$ rpki-client -vvf repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/3230322e34372e3136322e302f32332d3233203d3e20313532303337.roa File: 3230322e34372e3136322e302f32332d3233203d3e20313532303337.roa (raw, json) Hash identifier: 9S64FqiohF4/G4AR4prN454MPd/66wEeqEDt9vo/F+Y= Subject key identifier: C0:BE:DA:81:7D:BF:F7:A3:BA:5B:A1:35:04:01:1D:9C:30:95:94:EA Certificate issuer: /CN=842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF Certificate serial: 097C84A87D3BCFEA5FF58F3775800D4578F8EA8F Authority key identifier: 84:22:33:D6:E7:56:BC:93:C0:DB:9A:45:DD:2F:7B:CD:97:CB:29:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/3230322e34372e3136322e302f32332d3233203d3e20313532303337.roa Signing time: Tue 23 Sep 2025 14:00:00 +0000 ROA not before: Tue 23 Sep 2025 13:55:00 +0000 ROA not after: Tue 22 Sep 2026 14:00:00 +0000 asID: 152037 IP address blocks: 202.47.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.crl rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 16:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:7c:84:a8:7d:3b:cf:ea:5f:f5:8f:37:75:80:0d:45:78:f8:ea:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF Validity Not Before: Sep 23 13:55:00 2025 GMT Not After : Sep 22 14:00:00 2026 GMT Subject: CN=C0BEDA817DBFF7A3BA5BA13504011D9C309594EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e9:6d:cc:de:a0:cc:82:cf:fc:cf:40:b7:c0: 9f:01:f3:7b:7f:19:18:7b:e0:d8:16:c9:00:10:a0: 57:13:97:8b:2f:a0:6b:f4:56:a3:a7:86:46:dd:22: 57:ef:11:5f:c0:2f:d8:39:cc:50:2a:1b:12:0c:e3: 0f:cb:4c:9f:b3:ff:9e:27:44:4e:1b:f5:16:d7:f4: 34:65:4a:de:04:d7:e7:eb:4c:06:59:c7:ed:da:bb: e4:07:f7:02:5e:c9:fd:30:20:d4:77:c8:66:ea:9a: bb:13:fe:c2:39:7d:06:1c:d4:18:63:fe:80:a2:61: 66:3b:4d:87:db:a8:6d:9f:fb:b4:f6:a8:fc:a3:2c: 7b:d2:d8:e5:e0:1c:59:81:9e:df:1b:22:9c:fb:14: c9:a7:11:76:0e:b5:81:1d:b8:b7:ae:16:f1:ce:a0: d8:3b:52:1d:e3:e8:66:75:8d:74:29:00:b4:64:53: eb:15:9b:bc:e8:6a:f7:f0:06:67:a1:83:ef:d6:03: 56:9f:08:4b:8c:60:49:e9:5c:28:94:71:19:a9:0b: 4d:f7:66:fd:d4:03:74:1f:db:fe:64:b9:77:32:58: ee:f3:75:7a:96:07:64:5f:0c:24:3f:d4:b2:75:a1: 84:c7:3c:02:b2:45:2c:97:95:5f:dc:ff:a7:2a:eb: 79:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:BE:DA:81:7D:BF:F7:A3:BA:5B:A1:35:04:01:1D:9C:30:95:94:EA X509v3 Authority Key Identifier: keyid:84:22:33:D6:E7:56:BC:93:C0:DB:9A:45:DD:2F:7B:CD:97:CB:29:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/3230322e34372e3136322e302f32332d3233203d3e20313532303337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.162.