$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37362e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e37362e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: X5jy5VzIopKMThtZkzTbzLShWD3aXUht7jnGIoGc1v4= Subject key identifier: A8:FB:F2:DF:39:96:1F:2B:B2:15:E7:28:1C:94:48:6C:EB:7D:2C:BE Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 72BA8CF2094D0E42277CA7007A7DFDADD9E7E6E0 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37362e302f32342d3234203d3e203233363935.roa Signing time: Tue 19 Aug 2025 17:00:01 +0000 ROA not before: Tue 19 Aug 2025 16:55:01 +0000 ROA not after: Tue 18 Aug 2026 17:00:01 +0000 asID: 23695 IP address blocks: 202.173.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:ba:8c:f2:09:4d:0e:42:27:7c:a7:00:7a:7d:fd:ad:d9:e7:e6:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 19 16:55:01 2025 GMT Not After : Aug 18 17:00:01 2026 GMT Subject: CN=A8FBF2DF39961F2BB215E7281C94486CEB7D2CBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d1:ce:71:41:cf:7c:7d:c0:9b:c9:e1:3c:f0: 76:74:a8:6c:84:1a:6b:94:5f:b3:35:b1:a0:c5:9d: a0:90:97:d5:2d:1a:30:ec:59:bf:14:d4:8a:34:d8: 27:a9:f3:61:a5:12:b2:8b:66:8a:1f:4f:77:40:7d: dc:07:0b:06:88:9f:38:da:0c:f7:7f:36:0f:f2:e9: 67:05:d0:91:e7:1c:2b:e1:f5:28:e6:b2:a8:53:4a: 33:9a:6f:6f:05:e9:a5:43:93:7d:28:ef:73:ac:ec: e4:d4:d6:fa:04:04:19:01:74:ab:b1:af:b3:56:1e: 70:04:e9:5c:95:ec:40:f2:6e:2f:2b:3a:e8:eb:f7: f4:b3:41:18:9b:3a:42:ee:ae:4b:60:d6:9f:e1:4c: 14:70:53:ed:3b:80:b6:61:71:98:38:52:37:ba:f1: 7b:6b:b5:5c:d7:9e:48:c0:ed:22:46:35:a0:48:44: 58:c1:92:35:16:12:83:c8:60:71:e7:16:ae:e1:e6: 27:54:86:ae:24:59:31:65:39:d0:44:0d:2a:52:92: 94:49:e0:6e:7f:fd:4a:60:05:bd:4c:4e:e3:25:aa: 92:c1:af:23:43:2c:d7:5b:0c:49:90:d9:5e:61:88: 18:a2:b1:e8:22:5f:25:69:9c:8c:18:43:44:a3:59: ce:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:FB:F2:DF:39:96:1F:2B:B2:15:E7:28:1C:94:48:6C:EB:7D:2C:BE X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37362e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.76.0/24 Signature Algorithm: sha256WithRSAEncryption 65:8d:5e:b2:db:f3:6d:76:38:30:57:2b:e9:b2:f1:6e:20:99: 47:08:a7:02:d7:fd:2d:10:db:df:f1:66:dd:76:34:2b:45:c0: 87:26:c8:3d:18:75:0c:d6:e5:e6:23:f2:12:f5:12:b4:70:b4: 42:d4:99:f9:46:13:94:e1:2a:d2:d2:20:90:8e:4e:29:19:f6: 7e:18:84:80:e5:76:2e:fd:11:e4:3d:ab:70:e0:6a:43:0d:1b: 27:32:06:99:30:fc:8e:e1:29:5c:74:c5:f0:d1:db:e5:e1:f9: c3:e1:68:df:d1:1e:b7:c5:9e:1b:ab:20:f5:4f:51:71:1d:c2: a2:48:b1:0c:cf:3d:25:cd:13:29:3b:7b:b9:6f:b6:80:86:32: 8d:1b:a5:85:bc:2f:0d:e1:6b:14:63:3c:38:ec:52:80:e6:6d: 60:20:5f:0a:b7:2c:49:15:9b:1b:19:55:8d:12:a6:16:a5:ee: c7:f7:65:fc:99:c3:cd:bd:c6:3d:d6:35:9d:54:5e:c4:50:50: 7b:79:c5:9d:e2:7d:91:f2:16:ba:e0:a0:10:55:97:49:46:89: d4:b7:6c:0f:3e:26:f1:0f:77:89:5c:e2:48:f7:40:ca:65:e9: dc:21:96:11:da:27:fe:75:f6:87:49:bd:c7:e6:cd:cb:c3:52: db:54:1f:6c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcrqM8glNDkInfKcAen39rdnn5uAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTkxNjU1MDFaFw0yNjA4MTgxNzAwMDFaMDMxMTAvBgNV BAMTKEE4RkJGMkRGMzk5NjFGMkJCMjE1RTcyODFDOTQ0ODZDRUI3RDJDQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt0c5xQc98fcCbyeE88HZ0qGyE GmuUX7M1saDFnaCQl9UtGjDsWb8U1Io02Cep82GlErKLZoofT3dAfdwHCwaInzja DPd/Ng/y6WcF0JHnHCvh9SjmsqhTSjOab28F6aVDk30o73Os7OTU1voEBBkBdKux r7NWHnAE6VyV7EDybi8rOujr9/SzQRibOkLurktg1p/hTBRwU+07gLZhcZg4Uje6 8XtrtVzXnkjA7SJGNaBIRFjBkjUWEoPIYHHnFq7h5idUhq4kWTFlOdBEDSpSkpRJ 4G5//UpgBb1MTuMlqpLBryNDLNdbDEmQ2V5hiBiisegiXyVpnIwYQ0SjWc5jAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqPvy3zmWHyuyFecoHJRIbOt9LL4wHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtTDANBgkqhkiG 9w0BAQsFAAOCAQEAZY1estvzbXY4MFcr6bLxbiCZRwinAtf9LRDb3/Fm3XY0K0XA hybIPRh1DNbl5iPyEvUStHC0QtSZ+UYTlOEq0tIgkI5OKRn2fhiEgOV2Lv0R5D2r cOBqQw0bJzIGmTD8juEpXHTF8NHb5eH5w+Fo39Eet8WeG6sg9U9RcR3CokixDM89 Jc0TKTt7uW+2gIYyjRulhbwvDeFrFGM8OOxSgOZtYCBfCrcsSRWbGxlVjRKmFqXu x/dl/JnDzb3GPdY1nVRexFBQe3nFneJ9kfIWuuCgEFWXSUaJ1LdsDz4m8Q93iVzi SPdAymXp3CGWEdon/nX2h0m9x+bNy8NS21QfbA== -----END CERTIFICATE-----Generated at Sun Aug 24 05:40:21 2025 by rpki-client