$ rpki-client -vvf repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/3230322e35312e3231342e302f32342d3234203d3e203130323230.roa File: 3230322e35312e3231342e302f32342d3234203d3e203130323230.roa (raw, json) Hash identifier: XAE8gjNY+boQayyymijM/NO8daFcdyz78y1MThdC1do= Subject key identifier: 68:18:B2:9E:82:D8:96:4A:C0:60:BA:5B:82:1C:84:A1:56:C4:A2:7F Certificate issuer: /CN=A781200DA8EA5D34C742642B1E502D67A5B2279E Certificate serial: 3F253E43A20550E1032DBA213F2A8D686F87057A Authority key identifier: A7:81:20:0D:A8:EA:5D:34:C7:42:64:2B:1E:50:2D:67:A5:B2:27:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A781200DA8EA5D34C742642B1E502D67A5B2279E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/3230322e35312e3231342e302f32342d3234203d3e203130323230.roa Signing time: Fri 18 Jul 2025 08:00:01 +0000 ROA not before: Fri 18 Jul 2025 07:55:01 +0000 ROA not after: Fri 17 Jul 2026 08:00:01 +0000 asID: 10220 IP address blocks: 202.51.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/A781200DA8EA5D34C742642B1E502D67A5B2279E.crl rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/A781200DA8EA5D34C742642B1E502D67A5B2279E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A781200DA8EA5D34C742642B1E502D67A5B2279E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 15 Aug 2025 09:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:25:3e:43:a2:05:50:e1:03:2d:ba:21:3f:2a:8d:68:6f:87:05:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A781200DA8EA5D34C742642B1E502D67A5B2279E Validity Not Before: Jul 18 07:55:01 2025 GMT Not After : Jul 17 08:00:01 2026 GMT Subject: CN=6818B29E82D8964AC060BA5B821C84A156C4A27F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c8:4e:a5:20:c5:1a:42:60:fd:4d:2e:17:27: 35:11:5e:4d:92:c2:56:e6:f6:ef:e8:85:34:7a:dd: 69:a4:f7:f9:d7:b5:f8:a0:d8:57:0b:55:b3:96:cf: ea:c4:8d:a8:18:7e:86:74:0d:fd:ac:eb:34:c9:5d: 08:c4:07:1c:f7:da:42:05:f4:58:ed:04:7e:ec:3b: b5:8d:4b:a5:4c:1d:ac:83:7f:00:e8:8b:42:41:33: 1c:9e:71:f0:d9:82:47:a8:26:d7:0f:b0:e3:f7:8e: 4c:39:47:96:64:38:c7:cf:6d:5f:66:8e:e5:c0:2f: a4:aa:3d:a5:6d:55:3f:b1:06:48:67:16:89:39:ad: 53:aa:42:d7:4a:70:39:2b:cd:43:23:d3:8f:31:6f: a7:c3:d7:c3:a5:bc:c4:dd:63:e8:02:1a:b0:72:5b: 59:34:1d:19:27:ae:ee:64:4d:58:5a:52:f9:91:7d: 37:b1:d8:d9:a6:ac:36:cb:98:6c:f2:b8:3c:4b:8e: ca:cf:1b:01:fe:1a:a3:5d:26:e8:0f:95:20:12:53: 2f:76:f3:a5:2d:61:f3:60:70:11:df:c5:e3:47:96: fd:11:c1:34:3f:43:a5:e3:45:7a:8f:56:32:23:e7: 4d:e9:a9:ea:e4:6f:80:ea:66:e9:c3:3a:6e:34:b5: a2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:18:B2:9E:82:D8:96:4A:C0:60:BA:5B:82:1C:84:A1:56:C4:A2:7F X509v3 Authority Key Identifier: