$ rpki-client -vvf repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3230332e3137362e3138302e302f32322d3234203d3e20313331313131.roa File: 3230332e3137362e3138302e302f32322d3234203d3e20313331313131.roa (raw, json) Hash identifier: VU0ZIZ2pkWLbL/yZX6A7PXJh4wAgz1Lfo/SmUnfVxjs= Subject key identifier: DF:7D:B2:25:61:7C:C4:39:B7:2E:AF:7A:B9:86:74:E2:4E:00:B9:14 Certificate issuer: /CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Certificate serial: 3F467DB17ADC1C0CF083048FB97D0CA0F0A0CD0C Authority key identifier: C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3230332e3137362e3138302e302f32322d3234203d3e20313331313131.roa Signing time: Tue 17 Jun 2025 17:01:33 +0000 ROA not before: Tue 17 Jun 2025 16:56:33 +0000 ROA not after: Tue 16 Jun 2026 17:01:33 +0000 asID: 131111 IP address blocks: 203.176.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 06:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:46:7d:b1:7a:dc:1c:0c:f0:83:04:8f:b9:7d:0c:a0:f0:a0:cd:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Validity Not Before: Jun 17 16:56:33 2025 GMT Not After : Jun 16 17:01:33 2026 GMT Subject: CN=DF7DB225617CC439B72EAF7AB98674E24E00B914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:c8:23:59:bf:9f:04:63:31:5c:4c:39:37:0c: 98:25:0f:3a:26:cf:49:db:37:5a:8b:ca:cd:14:81: af:20:5f:f6:90:cb:ce:ca:cd:b3:f6:e0:93:e5:09: 6d:9b:09:ef:c3:8c:45:f0:2a:d8:b0:19:9b:17:96: 98:af:c1:0a:82:d8:96:8b:23:ab:10:5d:73:f3:c1: fb:b4:23:52:c0:a8:da:99:1a:d7:4e:cd:e7:41:b2: 0d:12:22:ed:e3:8c:a9:9b:9f:26:65:e0:6b:0d:52: 0f:8b:60:42:5f:97:e8:03:ed:1e:7f:e5:eb:22:ea: 8b:21:04:a3:71:13:81:83:e0:d9:b6:e8:99:36:2b: 0f:c3:1b:36:e7:39:78:65:fa:45:33:29:8f:ba:66: 00:45:a1:ed:ef:5e:78:41:27:17:26:99:d9:05:fd: 44:06:09:8e:eb:c1:e5:f8:bd:22:99:5b:aa:8c:49: 30:19:0e:6e:07:6e:6d:cc:fa:b5:17:64:f4:67:b7: 8a:b5:a4:e1:3c:97:2e:71:15:88:11:b7:5d:04:de: 59:8f:90:43:89:f9:d3:ad:1c:36:58:5d:2b:ce:8d: 2a:f4:56:c9:c9:57:66:96:f2:00:c8:27:ac:5c:39: de:bb:0e:68:e7:69:ad:63:1e:4b:98:75:f5:31:19: aa:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:7D:B2:25:61:7C:C4:39:B7:2E:AF:7A:B9:86:74:E2:4E:00:B9:14 X509v3 Authority Key Identifier: keyid:C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3230332e3137362e3138302e302f32322d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.176.180.0/22 Signature Algorithm: sha256WithRSAEncryption 45:72:e0:a9:61:b1:98:a1:0c:fe:d0:90:b1:63:16:89:74:fc: