$ rpki-client -vvf repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3132382e36342e302f31392d3234203d3e203138313033.roa File: 3230332e3132382e36342e302f31392d3234203d3e203138313033.roa (raw, json) Hash identifier: s7VSPqD5oiLwDB/oYr/1xD8uJ4/fL3Fk5/v33teavRk= Subject key identifier: 76:9D:65:E2:A9:53:E0:45:EC:CB:C4:77:87:2A:30:3D:A6:20:E9:A2 Certificate issuer: /CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Certificate serial: 14B0B4E175DB16DA16098A192ED390895838D421 Authority key identifier: 5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3132382e36342e302f31392d3234203d3e203138313033.roa Signing time: Wed 23 Jul 2025 12:01:25 +0000 ROA not before: Wed 23 Jul 2025 11:56:25 +0000 ROA not after: Wed 22 Jul 2026 12:01:25 +0000 asID: 18103 IP address blocks: 203.128.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:b0:b4:e1:75:db:16:da:16:09:8a:19:2e:d3:90:89:58:38:d4:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Validity Not Before: Jul 23 11:56:25 2025 GMT Not After : Jul 22 12:01:25 2026 GMT Subject: CN=769D65E2A953E045ECCBC477872A303DA620E9A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4e:e7:6a:c8:8f:9b:a9:8b:48:36:0a:9a:15: 94:60:43:25:80:e7:36:c6:6b:49:9e:86:e7:95:a7: d5:79:64:a5:b2:9d:47:c5:af:58:b8:d3:3e:d5:ab: 9d:d5:bf:2b:c4:f5:61:a0:15:61:a5:1f:03:d9:83: d7:1f:21:66:d5:67:03:37:88:3f:2f:75:5a:c9:71: 4c:a5:25:85:77:75:97:84:1c:37:46:9a:d7:17:52: 54:03:38:a7:8b:21:0c:d7:c9:1c:f0:cb:4a:e7:28: 5f:b7:b1:59:99:da:be:93:b6:fa:b6:bd:65:86:27: c0:1f:91:7e:20:87:a6:b9:33:03:aa:37:6a:0a:0e: cb:9d:1d:3e:a3:33:1c:59:3c:87:53:cb:26:8e:9b: a4:0d:12:cf:5f:20:6a:f5:2f:07:64:aa:e6:50:4c: ba:bb:a2:e7:aa:1f:47:a1:6e:d7:17:73:3b:fa:4f: 98:5f:0f:4c:a2:3e:e6:a2:8b:2e:3f:68:bf:f1:90: 38:77:d3:57:6c:20:bb:26:aa:68:43:01:4d:5e:e7: dc:02:b3:fb:40:56:93:2e:bc:a5:13:48:93:3b:bc: 9b:66:de:07:a5:35:d8:f4:f5:7e:50:60:6a:46:da: 99:a9:f2:56:f8:eb:88:5c:4d:0b:34:c4:c5:1c:3a: 64:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:9D:65:E2:A9:53:E0:45:EC:CB:C4:77:87:2A:30:3D:A6:20:E9:A2 X509v3 Authority Key Identifier: keyid:5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3132382e36342e302f31392d3234203d3e203138313033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.128.64.0/19 Signature Algorithm: sha256WithRSAEncryption 52:68:79:74:fe:eb:0b:14:66:3e:33:98:79:93:ad:52:61:ad: 47:21:fd:94:89:70:3d:a3:c9:ed:1f:ea:da:96:07:96:8a:ac: