$ rpki-client -vvf repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138352e302f32342d3234203d3e20313532303332.roa File: 3230322e34372e3138352e302f32342d3234203d3e20313532303332.roa (raw, json) Hash identifier: cziExQNbsC9slbA6+8SWM0R0EDsOLwLtgTBqDttdfO0= Subject key identifier: 3B:C3:EB:42:7E:55:D0:44:CE:B7:15:FB:B9:AA:B7:34:B2:8C:35:E2 Certificate issuer: /CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8 Certificate serial: 226F108DD3E9EB458C45644C8C90AD09FA4C0721 Authority key identifier: CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138352e302f32342d3234203d3e20313532303332.roa Signing time: Fri 03 Oct 2025 04:02:25 +0000 ROA not before: Fri 03 Oct 2025 03:57:25 +0000 ROA not after: Fri 02 Oct 2026 04:02:25 +0000 asID: 152032 IP address blocks: 202.47.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.crl rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 07:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:6f:10:8d:d3:e9:eb:45:8c:45:64:4c:8c:90:ad:09:fa:4c:07:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8 Validity Not Before: Oct 3 03:57:25 2025 GMT Not After : Oct 2 04:02:25 2026 GMT Subject: CN=3BC3EB427E55D044CEB715FBB9AAB734B28C35E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f9:fd:7b:40:f4:b7:eb:65:37:07:4a:d7:9e: f6:55:bd:ee:2e:be:83:7b:90:fa:ca:1b:29:87:af: 1e:e0:ce:50:00:d7:26:fd:34:2f:d7:75:92:24:44: 68:98:6c:27:ae:df:2d:b4:38:3a:65:2b:d8:56:53: 5d:30:d3:f8:50:1e:3d:aa:fe:32:07:a7:34:9d:6d: ff:da:d8:bb:58:51:ce:63:a9:10:e3:85:4e:1f:61: 44:1f:ac:6f:70:36:dc:61:3a:be:7e:77:d9:a5:3a: 08:97:e5:2c:8c:54:0e:de:9f:a3:91:84:f6:16:49: 6d:bd:b0:09:67:04:25:a6:f7:d4:8e:73:1f:80:88: 18:f0:62:aa:74:56:16:69:43:f4:40:5a:f3:dc:4b: da:ea:dc:32:e1:4a:57:70:44:ff:e6:f1:64:0f:70: e1:38:4e:1f:60:80:9a:25:92:6f:e3:48:9a:17:16: 22:38:3f:6a:f5:b2:26:b4:6d:36:2b:b2:44:15:f0: 08:64:97:87:38:c6:e0:c6:69:e3:af:89:d2:39:4c: 3b:3d:aa:5c:51:e0:dd:96:93:8c:45:fd:eb:2d:a7: 60:5b:9e:27:ae:d3:0b:84:5c:48:8c:a8:20:49:32: 31:f5:fa:18:52:b6:9a:ef:76:f4:3a:53:d4:01:3c: 10:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:C3:EB:42:7E:55:D0:44:CE:B7:15:FB:B9:AA:B7:34:B2:8C:35:E2 X509v3 Authority Key Identifier: keyid:CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138352e302f32342d3234203d3e20313532303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.185.