$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e36322e302f32342d3234203d3e20313530353031.roa File: 3230322e31302e36322e302f32342d3234203d3e20313530353031.roa (raw, json) Hash identifier: RA0dEmWofu9VoMSQ/341O6y+HXDRp9y2vRcLh4F1ODI= Subject key identifier: 50:0E:19:4D:87:9E:6E:A5:B1:8E:92:54:2C:2C:87:9E:71:7C:E7:E4 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 29CFF854F87428BC67B87710CF381B937A4BC15D Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e36322e302f32342d3234203d3e20313530353031.roa Signing time: Mon 21 Apr 2025 08:05:41 +0000 ROA not before: Mon 21 Apr 2025 08:00:41 +0000 ROA not after: Mon 20 Apr 2026 08:05:41 +0000 asID: 150501 IP address blocks: 202.10.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 15:23:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:cf:f8:54:f8:74:28:bc:67:b8:77:10:cf:38:1b:93:7a:4b:c1:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Apr 21 08:00:41 2025 GMT Not After : Apr 20 08:05:41 2026 GMT Subject: CN=500E194D879E6EA5B18E92542C2C879E717CE7E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e3:a4:05:c6:7d:96:a0:54:1e:cb:e6:9f:a7: d2:c4:11:4c:23:ea:2a:7b:d9:59:21:2f:6b:29:9d: 4d:66:57:f5:8a:2a:5b:4c:c8:a0:20:10:05:9e:1a: b9:77:c5:a3:16:ab:cb:20:4b:27:8a:ea:35:30:a1: 00:27:4e:d8:68:69:8a:c8:b6:25:16:43:01:a4:c4: e0:e5:c1:b1:91:43:b4:c0:78:3f:08:aa:f4:a0:08: d7:02:40:48:f9:14:0c:d5:5b:a6:27:33:34:27:56: bb:78:f9:9d:91:c0:a5:5c:f0:a8:08:fd:f8:54:ea: c8:f4:85:2c:f8:31:31:af:3c:22:72:d3:57:6c:58: 05:b1:e0:5d:56:75:12:c3:76:4a:2a:6d:67:2c:4a: c2:47:41:67:8e:7d:9e:cb:e3:c3:41:f8:c8:9b:e1: 78:b3:11:4c:f7:65:27:2b:2c:90:74:d9:e5:50:6e: b9:a7:f9:65:71:73:b5:0b:1e:45:47:0b:e1:7b:55: 97:3a:17:da:1a:48:ae:54:6e:76:b3:9e:25:7f:73: af:c5:d0:82:b2:a3:8a:fa:ab:dc:52:28:60:22:00: 92:bf:4b:c9:c0:c4:6d:af:68:7c:5c:07:a1:2d:89: be:c2:23:8c:bd:06:e9:d7:44:27:4b:0b:98:ac:74: 3c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:0E:19:4D:87:9E:6E:A5:B1:8E:92:54:2C:2C:87:9E:71:7C:E7:E4 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e36322e302f32342d3234203d3e20313530353031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.62.0/24 Signature Algorithm: sha256WithRSAEncryption 80:89:ec:f8:2f:18:b9:2b:c8:8b:7d:b2:6e:3a:88:fd:26:39: 79:56:f5:ac:c4:42:30:31:be:f0:d0:be:33:75:b1:d9:9a:07: 73:cd:b2:87:d7:62:2d:a8:bc:29:0d:b3:3f:0b:6b:41:e6:26: 5f:89:ff:c1:75:cf:09:0d:f0:b2:07:2f:16:77:10:94:70:00: c1:89:e9:fc:d6:7d:d8:48:14:de:0c:d1:fc:08:49:e8:bc:f8: 87:53:0d:77:4d:87:c1:6c:cd:f2:0f:86:d5:cc:8c:e2:61:41: 57:c3:3f:11:2e:93:ed:9a:4f:ee:2c:68:24:d2:c1:0e:17:8d: 8a:3f:e6:37:ac:c3:ea:c1:55:2d:19:b7:ab:09:79:d0:5d:c7: aa:f8:3d:c1:a3:11:af:32:bd:33:d1:ff:05:c9:63:42:94:87: ed:04:3c:b6:a8:87:d2:85:a4:55:9d:80:0d:de:45:25:33:8c: 20:92:45:a1:c7:a5:91:64:20:33:fd:43:7c:8c:7d:d9:88:b0: 3b:84:e6:37:66:a5:49:20:bb:7a:b6:5a:82:dc:8b:84:59:bc: 77:6c:52:b7:a2:1f:bd:43:66:62:55:67:e7:a1:91:2a:f6:d6: 51:4c:07:36:18:88:b6:c0:ea:5b:ee:66:28:e8:d1:b1:86:11: 78:3d:37:9e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKc/4VPh0KLxnuHcQzzgbk3pLwV0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNTA0MjEwODAwNDFaFw0yNjA0MjAwODA1NDFaMDMxMTAvBgNV BAMTKDUwMEUxOTREODc5RTZFQTVCMThFOTI1NDJDMkM4NzlFNzE3Q0U3RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg46QFxn2WoFQey+afp9LEEUwj 6ip72VkhL2spnU1mV/WKKltMyKAgEAWeGrl3xaMWq8sgSyeK6jUwoQAnTthoaYrI tiUWQwGkxODlwbGRQ7TAeD8IqvSgCNcCQEj5FAzVW6YnMzQnVrt4+Z2RwKVc8KgI /fhU6sj0hSz4MTGvPCJy01dsWAWx4F1WdRLDdkoqbWcsSsJHQWeOfZ7L48NB+Mib 4XizEUz3ZScrLJB02eVQbrmn+WVxc7ULHkVHC+F7VZc6F9oaSK5UbnazniV/c6/F 0IKyo4r6q9xSKGAiAJK/S8nAxG2vaHxcB6Etib7CI4y9BunXRCdLC5isdDxNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUUA4ZTYeebqWxjpJULCyHnnF85+QwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzAzMjJlMzEzMDJlMzYzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM1MzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoKPjANBgkqhkiG 9w0BAQsFAAOCAQEAgIns+C8YuSvIi32ybjqI/SY5eVb1rMRCMDG+8NC+M3Wx2ZoH c82yh9diLai8KQ2zPwtrQeYmX4n/wXXPCQ3wsgcvFncQlHAAwYnp/NZ92EgU3gzR /AhJ6Lz4h1MNd02HwWzN8g+G1cyM4mFBV8M/ES6T7ZpP7ixoJNLBDheNij/mN6zD 6sFVLRm3qwl50F3Hqvg9waMRrzK9M9H/BcljQpSH7QQ8tqiH0oWkVZ2ADd5FJTOM IJJFocelkWQgM/1DfIx92YiwO4TmN2alSSC7erZagtyLhFm8d2xSt6IfvUNmYlVn 56GRKvbWUUwHNhiItsDqW+5mKOjRsYYReD03ng== -----END CERTIFICATE-----Generated at Wed Oct 29 13:24:26 2025 by rpki-client