c3:3b:27:2d:44:60:bb:58:97:4b:6f:02:9e:77:d5:fd:28:a1: 22:15:e3:3c:1b:8e:89:2c:ec:7a:7f:5d:6e:08:4c:d4:e9:37: b2:41:f8:b1:f1:53:0a:41:d9:a7:6c:88:a8:00:d8:76:25:9d: 66:d1:7e:4d:80:6e:21:21:cb:2b:81:38:62:fa:46:ff:18:08: db:51:78:1e:b3:e2:9e:66:fd:d2:8c:a3:a6:97:88:5d:e4:68: b1:f4:2e:7f:b6:f7:04:b8:d3:3f:45:5c:2d:f4:04:a3:81:a3: 8e:f1:18:b7:c2:21:65:ca:60:fd:b0:c6:63:c6:5f:a2:c6:82: 13:e1:35:11:e7:f9:b5:8f:51:20:76:0b:fd:74:b4:33:44:03: bc:b5:c9:35:f5:b2:aa:53:e8:ea:ec:fc:29:f6:05:3d:05:1b: f7:02:a9:8f:88:3a:ac:f2:90:15:01:5d:9c:b7:2b:a8:5a:8c: e0:35:b4:ef:6d:c7:c4:65:11:1c:aa:85:bf:4c:60:c0:ef:21: 55:5b:55:ca:2e:22:d2:15:d1:4b:e6:58:cb:93:dd:21:0a:d8: f3:e0:f1:b6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFLC04XXbFtoWCYoZLtOQiVg41CEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlE REI4NEM1NzAeFw0yNTA3MjMxMTU2MjVaFw0yNjA3MjIxMjAxMjVaMDMxMTAvBgNV BAMTKDc2OUQ2NUUyQTk1M0UwNDVFQ0NCQzQ3Nzg3MkEzMDNEQTYyMEU5QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0TudqyI+bqYtINgqaFZRgQyWA 5zbGa0mehueVp9V5ZKWynUfFr1i40z7Vq53VvyvE9WGgFWGlHwPZg9cfIWbVZwM3 iD8vdVrJcUylJYV3dZeEHDdGmtcXUlQDOKeLIQzXyRzwy0rnKF+3sVmZ2r6Ttvq2 vWWGJ8AfkX4gh6a5MwOqN2oKDsudHT6jMxxZPIdTyyaOm6QNEs9fIGr1LwdkquZQ TLq7oueqH0ehbtcXczv6T5hfD0yiPuaiiy4/aL/xkDh301dsILsmqmhDAU1e59wC s/tAVpMuvKUTSJM7vJtm3gelNdj09X5QYGpG2pmp8lb464hcTQs0xMUcOmStAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdp1l4qlT4EXsy8R3hyowPaYg6aIwHwYDVR0j BBgwFoAUXo0RFvjGYYK2VSHImbVuid24TFcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MTk5YzFhZi1kOWM3LTRmZmQtYmEwMy1hM2UxY2RkOGFlZTAvMC81RThEMTExNkY4 QzY2MTgyQjY1NTIxQzg5OUI1NkU4OUREQjg0QzU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlEREI4 NEM1Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxOTljMWFmLWQ5YzctNGZmZC1i YTAzLWEzZTFjZGQ4YWVlMC8wLzMyMzAzMzJlMzEzMjM4MmUzNjM0MmUzMDJmMzEz OTJkMzIzNDIwM2QzZTIwMzEzODMxMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcuAQDANBgkqhkiG 9w0BAQsFAAOCAQEAUmh5dP7rCxRmPjOYeZOtUmGtRyH9lIlwPaPJ7R/q2pYHloqs wzsnLURgu1iXS28CnnfV/SihIhXjPBuOiSzsen9dbghM1Ok3skH4sfFTCkHZp2yI qADYdiWdZtF+TYBuISHLK4E4YvpG/xgI21F4HrPinmb90oyjppeIXeRosfQuf7b3 BLjTP0VcLfQEo4GjjvEYt8IhZcpg/bDGY8ZfosaCE+E1Eef5tY9RIHYL/XS0M0QD vLXJNfWyqlPo6uz8KfYFPQUb9wKpj4g6rPKQFQFdnLcrqFqM4DW0723HxGURHKqF v0xgwO8hVVtVyi4i0hXRS+ZYy5PdIQrY8+Dxtg== -----END CERTIFICATE-----Generated at Sat Aug 9 14:17:30 2025 by rpki-client