$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37332e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e37332e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: UWg1+ZlqcjDvHPPT1k4EQ/Rdg1I29Yb8QcAkFZktGvo= Subject key identifier: CA:72:C5:F2:45:F4:D0:21:EB:AA:54:80:C5:A0:97:D1:EF:7D:D9:6B Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 4148ED73A243218EC7EFF674ED1C3252AC0A9477 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37332e302f32342d3234203d3e203233363935.roa Signing time: Tue 19 Aug 2025 16:00:01 +0000 ROA not before: Tue 19 Aug 2025 15:55:01 +0000 ROA not after: Tue 18 Aug 2026 16:00:01 +0000 asID: 23695 IP address blocks: 202.173.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:48:ed:73:a2:43:21:8e:c7:ef:f6:74:ed:1c:32:52:ac:0a:94:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 19 15:55:01 2025 GMT Not After : Aug 18 16:00:01 2026 GMT Subject: CN=CA72C5F245F4D021EBAA5480C5A097D1EF7DD96B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:f2:d5:25:78:b4:2b:87:3e:7d:58:52:02:90: f7:3a:fd:24:08:46:73:57:60:6a:f9:82:31:f1:5d: 5d:9a:e9:d3:60:d3:14:61:7e:7b:cb:82:3e:b2:40: f0:b0:b4:15:e2:d0:62:83:ae:ea:e2:16:60:cf:8a: a7:f1:cc:82:34:21:55:00:78:68:4d:3a:52:ce:0a: 05:38:29:e9:50:02:db:0e:b9:76:50:f0:48:d5:8d: 87:55:4e:cd:c9:2c:65:ce:27:a0:9a:de:66:d7:5d: 0b:a1:79:3f:bc:7f:33:21:9d:f8:35:dc:7a:50:40: 36:a5:9a:cf:d4:16:d2:c6:89:38:8a:0b:65:7d:33: 84:47:b8:11:be:cf:65:09:cc:d5:cf:64:40:3e:c1: 49:5e:f9:85:2a:a9:2e:ab:26:5d:79:12:a4:f1:65: 50:e4:ad:74:b6:ba:57:c4:c0:59:8c:a7:69:c8:a5: 1a:b9:bd:9c:27:9a:41:43:e6:f8:d5:ce:07:e3:b6: 82:2e:a2:18:2c:13:6d:40:b0:d9:d3:89:ca:b2:93: df:c5:c4:45:48:d9:24:48:e0:a1:8e:e1:e9:8a:20: 38:21:6a:32:a4:8a:2a:8b:d4:00:1d:76:ba:57:5a: eb:be:9b:6f:c2:dc:82:73:5f:c5:13:49:d2:cf:17: 04:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:72:C5:F2:45:F4:D0:21:EB:AA:54:80:C5:A0:97:D1:EF:7D:D9:6B X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37332e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.73.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:6c:da:23:6f:97:57:c5:88:4f:70:c3:c7:e2:4b:33:75:29: 85:d7:f9:14:e3:6c:ef:77:5d:47:cd:bc:7e:42:19:06:10:8a: 4d:8c:b9:f0:64:6d:2c:b7:06:2c:ea:ed:c6:d8:d1:a7:bf:4c: 0d:ba:09:54:00:31:e2:50:23:2d:24:d7:26:e5:21:cc:36:a2: 81:d0:ab:a3:f2:8d:67:e5:61:db:01:0b:cf:da:f5:40:4b:d0: 69:4a:9d:c8:a5:7b:3d:13:f2:fd:3c:dc:9e:59:af:97:9a:0d: da:a7:2c:2e:f9:fc:53:32:e0:30:09:11:4e:5a:9a:26:0a:63: 1a:80:3b:26:bc:ba:ff:db:06:71:e3:2b:0e:ee:ec:69:3b:4e: 62:04:d4:2c:be:1b:b2:a4:3d:45:ef:0c:87:fa:26:a3:17:45: cd:18:c7:d4:71:3b:d0:47:ea:e5:41:27:ff:d1:1b:66:7b:ff: 1c:61:ea:f1:62:d4:c2:78:42:7e:b7:25:e8:36:8d:fb:2e:5e: d7:2d:eb:63:b4:b0:d1:d0:76:cb:4a:eb:70:2e:88:4f:7d:89: 6c:3b:73:7d:cd:24:7c:70:3e:e8:19:90:4a:ab:3e:92:e5:90: 99:91:50:6c:80:fa:b2:e2:7e:42:e0:57:c2:f0:71:59:6e:fa: a6:d0:12:e7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQUjtc6JDIY7H7/Z07RwyUqwKlHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTkxNTU1MDFaFw0yNjA4MTgxNjAwMDFaMDMxMTAvBgNV BAMTKENBNzJDNUYyNDVGNEQwMjFFQkFBNTQ4MEM1QTA5N0QxRUY3REQ5NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi8tUleLQrhz59WFICkPc6/SQI RnNXYGr5gjHxXV2a6dNg0xRhfnvLgj6yQPCwtBXi0GKDruriFmDPiqfxzII0IVUA eGhNOlLOCgU4KelQAtsOuXZQ8EjVjYdVTs3JLGXOJ6Ca3mbXXQuheT+8fzMhnfg1 3HpQQDalms/UFtLGiTiKC2V9M4RHuBG+z2UJzNXPZEA+wUle+YUqqS6rJl15EqTx ZVDkrXS2ulfEwFmMp2nIpRq5vZwnmkFD5vjVzgfjtoIuohgsE21AsNnTicqyk9/F xEVI2SRI4KGO4emKIDghajKkiiqL1AAddrpXWuu+m2/C3IJzX8UTSdLPFwQ5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUynLF8kX00CHrqlSAxaCX0e992WswHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtSTANBgkqhkiG 9w0BAQsFAAOCAQEAimzaI2+XV8WIT3DDx+JLM3Uphdf5FONs73ddR828fkIZBhCK TYy58GRtLLcGLOrtxtjRp79MDboJVAAx4lAjLSTXJuUhzDaigdCro/KNZ+Vh2wEL z9r1QEvQaUqdyKV7PRPy/Tzcnlmvl5oN2qcsLvn8UzLgMAkRTlqaJgpjGoA7Jry6 /9sGceMrDu7saTtOYgTULL4bsqQ9Re8Mh/omoxdFzRjH1HE70Efq5UEn/9EbZnv/ HGHq8WLUwnhCfrcl6DaN+y5e1y3rY7Sw0dB2y0rrcC6IT32JbDtzfc0kfHA+6BmQ Sqs+kuWQmZFQbID6suJ+QuBXwvBxWW76ptAS5w== -----END CERTIFICATE-----Generated at Sun Aug 24 01:19:14 2025 by rpki-client