$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35382e302f32342d3234203d3e20313336313139.roa File: 3230322e31302e35382e302f32342d3234203d3e20313336313139.roa (raw, json) Hash identifier: FqumLAE5ExkmaatbD11ff744L2iTMEhUHWhZUQWOtLU= Subject key identifier: 4A:8E:48:A9:A6:29:B3:92:18:49:08:E9:73:35:29:7C:88:E2:06:26 Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 05D38A173D91CD20BB22EB33BC93E373FD1F9C9F Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35382e302f32342d3234203d3e20313336313139.roa Signing time: Wed 20 Aug 2025 08:00:01 +0000 ROA not before: Wed 20 Aug 2025 07:55:01 +0000 ROA not after: Wed 19 Aug 2026 08:00:01 +0000 asID: 136119 IP address blocks: 202.10.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 18:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:d3:8a:17:3d:91:cd:20:bb:22:eb:33:bc:93:e3:73:fd:1f:9c:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Aug 20 07:55:01 2025 GMT Not After : Aug 19 08:00:01 2026 GMT Subject: CN=4A8E48A9A629B392184908E97335297C88E20626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0f:45:98:a8:67:7f:01:9c:8e:45:1e:26:83: 1a:ad:8a:3f:26:b8:27:21:87:28:3e:8e:33:c6:88: 69:de:ae:09:94:1e:78:71:2f:35:52:38:7a:ed:2e: de:81:4d:91:fd:ce:2f:15:ed:89:73:83:60:e0:3f: c4:14:08:ba:d7:68:b7:8a:82:27:d5:53:c8:32:c1: 17:eb:1e:9a:b3:da:8d:6e:36:1b:5c:bf:86:74:49: ae:1f:4b:4d:da:d0:8c:6f:ff:cb:fb:e9:00:b5:13: 3b:0c:c4:a0:6c:e3:a9:1f:f2:e4:4b:a2:e8:45:f1: e4:2c:2f:ca:d1:d1:5a:f8:a5:e1:82:a9:30:97:ed: 1b:a1:4d:f6:2d:bf:d9:ae:85:4e:a1:d1:5f:d9:3d: 5c:84:00:7d:e8:99:2d:43:ac:73:6d:b8:fb:28:42: 98:57:dd:bf:9a:c1:56:0d:4d:22:7b:31:98:e0:f7: 8a:4a:de:d1:65:9a:20:a2:75:5b:fa:e1:cc:33:e9: 14:ab:da:3a:24:a0:7b:59:71:8b:8b:99:0c:05:fc: 95:ee:c2:73:5b:37:34:53:2f:b8:3b:7a:14:a0:c9: c5:50:98:45:da:5d:bd:49:32:b1:a3:c4:6e:76:c7: cb:d7:50:46:19:7b:9c:1a:22:c0:e5:35:10:9a:13: e9:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:8E:48:A9:A6:29:B3:92:18:49:08:E9:73:35:29:7C:88:E2:06:26 X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35382e302f32342d3234203d3e20313336313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.58.0/24 Signature Algorithm: sha256WithRSAEncryption 72:b3:a8:16:30:91:ba:85:ad:35:90:da:cf:91:58:5b:5e:35: 8c:f8:d7:ed:e9:82:e5:80:cc:7b:42:f2:c5:75:90:a5:e4:f8: 14:78:e4:49:33:74:d0:c3:bd:1c:23:3d:8e:07:63:66:32:4b: ed:4e:08:09:89:07:e4:28:dd:e3:d7:c1:ff:ce:15:38:7d:33: c5:5b:44:13:d6:79:38:1c:88:76:8a:31:ef:db:5c:43:f4:e1: e8:17:6f:72:2d:c3:38:20:f7:75:8a:45:19:32:ce:19:bc:f9: 2b:2e:bd:04:7e:7d:bb:b1:3d:28:b8:08:3c:81:3d:5d:db:86: 85:32:17:e6:b5:c0:64:dd:ea:24:56:b3:1f:ee:af:e1:ff:0f: 8e:2a:b8:59:3b:3a:e3:5e:38:3a:3d:a3:b8:31:c6:78:a6:d4: f0:e2:99:89:b8:3c:a3:09:c7:0a:94:6a:76:d3:14:28:4d:8d: e1:c2:b3:73:b2:2b:97:84:63:e4:6e:9c:38:53:c4:1a:95:13: 1d:b6:85:e5:84:19:ed:3f:33:d9:21:30:92:c0:d0:85:d6:0c: 06:6d:e4:67:25:6f:e7:4a:29:5a:4f:81:33:79:f4:92:5b:90: a2:3c:d0:52:b8:60:ab:0a:77:eb:00:d3:e2:c3:23:b7:c8:7b: a4:85:12:b0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBdOKFz2RzSC7IuszvJPjc/0fnJ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yNTA4MjAwNzU1MDFaFw0yNjA4MTkwODAwMDFaMDMxMTAvBgNV BAMTKDRBOEU0OEE5QTYyOUIzOTIxODQ5MDhFOTczMzUyOTdDODhFMjA2MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvD0WYqGd/AZyORR4mgxqtij8m uCchhyg+jjPGiGnergmUHnhxLzVSOHrtLt6BTZH9zi8V7Ylzg2DgP8QUCLrXaLeK gifVU8gywRfrHpqz2o1uNhtcv4Z0Sa4fS03a0Ixv/8v76QC1EzsMxKBs46kf8uRL ouhF8eQsL8rR0Vr4peGCqTCX7RuhTfYtv9muhU6h0V/ZPVyEAH3omS1DrHNtuPso QphX3b+awVYNTSJ7MZjg94pK3tFlmiCidVv64cwz6RSr2jokoHtZcYuLmQwF/JXu wnNbNzRTL7g7ehSgycVQmEXaXb1JMrGjxG52x8vXUEYZe5waIsDlNRCaE+mNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSo5IqaYps5IYSQjpczUpfIjiBiYwHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkYWJjMGJhLTkyMjItNGM0NS04 MzQyLWViODY0M2M0OTY3ZC8wLzMyMzAzMjJlMzEzMDJlMzUzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNjMxMzEzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoKOjANBgkqhkiG 9w0BAQsFAAOCAQEAcrOoFjCRuoWtNZDaz5FYW141jPjX7emC5YDMe0LyxXWQpeT4 FHjkSTN00MO9HCM9jgdjZjJL7U4ICYkH5Cjd49fB/84VOH0zxVtEE9Z5OByIdoox 79tcQ/Th6Bdvci3DOCD3dYpFGTLOGbz5Ky69BH59u7E9KLgIPIE9XduGhTIX5rXA ZN3qJFazH+6v4f8Pjiq4WTs64144Oj2juDHGeKbU8OKZibg8ownHCpRqdtMUKE2N 4cKzc7Irl4Rj5G6cOFPEGpUTHbaF5YQZ7T8z2SEwksDQhdYMBm3kZyVv50opWk+B M3n0kluQojzQUrhgqwp36wDT4sMjt8h7pIUSsA== -----END CERTIFICATE-----Generated at Sat Aug 23 15:53:58 2025 by rpki-client