$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31342e302f32342d3234203d3e20313431383938.roa File: 3230322e3135342e31342e302f32342d3234203d3e20313431383938.roa (raw, json) Hash identifier: eejvEtGLXBzzi2i/vzy4cv+5D99T4UxeexhjMPGnxwg= Subject key identifier: 0B:6E:43:04:7D:AB:DC:42:B2:28:35:A2:43:AA:29:3B:A1:E8:A1:AE Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 2368808FB0D3007969C34217C2FB0446D8332D4E Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31342e302f32342d3234203d3e20313431383938.roa Signing time: Wed 16 Jul 2025 03:00:01 +0000 ROA not before: Wed 16 Jul 2025 02:55:01 +0000 ROA not after: Wed 15 Jul 2026 03:00:01 +0000 asID: 141898 IP address blocks: 202.154.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 13:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:68:80:8f:b0:d3:00:79:69:c3:42:17:c2:fb:04:46:d8:33:2d:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Jul 16 02:55:01 2025 GMT Not After : Jul 15 03:00:01 2026 GMT Subject: CN=0B6E43047DABDC42B22835A243AA293BA1E8A1AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e0:64:da:78:ee:29:8f:05:fe:8c:ac:f9:a7: 23:11:fa:97:0b:2d:d6:fc:30:93:b6:26:d7:19:77: 40:56:04:f5:84:d8:f8:d1:3c:cc:17:d1:80:51:7c: a2:ea:80:55:f5:29:09:68:5e:28:9d:59:72:7f:34: 87:ef:59:8f:df:c7:aa:86:17:e8:0c:f7:64:9f:f1: 57:c8:79:17:c9:5d:5b:ed:a9:83:e8:62:57:96:a4: 8d:66:99:d7:74:e1:06:38:22:33:1e:60:75:36:01: 2a:90:27:46:a0:97:e3:2d:d9:5c:5c:fc:7b:bd:1d: 7d:6f:70:7a:6c:2b:31:bd:5d:ee:ad:78:3d:c4:89: f1:33:3e:ec:4c:a5:b0:2e:62:37:1e:01:b9:b1:a8: 61:ad:a1:27:5f:ed:23:d8:cc:2b:65:56:3e:57:ea: 23:24:79:ea:e6:70:d9:dc:db:78:40:a4:84:75:c0: e2:19:26:b2:f7:96:ec:5a:e4:49:d9:1a:09:77:ca: b8:b4:4a:f8:1d:97:50:81:5f:4c:6d:f6:84:0f:9d: 5b:32:c9:11:1e:d4:b7:d2:15:a5:75:ba:1c:8c:bb: 37:ff:32:a1:5d:0f:29:79:4f:ee:de:77:7e:d8:69: 78:17:f6:57:0d:ed:e0:58:58:dc:c0:48:7d:d8:96: 30:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:6E:43:04:7D:AB:DC:42:B2:28:35:A2:43:AA:29:3B:A1:E8:A1:AE X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31342e302f32342d3234203d3e20313431383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.14.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:7b:98:66:5e:47:82:c1:d6:c1:0d:e8:3a:4d:0d:f0:f0:01: 3c:28:21:e8:ef:5b:a7:df:b6:eb:94:ce:91:85:a8:52:4c:52: a2:09:fb:13:ba:cc:87:67:63:05:ff:aa:8e:d9:32:62:d5:38: 66:aa:19:c9:e9:cb:92:ce:ac:6c:47:27:c8:88:b3:48:24:c6: d7:57:db:68:00:35:b9:89:0c:ed:50:5e:09:a4:6b:7a:0e:68: 98:fb:6b:7f:e3:92:f1:a0:38:e1:fc:bd:06:d9:bb:b5:f8:60: e3:dc:6d:cd:a9:70:cd:6e:fa:4f:39:ad:8e:a3:2b:a3:04:d9: 8e:94:58:b7:a2:59:f8:55:35:b7:dc:d4:38:a0:98:8a:94:84: 47:1a:37:8b:bd:ac:18:c6:75:8c:9d:76:b3:61:d7:24:d3:bd: a6:27:42:51:31:e7:93:3d:67:5c:aa:35:31:e4:15:00:f2:bf: d4:23:73:8a:f9:0a:47:c0:fb:b7:16:17:c4:a7:5d:57:c8:ec: e2:56:6e:2f:f5:53:96:f7:4c:8d:50:69:c0:b6:83:00:a4:07: 09:b1:67:22:69:68:dc:dd:17:09:e3:e0:79:3e:0f:0d:b4:a5: 69:f7:4a:45:33:9d:2d:31:b2:28:85:4d:d1:16:60:89:25:cd: 43:aa:b5:55 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUI2iAj7DTAHlpw0IXwvsERtgzLU4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNTA3MTYwMjU1MDFaFw0yNjA3MTUwMzAwMDFaMDMxMTAvBgNV BAMTKDBCNkU0MzA0N0RBQkRDNDJCMjI4MzVBMjQzQUEyOTNCQTFFOEExQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt4GTaeO4pjwX+jKz5pyMR+pcL Ldb8MJO2JtcZd0BWBPWE2PjRPMwX0YBRfKLqgFX1KQloXiidWXJ/NIfvWY/fx6qG F+gM92Sf8VfIeRfJXVvtqYPoYleWpI1mmdd04QY4IjMeYHU2ASqQJ0agl+Mt2Vxc /Hu9HX1vcHpsKzG9Xe6teD3EifEzPuxMpbAuYjceAbmxqGGtoSdf7SPYzCtlVj5X 6iMkeermcNnc23hApIR1wOIZJrL3luxa5EnZGgl3yri0Svgdl1CBX0xt9oQPnVsy yREe1LfSFaV1uhyMuzf/MqFdDyl5T+7ed37YaXgX9lcN7eBYWNzASH3YljD3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUC25DBH2r3EKyKDWiQ6opO6Hooa4wHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzgzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypoOMA0GCSqG SIb3DQEBCwUAA4IBAQALe5hmXkeCwdbBDeg6TQ3w8AE8KCHo71un37brlM6RhahS TFKiCfsTusyHZ2MF/6qO2TJi1ThmqhnJ6cuSzqxsRyfIiLNIJMbXV9toADW5iQzt UF4JpGt6DmiY+2t/45LxoDjh/L0G2bu1+GDj3G3NqXDNbvpPOa2OoyujBNmOlFi3 oln4VTW33NQ4oJiKlIRHGjeLvawYxnWMnXazYdck072mJ0JRMeeTPWdcqjUx5BUA 8r/UI3OK+QpHwPu3FhfEp11XyOziVm4v9VOW90yNUGnAtoMApAcJsWciaWjc3RcJ 4+B5Pg8NtKVp90pFM50tMbIohU3RFmCJJc1DqrVV -----END CERTIFICATE-----Generated at Sat Aug 9 01:17:11 2025 by rpki-client