$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36342e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e36342e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: 4WyGaw7pg5UYftsuxKZALRkqNDYf7OEez6Nq5nSCM4U= Subject key identifier: FA:66:0F:AC:93:10:25:53:5F:41:83:E6:F1:74:E7:A9:2A:C0:50:A0 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 3AC5F629D140E38F15E8B7C4F72B4D51B45F23C8 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36342e302f32342d3234203d3e203233363935.roa Signing time: Tue 12 Aug 2025 04:02:27 +0000 ROA not before: Tue 12 Aug 2025 03:57:27 +0000 ROA not after: Tue 11 Aug 2026 04:02:27 +0000 asID: 23695 IP address blocks: 202.173.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:c5:f6:29:d1:40:e3:8f:15:e8:b7:c4:f7:2b:4d:51:b4:5f:23:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 12 03:57:27 2025 GMT Not After : Aug 11 04:02:27 2026 GMT Subject: CN=FA660FAC931025535F4183E6F174E7A92AC050A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:b1:ed:d0:af:d3:50:a0:17:17:38:7f:b6:1a: f7:e1:d2:bd:7a:be:dc:5a:82:b1:bd:e9:92:ce:7a: 9f:f7:23:64:d2:19:b0:b0:72:77:25:96:36:06:37: af:b9:38:c4:4c:b6:6c:62:78:49:e0:09:21:d1:c6: 53:c9:40:bb:db:b6:80:35:f1:12:a3:58:91:93:87: 4a:56:76:d7:3a:dd:45:41:08:ed:fd:0d:89:84:96: ec:76:dc:21:62:fc:b9:23:2f:49:5a:6c:70:82:d4: ce:7f:ea:27:b1:53:b9:09:da:a8:5c:ae:a7:c1:5e: cd:e4:f5:28:b2:a4:a0:aa:1d:4d:1e:b4:37:3a:f1: b0:c8:d4:60:02:60:a3:87:18:66:d9:6d:89:c7:71: 1f:40:7a:f1:59:59:91:ae:4d:c6:22:eb:77:26:f0: ee:0c:9e:da:7d:5f:60:59:23:d2:4b:96:27:12:45: 50:a6:13:ae:d4:09:b7:06:df:e9:a4:0c:99:d2:b5: cb:4f:49:77:eb:da:41:9b:44:1b:79:a5:2a:e7:73: cf:1c:6e:77:2d:57:c6:34:f2:52:ee:a9:af:91:5b: 0f:15:6d:b3:3e:75:e1:07:8d:4a:a4:39:f5:1b:48: 1c:f0:18:e3:e5:60:b2:3a:11:50:ee:a2:59:93:ca: ab:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:66:0F:AC:93:10:25:53:5F:41:83:E6:F1:74:E7:A9:2A:C0:50:A0 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36342e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.64.0/24 Signature Algorithm: sha256WithRSAEncryption 55:c6:16:3d:58:d2:e5:37:c5:b9:84:d8:a0:3c:44:47:37:b0: b6:a8:83:54:64:73:d3:47:fc:82:c2:4b:29:ec:08:30:91:1b: 74:42:c4:76:0d:22:25:2a:b2:a1:23:2e:9c:2b:16:ed:3e:b4: 50:fa:f7:1f:08:59:a7:e9:c6:56:aa:61:8b:26:0b:46:7d:d7: 43:c0:6e:a5:f7:7f:4c:17:1b:47:8a:1a:55:86:bf:fb:b8:e8: 40:58:ae:ad:8d:bb:ad:af:96:62:08:80:42:21:81:0c:c3:0e: ac:62:64:b4:db:cd:cb:cd:ad:5d:cb:49:f4:a2:83:53:24:61: 6a:a0:5c:cf:10:e5:02:8e:e6:ae:61:b8:23:e4:12:df:14:6d: 4e:4c:5e:c7:38:04:68:d3:f2:bb:37:31:43:5e:9e:a4:7f:00: 6f:3d:f6:df:59:bb:e6:96:fb:bb:01:1e:99:06:1a:c1:87:80: 65:d2:07:39:1e:63:c9:aa:b9:7d:28:54:31:b0:03:7d:83:4e: 71:ad:58:2d:81:c0:c2:ea:23:80:fb:04:40:64:ca:e4:af:1e: 5f:4c:08:94:94:37:55:ff:ff:19:8d:db:6a:f8:9b:d1:35:9d: b0:46:4f:0e:6f:14:bc:e7:6f:e1:33:53:5b:3f:89:27:ab:ac: e6:2f:50:1a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOsX2KdFA448V6LfE9ytNUbRfI8gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTIwMzU3MjdaFw0yNjA4MTEwNDAyMjdaMDMxMTAvBgNV BAMTKEZBNjYwRkFDOTMxMDI1NTM1RjQxODNFNkYxNzRFN0E5MkFDMDUwQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWse3Qr9NQoBcXOH+2Gvfh0r16 vtxagrG96ZLOep/3I2TSGbCwcnclljYGN6+5OMRMtmxieEngCSHRxlPJQLvbtoA1 8RKjWJGTh0pWdtc63UVBCO39DYmElux23CFi/LkjL0labHCC1M5/6iexU7kJ2qhc rqfBXs3k9SiypKCqHU0etDc68bDI1GACYKOHGGbZbYnHcR9AevFZWZGuTcYi63cm 8O4Mntp9X2BZI9JLlicSRVCmE67UCbcG3+mkDJnStctPSXfr2kGbRBt5pSrnc88c bnctV8Y08lLuqa+RWw8VbbM+deEHjUqkOfUbSBzwGOPlYLI6EVDuolmTyquPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+mYPrJMQJVNfQYPm8XTnqSrAUKAwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtQDANBgkqhkiG 9w0BAQsFAAOCAQEAVcYWPVjS5TfFuYTYoDxERzewtqiDVGRz00f8gsJLKewIMJEb dELEdg0iJSqyoSMunCsW7T60UPr3HwhZp+nGVqphiyYLRn3XQ8Bupfd/TBcbR4oa VYa/+7joQFiurY27ra+WYgiAQiGBDMMOrGJktNvNy82tXctJ9KKDUyRhaqBczxDl Ao7mrmG4I+QS3xRtTkxexzgEaNPyuzcxQ16epH8Abz3231m75pb7uwEemQYawYeA ZdIHOR5jyaq5fShUMbADfYNOca1YLYHAwuojgPsEQGTK5K8eX0wIlJQ3Vf//GY3b avib0TWdsEZPDm8UvOdv4TNTWz+JJ6us5i9QGg== -----END CERTIFICATE-----Generated at Sat Aug 23 21:15:15 2025 by rpki-client