$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137352e302f32342d3234203d3e20323037353731.roa File: 3230322e3135302e3137352e302f32342d3234203d3e20323037353731.roa (raw, json) Hash identifier: fxq+INOzYywTpHUeb4pxKeVy8ePaMLmGli2Hhv5MQO4= Subject key identifier: 88:31:8E:40:C9:5A:77:35:33:E5:8D:15:E0:39:B6:66:8D:ED:BB:83 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 5242F65242C05596754EC56A4C016778B48110E4 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137352e302f32342d3234203d3e20323037353731.roa Signing time: Thu 02 Oct 2025 02:23:17 +0000 ROA not before: Thu 02 Oct 2025 02:18:17 +0000 ROA not after: Thu 01 Oct 2026 02:23:17 +0000 asID: 207571 IP address blocks: 202.150.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 16:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:42:f6:52:42:c0:55:96:75:4e:c5:6a:4c:01:67:78:b4:81:10:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Oct 2 02:18:17 2025 GMT Not After : Oct 1 02:23:17 2026 GMT Subject: CN=88318E40C95A773533E58D15E039B6668DEDBB83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b8:93:db:70:20:45:03:cc:55:9e:ec:86:95: cf:f5:86:b1:60:95:19:1c:f0:e6:b4:8d:8e:9c:bc: 50:86:e4:ee:ba:c6:69:43:c7:61:b8:d0:71:9a:4a: c6:b3:91:6f:ba:8b:35:2a:7a:0b:b6:79:bf:31:dd: a5:c7:dd:41:db:4b:c1:f4:a3:4e:e3:09:70:2d:0f: 70:ab:f7:e9:a7:bd:5f:d6:33:a0:36:5a:25:22:d3: 35:f8:13:f7:c2:1b:31:06:88:6f:16:da:8f:c6:ba: 04:e3:4c:13:14:1d:64:bd:13:86:a8:e9:06:fe:36: 70:bb:44:b9:e1:b2:f7:d4:e6:ba:e4:d4:7f:08:36: 92:29:7b:d5:34:b4:f4:f4:b8:ce:a6:a5:1f:3e:6e: fc:49:ab:5c:1f:cc:ab:63:29:37:a0:2c:3f:3e:2e: 10:1a:69:6c:94:66:48:64:f3:ad:5c:95:6b:d2:b5: e5:0a:5a:17:8a:39:e9:a5:f8:fc:27:e8:3c:6e:8e: a6:15:b1:36:e0:fe:82:f0:1d:5e:2a:da:0b:5b:50: 39:20:a2:47:20:68:61:f6:8f:c7:c6:39:38:af:10: 8e:77:58:04:c0:cd:a7:f0:9c:fd:72:5b:23:8e:43: f2:54:4a:a5:c2:33:c4:79:b5:a4:b6:7a:b5:21:25: 1b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:31:8E:40:C9:5A:77:35:33:E5:8D:15:E0:39:B6:66:8D:ED:BB:83 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137352e302f32342d3234203d3e20323037353731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.150.175.0/24 Signature Algorithm: sha256WithRSAEncryption 76:5e:b0:d4:25:77:20:15:a3:09:c5:65:54:d0:d2:38:9d:03: 63:0f:18:eb:f3:04:a5:5f:af:3f:de:4e:73:77:51:c5:d1:97: 37:39:da:4b:e6:51:83:0e:df:0a:86:0b:64:d4:b0:8a:09:ed: a0:e7:aa:4f:30:33:96:c4:8e:8b:02:76:44:6e:28:d9:e1:69: e1:4b:f5:7d:b4:b4:b5:d0:8a:36:76:48:f8:ce:0f:86:b3:e4: 72:13:3f:00:31:2e:36:12:4c:1c:74:59:c6:9b:b0:db:35:38: fa:8e:21:72:e0:e2:84:3b:1d:03:d0:bd:66:b7:28:11:b4:ec: 0d:60:9f:d8:57:15:b6:67:ee:e9:da:e7:a9:fe:6c:85:31:ea: b9:99:11:26:d6:78:63:7c:ce:6e:42:1a:ab:ab:bf:1b:6a:13: 7b:36:a9:3a:f7:a9:8f:fe:c8:29:95:07:79:02:24:13:e9:d0: 24:1e:f8:b2:a8:63:eb:64:fe:3a:89:a2:af:15:41:80:94:b3: 04:7b:b9:38:36:b9:d2:7f:3a:ff:e5:1b:ea:b7:c1:49:45:30: 8f:c2:a9:c0:0e:d4:ef:1a:37:98:0f:14:71:dc:c9:77:a2:4a: 13:a3:3b:4f:c6:16:52:88:ca:03:58:e4:27:24:91:66:06:db: 7d:74:ac:b8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUkL2UkLAVZZ1TsVqTAFneLSBEOQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTEwMDIwMjE4MTdaFw0yNjEwMDEwMjIzMTdaMDMxMTAvBgNV BAMTKDg4MzE4RTQwQzk1QTc3MzUzM0U1OEQxNUUwMzlCNjY2OERFREJCODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbuJPbcCBFA8xVnuyGlc/1hrFg lRkc8Oa0jY6cvFCG5O66xmlDx2G40HGaSsazkW+6izUqegu2eb8x3aXH3UHbS8H0 o07jCXAtD3Cr9+mnvV/WM6A2WiUi0zX4E/fCGzEGiG8W2o/GugTjTBMUHWS9E4ao 6Qb+NnC7RLnhsvfU5rrk1H8INpIpe9U0tPT0uM6mpR8+bvxJq1wfzKtjKTegLD8+ LhAaaWyUZkhk861clWvSteUKWheKOeml+Pwn6DxujqYVsTbg/oLwHV4q2gtbUDkg okcgaGH2j8fGOTivEI53WATAzafwnP1yWyOOQ/JUSqXCM8R5taS2erUhJRv3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUiDGOQMladzUz5Y0V4Dm2Zo3tu4MwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMyMzAzMjJlMzEzNTMwMmUzMTM3MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjMwMzczNTM3MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlq8wDQYJ KoZIhvcNAQELBQADggEBAHZesNQldyAVownFZVTQ0jidA2MPGOvzBKVfrz/eTnN3 UcXRlzc52kvmUYMO3wqGC2TUsIoJ7aDnqk8wM5bEjosCdkRuKNnhaeFL9X20tLXQ ijZ2SPjOD4az5HITPwAxLjYSTBx0WcabsNs1OPqOIXLg4oQ7HQPQvWa3KBG07A1g n9hXFbZn7una56n+bIUx6rmZESbWeGN8zm5CGqurvxtqE3s2qTr3qY/+yCmVB3kC JBPp0CQe+LKoY+tk/jqJoq8VQYCUswR7uTg2udJ/Ov/lG+q3wUlFMI/CqcAO1O8a N5gPFHHcyXeiShOjO0/GFlKIygNY5CckkWYG2310rLg= -----END CERTIFICATE-----Generated at Mon Oct 20 09:58:57 2025 by rpki-client