$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32382e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e32382e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: Xkr9+BbgKkdOfIp7/uVWYj8j5BExvm2wckS+wmywVpQ= Subject key identifier: 90:59:69:61:B4:0A:34:8D:A0:33:89:46:73:4F:E9:BE:D9:74:01:C3 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 4B39082067EC44CB94FCB5C96E4642E49FF6994A Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32382e302f32332d3234203d3e2034343334.roa Signing time: Wed 23 Jul 2025 11:02:24 +0000 ROA not before: Wed 23 Jul 2025 10:57:24 +0000 ROA not after: Wed 22 Jul 2026 11:02:24 +0000 asID: 4434 IP address blocks: 202.154.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 01:40:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:39:08:20:67:ec:44:cb:94:fc:b5:c9:6e:46:42:e4:9f:f6:99:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Jul 23 10:57:24 2025 GMT Not After : Jul 22 11:02:24 2026 GMT Subject: CN=90596961B40A348DA0338946734FE9BED97401C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e0:84:a4:7c:8e:e7:9c:cb:3b:1f:1b:4a:6a: 1f:cf:ae:ad:42:29:9b:06:4b:f4:7e:5a:a6:95:ce: 6f:2b:b2:44:43:9d:66:cc:7c:bb:27:f9:d2:6b:b9: 95:24:15:59:21:8b:26:79:2a:7a:63:dc:dc:1a:5c: 27:6b:fc:f2:70:0b:9b:be:a2:1f:b7:a4:bf:06:33: 46:b6:b0:4b:25:e8:c3:06:65:26:50:07:db:41:21: 06:78:8e:75:28:3b:62:33:23:19:45:7a:a7:40:71: 37:6b:52:d5:46:42:3b:61:08:84:a6:d4:32:36:5f: b0:d6:2a:15:87:ea:c8:7c:f0:91:14:99:bc:2f:23: a8:6c:a8:c0:dc:08:83:f6:ff:bd:df:cf:74:0a:53: 33:e2:b3:91:f3:11:c9:f1:08:c4:f9:26:81:a7:99: da:10:cc:a3:ee:3e:d5:6c:cd:7f:64:0c:48:34:af: 35:81:e0:0c:cf:52:ff:b5:43:30:f6:30:04:4e:b6: be:4f:24:d1:af:03:55:be:cd:0d:0a:a2:72:06:97: 67:1d:6c:02:6e:fb:b7:b1:39:c9:64:69:53:c7:18: db:4b:d4:d8:3d:c8:4e:c5:dd:7b:f7:95:bb:01:34: f2:56:09:92:29:42:64:9a:0e:ee:a2:1d:57:7a:d4: 97:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:59:69:61:B4:0A:34:8D:A0:33:89:46:73:4F:E9:BE:D9:74:01:C3 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32382e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.28.0/23 Signature Algorithm: sha256WithRSAEncryption 40:2c:c4:30:21:37:e2:42:cc:c3:b7:0d:37:47:d3:ef:42:35: df:51:73:80:72:8f:35:b4:35:e4:ea:77:f6:f1:44:a2:75:9f: b2:31:f1:0a:25:5f:40:4c:00:0e:4f:80:9d:8e:57:e8:3d:50: fb:eb:d6:52:e1:04:d2:a8:c2:fe:6f:ef:77:a7:2b:5a:88:9c: f5:f4:2d:c6:95:38:cb:e4:94:3a:9a:38:1e:67:46:40:92:1e: 0b:49:72:86:2c:23:54:a1:82:e2:76:6a:d2:9f:a7:85:52:13: dc:c1:fd:14:2d:d0:53:6f:bf:62:a7:dc:9f:2a:61:9e:6e:24: c3:93:97:05:d1:28:7c:5c:75:da:43:46:cc:9a:27:9e:9c:ff: 5b:a0:f0:92:00:39:ce:8a:6c:35:3d:8a:3f:a7:60:7e:c3:1a: 0a:12:06:bd:98:5f:04:c3:d6:20:83:be:9c:51:a1:fe:59:e3: b8:86:ae:dd:9d:76:58:55:b6:08:c7:12:a9:31:41:d8:03:f2: ba:42:4c:bd:de:38:4d:3b:c6:36:32:90:ba:6c:a8:ac:a4:08: cf:11:5d:ce:cb:b2:24:bd:94:13:14:e4:b2:b2:1d:50:ad:7e: b4:66:9c:8c:24:27:be:66:1f:dc:60:8f:64:e4:f7:c4:a9:6a: ee:42:17:00 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSzkIIGfsRMuU/LXJbkZC5J/2mUowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNTA3MjMxMDU3MjRaFw0yNjA3MjIxMTAyMjRaMDMxMTAvBgNV BAMTKDkwNTk2OTYxQjQwQTM0OERBMDMzODk0NjczNEZFOUJFRDk3NDAxQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC94ISkfI7nnMs7HxtKah/Prq1C KZsGS/R+WqaVzm8rskRDnWbMfLsn+dJruZUkFVkhiyZ5Knpj3NwaXCdr/PJwC5u+ oh+3pL8GM0a2sEsl6MMGZSZQB9tBIQZ4jnUoO2IzIxlFeqdAcTdrUtVGQjthCISm 1DI2X7DWKhWH6sh88JEUmbwvI6hsqMDcCIP2/73fz3QKUzPis5HzEcnxCMT5JoGn mdoQzKPuPtVszX9kDEg0rzWB4AzPUv+1QzD2MAROtr5PJNGvA1W+zQ0KonIGl2cd bAJu+7exOclkaVPHGNtL1Ng9yE7F3Xv3lbsBNPJWCZIpQmSaDu6iHVd61JdzAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUkFlpYbQKNI2gM4lGc0/pvtl0AcMwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMjM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmhwwDQYJKoZIhvcN AQELBQADggEBAEAsxDAhN+JCzMO3DTdH0+9CNd9Rc4ByjzW0NeTqd/bxRKJ1n7Ix 8QolX0BMAA5PgJ2OV+g9UPvr1lLhBNKowv5v73enK1qInPX0LcaVOMvklDqaOB5n RkCSHgtJcoYsI1ShguJ2atKfp4VSE9zB/RQt0FNvv2Kn3J8qYZ5uJMOTlwXRKHxc ddpDRsyaJ56c/1ug8JIAOc6KbDU9ij+nYH7DGgoSBr2YXwTD1iCDvpxRof5Z47iG rt2ddlhVtgjHEqkxQdgD8rpCTL3eOE07xjYykLpsqKykCM8RXc7LsiS9lBMU5LKy HVCtfrRmnIwkJ75mH9xgj2Tk98Spau5CFwA= -----END CERTIFICATE-----Generated at Thu Aug 7 20:25:10 2025 by rpki-client