$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37342e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e37342e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: 3cx2QRjGVSumggdxVl9lyK0OrH1snPi5KBCV6wfSuVs= Subject key identifier: 8D:90:F8:48:D9:A7:FE:96:37:CD:DD:C8:C3:47:94:8E:C8:52:A0:C3 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 636CC38D71AAC54323FCEC997BA4910AE2A45A2A Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37342e302f32342d3234203d3e203233363935.roa Signing time: Tue 19 Aug 2025 17:00:01 +0000 ROA not before: Tue 19 Aug 2025 16:55:01 +0000 ROA not after: Tue 18 Aug 2026 17:00:01 +0000 asID: 23695 IP address blocks: 202.173.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:6c:c3:8d:71:aa:c5:43:23:fc:ec:99:7b:a4:91:0a:e2:a4:5a:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 19 16:55:01 2025 GMT Not After : Aug 18 17:00:01 2026 GMT Subject: CN=8D90F848D9A7FE9637CDDDC8C347948EC852A0C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e0:26:ac:2b:25:20:e8:bb:9c:82:15:15:f1: c7:d6:ac:c3:a1:e6:34:d2:1f:50:c4:d4:02:0e:80: 41:21:34:2f:1c:db:87:c0:53:f2:22:e2:de:f4:25: 66:8e:71:43:b3:45:b2:03:b1:f5:f6:97:24:0d:c2: 60:d8:db:80:d3:5e:60:d2:2b:d4:57:4f:10:30:a4: 51:61:66:d2:3e:91:55:ec:51:ea:a2:c5:1a:93:11: 12:72:56:00:67:80:cd:b8:7e:d2:88:9f:f6:8f:78: c6:0e:08:4c:29:53:be:a6:39:e9:d7:4d:73:08:79: a8:28:97:f8:f0:7e:e0:9f:cc:c0:2b:ee:45:02:3c: 7f:66:ea:57:4d:cc:8c:3b:ef:af:8f:fa:b2:2b:60: e3:9f:91:c0:ba:3f:02:e9:5b:6e:0c:52:cf:79:80: 48:21:f1:1e:78:5b:ea:5a:ad:3f:eb:cf:2e:6e:cd: 75:da:5f:04:9d:1f:5d:6a:dd:c8:3a:aa:36:52:ab: 94:eb:3d:2b:3e:3d:a5:bb:fb:6d:b0:79:49:f0:ff: b4:20:3e:8e:e1:6c:95:09:61:65:75:c4:0f:c8:1c: 8c:33:c4:aa:74:72:eb:ec:c0:4c:76:ee:9e:02:11: 7c:39:53:3a:72:4b:4b:fd:f0:54:5d:d7:80:3c:52: 33:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:90:F8:48:D9:A7:FE:96:37:CD:DD:C8:C3:47:94:8E:C8:52:A0:C3 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37342e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.74.0/24 Signature Algorithm: sha256WithRSAEncryption a1:c8:6a:60:17:b6:c8:c8:7c:fc:49:d2:8f:f4:40:47:73:fb: 6b:d1:11:21:61:92:00:89:0c:bb:bd:b1:47:16:ba:91:80:00: 91:82:15:a0:32:77:f9:be:1d:eb:ae:bb:31:0b:ad:d6:8d:26: 88:c8:84:7a:7b:d8:95:b9:f0:67:3e:cc:ba:c5:84:3c:5b:15: 3e:57:c2:ac:3c:1e:93:f2:59:6b:61:2a:ed:ed:33:66:95:8f: 16:01:67:c8:a2:3a:3c:02:e6:ad:ce:4a:e7:b5:05:fe:94:72: ad:1a:32:96:2e:76:9e:4f:0c:d0:4a:29:05:3d:a6:0e:8f:6b: ab:ab:cc:e9:dc:cd:47:ec:a1:85:2d:02:d1:98:58:3a:f5:dd: 41:c1:0a:e4:8f:23:6c:b1:7e:00:aa:fc:3b:78:d9:d8:32:7e: 07:09:1f:92:de:b7:c3:ef:ae:45:b7:00:67:3f:ea:f8:3d:26: 28:cb:7b:fa:a4:ab:c1:1a:b3:0b:f0:0f:e1:bb:ff:e6:38:14: b1:2b:e4:b9:4a:0d:94:e0:c0:98:65:67:e3:8a:5d:bf:d2:c5: f7:1c:e6:c7:c4:56:22:05:96:5c:ac:17:0f:68:7a:ab:19:21: 09:3e:62:d7:e5:6b:8e:21:ec:7a:99:9c:3d:ef:b1:c3:18:29: 3a:ce:00:31 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUY2zDjXGqxUMj/OyZe6SRCuKkWiowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTkxNjU1MDFaFw0yNjA4MTgxNzAwMDFaMDMxMTAvBgNV BAMTKDhEOTBGODQ4RDlBN0ZFOTYzN0NERERDOEMzNDc5NDhFQzg1MkEwQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL4CasKyUg6LucghUV8cfWrMOh 5jTSH1DE1AIOgEEhNC8c24fAU/Ii4t70JWaOcUOzRbIDsfX2lyQNwmDY24DTXmDS K9RXTxAwpFFhZtI+kVXsUeqixRqTERJyVgBngM24ftKIn/aPeMYOCEwpU76mOenX TXMIeagol/jwfuCfzMAr7kUCPH9m6ldNzIw776+P+rIrYOOfkcC6PwLpW24MUs95 gEgh8R54W+parT/rzy5uzXXaXwSdH11q3cg6qjZSq5TrPSs+PaW7+22weUnw/7Qg Po7hbJUJYWV1xA/IHIwzxKp0cuvswEx27p4CEXw5UzpyS0v98FRd14A8UjPFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjZD4SNmn/pY3zd3Iw0eUjshSoMMwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtSjANBgkqhkiG 9w0BAQsFAAOCAQEAochqYBe2yMh8/EnSj/RAR3P7a9ERIWGSAIkMu72xRxa6kYAA kYIVoDJ3+b4d6667MQut1o0miMiEenvYlbnwZz7MusWEPFsVPlfCrDwek/JZa2Eq 7e0zZpWPFgFnyKI6PALmrc5K57UF/pRyrRoyli52nk8M0EopBT2mDo9rq6vM6dzN R+yhhS0C0ZhYOvXdQcEK5I8jbLF+AKr8O3jZ2DJ+Bwkfkt63w++uRbcAZz/q+D0m KMt7+qSrwRqzC/AP4bv/5jgUsSvkuUoNlODAmGVn44pdv9LF9xzmx8RWIgWWXKwX D2h6qxkhCT5i1+VrjiHsepmcPe+xwxgpOs4AMQ== -----END CERTIFICATE-----Generated at Sat Aug 23 21:15:29 2025 by rpki-client