$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132302e302f32332d3234203d3e203338353035.roa File: 3230332e3135332e3132302e302f32332d3234203d3e203338353035.roa (raw, json) Hash identifier: 1FsOdleRSG3IEtzn2Y5KIghx/oCLGSKZKVzGT9z4mXU= Subject key identifier: B4:BE:71:11:3D:3B:5C:D6:4D:FB:5D:08:2D:CC:03:50:FF:0B:33:3C Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Certificate serial: 6A8605D105BBD79CE53007DA6CBA1860C89995D0 Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132302e302f32332d3234203d3e203338353035.roa Signing time: Wed 25 Jun 2025 14:00:00 +0000 ROA not before: Wed 25 Jun 2025 13:55:00 +0000 ROA not after: Wed 24 Jun 2026 14:00:00 +0000 asID: 38505 IP address blocks: 203.153.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 13:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:86:05:d1:05:bb:d7:9c:e5:30:07:da:6c:ba:18:60:c8:99:95:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Validity Not Before: Jun 25 13:55:00 2025 GMT Not After : Jun 24 14:00:00 2026 GMT Subject: CN=B4BE71113D3B5CD64DFB5D082DCC0350FF0B333C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6e:9a:c9:ee:9d:35:b1:ac:93:dd:b0:62:01: b7:b6:89:62:9a:ac:41:ba:47:ca:55:aa:fb:ba:6e: d1:89:13:f9:58:71:04:f2:3c:82:06:33:11:b7:d8: 0e:ec:23:7e:51:bd:cb:da:dc:b9:f2:1b:83:88:30: 28:75:22:43:4c:cd:88:42:7b:fb:b2:54:39:77:81: 43:51:62:75:ef:05:04:be:d0:e5:ce:c3:c6:d0:e1: fd:79:04:7b:d2:e8:55:f4:07:2f:8d:21:8d:e4:a2: 22:7a:3f:0c:15:b6:1d:e1:1a:77:b2:2e:f1:af:0a: 61:6c:07:b4:0e:6b:12:f2:c9:9e:60:94:e0:ef:f0: 68:7e:a0:f6:d0:f8:b1:b4:28:12:3b:95:48:c7:47: 16:5b:9b:89:bd:94:3a:0d:26:54:7d:02:09:64:e9: 1b:a8:f8:20:89:01:6e:2c:62:82:c0:bd:64:45:4b: e8:c4:45:aa:8f:db:5e:0d:c1:4d:00:61:08:af:e3: 82:5c:28:df:e8:b8:d0:77:b0:de:2c:bb:87:6e:92: d1:18:e0:b5:bf:95:18:db:fb:95:4e:e1:f6:38:3f: f7:0a:ca:e4:ba:38:5d:c8:53:16:81:56:03:58:6e: a8:f9:91:0e:8b:77:94:46:b5:e7:e2:20:47:fa:b0: c2:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:BE:71:11:3D:3B:5C:D6:4D:FB:5D:08:2D:CC:03:50:FF:0B:33:3C X509v3 Authority Key Identifier: keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132302e302f32332d3234203d3e203338353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.120.0/23 Signature Algorithm: sha256WithRSAEncryption c0:d5:41:84:fb:fb:c5:53:c4:f2:a5:d3:f1:58:30:ee:b4:ce: a3:e2:f1:af:b0:2c:fc:12:ca:89:7a:96:28:a4:ad:00:88:45: 0a:5d:ae:24:b4:7e:c2:60:76:e8:38:85:79:28:c8:31:a5:ba: 1b:b6:69:46:f6:ac:c9:e5:df:29:7a:bf:0c:03:ce:04:8a:55: 53:79:24:43:94:93:8c:02:12:38:28:83:e9:9d:a8:3f:78:8b: de:73:1d:69:7d:3b:33:60:05:1c:bf:81:ae:2f:67:9c:db:11: ef:4a:76:fc:dc:03:7c:a0:5f:00:50:80:b8:51:a2:1b:34:79: 1a:6d:a6:43:30:df:c3:d1:10:83:8a:1a:38:8c:6b:9d:23:36: 4a:1a:4f:4a:de:35:ff:43:db:7e:1e:93:26:f8:a5:c7:02:7d: c2:3f:41:e3:31:67:22:a2:01:a0:17:49:11:3b:e9:d0:92:30: 26:3b:65:cb:b7:32:a8:aa:21:ba:f2:d0:c1:d2:54:bd:b8:28: 28:ef:ab:1d:11:fe:f6:ad:68:2e:fa:99:b9:05:67:1f:93:e7: 2b:d0:7c:48:aa:fa:04:1f:fc:86:f3:0c:45:f3:48:60:42:a1: c7:bb:2a:26:04:0d:3d:8c:32:7e:b0:53:80:02:49:59:bc:0d: 68:41:96:91 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaoYF0QW715zlMAfabLoYYMiZldAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVE MTFEMzNBNjAeFw0yNTA2MjUxMzU1MDBaFw0yNjA2MjQxNDAwMDBaMDMxMTAvBgNV BAMTKEI0QkU3MTExM0QzQjVDRDY0REZCNUQwODJEQ0MwMzUwRkYwQjMzM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhbprJ7p01sayT3bBiAbe2iWKa rEG6R8pVqvu6btGJE/lYcQTyPIIGMxG32A7sI35Rvcva3LnyG4OIMCh1IkNMzYhC e/uyVDl3gUNRYnXvBQS+0OXOw8bQ4f15BHvS6FX0By+NIY3koiJ6PwwVth3hGney LvGvCmFsB7QOaxLyyZ5glODv8Gh+oPbQ+LG0KBI7lUjHRxZbm4m9lDoNJlR9Aglk 6Ruo+CCJAW4sYoLAvWRFS+jERaqP214NwU0AYQiv44JcKN/ouNB3sN4su4duktEY 4LW/lRjb+5VO4fY4P/cKyuS6OF3IUxaBVgNYbqj5kQ6Ld5RGtefiIEf6sML3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtL5xET07XNZN+10ILcwDUP8LMzwwHwYDVR0j BBgwFoAUg9OYbFy9Vr0M6QPRtR6tZdEdM6YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2QwNzg2ZC0zZDNlLTQ1YjctOTY2NS04ZDQ3NGZkMTRhZWEvMC84M0QzOTg2QzVD QkQ1NkJEMENFOTAzRDFCNTFFQUQ2NUQxMUQzM0E2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVEMTFE MzNBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05 NjY1LThkNDc0ZmQxNGFlYS8wLzMyMzAzMzJlMzEzNTMzMmUzMTMyMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzUzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy5l4MA0GCSqG SIb3DQEBCwUAA4IBAQDA1UGE+/vFU8TypdPxWDDutM6j4vGvsCz8EsqJepYopK0A iEUKXa4ktH7CYHboOIV5KMgxpbobtmlG9qzJ5d8per8MA84EilVTeSRDlJOMAhI4 KIPpnag/eIvecx1pfTszYAUcv4GuL2ec2xHvSnb83AN8oF8AUIC4UaIbNHkabaZD MN/D0RCDiho4jGudIzZKGk9K3jX/Q9t+HpMm+KXHAn3CP0HjMWciogGgF0kRO+nQ kjAmO2XLtzKoqiG68tDB0lS9uCgo76sdEf72rWgu+pm5BWcfk+cr0HxIqvoEH/yG 8wxF80hgQqHHuyomBA09jDJ+sFOAAklZvA1oQZaR -----END CERTIFICATE-----Generated at Mon Jun 30 15:34:38 2025 by rpki-client