$ rpki-client -vvf repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/3138302e3135302e3233322e302f32312d3234203d3e203234323130.roa File: 3138302e3135302e3233322e302f32312d3234203d3e203234323130.roa (raw, json) Hash identifier: uBYWq9KOdocMUKkuJh410FmbT/FJLpr3pkzLuhHu42c= Subject key identifier: 33:49:F8:80:F0:27:16:0E:52:25:0A:1E:12:73:A4:74:0B:C6:20:F1 Certificate issuer: /CN=63003FFDD063104898793061BDB2DB8D0788745D Certificate serial: 0963FC4D3355782753B9BBAA8062102B18A2311C Authority key identifier: 63:00:3F:FD:D0:63:10:48:98:79:30:61:BD:B2:DB:8D:07:88:74:5D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63003FFDD063104898793061BDB2DB8D0788745D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/3138302e3135302e3233322e302f32312d3234203d3e203234323130.roa Signing time: Sat 12 Jul 2025 07:02:24 +0000 ROA not before: Sat 12 Jul 2025 06:57:24 +0000 ROA not after: Sat 11 Jul 2026 07:02:24 +0000 asID: 24210 IP address blocks: 180.150.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/63003FFDD063104898793061BDB2DB8D0788745D.crl rsync://repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/63003FFDD063104898793061BDB2DB8D0788745D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63003FFDD063104898793061BDB2DB8D0788745D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 16:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:63:fc:4d:33:55:78:27:53:b9:bb:aa:80:62:10:2b:18:a2:31:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63003FFDD063104898793061BDB2DB8D0788745D Validity Not Before: Jul 12 06:57:24 2025 GMT Not After : Jul 11 07:02:24 2026 GMT Subject: CN=3349F880F027160E52250A1E1273A4740BC620F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:88:6b:dd:85:c1:6b:6a:3c:9d:5e:42:65:fa: 49:8b:06:14:de:9e:f7:dd:c0:8f:15:26:6b:d3:f2: dc:e8:59:ff:5f:e9:1b:de:25:36:74:9f:19:95:24: 9b:80:bc:45:bd:d1:45:b8:09:ba:a5:91:5a:88:02: 17:ec:b8:a9:49:e7:6e:ee:b5:39:af:3e:c5:ad:ef: 47:e4:dd:19:32:9f:84:63:f7:35:aa:43:f1:36:d2: 15:82:85:fa:01:83:e1:29:11:49:f6:ac:9a:5e:c8: d4:99:ee:3d:68:52:fb:73:fa:6b:00:0b:29:ce:55: 93:5a:97:5a:ea:42:0a:68:5a:3f:24:b3:ea:05:7a: 05:41:35:15:9d:f9:c1:5a:d9:e1:18:0a:ce:61:41: 4a:7e:03:02:c9:43:a7:2b:66:69:00:c3:9d:e6:8f: 2d:8e:c7:50:ac:15:8a:b9:25:0c:90:07:3c:dc:4e: d8:77:22:60:e5:74:35:2b:8b:69:78:66:88:c5:64: 14:06:63:af:cb:f1:1b:c9:61:b9:01:23:fb:f6:01: 3b:6e:6a:07:70:aa:e2:fc:29:f9:0f:4d:e1:d9:ce: dd:cf:4d:fd:95:3a:1a:42:68:6a:45:fc:b4:15:d3: c2:97:12:00:70:86:ff:c5:4d:74:49:d3:d4:9e:d2: 50:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:49:F8:80:F0:27:16:0E:52:25:0A:1E:12:73:A4:74:0B:C6:20:F1 X509v3 Authority Key Identifier: