$ rpki-client -vvf repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/3230322e35312e3139382e302f32342d3234203d3e203130323230.roa File: 3230322e35312e3139382e302f32342d3234203d3e203130323230.roa (raw, json) Hash identifier: INN9h8serr/CQ6jBqp1R8d307W4fR88s0fl4Gzwo2gU= Subject key identifier: E4:DB:23:DD:E5:3F:3C:E4:6F:82:37:FF:70:FC:43:2A:9C:5D:0E:CB Certificate issuer: /CN=A781200DA8EA5D34C742642B1E502D67A5B2279E Certificate serial: 2CDC67EF7B738FE2690C905B22537FA5E4BDEFF6 Authority key identifier: A7:81:20:0D:A8:EA:5D:34:C7:42:64:2B:1E:50:2D:67:A5:B2:27:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A781200DA8EA5D34C742642B1E502D67A5B2279E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/3230322e35312e3139382e302f32342d3234203d3e203130323230.roa Signing time: Fri 18 Jul 2025 06:00:01 +0000 ROA not before: Fri 18 Jul 2025 05:55:01 +0000 ROA not after: Fri 17 Jul 2026 06:00:01 +0000 asID: 10220 IP address blocks: 202.51.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/A781200DA8EA5D34C742642B1E502D67A5B2279E.crl rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/A781200DA8EA5D34C742642B1E502D67A5B2279E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A781200DA8EA5D34C742642B1E502D67A5B2279E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 15 Aug 2025 09:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:dc:67:ef:7b:73:8f:e2:69:0c:90:5b:22:53:7f:a5:e4:bd:ef:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A781200DA8EA5D34C742642B1E502D67A5B2279E Validity Not Before: Jul 18 05:55:01 2025 GMT Not After : Jul 17 06:00:01 2026 GMT Subject: CN=E4DB23DDE53F3CE46F8237FF70FC432A9C5D0ECB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ea:ca:e9:26:ba:d8:22:7d:c9:4b:45:13:67: 59:d0:26:4d:1a:93:25:ea:81:0a:65:ff:62:8f:5f: c8:05:64:7e:a8:07:62:ee:38:b4:98:77:3f:4e:32: fa:22:18:d9:e0:f1:80:30:01:e8:8f:4f:70:62:0b: 32:d4:8a:a2:d5:f9:69:ff:fe:52:f3:2c:68:1e:7a: 35:0c:23:cf:db:f0:92:21:44:90:e3:70:d3:cc:1b: f2:52:25:ea:9b:71:2a:35:9e:24:3e:66:4f:ea:c0: 0d:4e:09:b4:5b:0c:f0:a5:66:28:05:37:7c:1c:e3: 38:8a:2b:e0:3f:59:98:2f:df:fa:f4:1c:b1:26:46: a4:69:4d:98:96:8f:c8:c3:49:ad:29:c1:0e:ca:a4: fc:d0:22:fb:a9:49:71:83:02:27:4d:e9:bb:86:28: df:8b:f9:30:e9:81:a0:78:12:a0:3d:e7:ed:a7:bc: e2:d5:60:72:09:27:aa:80:75:b7:6a:2a:1d:a1:5b: a0:44:de:a0:8d:eb:30:06:7a:dc:bf:3a:81:7c:c2: 78:de:fb:c3:58:87:68:68:df:b2:79:ef:13:50:19: c7:40:90:c3:73:82:d3:11:23:c9:a1:06:05:d2:9b: a8:fd:28:01:a9:1d:a4:9c:0e:a3:76:06:a6:50:5e: d5:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:DB:23:DD:E5:3F:3C:E4:6F:82:37:FF:70:FC:43:2A:9C:5D:0E:CB X509v3 Authority Key Identifier: keyid:A7:81:20:0D:A8:EA:5D:34:C7:42:64:2B:1E:50:2D:67:A5:B2:27:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/A781200DA8EA5D34C742642B1E502D67A5B2279E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A781200DA8EA5D34C742642B1E502D67A5B2279E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/3230322e35312e3139382e302f32342d3234203d3e203130323230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.198.