$ rpki-client -vvf repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/3230322e34372e3137352e302f32342d3234203d3e20313532303333.roa File: 3230322e34372e3137352e302f32342d3234203d3e20313532303333.roa (raw, json) Hash identifier: XksCWCwCEfjKtaahou1lG189rxAz7b8EI9jL1IweY6M= Subject key identifier: 0A:E1:3F:BC:1B:3C:53:B3:4A:94:B1:A9:8F:D1:44:08:40:F9:F8:6B Certificate issuer: /CN=14CF99DEFA1B9276EBEE61180DF4770177957E3B Certificate serial: 70021FE7DD6A7D8D9779481C82F98D2AC24B463F Authority key identifier: 14:CF:99:DE:FA:1B:92:76:EB:EE:61:18:0D:F4:77:01:77:95:7E:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/3230322e34372e3137352e302f32342d3234203d3e20313532303333.roa Signing time: Wed 13 Aug 2025 23:00:00 +0000 ROA not before: Wed 13 Aug 2025 22:55:00 +0000 ROA not after: Wed 12 Aug 2026 23:00:00 +0000 asID: 152033 IP address blocks: 202.47.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 06:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:02:1f:e7:dd:6a:7d:8d:97:79:48:1c:82:f9:8d:2a:c2:4b:46:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14CF99DEFA1B9276EBEE61180DF4770177957E3B Validity Not Before: Aug 13 22:55:00 2025 GMT Not After : Aug 12 23:00:00 2026 GMT Subject: CN=0AE13FBC1B3C53B34A94B1A98FD1440840F9F86B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:d7:b6:29:45:75:79:03:3e:67:51:35:9f:26: 75:4e:0e:2d:7a:e2:ef:9b:d4:2c:3f:3d:62:e2:be: b2:d3:d7:cf:0b:99:df:16:79:d6:55:7d:d9:33:eb: f5:5b:ea:61:5f:16:b2:05:02:a4:b0:33:28:68:79: fd:5d:9c:1d:c8:b1:18:22:e0:64:4a:29:ac:cd:22: 79:8d:2b:c7:b8:37:d4:aa:3f:52:8f:05:f6:e6:9c: ad:b4:50:dc:2e:15:18:74:37:61:26:d1:bf:fd:fb: 09:2d:6e:ee:e7:cb:d1:ec:e3:e4:07:66:6b:2d:5a: e0:97:5f:09:f0:3d:50:a0:34:dd:69:54:24:b0:84: f8:75:9f:d8:b3:06:89:b0:ef:31:9a:41:70:f3:a9: b5:3f:f5:65:c4:39:d6:8d:c6:16:52:34:fd:b2:9d: e4:18:34:5a:1b:0a:8d:f6:06:ac:b5:d1:f3:97:d2: a3:b8:f6:7b:6c:40:da:b7:0c:e7:b2:0a:48:11:4a: c8:46:b0:26:b9:7a:ad:f9:60:16:45:88:f1:61:94: 66:64:91:a6:bf:44:92:76:85:3c:e0:c0:7b:cc:a6: 79:b3:56:b9:e2:b5:73:10:d8:f3:d9:b7:c9:88:22: 59:8d:6a:bc:fc:ef:03:3c:c8:0e:65:0e:90:64:6c: 3c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:E1:3F:BC:1B:3C:53:B3:4A:94:B1:A9:8F:D1:44:08:40:F9:F8:6B X509v3 Authority Key Identifier: keyid:14:CF:99:DE:FA:1B:92:76:EB:EE:61:18:0D:F4:77:01:77:95:7E:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/3230322e34372e3137352e302f32342d3234203d3e20313532303333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.175.