$ rpki-client -vvf repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3230322e34332e3137362e302f32322d3234203d3e20313331313131.roa File: 3230322e34332e3137362e302f32322d3234203d3e20313331313131.roa (raw, json) Hash identifier: o4EuiIX65DjYa3ywyHTPaQSCo34pp+K8+jEM2BCf1A4= Subject key identifier: 26:DF:7C:4D:D5:AF:61:BF:D3:7A:FB:46:D2:04:78:3E:E2:DB:DA:D2 Certificate issuer: /CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Certificate serial: 325F53A2D31BE15F8BA832AB1BDFEBFA99EA7AAC Authority key identifier: C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3230322e34332e3137362e302f32322d3234203d3e20313331313131.roa Signing time: Mon 23 Jun 2025 06:00:01 +0000 ROA not before: Mon 23 Jun 2025 05:55:01 +0000 ROA not after: Mon 22 Jun 2026 06:00:01 +0000 asID: 131111 IP address blocks: 202.43.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:5f:53:a2:d3:1b:e1:5f:8b:a8:32:ab:1b:df:eb:fa:99:ea:7a:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Validity Not Before: Jun 23 05:55:01 2025 GMT Not After : Jun 22 06:00:01 2026 GMT Subject: CN=26DF7C4DD5AF61BFD37AFB46D204783EE2DBDAD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3e:66:3f:d9:e7:cc:2e:87:25:48:e4:8d:60: ee:f1:62:dc:0c:45:56:14:d3:1d:ac:c6:4a:14:d5: cf:cd:0f:6b:ce:e8:3b:b3:d3:66:7d:be:03:28:c5: 30:3d:1b:30:fe:c7:f0:17:2e:01:76:3f:f4:d2:22: fc:8d:78:51:3f:58:f6:7b:5c:11:5f:b9:3b:28:c1: f9:23:c3:d5:2b:c9:c6:f9:ba:e6:2e:01:ca:c7:d1: 00:e0:68:f2:c1:53:30:e3:b1:b6:1b:c7:d0:24:b3: 06:17:ae:82:a6:a9:f5:cc:08:e2:be:7f:12:11:01: 5f:4f:66:11:78:c5:46:06:ae:21:65:b0:4a:5a:2d: ad:12:36:89:6f:35:8f:25:bf:7b:f8:f7:77:df:23: 1e:e6:d9:95:0b:51:51:c8:7b:78:02:2b:9a:f4:39: ae:9b:5e:81:db:03:1d:f8:82:f7:71:6f:b5:9f:5b: ad:85:7c:c8:ea:6f:26:ba:c3:04:c7:06:8f:41:3c: 0a:55:d2:28:64:4d:eb:00:8e:00:22:ec:cd:59:51: 42:40:af:65:56:0f:fa:15:b9:42:a7:bd:93:04:4f: c0:88:65:7d:4a:f9:be:b6:e2:03:7b:4a:6d:41:75: 4d:9f:05:22:9c:68:bc:7a:3b:e7:da:e8:2b:70:18: bb:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:DF:7C:4D:D5:AF:61:BF:D3:7A:FB:46:D2:04:78:3E:E2:DB:DA:D2 X509v3 Authority Key Identifier: keyid:C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3230322e34332e3137362e302f32322d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.176.0/22 Signature Algorithm: sha256WithRSAEncryption ae:94:85:88:bb:40:8f:b4:dc:63:29:08:da:22:e1:48:0f:8b: 