$ rpki-client -vvf repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138392e302f32342d3234203d3e203435333035.roa File: 3230322e34372e3138392e302f32342d3234203d3e203435333035.roa (raw, json) Hash identifier: gvo9V/vnXO5MlNpk1yPiU+0sBfoU6SAVYrLdM0QnX0Q= Subject key identifier: D7:28:A5:F3:64:AF:50:8E:6E:F0:FC:D6:8B:0B:53:C2:36:91:62:97 Certificate issuer: /CN=79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E Certificate serial: 3CEBC0C189262A9E879E911EEC92262064E14F5C Authority key identifier: 79:BD:07:5D:1B:C4:BD:8A:E0:C2:6E:FD:2D:37:22:CC:F6:EF:F6:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138392e302f32342d3234203d3e203435333035.roa Signing time: Wed 10 Sep 2025 17:00:02 +0000 ROA not before: Wed 10 Sep 2025 16:55:02 +0000 ROA not after: Wed 09 Sep 2026 17:00:02 +0000 asID: 45305 IP address blocks: 202.47.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.crl rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 02:55:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:eb:c0:c1:89:26:2a:9e:87:9e:91:1e:ec:92:26:20:64:e1:4f:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E Validity Not Before: Sep 10 16:55:02 2025 GMT Not After : Sep 9 17:00:02 2026 GMT Subject: CN=D728A5F364AF508E6EF0FCD68B0B53C236916297 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c0:41:94:a4:10:33:ca:9f:42:b4:2e:1a:24: b6:df:f5:e3:7a:9c:6b:9d:98:69:9a:0d:3c:d6:46: 53:cc:01:38:74:84:de:a5:b3:85:ec:ec:e3:a9:83: 57:f2:5d:e7:b5:6e:7a:40:ce:51:f2:e6:58:f3:c3: 93:af:81:51:ad:47:79:1c:3e:dd:4c:86:98:86:fc: d8:35:b8:8c:92:fd:d3:e1:2a:c7:a0:97:fb:d7:54: 65:b8:60:5f:c2:a4:d4:ac:cf:7f:17:72:77:6e:6a: 4e:46:14:c0:d4:a3:75:03:9e:af:c4:6d:60:fa:67: ff:1d:60:eb:38:2b:c6:00:61:f6:7e:c3:8f:d4:b9: 1a:9f:4f:fc:a8:15:44:73:71:9c:0d:87:49:d3:cd: 17:ff:10:5e:b9:1a:a2:c4:ba:f0:52:fb:b4:d4:9f: 4c:cb:63:fe:c4:f2:d3:74:ec:9e:8c:49:c9:b3:d3: e2:4b:30:ea:62:5b:2c:c2:73:7e:39:cb:7e:1a:31: 54:6e:92:22:ce:8e:fa:75:6d:d4:1c:ae:0b:29:6b: 0e:0c:57:ad:4c:15:f2:db:bc:aa:6a:bc:cc:ad:a1: 0d:0b:a8:2b:2c:80:bd:53:ac:5b:97:f5:0c:71:2d: 24:b5:1d:e6:ed:d0:15:b1:91:d6:f3:35:31:05:db: 9a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:28:A5:F3:64:AF:50:8E:6E:F0:FC:D6:8B:0B:53:C2:36:91:62:97 X509v3 Authority Key Identifier: keyid:79:BD:07:5D:1B:C4:BD:8A:E0:C2:6E:FD:2D:37:22:CC:F6:EF:F6:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138392e302f32342d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.189.