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:a9:b3:9c:d9:ea:c3:2a:c1:62:f5:f9:d8:79:5c:33:b6:cc: aa:35:f8:e3:cd:cd:8b:02:81:d3:90:2d:da:f4:ad:e9:f6:79: 51:9b:84:cb:ff:88:c0:5c:7e:8a:2d:93:62:3d:56:48:49:88: c6:f9:2d:b1:80:66:a5:3d:9a:fc:49:4d:fe:6a:86:14:23:ae: 4a:a9:9d:03:10:b8:8f:26:7a:90:bf:26:19:cd:88:bd:5c:34: f9:7a:ce:67:c1:f6:76:04:fd:ad:d1:84:3e:5a:6b:9f:22:0e: ea:8f:7b:92:9a:21:91:1b:d8:1d:df:38:90:95:06:9a:28:5d: fa:ad:63:e9:51:5d:3c:ae:38:82:15:72:55:61:9c:67:74:a5: 54:fd:a9:d1:82:91:4c:0a:47:72:b4:9e:88:65:05:0b:86:1a: f8:9f:96:c4:82:3e:e6:24:e8:c7:98:6a:d6:4d:4e:7e:c4:ce: 09:a2:5f:6f:28:d6:78:87:dc:64:97:07:b3:d8:d0:9f:24:a9: a2:a3:b2:81:fa:fc:06:7b:da:7c:4e:af:2d:44:28:42:78:5b: 78:ac:a5:36:4b:eb:6f:87:17:f2:01:ca:9a:44:49:23:c9:d8: 22:08:22:01:2d:8b:37:f6:e7:c2:6e:64:ef:b6:0d:4f:be:35: 5a:c5:2c:3b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcAIf591qfY2XeUgcgvmNKsJLRj8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3MDE3 Nzk1N0UzQjAeFw0yNTA4MTMyMjU1MDBaFw0yNjA4MTIyMzAwMDBaMDMxMTAvBgNV BAMTKDBBRTEzRkJDMUIzQzUzQjM0QTk0QjFBOThGRDE0NDA4NDBGOUY4NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDz17YpRXV5Az5nUTWfJnVODi16 4u+b1Cw/PWLivrLT188Lmd8WedZVfdkz6/Vb6mFfFrIFAqSwMyhoef1dnB3IsRgi 4GRKKazNInmNK8e4N9SqP1KPBfbmnK20UNwuFRh0N2Em0b/9+wktbu7ny9Hs4+QH ZmstWuCXXwnwPVCgNN1pVCSwhPh1n9izBomw7zGaQXDzqbU/9WXEOdaNxhZSNP2y neQYNFobCo32Bqy10fOX0qO49ntsQNq3DOeyCkgRSshGsCa5eq35YBZFiPFhlGZk kaa/RJJ2hTzgwHvMpnmzVrnitXMQ2PPZt8mIIlmNarz87wM8yA5lDpBkbDzTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCuE/vBs8U7NKlLGpj9FECED5+GswHwYDVR0j BBgwFoAUFM+Z3vobknbr7mEYDfR3AXeVfjswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w OTdmNTE2MS0wNzBmLTQzMzktYWY0ZS1iYzMzZmRmYjY3YjgvMC8xNENGOTlERUZB MUI5Mjc2RUJFRTYxMTgwREY0NzcwMTc3OTU3RTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3MDE3Nzk1 N0UzQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA5N2Y1MTYxLTA3MGYtNDMzOS1h ZjRlLWJjMzNmZGZiNjdiOC8wLzMyMzAzMjJlMzQzNzJlMzEzNzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyi+vMA0GCSqG SIb3DQEBCwUAA4IBAQAPqbOc2erDKsFi9fnYeVwztsyqNfjjzc2LAoHTkC3a9K3p 9nlRm4TL/4jAXH6KLZNiPVZISYjG+S2xgGalPZr8SU3+aoYUI65KqZ0DELiPJnqQ vyYZzYi9XDT5es5nwfZ2BP2t0YQ+WmufIg7qj3uSmiGRG9gd3ziQlQaaKF36rWPp UV08rjiCFXJVYZxndKVU/anRgpFMCkdytJ6IZQULhhr4n5bEgj7mJOjHmGrWTU5+ xM4Jol9vKNZ4h9xklwez2NCfJKmio7KB+vwGe9p8Tq8tRChCeFt4rKU2S+tvhxfy AcqaREkjydgiCCIBLYs39ufCbmTvtg1PvjVaxSw7 -----END CERTIFICATE-----Generated at Sun Aug 24 01:15:24 2025 by rpki-client