$ rpki-client -vvf repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3230322e362e3230382e302f32302d3234203d3e203137343530.roa File: 3230322e362e3230382e302f32302d3234203d3e203137343530.roa (raw, json) Hash identifier: UrGzpQyb4OcG13ECSRKSWIFvQeDrPkoBtijveesvtFQ= Subject key identifier: B1:6B:79:D2:9D:BB:DD:B9:20:F9:A3:35:D3:79:C7:09:40:C8:E9:C8 Certificate issuer: /CN=4AC7DCD8EB1234ADC427AEBE3949E8691638A707 Certificate serial: 62CAC3C86543C45350B335EC79E19F3AE9432725 Authority key identifier: 4A:C7:DC:D8:EB:12:34:AD:C4:27:AE:BE:39:49:E8:69:16:38:A7:07 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer Subject info access: rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3230322e362e3230382e302f32302d3234203d3e203137343530.roa Signing time: Tue 16 Sep 2025 03:00:01 +0000 ROA not before: Tue 16 Sep 2025 02:55:01 +0000 ROA not after: Tue 15 Sep 2026 03:00:01 +0000 asID: 17450 IP address blocks: 202.6.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.crl rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 06:27:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:ca:c3:c8:65:43:c4:53:50:b3:35:ec:79:e1:9f:3a:e9:43:27:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AC7DCD8EB1234ADC427AEBE3949E8691638A707 Validity Not Before: Sep 16 02:55:01 2025 GMT Not After : Sep 15 03:00:01 2026 GMT Subject: CN=B16B79D29DBBDDB920F9A335D379C70940C8E9C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:93:ba:86:a8:95:7a:09:fa:a6:66:c8:2e:fc: 22:d3:4d:ce:47:bc:89:33:75:a7:bb:ad:1d:81:e5: 66:05:a6:8e:6f:a2:62:2f:7f:7a:0a:90:f3:95:e1: e7:43:34:aa:44:40:f6:e6:4a:32:ec:d2:00:6e:68: 00:15:d3:0c:cc:1d:99:4c:1e:ca:31:43:34:46:0f: a9:70:a9:1f:7d:63:e8:dc:30:ed:35:1e:48:eb:95: 46:98:6a:7e:bd:9f:7d:d0:52:7b:dc:0e:e5:4d:be: 88:95:eb:e6:e9:3c:b5:5c:36:a0:39:d2:66:f6:7b: db:20:b3:1e:59:2f:39:6a:69:ac:db:b0:d2:5a:15: ab:d9:d6:04:28:98:86:55:ff:2d:be:06:b4:16:85: 38:86:a8:83:6b:49:f6:6b:e9:9b:bc:9d:ae:3a:d2: bb:e4:9a:c4:31:f3:73:fc:92:17:f0:7c:1a:2c:c3: c1:bc:8d:70:8b:de:37:21:2a:86:8d:2a:28:d7:e0: b2:e4:b9:8c:80:ac:37:ed:8e:15:24:5c:48:d3:63: eb:f7:ba:2f:f6:94:c8:73:a4:65:32:09:d1:1a:8e: ab:f9:eb:2e:10:8a:2f:8b:7e:ac:9f:bf:cb:eb:98: 04:04:b2:5a:12:ca:db:c7:17:3f:0b:a1:c6:18:d6: ac:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:6B:79:D2:9D:BB:DD:B9:20:F9:A3:35:D3:79:C7:09:40:C8:E9:C8 X509v3 Authority Key Identifier: keyid:4A:C7:DC:D8:EB:12:34:AD:C4:27:AE:BE:39:49:E8:69:16:38:A7:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3230322e362e3230382e302f32302d3234203d3e203137343530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.6.208.0/20 