$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37372e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e37372e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: DT1voxU1N/hSTql3ltjbouW8VYAmulvadfX76qaEZ6s= Subject key identifier: 2C:C7:B0:F3:4B:5E:8A:9D:5A:51:33:0B:77:19:02:3A:9F:86:39:E9 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 19082D595F4D7C712B52ECB58F01850205E32C44 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37372e302f32342d3234203d3e203233363935.roa Signing time: Tue 19 Aug 2025 16:00:01 +0000 ROA not before: Tue 19 Aug 2025 15:55:01 +0000 ROA not after: Tue 18 Aug 2026 16:00:01 +0000 asID: 23695 IP address blocks: 202.173.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:08:2d:59:5f:4d:7c:71:2b:52:ec:b5:8f:01:85:02:05:e3:2c:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 19 15:55:01 2025 GMT Not After : Aug 18 16:00:01 2026 GMT Subject: CN=2CC7B0F34B5E8A9D5A51330B7719023A9F8639E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:24:f0:04:af:2b:83:e7:75:52:7b:41:c6:2a: d8:30:11:9c:a5:02:eb:5a:6d:97:d8:a2:3f:80:22: ef:d2:30:55:c2:e9:4d:36:16:80:ef:06:e0:3e:05: d1:04:0f:99:f6:84:0f:d3:65:1c:f3:c1:02:e6:5b: 04:12:e1:2e:5e:ec:fc:3e:85:14:6e:e3:97:59:a7: 39:d9:20:13:9f:74:1d:5f:d9:f0:3f:3a:e5:05:4e: 2a:d6:27:0d:8e:0b:15:d5:5c:90:08:33:90:21:5b: 62:da:6f:fa:33:e0:7b:74:fd:69:0e:82:15:9e:6a: f4:e1:1e:ab:cb:d2:70:68:95:b9:b8:4d:73:44:82: 67:d6:1e:e4:ae:fb:a2:21:b0:81:aa:1e:af:6d:68: 95:5c:15:45:43:46:fc:14:94:e1:10:42:73:00:38: 17:0c:52:ff:45:9d:d1:be:e3:36:35:fd:0d:6b:16: 74:d3:a3:69:1a:d6:54:9c:12:75:7d:96:7c:65:f3: 94:2c:fa:af:7d:91:5c:82:48:43:93:40:24:f6:38: 18:4a:52:ac:44:5b:11:11:58:74:bb:fe:57:35:d3: d2:d4:ff:b7:d1:8b:a0:52:c8:8f:33:40:e5:cc:65: 99:2c:7d:9e:7d:44:d7:5e:2d:f2:77:f1:8e:5d:bd: 2a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:C7:B0:F3:4B:5E:8A:9D:5A:51:33:0B:77:19:02:3A:9F:86:39:E9 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37372e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.77.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:c9:3f:77:59:9b:7c:42:b0:fa:49:f0:ff:07:bc:ff:f4:90: 13:b4:f8:68:b4:82:99:d3:e1:0a:2a:ef:d2:59:74:1e:dd:4d: 96:fb:17:7d:81:d2:71:40:43:72:1f:c4:12:14:88:02:6f:74: 03:d4:5f:51:54:94:86:d9:03:49:89:40:4e:f7:57:57:b0:9b: 5c:4c:5b:6d:1a:c2:5e:0d:07:b6:ca:40:c8:d7:db:d9:f8:51: 9a:0d:7d:e5:b8:bc:72:b4:11:4f:d5:20:29:b5:8f:e6:3e:ed: bf:22:aa:a8:61:cd:e7:c2:ae:f5:8b:26:70:7a:3f:d5:24:6c: 3d:8d:9f:83:12:b0:c2:b6:db:19:5d:6d:4f:b4:ff:ec:4f:5a: 6d:91:3e:57:9f:cd:cd:e2:3e:6f:da:97:da:9d:24:1a:d0:b6: e7:db:ce:1f:35:55:ba:92:bc:6a:06:a1:4a:4b:f2:19:6f:7c: 3e:a4:a6:90:84:4c:9a:e5:f7:8b:03:17:36:e5:1b:5a:c9:a8: d1:82:d2:f4:c5:7e:ab:95:97:fb:89:c7:88:2d:cb:00:7b:d0: 91:28:c0:64:00:93:8c:03:b1:e4:5c:88:b8:9c:de:6c:dc:7e: 0d:4b:06:d2:81:5b:fd:71:cf:7e:ba:5b:4d:50:8b:12:bf:90: f9:8b:54:36 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGQgtWV9NfHErUuy1jwGFAgXjLEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTkxNTU1MDFaFw0yNjA4MTgxNjAwMDFaMDMxMTAvBgNV BAMTKDJDQzdCMEYzNEI1RThBOUQ1QTUxMzMwQjc3MTkwMjNBOUY4NjM5RTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4JPAEryuD53VSe0HGKtgwEZyl AutabZfYoj+AIu/SMFXC6U02FoDvBuA+BdEED5n2hA/TZRzzwQLmWwQS4S5e7Pw+ hRRu45dZpznZIBOfdB1f2fA/OuUFTirWJw2OCxXVXJAIM5AhW2Lab/oz4Ht0/WkO ghWeavThHqvL0nBolbm4TXNEgmfWHuSu+6IhsIGqHq9taJVcFUVDRvwUlOEQQnMA OBcMUv9FndG+4zY1/Q1rFnTTo2ka1lScEnV9lnxl85Qs+q99kVyCSEOTQCT2OBhK UqxEWxERWHS7/lc109LU/7fRi6BSyI8zQOXMZZksfZ59RNdeLfJ38Y5dvSopAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULMew80teip1aUTMLdxkCOp+GOekwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtTTANBgkqhkiG 9w0BAQsFAAOCAQEAb8k/d1mbfEKw+knw/we8//SQE7T4aLSCmdPhCirv0ll0Ht1N lvsXfYHScUBDch/EEhSIAm90A9RfUVSUhtkDSYlATvdXV7CbXExbbRrCXg0HtspA yNfb2fhRmg195bi8crQRT9UgKbWP5j7tvyKqqGHN58Ku9YsmcHo/1SRsPY2fgxKw wrbbGV1tT7T/7E9abZE+V5/NzeI+b9qX2p0kGtC259vOHzVVupK8agahSkvyGW98 PqSmkIRMmuX3iwMXNuUbWsmo0YLS9MV+q5WX+4nHiC3LAHvQkSjAZACTjAOx5FyI uJzebNx+DUsG0oFb/XHPfrpbTVCLEr+Q+YtUNg== -----END CERTIFICATE-----Generated at Sun Aug 24 01:20:12 2025 by rpki-client