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:f5:b5:50:1d:44:5a:1f:ef:a5:8d:ba:9f:ef:c2:a2:d0:6b: ea:72:ad:94:13:99:74:f8:ca:e4:2c:45:cf:74:a0:29:59:25: 8d:f0:6f:5f:d4:46:79:e0:51:47:a8:c4:e8:6e:54:69:9d:c7: ca:24:e5:9b:2c:dd:ed:b9:97:b3:f1:54:05:72:87:03:5b:47: 9c:a6:de:b3:23:df:eb:f0:ec:ec:81:45:2e:40:c9:eb:b5:b5: b5:1f:b1:b0:ab:8b:3e:00:fd:67:1f:71:74:19:8b:ee:b0:04: 5f:a7:fe:12:fc:ca:cf:17:e3:2f:44:4f:4f:d0:ac:30:8f:07: 0d:55:bd:b5:53:4e:2b:98:ae:5f:ab:99:8d:93:4c:55:38:c4: 25:f5:ba:f0:54:26:a9:06:d3:9e:4d:e0:b9:0b:66:a4:2c:da: 40:f7:01:ff:6f:8f:81:32:84:90:1f:ee:23:b1:1b:82:b0:ed: 1c:58:18:bf:27:b0:3f:8c:16:4a:bb:a7:1d:bf:ac:1a:9e:41: a7:d5:23:cf:62:86:76:5c:e9:9d:2f:b4:1b:b1:1e:fb:d6:40: b6:1c:a9:cc:2e:06:df:0e:7d:14:20:53:24:60:d1:ec:5a:3e: 9a:49:ee:3c:12:7a:1d:df:55:37:65:a1:97:15:e4:b3:2d:c1: 95:41:32:08 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULNxn73tzj+JpDJBbIlN/peS97/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTc4MTIwMERBOEVBNUQzNEM3NDI2NDJCMUU1MDJENjdB NUIyMjc5RTAeFw0yNTA3MTgwNTU1MDFaFw0yNjA3MTcwNjAwMDFaMDMxMTAvBgNV BAMTKEU0REIyM0RERTUzRjNDRTQ2RjgyMzdGRjcwRkM0MzJBOUM1RDBFQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ6srpJrrYIn3JS0UTZ1nQJk0a kyXqgQpl/2KPX8gFZH6oB2LuOLSYdz9OMvoiGNng8YAwAeiPT3BiCzLUiqLV+Wn/ /lLzLGgeejUMI8/b8JIhRJDjcNPMG/JSJeqbcSo1niQ+Zk/qwA1OCbRbDPClZigF N3wc4ziKK+A/WZgv3/r0HLEmRqRpTZiWj8jDSa0pwQ7KpPzQIvupSXGDAidN6buG KN+L+TDpgaB4EqA95+2nvOLVYHIJJ6qAdbdqKh2hW6BE3qCN6zAGety/OoF8wnje +8NYh2ho37J57xNQGcdAkMNzgtMRI8mhBgXSm6j9KAGpHaScDqN2BqZQXtXFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU5Nsj3eU/PORvgjf/cPxDKpxdDsswHwYDVR0j BBgwFoAUp4EgDajqXTTHQmQrHlAtZ6WyJ54wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDcwY2MzNy0xZmE2LTRmYTAtYTg4Yy00MDhhZWQyOGQ5YWEvMC9BNzgxMjAwREE4 RUE1RDM0Qzc0MjY0MkIxRTUwMkQ2N0E1QjIyNzlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTc4MTIwMERBOEVBNUQzNEM3NDI2NDJCMUU1MDJENjdBNUIy Mjc5RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkNzBjYzM3LTFmYTYtNGZhMC1h ODhjLTQwOGFlZDI4ZDlhYS8wLzMyMzAzMjJlMzUzMTJlMzEzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMyMzIzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMozxjANBgkqhkiG 9w0BAQsFAAOCAQEAe/W1UB1EWh/vpY26n+/CotBr6nKtlBOZdPjK5CxFz3SgKVkl jfBvX9RGeeBRR6jE6G5UaZ3HyiTlmyzd7bmXs/FUBXKHA1tHnKbesyPf6/Ds7IFF LkDJ67W1tR+xsKuLPgD9Zx9xdBmL7rAEX6f+EvzKzxfjL0RPT9CsMI8HDVW9tVNO K5iuX6uZjZNMVTjEJfW68FQmqQbTnk3guQtmpCzaQPcB/2+PgTKEkB/uI7EbgrDt HFgYvyewP4wWSrunHb+sGp5Bp9Ujz2KGdlzpnS+0G7Ee+9ZAthypzC4G3w59FCBT JGDR7Fo+mknuPBJ6Hd9VN2WhlxXksy3BlUEyCA== -----END CERTIFICATE-----Generated at Wed Aug 13 13:22:13 2025 by rpki-client