$ rpki-client -vvf repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3230312e35302e302f32332d3234203d3e203138313033.roa File: 3230332e3230312e35302e302f32332d3234203d3e203138313033.roa (raw, json) Hash identifier: 0P4/KgKZcqup91feF2ZQ2rwCC9K7mFefhTwIQ1GZnuc= Subject key identifier: C0:89:94:D8:3F:C4:C5:02:E7:3D:41:F3:15:BC:E7:7B:75:CC:50:B4 Certificate issuer: /CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Certificate serial: 473340BDDF5D0B23C7BB96FD4B4AA79087A03463 Authority key identifier: 5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3230312e35302e302f32332d3234203d3e203138313033.roa Signing time: Wed 23 Jul 2025 12:01:25 +0000 ROA not before: Wed 23 Jul 2025 11:56:25 +0000 ROA not after: Wed 22 Jul 2026 12:01:25 +0000 asID: 18103 IP address blocks: 203.201.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:33:40:bd:df:5d:0b:23:c7:bb:96:fd:4b:4a:a7:90:87:a0:34:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Validity Not Before: Jul 23 11:56:25 2025 GMT Not After : Jul 22 12:01:25 2026 GMT Subject: CN=C08994D83FC4C502E73D41F315BCE77B75CC50B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:59:7a:45:cd:3c:b8:dd:fd:9e:41:50:50:6e: 45:7c:5a:28:8c:da:7e:5b:23:b0:4c:9d:6c:a7:a1: 8a:99:e7:33:23:4a:43:5b:84:45:4d:c6:c0:54:fa: af:ad:bd:f6:f3:2b:19:b4:c5:6f:6c:02:f3:92:f7: c2:79:6b:96:79:be:65:2d:d2:56:63:5c:38:2f:50: fe:f3:61:ec:c3:0e:fa:68:0a:16:ec:96:d9:61:21: 80:1f:8f:2d:5b:dc:e3:43:1b:8d:90:cd:3d:e4:00: a3:fa:de:8c:2c:d9:4c:a9:b9:2e:38:02:77:83:f7: 0e:f9:dc:f5:47:85:99:c9:69:a9:d5:68:d0:45:6f: 44:b1:45:ac:c6:0c:14:d6:49:fa:39:1e:3c:cc:fd: 6e:21:4b:dd:3c:32:21:e5:7f:29:c4:a1:8e:e4:80: b1:22:23:ab:80:e2:c2:52:06:04:3c:7e:9c:de:85: 96:56:a9:fa:2e:0b:39:ef:3a:a6:cc:81:dc:8f:c3: e7:f9:92:dc:0c:8b:19:62:96:66:00:7f:b0:33:ff: 04:d6:35:73:19:06:d1:e3:da:9f:60:00:69:74:bc: 5c:14:e2:3f:45:b6:f0:5c:ab:75:c0:75:94:fe:0d: 7f:c7:a0:29:86:c3:8a:eb:fc:11:35:21:60:f1:52: 63:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:89:94:D8:3F:C4:C5:02:E7:3D:41:F3:15:BC:E7:7B:75:CC:50:B4 X509v3 Authority Key Identifier: keyid:5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3230312e35302e302f32332d3234203d3e203138313033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.50.0/23 Signature Algorithm: sha256WithRSAEncryption 37:52:f0:7c:d1:e9:89:56:81:a9:c7:31:d8:ce:9b:d9:27:82: ef:67:7f:83:53:da:44:9d:47:41:a2:a3:a5:97:e9:95:1b:60: 