$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36382e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e36382e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: mjkSgcJgLX5SOFtOhOviOBQgprMVBBer7U2vhkGwvLU= Subject key identifier: 01:90:40:00:8E:F3:93:83:6B:78:DE:4E:3C:13:86:3A:2B:58:5E:3D Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 1819F2739F5F1C588303E520E97AA6F7D06C6027 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36382e302f32342d3234203d3e203233363935.roa Signing time: Tue 12 Aug 2025 04:02:25 +0000 ROA not before: Tue 12 Aug 2025 03:57:25 +0000 ROA not after: Tue 11 Aug 2026 04:02:25 +0000 asID: 23695 IP address blocks: 202.173.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:19:f2:73:9f:5f:1c:58:83:03:e5:20:e9:7a:a6:f7:d0:6c:60:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 12 03:57:25 2025 GMT Not After : Aug 11 04:02:25 2026 GMT Subject: CN=019040008EF393836B78DE4E3C13863A2B585E3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:29:b0:7c:1e:cb:af:e0:28:88:cb:f9:c6:85: d6:1d:38:70:c2:3f:88:f1:48:a5:04:53:6c:02:56: 2f:ca:c2:76:14:90:d8:d0:c9:a5:0d:09:21:cd:48: 56:a7:96:ce:05:fc:a4:80:62:64:da:0c:6c:96:75: 5a:c5:9c:09:0b:5e:d4:17:16:19:c6:04:f1:72:b2: bb:eb:71:dd:8f:f2:f4:8c:7e:6c:cc:bc:d1:8c:07: df:86:6f:d4:3a:f6:df:ec:5a:17:07:26:74:b6:9c: b2:0c:ae:60:49:16:b9:07:a0:e8:02:e0:f6:d5:20: 40:a4:7f:c2:b7:0d:f6:52:18:0c:cb:da:43:2a:21: d7:88:15:c6:ca:f6:38:97:ee:fe:24:7c:68:9f:0f: f8:89:38:f4:c1:a7:2a:24:73:ea:38:db:80:3a:4f: 02:c2:37:da:47:36:11:a9:2c:a1:1c:f5:f5:41:b5: 7e:b8:29:1b:09:5f:05:b0:0f:5a:d3:60:4d:7f:a4: 2e:32:21:2f:7d:ee:b2:e0:61:b7:78:77:ba:b9:9f: 8a:e9:d7:61:88:92:0d:40:e4:d4:7b:9d:1f:14:31: a6:cc:d3:16:ac:60:2e:3e:14:bd:e4:82:f3:2b:6e: 0e:2e:6c:94:67:4c:3c:2d:a3:6c:fc:36:0c:37:e5: 40:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:90:40:00:8E:F3:93:83:6B:78:DE:4E:3C:13:86:3A:2B:58:5E:3D X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36382e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.68.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:14:f9:03:cf:1d:5e:89:8d:eb:a1:55:19:88:a5:0a:9f:30: 36:f2:da:86:f2:13:b5:ab:1d:04:db:c0:8e:11:e4:3b:d5:76: f7:58:50:9c:4f:13:c6:50:99:bd:50:ef:12:90:b4:6d:f8:ee: 54:3c:b3:b0:78:2b:f3:a3:46:82:24:47:5d:8f:7a:e7:59:65: 38:2d:ab:8e:a0:56:07:8d:58:6c:32:4c:9b:03:54:4d:e0:dc: 31:42:c4:f4:3c:f6:5b:15:8a:fa:38:d1:17:10:62:54:51:22: 52:a5:fe:92:fe:d3:7e:db:fb:88:1b:9d:a7:5f:38:bb:da:39: 25:0e:f7:f5:c0:66:dd:1e:bb:dc:93:ef:02:e1:6a:6e:9d:e4: 3f:e0:98:88:ae:e5:ae:81:73:54:57:d9:2f:66:52:36:05:17: 5a:b5:f3:23:54:65:b0:21:ca:12:6f:a4:98:1a:44:83:f3:79: ad:10:98:43:04:26:64:47:dc:be:59:c0:9e:20:6c:ee:fe:48: 75:1e:82:f1:cd:f7:fd:16:dd:85:4c:a7:e6:41:00:43:74:82: c7:a0:f3:30:c4:e2:6d:89:2b:81:fa:f1:de:87:c2:3d:d8:19: 6b:3a:14:e9:d7:b8:8a:da:34:03:3e:35:d9:5f:f7:22:7b:00: 21:15:7f:22 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGBnyc59fHFiDA+Ug6Xqm99BsYCcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTIwMzU3MjVaFw0yNjA4MTEwNDAyMjVaMDMxMTAvBgNV BAMTKDAxOTA0MDAwOEVGMzkzODM2Qjc4REU0RTNDMTM4NjNBMkI1ODVFM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqKbB8Hsuv4CiIy/nGhdYdOHDC P4jxSKUEU2wCVi/KwnYUkNjQyaUNCSHNSFanls4F/KSAYmTaDGyWdVrFnAkLXtQX FhnGBPFysrvrcd2P8vSMfmzMvNGMB9+Gb9Q69t/sWhcHJnS2nLIMrmBJFrkHoOgC 4PbVIECkf8K3DfZSGAzL2kMqIdeIFcbK9jiX7v4kfGifD/iJOPTBpyokc+o424A6 TwLCN9pHNhGpLKEc9fVBtX64KRsJXwWwD1rTYE1/pC4yIS997rLgYbd4d7q5n4rp 12GIkg1A5NR7nR8UMabM0xasYC4+FL3kgvMrbg4ubJRnTDwto2z8Ngw35UA1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAZBAAI7zk4NreN5OPBOGOitYXj0wHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtRDANBgkqhkiG 9w0BAQsFAAOCAQEAHhT5A88dXomN66FVGYilCp8wNvLahvITtasdBNvAjhHkO9V2 91hQnE8TxlCZvVDvEpC0bfjuVDyzsHgr86NGgiRHXY9651llOC2rjqBWB41YbDJM mwNUTeDcMULE9Dz2WxWK+jjRFxBiVFEiUqX+kv7Tftv7iBudp184u9o5JQ739cBm 3R673JPvAuFqbp3kP+CYiK7lroFzVFfZL2ZSNgUXWrXzI1RlsCHKEm+kmBpEg/N5 rRCYQwQmZEfcvlnAniBs7v5IdR6C8c33/RbdhUyn5kEAQ3SCx6DzMMTibYkrgfrx 3ofCPdgZazoU6de4ito0Az412V/3InsAIRV/Ig== -----END CERTIFICATE-----Generated at Sat Aug 23 19:24:02 2025 by rpki-client