Signature Algorithm: sha256WithRSAEncryption ae:ad:3f:09:42:4f:43:cc:75:7f:f0:ae:98:03:00:62:09:24: 68:f8:d6:0d:19:f1:1e:d0:c5:42:58:fa:7a:83:19:6d:0c:d8: 38:e1:fa:1b:f0:48:45:32:e1:c9:58:df:48:d4:85:7f:60:29: 9c:80:c2:52:81:a2:8c:4d:d1:75:f8:39:06:44:47:c5:cc:cc: 8b:0f:20:5b:80:46:fd:6a:18:cb:91:29:49:d1:25:c9:8b:80: 12:01:fd:91:73:77:06:9f:c8:08:30:89:fd:bb:17:22:fa:6f: fa:fc:0c:d9:93:50:84:23:60:ae:cd:38:d8:58:d7:05:db:25: 86:b5:13:dc:b5:58:fe:76:e3:3b:84:60:fe:de:54:94:fe:ef: a7:9c:6d:8c:dd:eb:fa:d3:6f:a8:9a:04:77:74:a8:ca:ad:3d: 37:b0:a4:e5:06:ee:05:06:0c:a8:69:9a:94:d4:f0:1a:fa:d3: 4a:82:e5:e8:85:23:8b:cd:6b:a4:42:8f:0a:8c:bc:a5:56:c5: 98:92:f8:7c:e7:b1:e0:e5:1b:fc:1d:09:44:6d:f1:4e:d5:63: a0:46:27:06:61:95:f4:5f:4a:65:bc:bc:db:fd:e2:03:bb:bc: 3a:f7:e0:50:1b:40:b6:b6:78:a2:3c:c0:ae:0a:2f:c5:1b:62: 78:64:5e:a3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUYsrDyGVDxFNQszXseeGfOulDJyUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFDN0RDRDhFQjEyMzRBREM0MjdBRUJFMzk0OUU4Njkx NjM4QTcwNzAeFw0yNTA5MTYwMjU1MDFaFw0yNjA5MTUwMzAwMDFaMDMxMTAvBgNV BAMTKEIxNkI3OUQyOURCQkREQjkyMEY5QTMzNUQzNzlDNzA5NDBDOEU5QzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+k7qGqJV6CfqmZsgu/CLTTc5H vIkzdae7rR2B5WYFpo5vomIvf3oKkPOV4edDNKpEQPbmSjLs0gBuaAAV0wzMHZlM HsoxQzRGD6lwqR99Y+jcMO01HkjrlUaYan69n33QUnvcDuVNvoiV6+bpPLVcNqA5 0mb2e9sgsx5ZLzlqaazbsNJaFavZ1gQomIZV/y2+BrQWhTiGqINrSfZr6Zu8na46 0rvkmsQx83P8khfwfBosw8G8jXCL3jchKoaNKijX4LLkuYyArDftjhUkXEjTY+v3 ui/2lMhzpGUyCdEajqv56y4Qii+Lfqyfv8vrmAQEsloSytvHFz8LocYY1qw9AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUsWt50p273bkg+aM103nHCUDI6cgwHwYDVR0j BBgwFoAUSsfc2OsSNK3EJ66+OUnoaRY4pwcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzgwNjFmMS1mYTMwLTRiZDYtODFhMC0yZWM2NzA4MzZjNDIvMC80QUM3RENEOEVC MTIzNEFEQzQyN0FFQkUzOTQ5RTg2OTE2MzhBNzA3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFDN0RDRDhFQjEyMzRBREM0MjdBRUJFMzk0OUU4NjkxNjM4 QTcwNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzODA2MWYxLWZhMzAtNGJkNi04 MWEwLTJlYzY3MDgzNmM0Mi8wLzMyMzAzMjJlMzYyZTMyMzAzODJlMzAyZjMyMzAy ZDMyMzQyMDNkM2UyMDMxMzczNDM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKBtAwDQYJKoZIhvcN AQELBQADggEBAK6tPwlCT0PMdX/wrpgDAGIJJGj41g0Z8R7QxUJY+nqDGW0M2Djh +hvwSEUy4clY30jUhX9gKZyAwlKBooxN0XX4OQZER8XMzIsPIFuARv1qGMuRKUnR JcmLgBIB/ZFzdwafyAgwif27FyL6b/r8DNmTUIQjYK7NONhY1wXbJYa1E9y1WP52 4zuEYP7eVJT+76ecbYzd6/rTb6iaBHd0qMqtPTewpOUG7gUGDKhpmpTU8Br600qC 5eiFI4vNa6RCjwqMvKVWxZiS+HznseDlG/wdCURt8U7VY6BGJwZhlfRfSmW8vNv9 4gO7vDr34FAbQLa2eKI8wK4KL8UbYnhkXqM= -----END CERTIFICATE-----Generated at Mon Oct 20 15:24:32 2025 by rpki-client