keyid:A7:81:20:0D:A8:EA:5D:34:C7:42:64:2B:1E:50:2D:67:A5:B2:27:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/A781200DA8EA5D34C742642B1E502D67A5B2279E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A781200DA8EA5D34C742642B1E502D67A5B2279E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/3230322e35312e3231342e302f32342d3234203d3e203130323230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.214.0/24 Signature Algorithm: sha256WithRSAEncryption 88:ca:39:97:96:66:f5:fc:b0:ff:b0:1f:dc:0c:7c:58:4d:7d: 1c:21:50:4e:b9:0c:d1:9f:fe:82:ce:a7:dc:50:1a:ed:95:4c: ab:15:77:0d:4c:3e:14:f9:a0:40:97:b9:e9:72:72:d4:47:b9: 39:01:64:33:41:73:f5:dc:31:0e:67:cf:61:f6:5a:84:03:45: 67:c5:e3:04:62:4b:9f:18:5e:30:63:41:54:1e:0f:32:34:62: b1:fc:75:ff:d7:b4:63:a0:74:31:33:38:f2:bb:92:4d:a4:5d: 3e:b4:75:ec:39:a1:83:db:7e:a7:75:4a:80:71:45:61:5d:d6: fc:21:c2:51:b3:2b:a2:bc:90:1e:a7:8f:ce:4f:21:17:13:7e: 40:4c:b7:61:8a:8a:17:85:cd:03:25:3b:7b:db:99:00:dc:65: 4c:27:f2:27:78:b8:61:3c:1f:1d:db:7f:d5:46:a6:48:74:4b: b3:5d:f4:77:2d:c8:d9:8f:29:98:da:19:86:d5:7e:1b:c1:63: 29:ae:45:8b:25:a7:36:18:09:59:b7:d2:9a:53:41:7d:4d:84: 52:7b:77:74:80:35:e4:5a:4e:bd:b8:5c:9b:24:e2:c5:01:19: 67:e9:81:5e:95:95:bb:83:7d:c0:2e:a6:d8:04:22:32:94:20: 64:c6:0f:d8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPyU+Q6IFUOEDLbohPyqNaG+HBXowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTc4MTIwMERBOEVBNUQzNEM3NDI2NDJCMUU1MDJENjdB NUIyMjc5RTAeFw0yNTA3MTgwNzU1MDFaFw0yNjA3MTcwODAwMDFaMDMxMTAvBgNV BAMTKDY4MThCMjlFODJEODk2NEFDMDYwQkE1QjgyMUM4NEExNTZDNEEyN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvyE6lIMUaQmD9TS4XJzURXk2S wlbm9u/ohTR63Wmk9/nXtfig2FcLVbOWz+rEjagYfoZ0Df2s6zTJXQjEBxz32kIF 9FjtBH7sO7WNS6VMHayDfwDoi0JBMxyecfDZgkeoJtcPsOP3jkw5R5ZkOMfPbV9m juXAL6SqPaVtVT+xBkhnFok5rVOqQtdKcDkrzUMj048xb6fD18OlvMTdY+gCGrBy W1k0HRknru5kTVhaUvmRfTex2NmmrDbLmGzyuDxLjsrPGwH+GqNdJugPlSASUy92 86UtYfNgcBHfxeNHlv0RwTQ/Q6XjRXqPVjIj503pqerkb4DqZunDOm40taKNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaBiynoLYlkrAYLpbghyEoVbEon8wHwYDVR0j BBgwFoAUp4EgDajqXTTHQmQrHlAtZ6WyJ54wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDcwY2MzNy0xZmE2LTRmYTAtYTg4Yy00MDhhZWQyOGQ5YWEvMC9BNzgxMjAwREE4 RUE1RDM0Qzc0MjY0MkIxRTUwMkQ2N0E1QjIyNzlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTc4MTIwMERBOEVBNUQzNEM3NDI2NDJCMUU1MDJENjdBNUIy Mjc5RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkNzBjYzM3LTFmYTYtNGZhMC1h ODhjLTQwOGFlZDI4ZDlhYS8wLzMyMzAzMjJlMzUzMTJlMzIzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMyMzIzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoz1jANBgkqhkiG 9w0BAQsFAAOCAQEAiMo5l5Zm9fyw/7Af3Ax8WE19HCFQTrkM0Z/+gs6n3FAa7ZVM qxV3DUw+FPmgQJe56XJy1Ee5OQFkM0Fz9dwxDmfPYfZahANFZ8XjBGJLnxheMGNB VB4PMjRisfx1/9e0Y6B0MTM48ruSTaRdPrR17Dmhg9t+p3VKgHFFYV3W/CHCUbMr oryQHqePzk8hFxN+QEy3YYqKF4XNAyU7e9uZANxlTCfyJ3i4YTwfHdt/1UamSHRL s130dy3I2Y8pmNoZhtV+G8FjKa5FiyWnNhgJWbfSmlNBfU2EUnt3dIA15FpOvbhc myTixQEZZ+mBXpWVu4N9wC6m2AQiMpQgZMYP2A== -----END CERTIFICATE-----Generated at Wed Aug 13 13:22:12 2025 by rpki-client