$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31322e302f32342d3234203d3e203338373539.roa File: 3230322e3138302e31322e302f32342d3234203d3e203338373539.roa (raw, json) Hash identifier: 99pjiFxy6i9aAF5V+k03NOY+ffA/N57vuM+xXi4hwV0= Subject key identifier: 2F:92:24:95:05:EB:DA:D2:A1:EB:63:0C:9B:46:79:79:0F:39:7C:70 Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 4CB18823E0F78683AFC69D23ABCD4769FCE80935 Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31322e302f32342d3234203d3e203338373539.roa Signing time: Tue 17 Jun 2025 13:00:00 +0000 ROA not before: Tue 17 Jun 2025 12:55:00 +0000 ROA not after: Tue 16 Jun 2026 13:00:00 +0000 asID: 38759 IP address blocks: 202.180.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 20:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:b1:88:23:e0:f7:86:83:af:c6:9d:23:ab:cd:47:69:fc:e8:09:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jun 17 12:55:00 2025 GMT Not After : Jun 16 13:00:00 2026 GMT Subject: CN=2F92249505EBDAD2A1EB630C9B4679790F397C70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a6:2a:ad:5f:4d:97:46:28:eb:31:c1:f5:6d: dc:5f:a7:cc:07:ad:89:66:1f:58:d3:7d:9c:39:eb: ff:04:6b:4a:2b:6f:e4:18:56:c9:ee:c6:99:ed:c6: 99:ee:10:66:c8:0d:45:10:79:98:fa:d0:6b:ab:e0: 69:c2:05:97:fb:29:87:c0:d6:55:13:3a:a1:ae:04: c0:0c:bf:4a:d9:c1:4c:81:7d:a0:a8:49:9b:c5:3e: e8:07:08:09:14:33:52:fe:b0:62:1b:2d:48:e5:7a: 98:4e:a1:4c:62:e5:ef:35:84:53:a4:4f:77:f7:13: 2f:cb:b1:78:dd:c1:c6:aa:f3:26:f8:92:ff:6b:b2: 6a:90:a4:45:05:a3:0c:21:d8:10:55:28:b5:4d:9b: ac:e3:d6:ab:37:53:26:85:5d:f3:23:e9:fa:b4:3d: eb:6d:ca:78:85:1b:0e:b9:7a:38:2d:56:89:3a:54: 90:7e:d8:4b:d0:b5:a1:b9:88:50:37:7b:30:90:07: c2:e0:f1:1e:fb:19:63:a5:0d:a0:36:4a:d4:d4:89: 27:32:19:31:c9:82:83:e2:e7:13:d2:12:0f:ea:b5: ce:87:96:89:ac:5a:73:96:53:68:53:66:58:e4:0a: 0b:10:e4:7c:90:28:00:e0:62:80:00:7f:01:0c:7f: e4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:92:24:95:05:EB:DA:D2:A1:EB:63:0C:9B:46:79:79:0F:39:7C:70 X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31322e302f32342d3234203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.12.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:18:85:00:f2:41:05:ef:89:6a:2c:66:fb:c4:6c:6e:46:31: 46:65:56:9b:7e:32:62:c3:f3:ac:5f:52:f1:36:2f:ad:89:8e: 0f:07:ae:3c:e2:75:7b:d9:d2:05:9b:17:5f:22:df:eb:31:84: b5:e4:8f:c2:f5:24:46:42:11:dc:8e:78:2e:6f:e1:48:f6:f9: 9b:59:9b:a4:79:12:8a:5c:cc:82:55:49:32:d3:84:67:c0:6e: 1a:ac:a4:d0:3d:b9:72:43:f9:f5:59:7f:c0:78:e9:75:bb:b6: 9f:02:2a:d4:73:eb:d3:eb:81:02:08:f7:95:58:ae:4d:63:7d: 3b:58:be:8c:ed:6a:ca:37:46:46:bb:36:56:1e:31:be:48:1d: 0d:5d:be:9b:32:72:d3:52:1a:c9:26:1c:2c:47:2c:f4:ac:c9: 7b:ef:a0:d2:6b:c5:d7:fe:2c:76:45:f8:90:1c:86:ec:2d:be: c0:fb:db:a2:03:56:13:e8:3d:17:a7:0c:03:c6:7c:95:4b:42: c9:35:9b:5f:1b:e2:01:d8:62:62:92:71:fe:df:e3:2f:c1:b9: 70:ea:3f:75:81:ef:a8:1e:f5:12:8c:f7:d1:dd:8b:c6:d8:87: 37:ac:f9:38:36:bb:ee:1d:62:1f:ee:0d:d3:a6:1f:8d:9d:1e: 59:0c:6d:65 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTLGII+D3hoOvxp0jq81HafzoCTUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNTA2MTcxMjU1MDBaFw0yNjA2MTYxMzAwMDBaMDMxMTAvBgNV BAMTKDJGOTIyNDk1MDVFQkRBRDJBMUVCNjMwQzlCNDY3OTc5MEYzOTdDNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkpiqtX02XRijrMcH1bdxfp8wH rYlmH1jTfZw56/8Ea0orb+QYVsnuxpntxpnuEGbIDUUQeZj60Gur4GnCBZf7KYfA 1lUTOqGuBMAMv0rZwUyBfaCoSZvFPugHCAkUM1L+sGIbLUjlephOoUxi5e81hFOk T3f3Ey/LsXjdwcaq8yb4kv9rsmqQpEUFowwh2BBVKLVNm6zj1qs3UyaFXfMj6fq0 PettyniFGw65ejgtVok6VJB+2EvQtaG5iFA3ezCQB8Lg8R77GWOlDaA2StTUiScy GTHJgoPi5xPSEg/qtc6HlomsWnOWU2hTZljkCgsQ5HyQKADgYoAAfwEMf+QdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUL5IklQXr2tKh62MMm0Z5eQ85fHAwHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMjJlMzEzODMwMmUzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMq0DDANBgkqhkiG 9w0BAQsFAAOCAQEAXhiFAPJBBe+Jaixm+8RsbkYxRmVWm34yYsPzrF9S8TYvrYmO DweuPOJ1e9nSBZsXXyLf6zGEteSPwvUkRkIR3I54Lm/hSPb5m1mbpHkSilzMglVJ MtOEZ8BuGqyk0D25ckP59Vl/wHjpdbu2nwIq1HPr0+uBAgj3lViuTWN9O1i+jO1q yjdGRrs2Vh4xvkgdDV2+mzJy01IaySYcLEcs9KzJe++g0mvF1/4sdkX4kByG7C2+ wPvbogNWE+g9F6cMA8Z8lUtCyTWbXxviAdhiYpJx/t/jL8G5cOo/dYHvqB71Eoz3 0d2LxtiHN6z5ODa77h1iH+4N06YfjZ0eWQxtZQ== -----END CERTIFICATE-----Generated at Mon Jun 30 13:32:37 2025 by rpki-client