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:fa:0d:f3:e3:c9:af:4d:1f:22:4e:01:86:f1:14:5e:81:a6: cf:10:ad:35:fc:37:59:27:83:1e:d1:5d:2d:6d:e9:c9:02:84: 9c:c3:16:a1:75:da:25:99:29:28:f2:27:65:7f:c8:b5:67:24: 85:f1:3f:3c:67:f1:60:0c:a6:6e:69:12:14:04:1c:b5:5a:d1: c2:4a:e7:dd:20:73:3e:08:9d:a3:3d:ce:d1:d7:85:50:8f:c7: a0:91:9b:2d:ab:ec:b5:a7:79:0c:91:a2:6a:d5:60:1a:f4:03: f2:3b:b0:0c:ba:2b:34:66:41:aa:60:19:80:a1:43:f1:bd:b2: 4e:36:15:2e:ea:c8:4c:93:01:fd:33:11:c8:a9:70:ea:fe:df: 4d:17:7c:61:4c:fc:44:47:ea:dc:56:e6:57:30:ff:83:c2:66: ed:f6:88:2e:5f:c8:5c:4f:c6:c3:43:e1:9f:57:8a:9a:95:14: f4:bc:2b:ab:9b:11:7d:cd:68:2b:40:be:76:12:0d:e4:53:c7: 26:6c:06:f5:43:2f:65:de:f5:67:e8:fd:1c:9a:49:cc:ab:11: b3:f9:c5:54:cc:1f:cd:57:7c:9f:de:ae:58:08:45:3f:41:b5: 29:e4:cd:a4:bc:b2:7a:fb:31:da:13:d6:56:90:37:b3:b7:a3: 5c:a7:e1:7b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPOvAwYkmKp6HnpEe7JImIGThT1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzlCRDA3NUQxQkM0QkQ4QUUwQzI2RUZEMkQzNzIyQ0NG NkVGRjY1RTAeFw0yNTA5MTAxNjU1MDJaFw0yNjA5MDkxNzAwMDJaMDMxMTAvBgNV BAMTKEQ3MjhBNUYzNjRBRjUwOEU2RUYwRkNENjhCMEI1M0MyMzY5MTYyOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8wEGUpBAzyp9CtC4aJLbf9eN6 nGudmGmaDTzWRlPMATh0hN6ls4Xs7OOpg1fyXee1bnpAzlHy5ljzw5OvgVGtR3kc Pt1MhpiG/Ng1uIyS/dPhKsegl/vXVGW4YF/CpNSsz38Xcnduak5GFMDUo3UDnq/E bWD6Z/8dYOs4K8YAYfZ+w4/UuRqfT/yoFURzcZwNh0nTzRf/EF65GqLEuvBS+7TU n0zLY/7E8tN07J6MScmz0+JLMOpiWyzCc345y34aMVRukiLOjvp1bdQcrgspaw4M V61MFfLbvKpqvMytoQ0LqCssgL1TrFuX9QxxLSS1Hebt0BWxkdbzNTEF25rTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1yil82SvUI5u8PzWiwtTwjaRYpcwHwYDVR0j BBgwFoAUeb0HXRvEvYrgwm79LTcizPbv9l4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZWU5NDAxNC04N2ZhLTRiYzItYjFjNi03ZmQyYTg5NDc2ZjMvMC83OUJEMDc1RDFC QzRCRDhBRTBDMjZFRkQyRDM3MjJDQ0Y2RUZGNjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzlCRDA3NUQxQkM0QkQ4QUUwQzI2RUZEMkQzNzIyQ0NGNkVG RjY1RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlZTk0MDE0LTg3ZmEtNGJjMi1i MWM2LTdmZDJhODk0NzZmMy8wLzMyMzAzMjJlMzQzNzJlMzEzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMovvTANBgkqhkiG 9w0BAQsFAAOCAQEAPfoN8+PJr00fIk4BhvEUXoGmzxCtNfw3WSeDHtFdLW3pyQKE nMMWoXXaJZkpKPInZX/ItWckhfE/PGfxYAymbmkSFAQctVrRwkrn3SBzPgidoz3O 0deFUI/HoJGbLavstad5DJGiatVgGvQD8juwDLorNGZBqmAZgKFD8b2yTjYVLurI TJMB/TMRyKlw6v7fTRd8YUz8REfq3FbmVzD/g8Jm7faILl/IXE/Gw0Phn1eKmpUU 9Lwrq5sRfc1oK0C+dhIN5FPHJmwG9UMvZd71Z+j9HJpJzKsRs/nFVMwfzVd8n96u WAhFP0G1KeTNpLyyevsx2hPWVpA3s7ejXKfhew== -----END CERTIFICATE-----Generated at Mon Oct 20 12:01:23 2025 by rpki-client