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:ac:86:38:49:6d:30:c9:21:8b:89:1d:33:75:01:13:3f:00: 38:16:15:f7:e3:86:8a:d6:74:34:e6:93:56:14:c9:c5:ba:7d: 59:9f:9b:68:fc:e7:55:6e:24:7c:38:83:e6:ca:9b:68:67:15: 7c:e6:fb:c6:db:12:19:ec:b5:39:b5:c2:36:f1:c6:fa:60:d8: 01:fc:02:19:2d:52:7e:43:98:05:76:bd:cd:9f:c8:86:c8:9b: 7f:98:1c:92:c4:0a:77:e1:e4:7d:bf:0f:5e:a7:29:b6:2e:12: 97:f8:cd:63:c7:f4:01:1d:9e:33:f0:af:02:8e:d6:b6:3e:92: b2:58:94:32:61:dc:5e:aa:d8:17:85:20:2d:08:3c:6c:f5:0a: 6e:18:54:e4:85:01:bd:7e:a6:37:3d:c4:c0:22:a3:8a:58:1c: a6:d6:51:a8:79:75:46:bc:45:74:f3:90:3d:5f:38:55:a8:03: be:7a:fa:98:50:eb:7a:a4:bc:79:08:3a:7d:92:14:51:b9:19: 9c:32:11:b9:50:3d:44:c0:1e:0d:72:7a:e3:ab:91:a1:5a:1b: af:86:55:2d:70:30:d0:0d:25:4c:81:80:87:cf:29:07:6f:92: 63:1c:fc:71:9d:bc:8b:ce:31:bb:2c:a3:e5:0b:44:52:e7:f3: 40:00:56:27 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIm8QjdPp60WMRWRMjJCtCfpMByEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VDMjY0MjlERjMwODYxNTg3MEMxRjQ3RThDREU0RjlC NEEzN0NFODAeFw0yNTEwMDMwMzU3MjVaFw0yNjEwMDIwNDAyMjVaMDMxMTAvBgNV BAMTKDNCQzNFQjQyN0U1NUQwNDRDRUI3MTVGQkI5QUFCNzM0QjI4QzM1RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0+f17QPS362U3B0rXnvZVve4u voN7kPrKGymHrx7gzlAA1yb9NC/XdZIkRGiYbCeu3y20ODplK9hWU10w0/hQHj2q /jIHpzSdbf/a2LtYUc5jqRDjhU4fYUQfrG9wNtxhOr5+d9mlOgiX5SyMVA7en6OR hPYWSW29sAlnBCWm99SOcx+AiBjwYqp0VhZpQ/RAWvPcS9rq3DLhSldwRP/m8WQP cOE4Th9ggJolkm/jSJoXFiI4P2r1sia0bTYrskQV8Ahkl4c4xuDGaeOvidI5TDs9 qlxR4N2Wk4xF/estp2Bbnieu0wuEXEiMqCBJMjH1+hhStprvdvQ6U9QBPBAnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUO8PrQn5V0ETOtxX7uaq3NLKMNeIwHwYDVR0j BBgwFoAUzsJkKd8whhWHDB9H6M3k+bSjfOgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTVmZGY2Yy0wZDAxLTQ5MmItODAwNC1hNDhlZTVhMTI0NzQvMC9DRUMyNjQyOURG MzA4NjE1ODcwQzFGNDdFOENERTRGOUI0QTM3Q0U4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VDMjY0MjlERjMwODYxNTg3MEMxRjQ3RThDREU0RjlCNEEz N0NFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlNWZkZjZjLTBkMDEtNDkyYi04 MDA0LWE0OGVlNWExMjQ3NC8wLzMyMzAzMjJlMzQzNzJlMzEzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyi+5MA0GCSqG SIb3DQEBCwUAA4IBAQBPrIY4SW0wySGLiR0zdQETPwA4FhX344aK1nQ05pNWFMnF un1Zn5to/OdVbiR8OIPmyptoZxV85vvG2xIZ7LU5tcI28cb6YNgB/AIZLVJ+Q5gF dr3Nn8iGyJt/mBySxAp34eR9vw9epym2LhKX+M1jx/QBHZ4z8K8Cjta2PpKyWJQy YdxeqtgXhSAtCDxs9QpuGFTkhQG9fqY3PcTAIqOKWBym1lGoeXVGvEV085A9XzhV qAO+evqYUOt6pLx5CDp9khRRuRmcMhG5UD1EwB4Ncnrjq5GhWhuvhlUtcDDQDSVM gYCHzykHb5JjHPxxnbyLzjG7LKPlC0RS5/NAAFYn -----END CERTIFICATE-----Generated at Mon Oct 20 17:43:56 2025 by rpki-client