$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31312e302f32342d3234203d3e20313431383938.roa File: 3230322e3135342e31312e302f32342d3234203d3e20313431383938.roa (raw, json) Hash identifier: 54Ljt7w2+3bCs/X+gNAM1B6kN/UFpf/bAD72tus+++8= Subject key identifier: F1:A6:9D:5A:B5:23:87:8A:CC:CB:83:4F:E7:A2:BC:70:63:9F:C2:58 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 39E1A10ADF8540131E1C6A666BF2870A83FFA854 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31312e302f32342d3234203d3e20313431383938.roa Signing time: Wed 16 Jul 2025 03:00:01 +0000 ROA not before: Wed 16 Jul 2025 02:55:01 +0000 ROA not after: Wed 15 Jul 2026 03:00:01 +0000 asID: 141898 IP address blocks: 202.154.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 13:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:e1:a1:0a:df:85:40:13:1e:1c:6a:66:6b:f2:87:0a:83:ff:a8:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Jul 16 02:55:01 2025 GMT Not After : Jul 15 03:00:01 2026 GMT Subject: CN=F1A69D5AB523878ACCCB834FE7A2BC70639FC258 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b0:11:94:e8:62:59:78:9e:96:d4:ef:3e:5b: 8f:65:c0:88:09:c6:73:c2:ae:df:09:e0:83:83:db: 1c:c9:15:5d:42:55:7e:43:c4:22:1f:f8:0f:17:1f: 9c:a5:68:0e:12:be:cb:d0:a8:59:01:1c:90:53:bf: d5:7f:09:af:ca:f1:66:ae:64:c3:59:f4:4e:ec:c4: ee:bc:e3:b7:bb:36:92:11:53:80:e3:93:8f:f8:b3: 45:09:08:47:e7:b8:63:f1:36:19:6c:57:74:f4:2d: b5:ca:97:ba:86:33:a4:b5:9b:68:c8:47:d7:6b:79: 1a:52:a3:63:ba:04:d2:87:a8:b3:d0:4b:b4:65:1c: 03:9d:a7:ad:c4:5e:2b:22:c6:ed:9b:d6:ba:9a:3a: 81:28:53:54:db:e4:bb:7a:de:70:26:3f:0b:d8:95: af:f1:c5:18:24:fa:d8:81:7f:32:10:61:c2:4a:37: fc:03:ec:4d:3e:d7:71:72:c6:50:cc:c8:db:6f:76: fd:19:ad:8c:5d:d5:9b:05:f0:b5:21:f8:e7:2e:17: 96:4e:4f:91:e7:67:6e:91:3e:2b:97:f4:11:22:29: b8:83:5e:f8:4a:55:4b:3e:d2:45:4b:09:6c:75:4f: f4:c3:2f:14:60:c0:0a:52:f4:e9:d7:cc:5a:25:a6: e9:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:A6:9D:5A:B5:23:87:8A:CC:CB:83:4F:E7:A2:BC:70:63:9F:C2:58 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31312e302f32342d3234203d3e20313431383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.11.0/24 Signature Algorithm: sha256WithRSAEncryption 89:17:e0:58:92:b9:71:c4:da:28:54:7a:8e:d3:23:d0:a6:35: 40:5f:26:c7:a7:67:15:c1:04:cf:02:68:38:ec:4c:35:c9:1f: da:92:67:d4:86:28:c8:70:c6:b1:db:cf:84:da:91:5a:c5:c3: a2:fe:36:4b:ce:92:93:93:b7:97:e6:19:d8:e2:31:e8:e2:cf: 2e:c3:66:60:1a:47:af:4e:6f:09:e5:f9:b0:e1:c7:c6:7b:bd: 6b:b6:49:d9:2c:16:e0:bc:ad:75:70:94:17:2e:7b:75:03:65: 79:03:59:32:72:38:1f:04:0a:26:40:e5:1d:b5:0d:a5:9a:2c: 5b:bc:62:bd:3c:96:32:8c:fc:11:91:e6:d0:1e:81:0c:4d:14: 45:85:c9:7f:4d:f7:88:ca:e7:d5:bb:0f:a5:38:04:fc:e6:0b: 12:8c:f7:83:e8:b6:c4:86:31:ee:51:23:1d:2b:93:52:c7:8b: 32:f9:d5:74:19:38:92:e6:33:34:e5:01:d9:95:1e:e7:a2:5e: 59:04:6c:08:de:0a:86:c3:fe:68:d9:72:ce:59:e1:3e:d8:8a: b0:9e:96:22:08:98:6f:51:c1:24:79:f8:78:52:d2:1f:20:8f: 2f:d7:6c:95:61:f5:bf:48:75:e3:f0:b0:f5:9b:0a:e2:cb:fc: 24:b2:fc:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOeGhCt+FQBMeHGpma/KHCoP/qFQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNTA3MTYwMjU1MDFaFw0yNjA3MTUwMzAwMDFaMDMxMTAvBgNV BAMTKEYxQTY5RDVBQjUyMzg3OEFDQ0NCODM0RkU3QTJCQzcwNjM5RkMyNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxsBGU6GJZeJ6W1O8+W49lwIgJ xnPCrt8J4IOD2xzJFV1CVX5DxCIf+A8XH5ylaA4SvsvQqFkBHJBTv9V/Ca/K8Wau ZMNZ9E7sxO6847e7NpIRU4Djk4/4s0UJCEfnuGPxNhlsV3T0LbXKl7qGM6S1m2jI R9dreRpSo2O6BNKHqLPQS7RlHAOdp63EXisixu2b1rqaOoEoU1Tb5Lt63nAmPwvY la/xxRgk+tiBfzIQYcJKN/wD7E0+13FyxlDMyNtvdv0ZrYxd1ZsF8LUh+OcuF5ZO T5HnZ26RPiuX9BEiKbiDXvhKVUs+0kVLCWx1T/TDLxRgwApS9OnXzFolpumZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8aadWrUjh4rMy4NP56K8cGOfwlgwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzgzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypoLMA0GCSqG SIb3DQEBCwUAA4IBAQCJF+BYkrlxxNooVHqO0yPQpjVAXybHp2cVwQTPAmg47Ew1 yR/akmfUhijIcMax28+E2pFaxcOi/jZLzpKTk7eX5hnY4jHo4s8uw2ZgGkevTm8J 5fmw4cfGe71rtknZLBbgvK11cJQXLnt1A2V5A1kycjgfBAomQOUdtQ2lmixbvGK9 PJYyjPwRkebQHoEMTRRFhcl/TfeIyufVuw+lOAT85gsSjPeD6LbEhjHuUSMdK5NS x4sy+dV0GTiS5jM05QHZlR7nol5ZBGwI3gqGw/5o2XLOWeE+2IqwnpYiCJhvUcEk efh4UtIfII8v12yVYfW/SHXj8LD1mwriy/wksvyN -----END CERTIFICATE-----Generated at Fri Aug 8 20:39:55 2025 by rpki-client