$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37382e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e37382e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: zhJMlvXTxLuBFeVwFK4r4fNyStbf/Ql6Yg1ubq1FG9U= Subject key identifier: DA:6C:EE:DD:DE:1E:BE:2A:1E:C1:40:62:79:38:47:B5:69:92:46:F3 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 722321BC82FE301C989CDE97766FF2F78FC8929D Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37382e302f32342d3234203d3e203233363935.roa Signing time: Tue 19 Aug 2025 16:00:02 +0000 ROA not before: Tue 19 Aug 2025 15:55:02 +0000 ROA not after: Tue 18 Aug 2026 16:00:02 +0000 asID: 23695 IP address blocks: 202.173.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:23:21:bc:82:fe:30:1c:98:9c:de:97:76:6f:f2:f7:8f:c8:92:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 19 15:55:02 2025 GMT Not After : Aug 18 16:00:02 2026 GMT Subject: CN=DA6CEEDDDE1EBE2A1EC14062793847B5699246F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c8:9d:da:ee:5a:94:8d:d0:3e:11:ba:bd:58: ec:e8:c1:8c:20:a4:05:39:e0:82:10:77:10:1b:08: 86:e7:0d:77:64:c4:64:b1:20:f0:72:a7:29:b0:64: 72:71:5b:e6:2b:1a:de:cc:da:82:17:fa:47:bb:25: 13:7c:59:92:4a:4a:ae:b7:c9:1e:d3:9f:da:d2:3b: cc:19:34:c2:dc:ef:2c:c6:e9:8e:f1:59:53:59:b0: f5:4a:65:fc:c9:60:31:b7:32:4f:cf:1e:76:ac:ce: 21:5d:23:33:61:d1:aa:00:7f:d4:7f:58:20:e8:40: 19:d7:c9:d4:59:9a:b5:a5:ff:4b:73:6d:80:2b:97: 5e:73:82:03:5e:00:1d:df:9d:1b:71:ee:47:30:8e: 5e:8e:e1:33:b4:9d:de:3d:f9:d8:e6:1d:93:37:f6: 8c:e5:f0:a3:b0:e5:52:2a:81:61:b1:61:8f:8f:0a: 72:44:81:2e:40:a7:85:25:e9:7f:76:a7:19:16:1a: f2:8a:21:83:8f:93:6c:66:2a:10:d2:aa:f7:81:61: d7:67:61:8e:66:89:1d:57:3b:7f:ba:c3:21:e8:91: 79:3e:89:23:17:38:23:94:d4:9a:5b:61:8e:80:d1: 82:c6:3a:d2:a6:4b:14:39:aa:cb:74:0a:b2:d1:ef: 67:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:6C:EE:DD:DE:1E:BE:2A:1E:C1:40:62:79:38:47:B5:69:92:46:F3 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37382e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.78.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:8a:39:be:47:5b:d0:de:e7:8f:79:75:21:de:28:0b:33:ce: fc:4e:22:93:66:60:10:0f:8d:55:1b:c9:7e:fa:45:93:06:c4: b5:aa:0c:6c:60:69:b8:21:28:b4:3b:bd:1e:73:78:c5:de:55: 7e:25:0f:7f:6d:40:e5:c4:ba:05:3f:1d:ee:7c:d6:f1:d6:82: b2:17:36:f9:56:f8:54:af:03:23:78:37:c0:94:4a:83:cf:56: d9:87:d3:7d:bf:0a:c5:fa:98:84:19:04:cb:22:fa:40:4f:4a: 3c:ec:97:c8:c2:d0:45:24:bd:4f:b1:46:03:e2:4a:3f:56:ac: 83:ba:8c:05:3f:3a:27:4a:8f:7e:e0:e4:62:86:83:e8:0a:1f: e4:74:30:9f:8a:c9:08:52:fb:68:38:7c:e8:d3:23:bd:d2:9a: a8:46:45:4a:ab:e0:7d:ab:18:c2:69:46:a1:05:6d:c8:b7:0a: 85:1a:64:8d:1d:b3:22:e6:80:dc:19:45:c3:32:d7:8f:ac:b7: a4:b5:1d:d1:33:1d:54:d0:8c:1a:f5:06:e3:b8:8a:43:56:56: 3e:30:07:8f:12:57:f4:fb:f9:84:70:b2:e8:d0:4d:ec:15:46: 05:d1:25:8b:b3:bd:98:db:e2:62:75:29:f4:07:b3:75:24:0a: ae:7d:eb:17 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUciMhvIL+MByYnN6Xdm/y94/Ikp0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTkxNTU1MDJaFw0yNjA4MTgxNjAwMDJaMDMxMTAvBgNV BAMTKERBNkNFRUREREUxRUJFMkExRUMxNDA2Mjc5Mzg0N0I1Njk5MjQ2RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAyJ3a7lqUjdA+Ebq9WOzowYwg pAU54IIQdxAbCIbnDXdkxGSxIPBypymwZHJxW+YrGt7M2oIX+ke7JRN8WZJKSq63 yR7Tn9rSO8wZNMLc7yzG6Y7xWVNZsPVKZfzJYDG3Mk/PHnasziFdIzNh0aoAf9R/ WCDoQBnXydRZmrWl/0tzbYArl15zggNeAB3fnRtx7kcwjl6O4TO0nd49+djmHZM3 9ozl8KOw5VIqgWGxYY+PCnJEgS5Ap4Ul6X92pxkWGvKKIYOPk2xmKhDSqveBYddn YY5miR1XO3+6wyHokXk+iSMXOCOU1JpbYY6A0YLGOtKmSxQ5qst0CrLR72fBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2mzu3d4evioewUBieThHtWmSRvMwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtTjANBgkqhkiG 9w0BAQsFAAOCAQEAK4o5vkdb0N7nj3l1Id4oCzPO/E4ik2ZgEA+NVRvJfvpFkwbE taoMbGBpuCEotDu9HnN4xd5VfiUPf21A5cS6BT8d7nzW8daCshc2+Vb4VK8DI3g3 wJRKg89W2YfTfb8KxfqYhBkEyyL6QE9KPOyXyMLQRSS9T7FGA+JKP1asg7qMBT86 J0qPfuDkYoaD6Aof5HQwn4rJCFL7aDh86NMjvdKaqEZFSqvgfasYwmlGoQVtyLcK hRpkjR2zIuaA3BlFwzLXj6y3pLUd0TMdVNCMGvUG47iKQ1ZWPjAHjxJX9Pv5hHCy 6NBN7BVGBdEli7O9mNviYnUp9AezdSQKrn3rFw== -----END CERTIFICATE-----Generated at Sun Aug 24 04:02:33 2025 by rpki-client