$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31312e302f32342d3234203d3e203338373539.roa File: 3230322e3138302e31312e302f32342d3234203d3e203338373539.roa (raw, json) Hash identifier: ieZuTIxFCE7GT48kZHlnhDRdoyyMo22tAQF2MzZLBUM= Subject key identifier: 16:7D:E9:77:7E:08:15:F9:59:2E:AE:4F:D9:9E:93:BF:CF:52:5E:E0 Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 0B0CFCFA664D50F833D96AB9AE34E01EC4EA7925 Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31312e302f32342d3234203d3e203338373539.roa Signing time: Tue 17 Jun 2025 14:00:00 +0000 ROA not before: Tue 17 Jun 2025 13:55:00 +0000 ROA not after: Tue 16 Jun 2026 14:00:00 +0000 asID: 38759 IP address blocks: 202.180.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 20:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:0c:fc:fa:66:4d:50:f8:33:d9:6a:b9:ae:34:e0:1e:c4:ea:79:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jun 17 13:55:00 2025 GMT Not After : Jun 16 14:00:00 2026 GMT Subject: CN=167DE9777E0815F9592EAE4FD99E93BFCF525EE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:bc:78:e1:58:b7:06:14:bd:01:ba:a4:ed:61: 55:49:d3:3b:8d:8a:6e:eb:3b:0d:14:2d:b7:c7:23: 46:dc:9b:a7:74:df:ee:81:10:f5:fc:94:df:c0:34: 31:b4:f8:39:6f:5e:20:0d:5b:00:de:d3:31:9a:16: f3:15:b5:4e:2a:f3:98:06:93:f1:12:28:00:28:2d: 29:d6:43:fd:ef:4c:74:01:94:d3:2a:60:81:10:2d: 63:22:ad:08:7e:ab:5f:e6:84:b6:54:43:69:5a:74: 0f:b7:00:ae:80:01:77:7c:25:5f:b2:dd:b6:f7:15: cf:0c:59:74:db:4b:4c:d3:51:c3:24:42:9d:af:3c: 83:72:f3:a7:05:d8:b0:f9:f0:73:aa:1a:c1:8d:d3: ee:39:46:fe:e8:6b:2f:a4:0b:80:c1:dd:71:98:cd: 55:8e:04:ca:69:27:77:e2:8d:ab:af:51:78:a5:bd: ba:6b:86:dd:99:99:1c:75:a2:72:2c:2d:ab:81:3a: 31:88:f9:71:d4:f7:0c:12:3e:43:7f:14:73:37:bc: e8:27:6e:de:70:b1:81:44:34:f2:78:48:75:7f:aa: e3:a2:4e:96:b1:4f:f6:6f:06:de:6f:be:d5:b5:9b: cb:75:f9:d1:5f:48:1c:23:b8:f1:a9:b4:bd:16:c0: b7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:7D:E9:77:7E:08:15:F9:59:2E:AE:4F:D9:9E:93:BF:CF:52:5E:E0 X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31312e302f32342d3234203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.11.0/24 Signature Algorithm: sha256WithRSAEncryption 25:9a:9f:0e:33:1b:a0:08:c5:ee:cd:c6:26:8a:ee:d2:65:82: 34:de:c3:de:f8:6e:fa:5c:7d:d0:51:bc:1a:af:08:22:68:c6: 7e:37:14:0b:83:65:82:01:26:c5:50:0e:24:7a:9a:83:ff:7f: 62:a6:08:90:58:14:b4:dc:70:5a:4c:bf:a3:85:b4:7a:26:0d: f4:42:f3:06:a2:29:90:ed:91:78:fe:eb:a5:d3:90:2d:d4:e2: 5c:3a:39:3c:a7:88:dc:88:f8:31:94:6e:04:c6:44:da:e0:88: 59:8f:ab:6d:23:d6:8e:73:c0:7a:ef:d9:29:7a:e2:b0:79:09: 8b:0c:b0:5c:56:36:6a:32:6d:df:ba:77:b2:51:21:4e:9f:5a: 5e:80:57:1b:1d:b0:01:79:7c:64:91:57:2a:c5:44:50:67:58: 97:ec:16:c5:ac:28:f3:8c:9f:54:d1:b7:ce:b2:b2:57:09:be: 4d:e6:7d:27:1a:5b:36:d7:ce:28:b1:ab:92:d8:23:c5:24:f6: 8a:52:48:0b:ec:83:0d:1a:4f:e9:f7:49:ed:9c:14:55:d3:43: ae:14:cc:b3:cf:6b:88:26:c9:af:27:fc:e4:62:ec:46:e3:61: f2:d0:ef:ba:5a:0b:12:0a:4c:fc:f8:65:ad:f1:38:2c:95:7c: a2:f7:7b:50 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCwz8+mZNUPgz2Wq5rjTgHsTqeSUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNTA2MTcxMzU1MDBaFw0yNjA2MTYxNDAwMDBaMDMxMTAvBgNV BAMTKDE2N0RFOTc3N0UwODE1Rjk1OTJFQUU0RkQ5OUU5M0JGQ0Y1MjVFRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUvHjhWLcGFL0BuqTtYVVJ0zuN im7rOw0ULbfHI0bcm6d03+6BEPX8lN/ANDG0+DlvXiANWwDe0zGaFvMVtU4q85gG k/ESKAAoLSnWQ/3vTHQBlNMqYIEQLWMirQh+q1/mhLZUQ2ladA+3AK6AAXd8JV+y 3bb3Fc8MWXTbS0zTUcMkQp2vPINy86cF2LD58HOqGsGN0+45Rv7oay+kC4DB3XGY zVWOBMppJ3fijauvUXilvbprht2ZmRx1onIsLauBOjGI+XHU9wwSPkN/FHM3vOgn bt5wsYFENPJ4SHV/quOiTpaxT/ZvBt5vvtW1m8t1+dFfSBwjuPGptL0WwLfbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFn3pd34IFflZLq5P2Z6Tv89SXuAwHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMjJlMzEzODMwMmUzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMq0CzANBgkqhkiG 9w0BAQsFAAOCAQEAJZqfDjMboAjF7s3GJoru0mWCNN7D3vhu+lx90FG8Gq8IImjG fjcUC4NlggEmxVAOJHqag/9/YqYIkFgUtNxwWky/o4W0eiYN9ELzBqIpkO2ReP7r pdOQLdTiXDo5PKeI3Ij4MZRuBMZE2uCIWY+rbSPWjnPAeu/ZKXrisHkJiwywXFY2 ajJt37p3slEhTp9aXoBXGx2wAXl8ZJFXKsVEUGdYl+wWxawo84yfVNG3zrKyVwm+ TeZ9JxpbNtfOKLGrktgjxST2ilJIC+yDDRpP6fdJ7ZwUVdNDrhTMs89riCbJryf8 5GLsRuNh8tDvuloLEgpM/PhlrfE4LJV8ovd7UA== -----END CERTIFICATE-----Generated at Mon Jun 30 13:33:34 2025 by rpki-client