$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31392e302f32342d3234203d3e20313336313231.roa File: 3230322e3135342e31392e302f32342d3234203d3e20313336313231.roa (raw, json) Hash identifier: quIdMhaf0vXebgLUGTIXSCgmeKOwgEYI4nVp9GxaH5Y= Subject key identifier: 6C:9F:86:DE:F4:01:10:6E:8B:34:D9:4B:F7:A8:97:40:C8:22:55:A4 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 4B5A94C50D7771A3473BBF5EFFC681A1162B6405 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31392e302f32342d3234203d3e20313336313231.roa Signing time: Wed 13 Aug 2025 11:00:01 +0000 ROA not before: Wed 13 Aug 2025 10:55:01 +0000 ROA not after: Wed 12 Aug 2026 11:00:01 +0000 asID: 136121 IP address blocks: 202.154.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 12:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:5a:94:c5:0d:77:71:a3:47:3b:bf:5e:ff:c6:81:a1:16:2b:64:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 13 10:55:01 2025 GMT Not After : Aug 12 11:00:01 2026 GMT Subject: CN=6C9F86DEF401106E8B34D94BF7A89740C82255A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:0c:51:b8:54:40:f2:97:65:00:65:92:4d:fe: 65:b3:3a:48:7d:2c:23:77:47:15:2d:fa:d7:c6:de: 87:f8:3e:0b:db:35:a2:a0:63:52:91:c5:fe:2f:3a: 59:8d:dd:72:78:05:ae:d1:ed:b5:05:c3:c2:56:ab: 5f:42:b4:4e:cc:ae:59:c3:60:36:72:21:1d:e2:52: 1f:14:0c:e2:56:af:41:d8:fa:80:64:ce:a6:a8:89: e7:24:74:a8:68:88:a0:45:04:f9:3c:20:52:a0:dd: 67:69:a7:38:aa:7e:b5:47:0a:ee:84:08:37:f4:ae: b9:92:e4:a2:b9:2f:73:af:e4:1d:36:39:e6:01:e2: a9:26:21:a7:7a:f8:62:92:7e:ae:49:18:51:77:5f: 6c:53:ba:88:89:21:d1:bc:b8:05:ea:36:4a:38:80: ae:5e:7a:3d:61:e0:4e:6e:ea:c3:1c:7d:4e:d5:f4: 50:d1:9f:dd:d3:2c:df:ef:95:70:75:1d:d0:51:53: 08:75:35:5e:f3:b1:53:a8:1e:f9:09:ff:07:e8:5a: 1f:83:d8:ed:e2:bd:30:66:3c:48:f4:a3:39:e7:55: 4f:ee:f9:0e:87:0f:53:13:f3:cc:72:58:a1:d8:99: 43:a3:aa:ee:2f:fb:0c:2f:73:2b:4f:dc:17:7d:24: 54:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:9F:86:DE:F4:01:10:6E:8B:34:D9:4B:F7:A8:97:40:C8:22:55:A4 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31392e302f32342d3234203d3e20313336313231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.19.0/24 Signature Algorithm: sha256WithRSAEncryption 88:fd:01:4e:8b:9b:e5:79:b9:11:99:12:f3:91:c4:ee:c9:70: a7:33:d2:c8:7f:5d:d5:0c:61:ee:7a:a0:78:79:41:17:d9:52: 1e:64:89:c0:15:0f:6c:5d:a2:db:4d:ed:a0:09:dc:da:e2:e6: 48:80:ed:c6:44:4c:45:b7:a6:5d:bb:ba:99:4d:25:9d:13:aa: c6:6e:ca:4c:e4:3d:7b:be:e0:70:9b:29:b0:cc:e9:e0:c0:88: ed:d4:38:d3:41:84:1e:57:41:76:95:a1:97:2d:a8:fb:56:1b: 43:ec:2e:60:18:87:71:a1:16:94:03:6c:30:b9:5f:b1:3a:f8: 97:9a:a8:48:22:9a:b8:69:41:b2:5d:46:b6:85:0a:f1:c1:a9: f6:99:60:ad:45:ea:81:11:40:29:eb:20:19:55:27:e4:17:90: 16:15:7b:fb:21:f2:8f:bf:55:09:cc:bb:eb:cb:e4:d4:28:07: 2f:7d:3e:be:a9:42:70:8e:4a:1e:d4:82:dd:da:f7:36:46:10: c3:d5:41:1c:a4:c4:e5:f2:ae:4d:79:81:70:38:e5:4b:25:b6: df:07:16:92:0b:47:8c:f6:d9:85:eb:a1:41:c5:34:51:49:e3: cf:5f:54:e3:b4:9b:50:ef:4d:ee:53:3f:de:e6:25:e5:1e:62: 45:b1:33:d7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUS1qUxQ13caNHO79e/8aBoRYrZAUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNTA4MTMxMDU1MDFaFw0yNjA4MTIxMTAwMDFaMDMxMTAvBgNV BAMTKDZDOUY4NkRFRjQwMTEwNkU4QjM0RDk0QkY3QTg5NzQwQzgyMjU1QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkDFG4VEDyl2UAZZJN/mWzOkh9 LCN3RxUt+tfG3of4PgvbNaKgY1KRxf4vOlmN3XJ4Ba7R7bUFw8JWq19CtE7MrlnD YDZyIR3iUh8UDOJWr0HY+oBkzqaoieckdKhoiKBFBPk8IFKg3WdppziqfrVHCu6E CDf0rrmS5KK5L3Ov5B02OeYB4qkmIad6+GKSfq5JGFF3X2xTuoiJIdG8uAXqNko4 gK5eej1h4E5u6sMcfU7V9FDRn93TLN/vlXB1HdBRUwh1NV7zsVOoHvkJ/wfoWh+D 2O3ivTBmPEj0oznnVU/u+Q6HD1MT88xyWKHYmUOjqu4v+wwvcytP3Bd9JFTPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbJ+G3vQBEG6LNNlL96iXQMgiVaQwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypoTMA0GCSqG SIb3DQEBCwUAA4IBAQCI/QFOi5vlebkRmRLzkcTuyXCnM9LIf13VDGHueqB4eUEX 2VIeZInAFQ9sXaLbTe2gCdza4uZIgO3GRExFt6Zdu7qZTSWdE6rGbspM5D17vuBw mymwzOngwIjt1DjTQYQeV0F2laGXLaj7VhtD7C5gGIdxoRaUA2wwuV+xOviXmqhI Ipq4aUGyXUa2hQrxwan2mWCtReqBEUAp6yAZVSfkF5AWFXv7IfKPv1UJzLvry+TU KAcvfT6+qUJwjkoe1ILd2vc2RhDD1UEcpMTl8q5NeYFwOOVLJbbfBxaSC0eM9tmF 66FBxTRRSePPX1TjtJtQ703uUz/e5iXlHmJFsTPX -----END CERTIFICATE-----Generated at Sat Aug 23 14:24:24 2025 by rpki-client