$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31352e302f32342d3234203d3e20313431383938.roa File: 3230322e3135342e31352e302f32342d3234203d3e20313431383938.roa (raw, json) Hash identifier: vsJ5WzGp45gbxGKZxt2QqXdYE6+x8XFID1b6vdf5F10= Subject key identifier: 03:E3:7E:F0:7C:58:D4:9F:17:4C:70:F1:DC:C9:99:60:A8:55:8F:2A Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 5F831261BD2BAD11B3F69DDB725545B529F76627 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31352e302f32342d3234203d3e20313431383938.roa Signing time: Wed 16 Jul 2025 03:00:01 +0000 ROA not before: Wed 16 Jul 2025 02:55:01 +0000 ROA not after: Wed 15 Jul 2026 03:00:01 +0000 asID: 141898 IP address blocks: 202.154.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 13:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:83:12:61:bd:2b:ad:11:b3:f6:9d:db:72:55:45:b5:29:f7:66:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Jul 16 02:55:01 2025 GMT Not After : Jul 15 03:00:01 2026 GMT Subject: CN=03E37EF07C58D49F174C70F1DCC99960A8558F2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:28:2e:a7:3c:58:ef:7c:b3:25:6e:c5:82:98: c6:14:3c:79:95:f5:00:ba:7a:c8:4c:fe:e9:c6:11: a4:05:6b:4c:f5:76:00:2b:e6:e0:fa:25:1e:fb:47: 05:f9:72:42:f6:bf:eb:fd:ad:2e:31:7b:96:10:b8: a8:98:9f:36:e6:44:2a:73:ab:44:08:35:3a:9f:a2: 1d:8c:8e:e8:7b:2c:22:c6:bd:b1:98:5a:1d:a3:7f: 82:7f:f9:ba:b0:80:7d:d4:f0:30:a5:10:7e:2a:4a: e4:ca:62:29:80:3a:9f:b2:03:b7:aa:d2:4d:62:7c: 29:8c:37:30:e1:0b:70:38:f5:ad:c0:d4:a7:f6:71: 5c:ca:b7:77:7e:66:68:20:2d:88:85:6b:2c:f7:3a: eb:cd:cf:7f:97:74:44:c2:ba:27:ce:f7:a1:13:1d: a9:72:e3:6b:25:46:7c:55:36:0a:aa:39:14:b3:78: 81:d7:11:6b:bc:a0:dd:3d:60:10:85:8d:b6:de:c0: 70:b4:38:60:ee:fa:f3:86:fe:52:02:e9:2d:17:10: 48:22:f9:64:1a:c3:78:bf:72:a7:b2:bb:c4:94:7f: b2:17:63:78:84:99:b0:8e:75:16:77:eb:8e:eb:68: df:73:87:59:d0:df:88:7e:6b:ae:00:66:4b:c9:c9: 0b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:E3:7E:F0:7C:58:D4:9F:17:4C:70:F1:DC:C9:99:60:A8:55:8F:2A X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31352e302f32342d3234203d3e20313431383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.15.0/24 Signature Algorithm: sha256WithRSAEncryption 36:fc:d8:7b:0d:4a:d6:c4:40:68:be:7b:30:6c:d6:2e:14:76: b3:f5:f9:ce:0c:7c:1d:08:83:af:7d:b5:00:ac:53:b6:cf:f7: a1:58:04:4c:cf:7f:2a:76:aa:83:dc:8b:6e:d0:e3:14:c9:7c: ef:8f:13:6c:4f:9b:d7:ea:49:69:86:22:97:53:77:b2:6c:1a: 87:4f:fc:8e:6d:8b:ed:fc:53:c2:f6:ec:4c:15:05:22:08:77: ea:9f:6c:03:91:b6:68:11:16:f1:9b:2f:10:cc:36:4d:2d:da: 3e:c3:85:d1:0b:9d:73:77:fb:39:f3:0a:de:b5:d0:72:f3:ff: 6f:7a:f5:19:1d:38:c4:76:0a:af:74:67:93:b4:1f:20:75:58: 53:99:4d:af:89:4f:55:c0:71:bf:78:52:05:fd:e2:98:f6:79: ad:27:63:46:ae:e3:75:fa:fc:f1:56:07:df:77:71:b5:0c:db: 3c:69:73:4b:da:bb:1b:3c:91:ad:2d:e6:5b:34:39:2a:6e:f3: 4f:d0:42:fd:f9:4c:a9:bd:0c:de:a5:0c:50:15:55:03:63:03: c6:5e:01:c8:2c:07:9c:40:ea:04:b3:14:43:c7:46:04:04:26: e7:17:98:fc:79:ad:e7:f4:48:d4:ec:9a:0c:29:f3:46:0e:bc: 3a:2a:fd:ae -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUX4MSYb0rrRGz9p3bclVFtSn3ZicwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNTA3MTYwMjU1MDFaFw0yNjA3MTUwMzAwMDFaMDMxMTAvBgNV BAMTKDAzRTM3RUYwN0M1OEQ0OUYxNzRDNzBGMURDQzk5OTYwQTg1NThGMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxKC6nPFjvfLMlbsWCmMYUPHmV 9QC6eshM/unGEaQFa0z1dgAr5uD6JR77RwX5ckL2v+v9rS4xe5YQuKiYnzbmRCpz q0QINTqfoh2Mjuh7LCLGvbGYWh2jf4J/+bqwgH3U8DClEH4qSuTKYimAOp+yA7eq 0k1ifCmMNzDhC3A49a3A1Kf2cVzKt3d+ZmggLYiFayz3OuvNz3+XdETCuifO96ET Haly42slRnxVNgqqORSzeIHXEWu8oN09YBCFjbbewHC0OGDu+vOG/lIC6S0XEEgi +WQaw3i/cqeyu8SUf7IXY3iEmbCOdRZ3647raN9zh1nQ34h+a64AZkvJyQsxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUA+N+8HxY1J8XTHDx3MmZYKhVjyowHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzgzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypoPMA0GCSqG SIb3DQEBCwUAA4IBAQA2/Nh7DUrWxEBovnswbNYuFHaz9fnODHwdCIOvfbUArFO2 z/ehWARMz38qdqqD3Itu0OMUyXzvjxNsT5vX6klphiKXU3eybBqHT/yObYvt/FPC 9uxMFQUiCHfqn2wDkbZoERbxmy8QzDZNLdo+w4XRC51zd/s58wretdBy8/9vevUZ HTjEdgqvdGeTtB8gdVhTmU2viU9VwHG/eFIF/eKY9nmtJ2NGruN1+vzxVgffd3G1 DNs8aXNL2rsbPJGtLeZbNDkqbvNP0EL9+UypvQzepQxQFVUDYwPGXgHILAecQOoE sxRDx0YEBCbnF5j8ea3n9EjU7JoMKfNGDrw6Kv2u -----END CERTIFICATE-----Generated at Fri Aug 8 20:55:58 2025 by rpki-client