$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31332e302f32342d3234203d3e203338373539.roa File: 3230322e3138302e31332e302f32342d3234203d3e203338373539.roa (raw, json) Hash identifier: 7wzHDGiNPdR1rFQHicraAxcZjQRCh3/Q5KM8DSR+Lzc= Subject key identifier: 06:A9:BD:C3:2F:09:8F:0D:46:66:AC:AE:9E:1A:5A:A6:67:58:53:78 Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 581E823862EBC155365CDE79D0931229B0D93326 Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31332e302f32342d3234203d3e203338373539.roa Signing time: Tue 17 Jun 2025 13:00:00 +0000 ROA not before: Tue 17 Jun 2025 12:55:00 +0000 ROA not after: Tue 16 Jun 2026 13:00:00 +0000 asID: 38759 IP address blocks: 202.180.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 20:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:1e:82:38:62:eb:c1:55:36:5c:de:79:d0:93:12:29:b0:d9:33:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jun 17 12:55:00 2025 GMT Not After : Jun 16 13:00:00 2026 GMT Subject: CN=06A9BDC32F098F0D4666ACAE9E1A5AA667585378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:55:ef:1b:13:bd:04:e8:4c:ea:8e:8a:a2:f8: e3:8f:75:12:e6:09:0c:03:09:be:0e:74:ba:2b:c0: a6:6e:90:ba:57:b7:ed:cd:99:37:45:4a:60:ef:6e: 1b:56:25:66:42:86:cb:e6:ff:b5:d3:12:92:43:81: 69:a4:5b:ea:91:bf:7a:2b:8e:de:9b:4d:50:28:41: f3:f3:9f:5d:ba:20:0c:f2:a5:85:00:a9:61:ca:2e: 79:b8:54:af:14:f6:7a:e7:84:f4:be:f4:42:1d:da: 12:79:36:52:e7:4d:a6:1b:1a:a5:c3:b8:fc:84:e2: c9:a3:73:c2:b9:23:30:e8:7c:cb:14:5c:5f:bc:99: 76:62:a9:65:f8:98:7e:56:14:19:3f:87:01:f7:19: bb:03:9b:a1:65:a8:60:d5:94:13:cf:e3:ab:2f:ac: 9e:36:aa:d9:e0:8c:49:14:f2:2f:0c:3f:a8:33:88: 14:13:5d:ee:9e:6e:6f:a8:19:1c:0c:98:18:a9:74: c1:d3:1d:07:15:33:65:13:9f:a3:29:7a:46:f7:49: 45:8b:4d:f4:5b:4f:1b:ec:35:6d:17:c4:aa:9c:9a: 57:c2:90:99:1f:89:d1:6e:3e:8d:34:26:b5:bb:fa: e5:2f:46:ac:8f:ec:1b:bf:61:95:ac:68:41:81:ff: 79:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A9:BD:C3:2F:09:8F:0D:46:66:AC:AE:9E:1A:5A:A6:67:58:53:78 X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31332e302f32342d3234203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.13.0/24 Signature Algorithm: sha256WithRSAEncryption b2:41:94:79:d1:e3:50:7c:9a:3b:00:3f:03:a4:5d:18:c7:28: 9e:09:c3:96:e5:a3:2a:bb:fb:9b:f4:3a:37:10:e8:ce:24:7d: e9:3c:e8:fe:fb:c6:d4:ce:82:f9:6d:c3:ea:0a:2e:4f:e1:8a: 6b:d6:2e:14:18:d1:26:10:e9:dc:90:f6:39:11:40:bb:a9:aa: d9:b3:ac:ca:0c:bd:fb:f5:95:6a:86:41:6c:f2:20:85:6d:3d: 90:51:9b:78:f2:dc:47:8c:19:21:e2:21:d9:62:ca:6c:0e:86: 81:6b:30:6a:75:f2:06:11:74:fb:04:b8:f2:1e:f6:df:41:fa: 3b:10:16:48:32:62:b2:91:66:7a:04:da:e3:4c:d5:d9:ca:58: 08:67:9d:b2:d5:ad:93:6a:67:80:96:d3:a7:bd:ae:10:bb:3f: 54:fc:be:c7:31:ec:4e:c6:36:2e:08:d0:56:9e:c3:35:ba:1a: 46:6b:77:e2:ee:fc:44:ad:e9:63:0e:9e:b2:ba:d3:c7:48:c7: 05:db:5f:a6:9e:46:aa:8b:06:30:21:1e:c7:a6:15:c9:0f:97: 48:7c:a3:cb:f1:21:61:a4:ab:14:b5:6b:cd:9d:3c:e0:d7:60: 1d:3c:75:39:6b:74:18:85:01:07:2f:fd:e1:74:0a:ee:6e:09: 6a:24:38:04 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWB6COGLrwVU2XN550JMSKbDZMyYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNTA2MTcxMjU1MDBaFw0yNjA2MTYxMzAwMDBaMDMxMTAvBgNV BAMTKDA2QTlCREMzMkYwOThGMEQ0NjY2QUNBRTlFMUE1QUE2Njc1ODUzNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTVe8bE70E6Ezqjoqi+OOPdRLm CQwDCb4OdLorwKZukLpXt+3NmTdFSmDvbhtWJWZChsvm/7XTEpJDgWmkW+qRv3or jt6bTVAoQfPzn126IAzypYUAqWHKLnm4VK8U9nrnhPS+9EId2hJ5NlLnTaYbGqXD uPyE4smjc8K5IzDofMsUXF+8mXZiqWX4mH5WFBk/hwH3GbsDm6FlqGDVlBPP46sv rJ42qtngjEkU8i8MP6gziBQTXe6ebm+oGRwMmBipdMHTHQcVM2UTn6Mpekb3SUWL TfRbTxvsNW0XxKqcmlfCkJkfidFuPo00JrW7+uUvRqyP7Bu/YZWsaEGB/3k5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBqm9wy8Jjw1GZqyunhpapmdYU3gwHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMjJlMzEzODMwMmUzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMq0DTANBgkqhkiG 9w0BAQsFAAOCAQEAskGUedHjUHyaOwA/A6RdGMcongnDluWjKrv7m/Q6NxDoziR9 6Tzo/vvG1M6C+W3D6gouT+GKa9YuFBjRJhDp3JD2ORFAu6mq2bOsygy9+/WVaoZB bPIghW09kFGbePLcR4wZIeIh2WLKbA6GgWswanXyBhF0+wS48h7230H6OxAWSDJi spFmegTa40zV2cpYCGedstWtk2pngJbTp72uELs/VPy+xzHsTsY2LgjQVp7DNboa Rmt34u78RK3pYw6esrrTx0jHBdtfpp5GqosGMCEex6YVyQ+XSHyjy/EhYaSrFLVr zZ084NdgHTx1OWt0GIUBBy/94XQK7m4JaiQ4BA== -----END CERTIFICATE-----Generated at Mon Jun 30 13:30:10 2025 by rpki-client