ba:a0:0d:b4:02:f2:ab:c6:4e:9d:74:08:8d:6c:8d:6b:e7:73: e5:d2:18:e5:fa:4a:2f:83:b9:b7:c9:9c:3f:9d:a5:a5:f6:f3: c6:0e:2e:a7:05:49:c5:9f:d2:e2:72:f2:93:54:47:bf:7d:8b: a5:fd:b6:1a:08:c0:f0:65:fd:68:90:81:77:d4:8e:e0:70:c4: 2a:3f:ce:35:f6:aa:34:57:87:2f:f2:c3:ef:10:57:c7:bc:2e: ec:e5:e3:dd:de:59:63:c1:8d:68:9e:f7:cb:c9:2e:b5:ee:f1: 0e:2e:23:87:cb:96:e8:31:c4:f9:4f:c5:f8:fb:25:52:b0:5b: 29:82:29:82:69:bd:d6:3e:85:e3:75:31:94:5f:26:06:e0:03: 0f:44:95:a2:f6:14:45:f0:24:fc:48:a3:a1:1d:8f:6b:da:79: a2:3d:23:11:55:97:34:8f:6d:f7:c7:06:9f:45:57:c5:ad:0d: e9:ed:16:7c:8d:a9:69:de:e4:09:e6:8e:77:c0:26:2d:36:f5: 82:8e:92:f8:a1:9f:d5:8b:ca:cb:24:9a:39:ca:a2:42:f1:bd: e3:b4:57:56:9b:36:65:42:f8:ca:c9:e2:23:1e:d5:82:02:c2: df:d9:bd:91 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUP0Z9sXrcHAzwgwSPuX0MoPCgzQwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4 NzE2REMyRjAeFw0yNTA2MTcxNjU2MzNaFw0yNjA2MTYxNzAxMzNaMDMxMTAvBgNV BAMTKERGN0RCMjI1NjE3Q0M0MzlCNzJFQUY3QUI5ODY3NEUyNEUwMEI5MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYyCNZv58EYzFcTDk3DJglDzom z0nbN1qLys0Uga8gX/aQy87KzbP24JPlCW2bCe/DjEXwKtiwGZsXlpivwQqC2JaL I6sQXXPzwfu0I1LAqNqZGtdOzedBsg0SIu3jjKmbnyZl4GsNUg+LYEJfl+gD7R5/ 5esi6oshBKNxE4GD4Nm26Jk2Kw/DGzbnOXhl+kUzKY+6ZgBFoe3vXnhBJxcmmdkF /UQGCY7rweX4vSKZW6qMSTAZDm4Hbm3M+rUXZPRnt4q1pOE8ly5xFYgRt10E3lmP kEOJ+dOtHDZYXSvOjSr0VsnJV2aW8gDIJ6xcOd67Dmjnaa1jHkuYdfUxGao7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU332yJWF8xDm3Lq96uYZ04k4AuRQwHwYDVR0j BBgwFoAUwa+MmZ6dBtrevDh9eLMFq4cW3C8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OTIwNWU3Yy1hODgxLTQ4NzMtOTE4OC1lNTIxYjZhZjUyOWMvMC9DMUFGOEM5OTlF OUQwNkRBREVCQzM4N0Q3OEIzMDVBQjg3MTZEQzJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4NzE2 REMyRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5MjA1ZTdjLWE4ODEtNDg3My05 MTg4LWU1MjFiNmFmNTI5Yy8wLzMyMzAzMzJlMzEzNzM2MmUzMTM4MzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzEzMTMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALLsLQwDQYJ KoZIhvcNAQELBQADggEBAEVy4KlhsZihDP7QkLFjFol0/LqgDbQC8qvGTp10CI1s jWvnc+XSGOX6Si+DubfJnD+dpaX288YOLqcFScWf0uJy8pNUR799i6X9thoIwPBl /WiQgXfUjuBwxCo/zjX2qjRXhy/yw+8QV8e8Luzl493eWWPBjWie98vJLrXu8Q4u I4fLlugxxPlPxfj7JVKwWymCKYJpvdY+heN1MZRfJgbgAw9ElaL2FEXwJPxIo6Ed j2vaeaI9IxFVlzSPbffHBp9FV8WtDentFnyNqWne5AnmjnfAJi029YKOkvihn9WL ysskmjnKokLxveO0V1abNmVC+MrJ4iMe1YICwt/ZvZE= -----END CERTIFICATE-----Generated at Mon Jun 30 06:52:51 2025 by rpki-client