$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e392e302f32342d3234203d3e203338373539.roa File: 3230322e3138302e392e302f32342d3234203d3e203338373539.roa (raw, json) Hash identifier: 0wFTN/XqtAoutydwqc+DafnIfaxz+FirKWo3fLraaUs= Subject key identifier: 84:74:52:A4:C1:88:4C:AF:9D:9D:8A:87:C5:C6:15:5A:C9:E1:4D:AC Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 6AF5EF9666AC3C35C1F67D852FBD7EC26DC6F343 Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e392e302f32342d3234203d3e203338373539.roa Signing time: Tue 17 Jun 2025 14:00:00 +0000 ROA not before: Tue 17 Jun 2025 13:55:00 +0000 ROA not after: Tue 16 Jun 2026 14:00:00 +0000 asID: 38759 IP address blocks: 202.180.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 20:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:f5:ef:96:66:ac:3c:35:c1:f6:7d:85:2f:bd:7e:c2:6d:c6:f3:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jun 17 13:55:00 2025 GMT Not After : Jun 16 14:00:00 2026 GMT Subject: CN=847452A4C1884CAF9D9D8A87C5C6155AC9E14DAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:4e:40:86:69:6a:b1:bc:ab:77:ab:45:ff:50: 5c:03:d4:7a:1e:6f:9e:38:a8:2d:d1:0b:59:58:eb: 14:67:3a:c8:1f:d5:9c:5c:3e:46:14:f5:11:89:04: aa:20:23:9e:8b:69:a8:d3:bb:1e:fe:b0:a7:7b:f6: c1:59:79:39:ec:d3:8e:d6:ca:e4:0e:23:e7:c7:05: a8:6a:52:d3:9d:f1:b2:6d:22:46:6e:3d:30:ea:4b: 5d:fc:bd:03:8f:ce:f0:64:31:6d:d0:a2:85:9c:a8: 0d:db:0d:85:ea:b4:29:76:f4:22:9a:25:0f:95:b6: 6f:09:7c:85:d7:fb:a1:a8:e7:df:a7:43:d3:75:d4: 0c:47:ac:2c:13:08:9e:9f:b5:a7:8b:9e:d0:f0:01: c3:f9:7d:80:c3:6c:55:f2:7e:23:39:56:a5:66:ed: 08:03:11:9a:6f:f8:34:9b:86:a0:09:86:f5:59:be: a8:01:2e:42:f0:5e:41:35:cf:49:55:ad:ec:7d:0f: 7e:30:e2:7a:c7:1d:68:4f:af:62:d0:ed:3d:36:3e: 2e:26:6a:00:5f:88:a9:91:52:68:17:a9:6f:13:2b: 4e:22:e1:a9:30:61:63:9f:f3:9c:60:88:a7:81:01: b4:72:da:2c:07:8d:a5:6c:66:f8:f7:7a:63:72:36: 50:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:74:52:A4:C1:88:4C:AF:9D:9D:8A:87:C5:C6:15:5A:C9:E1:4D:AC X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e392e302f32342d3234203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.9.0/24 Signature Algorithm: sha256WithRSAEncryption 27:e2:22:ba:41:12:dd:4d:f0:b2:0b:94:78:07:89:96:9e:0b: 5d:57:23:2f:67:ae:2f:f8:1e:33:2f:fa:b7:cd:81:08:86:a5: fe:f6:02:1d:66:16:e5:0c:a3:37:7f:0e:b4:bd:97:23:df:21: e2:ca:e9:60:50:b5:b8:90:9e:7b:6e:d1:d0:72:b4:18:e1:37: 6c:94:38:38:87:50:86:44:5a:bf:17:11:5e:47:45:eb:a0:d8: 47:2e:a1:fb:4c:f1:19:5c:9d:e3:a0:0b:95:c6:bb:e2:59:43: 16:e0:05:93:6b:39:2e:fc:bf:b4:9a:71:29:a2:d0:aa:66:cc: ba:49:b8:34:11:ad:3b:4c:9f:fd:a9:4c:8a:6a:7a:f2:5c:f4: e4:8a:9b:d2:32:15:29:7e:fe:62:7a:5c:5a:5b:2d:e3:ad:a5: 82:f6:a1:f0:0f:18:46:c1:71:bb:5d:f6:a0:ff:4f:54:41:92: ad:c0:24:f5:09:f2:58:c1:1f:47:b6:b7:8c:11:27:3f:29:d2: 39:63:46:31:e3:56:88:11:cb:4e:c9:9e:3e:5d:df:76:91:78: b1:40:f7:89:df:29:1e:01:d6:4a:47:a4:ab:5c:30:0b:02:8f: 4c:3c:5e:4f:10:24:28:63:18:f0:3b:29:28:49:a8:3b:02:51: 24:5a:14:1f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUavXvlmasPDXB9n2FL71+wm3G80MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNTA2MTcxMzU1MDBaFw0yNjA2MTYxNDAwMDBaMDMxMTAvBgNV BAMTKDg0NzQ1MkE0QzE4ODRDQUY5RDlEOEE4N0M1QzYxNTVBQzlFMTREQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlTkCGaWqxvKt3q0X/UFwD1Hoe b544qC3RC1lY6xRnOsgf1ZxcPkYU9RGJBKogI56LaajTux7+sKd79sFZeTns047W yuQOI+fHBahqUtOd8bJtIkZuPTDqS138vQOPzvBkMW3QooWcqA3bDYXqtCl29CKa JQ+Vtm8JfIXX+6Go59+nQ9N11AxHrCwTCJ6ftaeLntDwAcP5fYDDbFXyfiM5VqVm 7QgDEZpv+DSbhqAJhvVZvqgBLkLwXkE1z0lVrex9D34w4nrHHWhPr2LQ7T02Pi4m agBfiKmRUmgXqW8TK04i4akwYWOf85xgiKeBAbRy2iwHjaVsZvj3emNyNlBLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUhHRSpMGITK+dnYqHxcYVWsnhTawwHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMjJlMzEzODMwMmUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNzM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKtAkwDQYJKoZIhvcN AQELBQADggEBACfiIrpBEt1N8LILlHgHiZaeC11XIy9nri/4HjMv+rfNgQiGpf72 Ah1mFuUMozd/DrS9lyPfIeLK6WBQtbiQnntu0dBytBjhN2yUODiHUIZEWr8XEV5H Reug2EcuoftM8RlcneOgC5XGu+JZQxbgBZNrOS78v7SacSmi0KpmzLpJuDQRrTtM n/2pTIpqevJc9OSKm9IyFSl+/mJ6XFpbLeOtpYL2ofAPGEbBcbtd9qD/T1RBkq3A JPUJ8ljBH0e2t4wRJz8p0jljRjHjVogRy07Jnj5d33aReLFA94nfKR4B1kpHpKtc MAsCj0w8Xk8QJChjGPA7KShJqDsCUSRaFB8= -----END CERTIFICATE-----Generated at Mon Jun 30 13:33:27 2025 by rpki-client