1e:f3:6f:92:8b:6c:7e:e3:63:a5:c6:2c:d5:6a:0c:04:8c:82: 41:1a:b3:78:f9:1c:c9:81:6e:d9:db:f4:02:a0:70:d0:7b:ca: 48:a3:68:18:e6:84:17:da:a8:b7:9a:70:5f:48:58:10:a9:fc: f4:55:5d:82:ce:82:ac:b0:c4:7f:ec:8a:ef:5d:ef:ea:ca:84: 83:a0:1b:ec:fd:e7:7b:91:03:7b:98:23:81:30:8e:52:4f:64: d4:67:0c:15:e7:ac:44:fa:1c:a2:02:eb:f5:15:a1:d7:0b:4f: da:70:ee:23:0b:c4:cf:30:58:09:90:63:6e:11:bc:b2:d8:5f: 47:b3:2d:e2:b2:ae:d4:7f:24:31:0f:c2:99:a9:ee:05:9d:81: a2:d3:24:72:0c:89:1a:74:b0:73:54:32:19:d2:a3:8c:46:a9: 2a:e7:82:f2:43:5d:4a:f8:1f:1d:7c:d0:d9:64:ee:26:ba:d7: c2:fb:41:65:95:a8:e1:9c:39:fa:45:61:a1:40:36:51:58:80: ba:7c:f6:f0:40:c5:b9:74:9b:a5:4f:4c:24:36:00:f5:66:5c: 15:91:fa:ca -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURzNAvd9dCyPHu5b9S0qnkIegNGMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlE REI4NEM1NzAeFw0yNTA3MjMxMTU2MjVaFw0yNjA3MjIxMjAxMjVaMDMxMTAvBgNV BAMTKEMwODk5NEQ4M0ZDNEM1MDJFNzNENDFGMzE1QkNFNzdCNzVDQzUwQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEWXpFzTy43f2eQVBQbkV8WiiM 2n5bI7BMnWynoYqZ5zMjSkNbhEVNxsBU+q+tvfbzKxm0xW9sAvOS98J5a5Z5vmUt 0lZjXDgvUP7zYezDDvpoChbsltlhIYAfjy1b3ONDG42QzT3kAKP63ows2UypuS44 AneD9w753PVHhZnJaanVaNBFb0SxRazGDBTWSfo5HjzM/W4hS908MiHlfynEoY7k gLEiI6uA4sJSBgQ8fpzehZZWqfouCznvOqbMgdyPw+f5ktwMixlilmYAf7Az/wTW NXMZBtHj2p9gAGl0vFwU4j9FtvBcq3XAdZT+DX/HoCmGw4rr/BE1IWDxUmOlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwImU2D/ExQLnPUHzFbzne3XMULQwHwYDVR0j BBgwFoAUXo0RFvjGYYK2VSHImbVuid24TFcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MTk5YzFhZi1kOWM3LTRmZmQtYmEwMy1hM2UxY2RkOGFlZTAvMC81RThEMTExNkY4 QzY2MTgyQjY1NTIxQzg5OUI1NkU4OUREQjg0QzU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlEREI4 NEM1Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxOTljMWFmLWQ5YzctNGZmZC1i YTAzLWEzZTFjZGQ4YWVlMC8wLzMyMzAzMzJlMzIzMDMxMmUzNTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzODMxMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcvJMjANBgkqhkiG 9w0BAQsFAAOCAQEAN1LwfNHpiVaBqccx2M6b2SeC72d/g1PaRJ1HQaKjpZfplRtg HvNvkotsfuNjpcYs1WoMBIyCQRqzePkcyYFu2dv0AqBw0HvKSKNoGOaEF9qot5pw X0hYEKn89FVdgs6CrLDEf+yK713v6sqEg6Ab7P3ne5EDe5gjgTCOUk9k1GcMFees RPocogLr9RWh1wtP2nDuIwvEzzBYCZBjbhG8sthfR7Mt4rKu1H8kMQ/CmanuBZ2B otMkcgyJGnSwc1QyGdKjjEapKueC8kNdSvgfHXzQ2WTuJrrXwvtBZZWo4Zw5+kVh oUA2UViAunz28EDFuXSbpU9MJDYA9WZcFZH6yg== -----END CERTIFICATE-----Generated at Sat Aug 9 22:42:32 2025 by rpki-client