$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32302e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e32302e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: R3EsVF/rVF9GRFERCiXvXBkGIwN6HbirIt+4zyYoihQ= Subject key identifier: F5:AD:69:CB:8C:2C:0C:A2:73:0E:83:E3:F4:C8:BF:5A:ED:FF:76:C6 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 48AAAAB6DDD072F9946E882F8BE01C849A5553F9 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32302e302f32332d3234203d3e2034343334.roa Signing time: Wed 23 Jul 2025 11:02:24 +0000 ROA not before: Wed 23 Jul 2025 10:57:24 +0000 ROA not after: Wed 22 Jul 2026 11:02:24 +0000 asID: 4434 IP address blocks: 202.154.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 01:40:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:aa:aa:b6:dd:d0:72:f9:94:6e:88:2f:8b:e0:1c:84:9a:55:53:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Jul 23 10:57:24 2025 GMT Not After : Jul 22 11:02:24 2026 GMT Subject: CN=F5AD69CB8C2C0CA2730E83E3F4C8BF5AEDFF76C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2c:30:f6:14:27:13:82:a1:de:56:18:d5:74: 70:f1:69:e5:06:cf:63:7a:28:a9:35:d8:9e:4e:e1: 89:8b:45:02:e3:f5:9b:0b:31:bb:d8:70:57:bd:4a: 07:25:75:d7:90:50:c7:d0:79:84:a6:6c:9b:37:27: 18:52:21:fb:d4:b1:90:57:f4:e5:08:81:56:32:8f: 02:ff:69:ac:0e:d3:23:25:8e:a4:d4:01:70:45:8e: 05:f6:0a:0f:4b:50:48:e3:a2:10:47:5c:6b:b8:f5: a6:7c:1f:0e:ad:7d:7a:1c:7c:b3:2b:b4:ec:cd:3e: 0b:5f:ce:bd:a1:f1:cb:07:a0:7a:3d:42:ee:d6:b1: 08:a9:ca:49:86:39:28:e4:da:52:e8:45:e6:49:4f: f4:41:60:a2:4a:fb:69:f4:f1:0c:71:a2:41:fb:0c: 2c:3a:95:84:97:32:37:96:8e:c2:6d:b7:5e:ba:17: 31:3b:18:0b:6e:3b:8e:16:d6:ca:ab:80:7f:4c:2a: b3:56:2b:20:61:b3:25:52:77:e3:79:9a:6d:e4:ce: 78:d9:77:e5:8c:2e:27:17:df:04:f7:39:52:41:f2: 0c:b7:e1:4f:8d:16:19:7c:5c:10:87:68:fc:3c:1f: f2:62:d8:2d:5c:f4:37:25:23:cc:28:ca:4f:54:a7: fd:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:AD:69:CB:8C:2C:0C:A2:73:0E:83:E3:F4:C8:BF:5A:ED:FF:76:C6 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32302e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.20.0/23 Signature Algorithm: sha256WithRSAEncryption 25:c0:66:51:66:da:38:38:a8:bf:cb:e1:58:9d:99:40:bd:73: 60:f4:49:2c:76:2a:da:3e:7a:32:a8:a4:95:07:13:d9:72:da: aa:22:6d:0b:d9:19:eb:af:db:de:42:c2:42:69:25:8f:80:33: 67:0b:99:4b:b0:a4:c1:bb:d1:e5:72:d9:4c:4c:47:25:ec:c0: 37:eb:89:a8:3b:20:f7:88:ed:c6:6c:d5:4f:4e:c6:ae:91:87: 9d:c7:36:38:0f:5e:29:2a:79:e6:d8:6e:24:43:5a:26:ba:5a: f3:f5:cc:40:9c:4d:f8:74:85:57:09:41:ae:02:3b:1e:7d:93: 98:ad:48:42:08:34:87:4d:5d:2e:26:29:2f:4d:9a:4f:03:05: 6f:a5:f5:8b:48:49:23:9b:49:7b:7e:e8:b0:a3:d2:c4:1e:58: fc:76:19:a9:68:86:33:6c:ec:ed:4f:4e:c5:85:91:e3:df:89: 4f:c1:64:90:13:b0:da:41:05:62:45:8d:3d:1b:6f:3e:7c:88: 9f:98:90:c9:9d:70:1a:de:47:31:fe:0a:4a:bc:d1:cb:3d:cf: f3:34:c8:e3:06:02:84:dd:cf:08:2d:0f:fc:4b:26:98:6d:e2: 17:ea:f9:f8:9e:1b:3d:ee:14:9d:19:13:58:ca:3a:2f:9b:36: d3:fa:cc:01 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSKqqtt3QcvmUbogvi+AchJpVU/kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNTA3MjMxMDU3MjRaFw0yNjA3MjIxMTAyMjRaMDMxMTAvBgNV BAMTKEY1QUQ2OUNCOEMyQzBDQTI3MzBFODNFM0Y0QzhCRjVBRURGRjc2QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjLDD2FCcTgqHeVhjVdHDxaeUG z2N6KKk12J5O4YmLRQLj9ZsLMbvYcFe9SgclddeQUMfQeYSmbJs3JxhSIfvUsZBX 9OUIgVYyjwL/aawO0yMljqTUAXBFjgX2Cg9LUEjjohBHXGu49aZ8Hw6tfXocfLMr tOzNPgtfzr2h8csHoHo9Qu7WsQipykmGOSjk2lLoReZJT/RBYKJK+2n08QxxokH7 DCw6lYSXMjeWjsJtt166FzE7GAtuO44W1sqrgH9MKrNWKyBhsyVSd+N5mm3kznjZ d+WMLicX3wT3OVJB8gy34U+NFhl8XBCHaPw8H/Ji2C1c9DclI8woyk9Up/1zAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU9a1py4wsDKJzDoPj9Mi/Wu3/dsYwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmhQwDQYJKoZIhvcN AQELBQADggEBACXAZlFm2jg4qL/L4VidmUC9c2D0SSx2Kto+ejKopJUHE9ly2qoi bQvZGeuv295CwkJpJY+AM2cLmUuwpMG70eVy2UxMRyXswDfriag7IPeI7cZs1U9O xq6Rh53HNjgPXikqeebYbiRDWia6WvP1zECcTfh0hVcJQa4COx59k5itSEIINIdN XS4mKS9Nmk8DBW+l9YtISSObSXt+6LCj0sQeWPx2GalohjNs7O1PTsWFkePfiU/B ZJATsNpBBWJFjT0bbz58iJ+YkMmdcBreRzH+Ckq80cs9z/M0yOMGAoTdzwgtD/xL Jpht4hfq+fieGz3uFJ0ZE1jKOi+bNtP6zAE= -----END CERTIFICATE-----Generated at Thu Aug 7 20:25:07 2025 by rpki-client