5d:af:49:65:ca:94:f1:7a:71:7a:88:f0:41:70:af:d7:b7:b7: 4c:76:80:e6:1c:0e:f0:ec:44:17:57:ef:01:07:d7:57:a5:15: a6:ae:43:2b:9f:71:a1:95:c3:4b:b1:22:a6:e9:36:3c:55:c2: 19:5e:ee:2c:b8:f4:c1:1f:cb:f6:8a:38:48:2a:72:14:44:bc: 4e:84:39:c0:0d:a2:1b:f5:00:fb:b2:7e:8c:13:09:4c:d1:66: 97:59:43:51:34:9e:e5:5f:61:ac:f6:7d:31:ad:75:f9:7f:18: 78:0d:f3:96:ce:05:05:06:7b:09:0b:ca:4e:df:87:59:70:e5: cb:cc:21:4f:ab:f6:0e:9a:4a:97:e3:1f:0b:53:e9:f3:4e:f9: 79:a6:9f:d5:f1:2c:f1:59:da:11:6f:03:cf:30:a4:e3:66:f3: 74:a2:49:f0:95:27:52:05:93:38:06:e3:16:d6:1d:27:1b:3b: ed:89:a3:84:40:c3:56:9a:c0:eb:56:f5:59:2c:58:2f:66:83: cf:84:65:20:7a:50:a4:41:42:21:eb:9e:90:4b:6b:2c:bd:b2: 1a:7f:83:e7:7c:2a:b5:21:87:9d:4c:c8:ea:24:c3:e0:99:be: a9:af:61:0d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMl9TotMb4V+LqDKrG9/r+pnqeqwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4 NzE2REMyRjAeFw0yNTA2MjMwNTU1MDFaFw0yNjA2MjIwNjAwMDFaMDMxMTAvBgNV BAMTKDI2REY3QzRERDVBRjYxQkZEMzdBRkI0NkQyMDQ3ODNFRTJEQkRBRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKPmY/2efMLoclSOSNYO7xYtwM RVYU0x2sxkoU1c/ND2vO6Duz02Z9vgMoxTA9GzD+x/AXLgF2P/TSIvyNeFE/WPZ7 XBFfuTsowfkjw9Urycb5uuYuAcrH0QDgaPLBUzDjsbYbx9AkswYXroKmqfXMCOK+ fxIRAV9PZhF4xUYGriFlsEpaLa0SNolvNY8lv3v493ffIx7m2ZULUVHIe3gCK5r0 Oa6bXoHbAx34gvdxb7WfW62FfMjqbya6wwTHBo9BPApV0ihkTesAjgAi7M1ZUUJA r2VWD/oVuUKnvZMET8CIZX1K+b624gN7Sm1BdU2fBSKcaLx6O+fa6CtwGLupAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJt98TdWvYb/TevtG0gR4PuLb2tIwHwYDVR0j BBgwFoAUwa+MmZ6dBtrevDh9eLMFq4cW3C8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OTIwNWU3Yy1hODgxLTQ4NzMtOTE4OC1lNTIxYjZhZjUyOWMvMC9DMUFGOEM5OTlF OUQwNkRBREVCQzM4N0Q3OEIzMDVBQjg3MTZEQzJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4NzE2 REMyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5MjA1ZTdjLWE4ODEtNDg3My05 MTg4LWU1MjFiNmFmNTI5Yy8wLzMyMzAzMjJlMzQzMzJlMzEzNzM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCyiuwMA0GCSqG SIb3DQEBCwUAA4IBAQCulIWIu0CPtNxjKQjaIuFID4tdr0llypTxenF6iPBBcK/X t7dMdoDmHA7w7EQXV+8BB9dXpRWmrkMrn3GhlcNLsSKm6TY8VcIZXu4suPTBH8v2 ijhIKnIURLxOhDnADaIb9QD7sn6MEwlM0WaXWUNRNJ7lX2Gs9n0xrXX5fxh4DfOW zgUFBnsJC8pO34dZcOXLzCFPq/YOmkqX4x8LU+nzTvl5pp/V8SzxWdoRbwPPMKTj ZvN0oknwlSdSBZM4BuMW1h0nGzvtiaOEQMNWmsDrVvVZLFgvZoPPhGUgelCkQUIh 656QS2ssvbIaf4PnfCq1IYedTMjqJMPgmb6pr2EN -----END CERTIFICATE-----Generated at Mon Jun 30 02:25:36 2025 by rpki-client