$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132342e302f32332d3234203d3e203338353035.roa File: 3230332e3135332e3132342e302f32332d3234203d3e203338353035.roa (raw, json) Hash identifier: IrBPaOzrnHx8A3kF5U8FLypO1fdlWfu1886gczEN4Os= Subject key identifier: 00:92:3D:7E:B7:16:35:52:B5:1D:94:A2:E5:9D:08:F8:FE:91:66:43 Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Certificate serial: 21FFC084FE997788B8F7D9327EB496E0D61D4138 Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132342e302f32332d3234203d3e203338353035.roa Signing time: Wed 25 Jun 2025 14:00:00 +0000 ROA not before: Wed 25 Jun 2025 13:55:00 +0000 ROA not after: Wed 24 Jun 2026 14:00:00 +0000 asID: 38505 IP address blocks: 203.153.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 13:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:ff:c0:84:fe:99:77:88:b8:f7:d9:32:7e:b4:96:e0:d6:1d:41:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Validity Not Before: Jun 25 13:55:00 2025 GMT Not After : Jun 24 14:00:00 2026 GMT Subject: CN=00923D7EB7163552B51D94A2E59D08F8FE916643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9e:b5:df:d3:37:35:32:fc:bf:26:3c:e5:b3: d3:66:97:e7:8e:e3:b4:5e:cf:1d:c9:ec:e0:96:80: b2:5d:f5:fe:36:b5:1c:11:c2:15:6b:65:8c:50:d4: 0a:01:12:1f:c9:a2:e4:fb:45:f4:d6:cd:cc:ca:92: cb:ee:4b:29:45:07:c5:11:4b:e2:38:4c:bc:de:fb: 43:43:6e:6c:6e:99:1b:5e:de:61:45:d5:1d:f7:66: 49:62:c2:c5:fb:ed:98:4b:4b:8c:48:3a:ee:c6:25: 5a:b0:e1:d3:eb:a0:95:20:0c:17:5e:99:1c:95:03: c0:74:ca:6b:d2:a0:13:f2:08:60:6c:e0:79:63:92: 9e:74:12:db:96:80:14:2e:e2:19:8e:ad:b4:7d:d0: a8:18:22:c3:a4:06:7b:f6:a9:89:77:87:a4:c5:0d: eb:cf:f1:a1:bb:ad:cd:d7:53:6c:c5:ca:de:28:95: 65:24:fb:8f:a0:14:24:73:6c:10:f3:3d:92:7a:d5: 4e:69:76:02:6d:a5:1c:f7:39:78:f2:d4:c4:67:7e: af:2b:f8:43:47:07:8d:8c:c9:1c:88:49:f7:dd:fb: 11:03:b3:b7:8d:94:d5:bd:4a:17:31:dd:f4:58:a7: 01:63:16:ae:98:3e:80:df:84:e6:9c:ef:ea:bf:d3: 54:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:92:3D:7E:B7:16:35:52:B5:1D:94:A2:E5:9D:08:F8:FE:91:66:43 X509v3 Authority Key Identifier: keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132342e302f32332d3234203d3e203338353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.124.0/23 Signature Algorithm: sha256WithRSAEncryption 34:dd:5a:71:a5:10:8d:f1:a4:a6:6c:21:46:d5:4f:39:b4:91: 71:63:f9:c9:e6:66:6a:d3:b0:61:82:4c:2d:f3:18:03:85:9f: 2b:81:33:fe:c2:c6:b3:a5:dc:ad:3a:10:48:03:1a:3b:7a:24: 3b:cc:3f:b8:8a:0e:88:2c:9f:7c:f0:f3:9d:f3:6b:c5:b5:42: b8:cc:ca:c8:fd:7a:e7:21:dd:72:f6:31:0c:c6:57:8a:fb:97: bc:61:77:d4:b1:59:7c:87:08:02:6c:dc:22:66:c3:17:7a:87: 36:73:f4:31:c1:be:80:b5:47:e0:c6:16:17:0e:f2:6b:01:12: 4b:fc:b6:0d:cb:f1:2d:5d:6e:18:eb:cf:94:a1:f5:42:80:df: 10:21:c2:4e:d6:b5:69:20:72:00:7b:c9:36:a1:36:a4:67:94: 8d:c4:23:3c:cb:30:c1:23:b8:83:eb:b6:bf:49:19:0f:aa:fb: 51:d6:7f:f5:c5:f0:8d:0c:e2:4c:2e:81:73:9c:f1:a9:3f:2a: 64:3d:57:84:ab:1a:9c:bc:30:0a:62:9f:74:b9:e5:c0:f7:a0: a0:36:d3:a2:0c:56:11:8d:63:e6:da:38:fa:6a:0a:dd:44:99: e3:e3:4f:e2:e6:cb:ae:74:9d:a0:04:37:eb:9d:5d:cf:0b:38: 36:18:07:f4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIf/AhP6Zd4i499kyfrSW4NYdQTgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVE MTFEMzNBNjAeFw0yNTA2MjUxMzU1MDBaFw0yNjA2MjQxNDAwMDBaMDMxMTAvBgNV BAMTKDAwOTIzRDdFQjcxNjM1NTJCNTFEOTRBMkU1OUQwOEY4RkU5MTY2NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUnrXf0zc1Mvy/Jjzls9Nml+eO 47Rezx3J7OCWgLJd9f42tRwRwhVrZYxQ1AoBEh/JouT7RfTWzczKksvuSylFB8UR S+I4TLze+0NDbmxumRte3mFF1R33ZkliwsX77ZhLS4xIOu7GJVqw4dProJUgDBde mRyVA8B0ymvSoBPyCGBs4Hljkp50EtuWgBQu4hmOrbR90KgYIsOkBnv2qYl3h6TF DevP8aG7rc3XU2zFyt4olWUk+4+gFCRzbBDzPZJ61U5pdgJtpRz3OXjy1MRnfq8r +ENHB42MyRyISffd+xEDs7eNlNW9Shcx3fRYpwFjFq6YPoDfhOac7+q/01RhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUAJI9frcWNVK1HZSi5Z0I+P6RZkMwHwYDVR0j BBgwFoAUg9OYbFy9Vr0M6QPRtR6tZdEdM6YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2QwNzg2ZC0zZDNlLTQ1YjctOTY2NS04ZDQ3NGZkMTRhZWEvMC84M0QzOTg2QzVD QkQ1NkJEMENFOTAzRDFCNTFFQUQ2NUQxMUQzM0E2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVEMTFE MzNBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05 NjY1LThkNDc0ZmQxNGFlYS8wLzMyMzAzMzJlMzEzNTMzMmUzMTMyMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzUzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy5l8MA0GCSqG SIb3DQEBCwUAA4IBAQA03VpxpRCN8aSmbCFG1U85tJFxY/nJ5mZq07Bhgkwt8xgD hZ8rgTP+wsazpdytOhBIAxo7eiQ7zD+4ig6ILJ988POd82vFtUK4zMrI/XrnId1y 9jEMxleK+5e8YXfUsVl8hwgCbNwiZsMXeoc2c/Qxwb6AtUfgxhYXDvJrARJL/LYN y/EtXW4Y68+UofVCgN8QIcJO1rVpIHIAe8k2oTakZ5SNxCM8yzDBI7iD67a/SRkP qvtR1n/1xfCNDOJMLoFznPGpPypkPVeEqxqcvDAKYp90ueXA96CgNtOiDFYRjWPm 2jj6agrdRJnj40/i5suudJ2gBDfrnV3PCzg2GAf0 -----END CERTIFICATE-----Generated at Mon Jun 30 19:28:13 2025 by rpki-client