$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3231302e3231302e3132382e302f31382d3234203d3e2034373837.roa File: 3231302e3231302e3132382e302f31382d3234203d3e2034373837.roa (raw, json) Hash identifier: XA8SkuahloSTigJSRo7AmwFnL75t6bQcetyBIEe16jI= Subject key identifier: 3F:B5:B5:1D:F3:17:65:D1:0C:34:FE:52:C2:D4:C9:18:B4:23:71:E9 Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 7453DDF7B042C93CD1F50EB8E88F135FE389FC63 Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3231302e3231302e3132382e302f31382d3234203d3e2034373837.roa Signing time: Mon 23 Jun 2025 17:00:00 +0000 ROA not before: Mon 23 Jun 2025 16:55:00 +0000 ROA not after: Mon 22 Jun 2026 17:00:00 +0000 asID: 4787 IP address blocks: 210.210.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:53:dd:f7:b0:42:c9:3c:d1:f5:0e:b8:e8:8f:13:5f:e3:89:fc:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jun 23 16:55:00 2025 GMT Not After : Jun 22 17:00:00 2026 GMT Subject: CN=3FB5B51DF31765D10C34FE52C2D4C918B42371E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8f:c1:94:50:23:b4:92:57:d3:a4:0d:e7:3c: 84:3b:93:d5:30:64:ab:ff:95:8d:f6:64:34:31:1c: f5:b0:8c:42:ec:a8:27:8e:7a:4e:d9:dd:ed:ea:68: ea:ed:81:66:3c:50:9f:2a:1d:32:af:b6:6b:07:ee: f0:33:5d:a9:70:16:73:0e:3e:dc:26:32:d8:fe:39: e3:e5:f6:bf:ba:06:4b:e5:a1:93:a5:ee:35:00:26: 07:d0:c9:a4:30:db:dc:d1:0b:e1:32:8a:aa:f3:f7: 3f:90:d8:63:68:2c:91:03:96:d6:55:29:72:de:00: 10:79:5f:53:c5:67:ba:68:2d:58:88:78:4e:a7:91: b3:58:44:3f:29:95:15:67:9b:15:73:ae:dd:f6:eb: 79:b9:a6:f8:42:fc:7a:f2:b1:ba:a6:5c:87:c3:2e: 5d:fe:95:f3:c7:eb:40:29:2a:2e:4e:97:ec:5e:e6: b0:90:e2:36:4f:6a:64:50:76:ef:4d:c7:57:83:fb: e8:9f:42:ba:c5:b4:2e:29:39:d0:35:b7:8e:b9:03: 14:79:de:d2:af:1b:ee:b0:ff:d7:f1:16:3a:8c:08: c7:21:8d:c9:eb:9f:9a:3c:9c:b0:b9:ad:09:41:98: c1:ca:d7:88:25:a4:19:11:e5:3e:f0:79:da:6e:e8: 60:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:B5:B5:1D:F3:17:65:D1:0C:34:FE:52:C2:D4:C9:18:B4:23:71:E9 X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3231302e3231302e3132382e302f31382d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.210.128.0/18 Signature Algorithm: sha256WithRSAEncryption 94:e7:bd:3c:55:26:9a:9b:e8:0d:f5:9c:5c:34:9a:a2:83:9f: c4:81:52:55:7c:73:81:1a:fe:38:e2:f2:c7:92:32:f8:d8:7c: ca:33:3e:6e:64:f1:73:bb:be:40:4e:6c:ed:44:8d:66:7a:1f: a4:41:a7:f3:6b:36:c5:b9:26:43:20:dd:5b:d7:71:53:19:bb: 32:da:91:2c:fe:a2:7e:7b:bb:7f:a0:b8:24:73:f8:cc:1d:d8: 05:d8:bd:59:84:ee:46:f5:02:2e:48:22:e5:ab:70:5a:25:41: 16:c8:c3:cb:f9:7b:eb:a2:05:27:c7:e9:97:83:60:08:ba:39: 75:1f:10:22:96:de:b4:fb:70:f8:0b:42:4f:2d:6c:e8:cc:e6: e4:a4:2f:b3:16:79:49:8c:50:28:c6:1d:a8:2c:2d:91:ae:a4: 7d:ce:5a:24:89:05:27:be:68:47:4e:ef:6c:b1:f2:0c:93:45: 13:1f:7a:13:cc:4e:fe:a6:a2:06:47:e0:c7:ed:df:d6:05:dc: a4:bf:21:7f:f0:a6:e4:54:12:1a:db:1d:70:13:54:23:21:bb: 5f:f0:5a:a5:9b:fc:1d:a5:2b:1e:d4:46:b8:77:49:2e:ba:45: e7:0c:c5:86:fa:7a:62:8d:a4:47:6c:70:a3:ed:77:97:c2:76: fc:8b:1d:2b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdFPd97BCyTzR9Q646I8TX+OJ/GMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNTA2MjMxNjU1MDBaFw0yNjA2MjIxNzAwMDBaMDMxMTAvBgNV BAMTKDNGQjVCNTFERjMxNzY1RDEwQzM0RkU1MkMyRDRDOTE4QjQyMzcxRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSj8GUUCO0klfTpA3nPIQ7k9Uw ZKv/lY32ZDQxHPWwjELsqCeOek7Z3e3qaOrtgWY8UJ8qHTKvtmsH7vAzXalwFnMO PtwmMtj+OePl9r+6BkvloZOl7jUAJgfQyaQw29zRC+Eyiqrz9z+Q2GNoLJEDltZV KXLeABB5X1PFZ7poLViIeE6nkbNYRD8plRVnmxVzrt3263m5pvhC/HrysbqmXIfD Ll3+lfPH60ApKi5Ol+xe5rCQ4jZPamRQdu9Nx1eD++ifQrrFtC4pOdA1t465AxR5 3tKvG+6w/9fxFjqMCMchjcnrn5o8nLC5rQlBmMHK14glpBkR5T7wedpu6GBFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUP7W1HfMXZdEMNP5SwtTJGLQjcekwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMyMzEzMDJlMzIzMTMwMmUzMTMyMzgyZTMwMmYz MTM4MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLSgDANBgkqhkiG 9w0BAQsFAAOCAQEAlOe9PFUmmpvoDfWcXDSaooOfxIFSVXxzgRr+OOLyx5Iy+Nh8 yjM+bmTxc7u+QE5s7USNZnofpEGn82s2xbkmQyDdW9dxUxm7MtqRLP6ifnu7f6C4 JHP4zB3YBdi9WYTuRvUCLkgi5atwWiVBFsjDy/l766IFJ8fpl4NgCLo5dR8QIpbe tPtw+AtCTy1s6Mzm5KQvsxZ5SYxQKMYdqCwtka6kfc5aJIkFJ75oR07vbLHyDJNF Ex96E8xO/qaiBkfgx+3f1gXcpL8hf/Cm5FQSGtsdcBNUIyG7X/BapZv8HaUrHtRG uHdJLrpF5wzFhvp6Yo2kR2xwo+13l8J2/IsdKw== -----END CERTIFICATE-----Generated at Mon Jun 30 13:55:30 2025 by rpki-client