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:53:54:e5:62:9e:2f:e8:48:e6:a1:b9:5b:5e:b0:bb:94:6e: a9:d0:57:b6:2b:26:55:29:e6:fa:bc:da:dd:cc:3f:af:40:2b: 19:16:14:7f:78:e4:f1:ec:72:1a:e6:88:a0:36:62:b4:2b:d9: f6:c7:bb:16:89:4b:4b:52:6e:70:c6:87:7d:4a:9c:6d:49:26: 8c:86:be:95:58:ab:be:b5:21:a4:4c:b9:56:fd:63:d5:2a:c1: fb:f6:5c:03:bb:4c:32:31:a3:ab:d8:0c:0a:3b:37:5b:4e:88: c1:6f:8e:a6:42:0e:7e:76:8b:60:c5:52:91:cb:c1:50:e5:6a: 80:c6:be:43:60:1f:ed:c1:99:b1:85:98:9f:84:a9:58:6a:ad: 29:d4:6d:9c:f0:0d:c1:f7:64:63:b1:c8:7c:e9:ab:94:bb:ac: cb:c8:e6:e5:34:90:c1:63:42:4b:aa:c7:57:f6:3a:ab:ba:50: 60:e2:79:91:d3:1d:9f:82:07:44:ae:bc:9a:d6:3a:08:12:16: a8:85:ec:ad:2e:46:88:c0:9d:e1:bf:6f:a7:6e:b4:34:b2:d8: ac:b8:9e:14:b1:9f:e8:ec:27:57:fd:54:d7:62:0d:8b:70:d4: 03:39:35:96:34:fa:6b:a1:cd:c3:00:3e:84:4c:5b:2b:53:9f: a6:9a:96:36 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCXyEqH07z+pf9Y83dYANRXj46o8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQyMjMzRDZFNzU2QkM5M0MwREI5QTQ1REQyRjdCQ0Q5 N0NCMjlBRjAeFw0yNTA5MjMxMzU1MDBaFw0yNjA5MjIxNDAwMDBaMDMxMTAvBgNV BAMTKEMwQkVEQTgxN0RCRkY3QTNCQTVCQTEzNTA0MDExRDlDMzA5NTk0RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN6W3M3qDMgs/8z0C3wJ8B83t/ GRh74NgWyQAQoFcTl4svoGv0VqOnhkbdIlfvEV/AL9g5zFAqGxIM4w/LTJ+z/54n RE4b9RbX9DRlSt4E1+frTAZZx+3au+QH9wJeyf0wINR3yGbqmrsT/sI5fQYc1Bhj /oCiYWY7TYfbqG2f+7T2qPyjLHvS2OXgHFmBnt8bIpz7FMmnEXYOtYEduLeuFvHO oNg7Uh3j6GZ1jXQpALRkU+sVm7zoavfwBmehg+/WA1afCEuMYEnpXCiUcRmpC033 Zv3UA3Qf2/5kuXcyWO7zdXqWB2RfDCQ/1LJ1oYTHPAKyRSyXlV/c/6cq63mvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwL7agX2/96O6W6E1BAEdnDCVlOowHwYDVR0j BBgwFoAUhCIz1udWvJPA25pF3S97zZfLKa8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODEyNzRhZi03Y2QwLTQwYWYtYTMyMS02NzY4OThkNThkYjgvMC84NDIyMzNENkU3 NTZCQzkzQzBEQjlBNDVERDJGN0JDRDk3Q0IyOUFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQyMjMzRDZFNzU2QkM5M0MwREI5QTQ1REQyRjdCQ0Q5N0NC MjlBRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4MTI3NGFmLTdjZDAtNDBhZi1h MzIxLTY3Njg5OGQ1OGRiOC8wLzMyMzAzMjJlMzQzNzJlMzEzNjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzAzMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByi+iMA0GCSqG SIb3DQEBCwUAA4IBAQBdU1TlYp4v6EjmoblbXrC7lG6p0Fe2KyZVKeb6vNrdzD+v QCsZFhR/eOTx7HIa5oigNmK0K9n2x7sWiUtLUm5wxod9SpxtSSaMhr6VWKu+tSGk TLlW/WPVKsH79lwDu0wyMaOr2AwKOzdbTojBb46mQg5+dotgxVKRy8FQ5WqAxr5D YB/twZmxhZifhKlYaq0p1G2c8A3B92Rjsch86auUu6zLyOblNJDBY0JLqsdX9jqr ulBg4nmR0x2fggdErrya1joIEhaoheytLkaIwJ3hv2+nbrQ0stisuJ4UsZ/o7CdX /VTXYg2LcNQDOTWWNPproc3DAD6ETFsrU5+mmpY2 -----END CERTIFICATE-----Generated at Mon Oct 20 18:39:10 2025 by rpki-client