$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37322e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e37322e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: jKUx0Kb59Rg6MFPSq2RoJeJiSFX4TEG4M2H5FmtzNtA= Subject key identifier: DA:78:82:5C:CA:4F:FC:DA:CF:14:09:87:F4:96:4C:79:4A:96:04:C3 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 359987CE40AF53B4811E714A661E43020D70593D Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37322e302f32342d3234203d3e203233363935.roa Signing time: Tue 12 Aug 2025 04:02:25 +0000 ROA not before: Tue 12 Aug 2025 03:57:25 +0000 ROA not after: Tue 11 Aug 2026 04:02:25 +0000 asID: 23695 IP address blocks: 202.173.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:99:87:ce:40:af:53:b4:81:1e:71:4a:66:1e:43:02:0d:70:59:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 12 03:57:25 2025 GMT Not After : Aug 11 04:02:25 2026 GMT Subject: CN=DA78825CCA4FFCDACF140987F4964C794A9604C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fb:bd:a4:df:15:0d:70:40:8d:28:1f:ed:fb: 1f:7f:f1:9f:98:db:22:45:2b:f8:28:eb:3f:be:58: 5c:1c:62:b4:55:e6:28:f2:1b:ba:6f:3d:ac:de:4f: 47:d9:b0:9f:08:e2:8d:6c:e2:18:ab:58:eb:77:e4: aa:1a:ca:32:a0:cf:f6:23:5d:92:e7:25:f2:41:e0: 85:78:b7:a1:fa:23:f2:30:00:47:43:f8:45:f2:06: f6:7f:17:32:b2:b7:a4:5a:92:f1:1b:ac:58:89:22: 2e:32:d6:1a:ea:c6:60:5f:aa:bb:d5:31:0a:c2:5b: c9:16:e4:39:80:99:57:30:0e:2b:5a:b9:c7:a7:93: c9:4d:f6:13:41:46:3e:ab:09:f8:f6:3f:49:03:17: 3e:2b:2f:b1:5c:3e:47:8d:26:d5:ad:d7:41:62:bf: 00:7f:a7:a7:cf:45:19:56:3e:9e:fa:90:2b:62:54: 64:6c:42:35:d2:38:9a:ef:20:85:23:31:30:11:7d: 77:1d:85:fb:8d:e6:77:84:05:a0:07:fb:69:c4:d8: 8e:bb:13:d2:64:67:8e:fe:54:ba:67:6a:ca:4c:ac: 68:3f:32:98:2a:2e:22:22:51:22:ce:96:68:63:0b: 10:6a:15:34:4e:07:18:88:28:80:75:f3:90:3d:80: 5f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:78:82:5C:CA:4F:FC:DA:CF:14:09:87:F4:96:4C:79:4A:96:04:C3 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37322e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.72.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:35:d7:30:9c:4a:db:f7:3b:9b:e8:71:cb:bc:6f:bb:0e:05: 3d:bc:27:d5:3a:99:2c:fe:4e:92:be:a0:e7:18:22:cd:d6:44: 14:9d:66:c7:3c:8f:11:74:81:d1:40:91:f1:c1:83:a0:0c:53: 4e:ee:58:26:29:6a:ac:28:a6:13:84:56:65:ee:04:f3:ff:af: 67:3c:04:88:5b:7e:d5:72:9b:52:fd:d5:d4:86:c9:84:a0:90: a8:c4:2f:c0:81:89:0a:dd:cf:b1:77:d9:4a:f6:0b:05:ec:c0: 95:91:f9:07:ba:7d:bb:1a:56:0c:8b:b4:97:b7:55:6f:66:c5: 40:23:d3:04:37:f1:2c:58:1e:56:66:b7:8c:ee:25:4c:28:ca: ff:be:06:b5:9c:92:31:b2:1c:18:69:40:b6:26:17:0f:53:7b: 50:a3:e8:9f:8d:09:84:f6:3c:4e:29:4a:b0:6d:23:75:8f:af: bf:e5:fe:6a:b4:98:fe:c3:38:e8:0b:83:a9:65:51:83:73:6d: 86:5e:37:02:42:10:96:3d:9e:63:b3:85:16:c9:53:df:d8:2e: dd:e8:88:3b:3f:a6:bd:20:b6:ee:42:82:3d:86:14:f6:1e:2e: 03:86:53:f1:da:bc:a8:60:ad:87:6a:e3:2d:7f:f3:ef:74:fe: 03:15:0a:44 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNZmHzkCvU7SBHnFKZh5DAg1wWT0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTIwMzU3MjVaFw0yNjA4MTEwNDAyMjVaMDMxMTAvBgNV BAMTKERBNzg4MjVDQ0E0RkZDREFDRjE0MDk4N0Y0OTY0Qzc5NEE5NjA0QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu+72k3xUNcECNKB/t+x9/8Z+Y 2yJFK/go6z++WFwcYrRV5ijyG7pvPazeT0fZsJ8I4o1s4hirWOt35KoayjKgz/Yj XZLnJfJB4IV4t6H6I/IwAEdD+EXyBvZ/FzKyt6RakvEbrFiJIi4y1hrqxmBfqrvV MQrCW8kW5DmAmVcwDitaucenk8lN9hNBRj6rCfj2P0kDFz4rL7FcPkeNJtWt10Fi vwB/p6fPRRlWPp76kCtiVGRsQjXSOJrvIIUjMTARfXcdhfuN5neEBaAH+2nE2I67 E9JkZ47+VLpnaspMrGg/MpgqLiIiUSLOlmhjCxBqFTROBxiIKIB185A9gF/tAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2niCXMpP/NrPFAmH9JZMeUqWBMMwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtSDANBgkqhkiG 9w0BAQsFAAOCAQEAOzXXMJxK2/c7m+hxy7xvuw4FPbwn1TqZLP5Okr6g5xgizdZE FJ1mxzyPEXSB0UCR8cGDoAxTTu5YJilqrCimE4RWZe4E8/+vZzwEiFt+1XKbUv3V 1IbJhKCQqMQvwIGJCt3PsXfZSvYLBezAlZH5B7p9uxpWDIu0l7dVb2bFQCPTBDfx LFgeVma3jO4lTCjK/74GtZySMbIcGGlAtiYXD1N7UKPon40JhPY8TilKsG0jdY+v v+X+arSY/sM46AuDqWVRg3Nthl43AkIQlj2eY7OFFslT39gu3eiIOz+mvSC27kKC PYYU9h4uA4ZT8dq8qGCth2rjLX/z73T+AxUKRA== -----END CERTIFICATE-----Generated at Sat Aug 23 19:23:42 2025 by rpki-client