keyid:63:00:3F:FD:D0:63:10:48:98:79:30:61:BD:B2:DB:8D:07:88:74:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/63003FFDD063104898793061BDB2DB8D0788745D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63003FFDD063104898793061BDB2DB8D0788745D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/3138302e3135302e3233322e302f32312d3234203d3e203234323130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.150.232.0/21 Signature Algorithm: sha256WithRSAEncryption 0c:cf:24:72:bf:85:52:5d:ea:ca:b3:30:d5:49:e5:e3:96:d8: d5:7a:85:78:f1:c8:11:f2:0d:06:56:a0:4f:f2:8b:a0:91:2a: cf:3d:47:f8:68:08:c7:35:96:85:6c:58:50:4f:6e:9a:16:a5: ac:8f:7e:fd:99:75:b3:6e:b5:78:e6:07:6d:6b:10:2a:a5:c8: df:68:1b:54:ec:82:81:21:2f:f7:19:c4:db:c0:bb:e0:91:6e: 3d:82:b2:0b:f2:ba:3b:7c:99:74:ff:bc:58:2b:39:f7:2e:96: a3:3b:84:d5:60:d5:e2:c8:c5:60:d6:f0:ef:db:92:f6:28:54: a8:08:ea:3c:59:3a:76:00:4b:57:af:1a:c9:59:8a:f6:a8:00: bc:5f:88:f6:41:63:81:ee:9a:38:09:1a:0b:5b:3e:d2:45:0e: f8:7d:fb:4a:33:1e:c9:0f:aa:b9:b3:53:f1:96:5b:b1:f1:2c: b8:81:8c:c5:25:fe:14:b2:19:94:30:c3:53:ca:19:c4:20:83: e0:3d:b1:66:e7:e2:89:c1:b0:30:51:a0:58:a1:ab:04:54:71: c8:ab:f8:c4:14:2a:66:cb:ea:4e:9d:76:56:cb:c3:a7:25:82: bf:17:f3:22:8e:78:00:0a:6f:84:e0:9d:01:7f:44:10:80:0d: e9:d5:44:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCWP8TTNVeCdTubuqgGIQKxiiMRwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjMwMDNGRkREMDYzMTA0ODk4NzkzMDYxQkRCMkRCOEQw Nzg4NzQ1RDAeFw0yNTA3MTIwNjU3MjRaFw0yNjA3MTEwNzAyMjRaMDMxMTAvBgNV BAMTKDMzNDlGODgwRjAyNzE2MEU1MjI1MEExRTEyNzNBNDc0MEJDNjIwRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfiGvdhcFrajydXkJl+kmLBhTe nvfdwI8VJmvT8tzoWf9f6RveJTZ0nxmVJJuAvEW90UW4CbqlkVqIAhfsuKlJ527u tTmvPsWt70fk3Rkyn4Rj9zWqQ/E20hWChfoBg+EpEUn2rJpeyNSZ7j1oUvtz+msA CynOVZNal1rqQgpoWj8ks+oFegVBNRWd+cFa2eEYCs5hQUp+AwLJQ6crZmkAw53m jy2Ox1CsFYq5JQyQBzzcTth3ImDldDUri2l4ZojFZBQGY6/L8RvJYbkBI/v2ATtu agdwquL8KfkPTeHZzt3PTf2VOhpCaGpF/LQV08KXEgBwhv/FTXRJ09Se0lCHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUM0n4gPAnFg5SJQoeEnOkdAvGIPEwHwYDVR0j BBgwFoAUYwA//dBjEEiYeTBhvbLbjQeIdF0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDE3YjgyOC0xN2ZhLTQ4YTItYTExMy0xNDlmOTQ2N2EzMjgvMC82MzAwM0ZGREQw NjMxMDQ4OTg3OTMwNjFCREIyREI4RDA3ODg3NDVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjMwMDNGRkREMDYzMTA0ODk4NzkzMDYxQkRCMkRCOEQwNzg4 NzQ1RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwMTdiODI4LTE3ZmEtNDhhMi1h MTEzLTE0OWY5NDY3YTMyOC8wLzMxMzgzMDJlMzEzNTMwMmUzMjMzMzIyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMjM0MzIzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDtJboMA0GCSqG SIb3DQEBCwUAA4IBAQAMzyRyv4VSXerKszDVSeXjltjVeoV48cgR8g0GVqBP8oug kSrPPUf4aAjHNZaFbFhQT26aFqWsj379mXWzbrV45gdtaxAqpcjfaBtU7IKBIS/3 GcTbwLvgkW49grIL8ro7fJl0/7xYKzn3LpajO4TVYNXiyMVg1vDv25L2KFSoCOo8 WTp2AEtXrxrJWYr2qAC8X4j2QWOB7po4CRoLWz7SRQ74fftKMx7JD6q5s1Pxllux 8Sy4gYzFJf4UshmUMMNTyhnEIIPgPbFm5+KJwbAwUaBYoasEVHHIq/jEFCpmy+pO nXZWy8OnJYK/F/MijngACm+E4J0Bf0QQgA3p1URk -----END CERTIFICATE-----Generated at Thu Aug 7 23:59:22 2025 by rpki-client