:85:7d:44:61:8d:ca:c9:21:49:4a:86:5b:40:1d:1d:6f: 4c:d4:86:59:85:41:57:3f:b5:43:65:eb:1e:5b:1c:ce:ef:f7: af:4c:d9:2d:b3:fd:c3:15:67:90:1d:91:08:e9:8b:a7:a6:26: 6e:bf:0f:9e:0e:72:7e:f8:41:fd:74:34:a0:75:ed:53:5b:b3: ca:d1:d4:68:2f:66:fa:4d:33:e7:34:b0:4e:bd:40:14:8a:c4: 69:e2:08:13:4d:8c:5b:8c:82:8e:23:a1:7c:0e:22:08:36:9a: 21:a6:61:9b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULpfhl5a5qR5CoxBofcevVlqFREAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNTAzMTIwMjAwMTBaFw0yNjAzMTEwMjA1MTBaMDMxMTAvBgNV BAMTKDg4Q0E4OENEMDE0MTYxNjMxREQ0RENDMDlEOEQ4OEFGOTFFNzk4ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs3w1MWwk3ywi675KhokHV5vK9 7RVndnz+u58D0V/ZB9kLdIMPZbsvAVuvhvV+hNkJuJtbp/cenR2J9F1OFJBKQb1J IZ7EPT2Jo6yquvRnYgVZ1vx3xbWnCIPsIfzDHkp0hbhjkXZ0/l394GQWm+kZu+KL zJyypwCnBPnGtsQbfTKPxUDvs6EwFEcA2Yc14I7wh03rMoxPjVi3Qic0og6925JV yKxHUfyxrelCMa7bQAxs4BPjFUXVVxqfEN2TKdLOmqGuAY7SvG/SyS7Izp2w9NqZ GZDKnVezd1r3Gx4yvb5ouGqqioQDSqt3JvZZ8McsPvLfoyFrdJl1Zyp4pJ/VAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUiMqIzQFBYWMd1NzAnY2Ir5HnmIMwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzAzMjJlMzEzMDJlMzUzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzczNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoKNzANBgkqhkiG 9w0BAQsFAAOCAQEAEcEVwT3CITQD/dsg6Ujmo6J2p4MDONcS02VN9Dl88RXjT1+Q jcyQo5EAhrl2DuehlSGq/YSKoAD9vb1b9pYtbPG+6iFiH7667mQjVmSFauPmHQZi 8YF4IWZlmKIpDPyPSKSSS8KV1hi1SjE3tzYhOiwlYxg8VYojWMjTWm6FpZL8KTI+ 6d5HyDbmslpV8Hxy6MqFfURhjcrJIUlKhltAHR1vTNSGWYVBVz+1Q2XrHlsczu/3 r0zZLbP9wxVnkB2RCOmLp6Ymbr8Png5yfvhB/XQ0oHXtU1uzytHUaC9m+k0z5zSw Tr1AFIrEaeIIE02MW4yCjiOhfA4iCDaaIaZhmw== -----END CERTIFICATE-----Generated at Wed Oct 29 13:21:15 2025 by rpki-client