$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37392e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e37392e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: nAoSDJuqF6hbVEgVPLS26WtbrrypCt6JFjNgyc3rJL8= Subject key identifier: 2E:E3:DE:4F:86:DE:77:83:50:28:C7:20:E7:5E:71:74:AE:56:6C:F2 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 18B192A39845E6569FCF03DE755CBB40C3F6B7C5 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37392e302f32342d3234203d3e203233363935.roa Signing time: Tue 19 Aug 2025 17:00:01 +0000 ROA not before: Tue 19 Aug 2025 16:55:01 +0000 ROA not after: Tue 18 Aug 2026 17:00:01 +0000 asID: 23695 IP address blocks: 202.173.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 10:15:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:b1:92:a3:98:45:e6:56:9f:cf:03:de:75:5c:bb:40:c3:f6:b7:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 19 16:55:01 2025 GMT Not After : Aug 18 17:00:01 2026 GMT Subject: CN=2EE3DE4F86DE77835028C720E75E7174AE566CF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:94:6f:e9:43:4f:cd:a0:9e:78:45:87:48:f2: 6a:ce:4b:66:dd:55:e2:93:11:40:1c:16:c8:aa:25: 0e:f3:c5:f7:60:84:5a:8d:ea:e1:61:5d:a0:c8:75: 08:86:02:d5:bf:f4:3c:c8:05:9a:3a:88:c7:c5:19: 51:84:8f:38:16:21:0b:a0:e9:fd:60:b1:4d:70:fa: 6b:7d:51:29:36:9f:cd:1a:89:a3:b0:72:51:eb:56: b4:5f:af:65:39:23:b2:e8:c4:06:82:e9:a8:91:14: 18:af:27:88:20:e1:21:ab:40:82:3d:56:b4:bf:74: 69:00:8c:59:6a:9c:ed:32:4c:02:79:52:e3:87:8e: 21:5c:50:94:c4:61:8a:40:59:3b:71:70:7c:7d:77: 5b:ec:f7:50:7c:f5:10:74:f4:9b:c9:45:cd:f5:7f: 54:ca:f4:5e:80:c7:29:f5:43:59:76:05:03:dc:06: 92:42:49:b7:13:02:1f:5b:fd:38:57:a7:ee:26:6b: ce:ce:ac:86:dc:49:0b:6f:b9:0c:cf:31:c3:2a:8c: ea:51:41:1e:2f:b2:b2:be:65:1e:7d:e6:65:76:ad: ce:d9:07:72:c9:d4:0f:b8:7c:f6:fd:f9:b4:cd:0f: 98:f9:9e:31:57:a3:e4:9e:d5:37:08:d2:5c:f8:9a: ad:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:E3:DE:4F:86:DE:77:83:50:28:C7:20:E7:5E:71:74:AE:56:6C:F2 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37392e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.79.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:ae:9a:95:d2:7e:6d:ea:bc:5d:3e:d3:d3:4f:fe:e8:53:13: c3:f2:67:7a:08:0c:4f:73:35:c1:40:ef:66:f5:98:46:ef:7c: 50:e3:4f:af:0a:09:c1:8e:de:e9:f5:d7:bf:f7:e6:67:1d:98: dd:24:93:9c:e8:67:87:c5:fc:fd:4d:74:30:29:de:18:8b:02: 30:17:3e:c6:bd:ae:aa:d8:2f:6e:48:db:f6:7c:45:d5:45:b9: af:63:0d:36:ed:7a:7d:2b:be:02:2e:62:2f:6a:a0:e4:94:13: 37:06:a5:e1:12:67:90:ce:a0:b8:4e:2a:d5:91:65:a4:32:c0: 07:34:51:9a:32:b9:d2:8f:5f:36:bc:a7:24:68:1a:3e:aa:03: ea:d4:6a:26:6d:cb:1e:fc:f3:fa:d0:52:e1:f8:07:8f:43:08: bd:19:56:c8:a9:cf:3e:57:40:ee:a4:ae:77:6e:87:d5:f2:9c: bb:95:10:29:1a:57:3e:7d:b5:ae:34:01:49:4a:e8:85:29:ab: f2:0b:d9:82:a0:b4:b2:e4:2f:6c:51:58:04:66:d8:93:b2:47: c8:2c:d0:78:ef:e2:23:17:61:c2:7c:28:c4:40:e5:6d:d2:93: 3c:69:db:9d:07:b6:4d:b9:d7:4c:8b:7d:4f:6d:00:23:55:6b: 08:9f:f3:ac -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGLGSo5hF5lafzwPedVy7QMP2t8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTkxNjU1MDFaFw0yNjA4MTgxNzAwMDFaMDMxMTAvBgNV BAMTKDJFRTNERTRGODZERTc3ODM1MDI4QzcyMEU3NUU3MTc0QUU1NjZDRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0lG/pQ0/NoJ54RYdI8mrOS2bd VeKTEUAcFsiqJQ7zxfdghFqN6uFhXaDIdQiGAtW/9DzIBZo6iMfFGVGEjzgWIQug 6f1gsU1w+mt9USk2n80aiaOwclHrVrRfr2U5I7LoxAaC6aiRFBivJ4gg4SGrQII9 VrS/dGkAjFlqnO0yTAJ5UuOHjiFcUJTEYYpAWTtxcHx9d1vs91B89RB09JvJRc31 f1TK9F6Axyn1Q1l2BQPcBpJCSbcTAh9b/ThXp+4ma87OrIbcSQtvuQzPMcMqjOpR QR4vsrK+ZR595mV2rc7ZB3LJ1A+4fPb9+bTND5j5njFXo+Se1TcI0lz4mq0vAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULuPeT4bed4NQKMcg515xdK5WbPIwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtTzANBgkqhkiG 9w0BAQsFAAOCAQEAK66aldJ+beq8XT7T00/+6FMTw/JneggMT3M1wUDvZvWYRu98 UONPrwoJwY7e6fXXv/fmZx2Y3SSTnOhnh8X8/U10MCneGIsCMBc+xr2uqtgvbkjb 9nxF1UW5r2MNNu16fSu+Ai5iL2qg5JQTNwal4RJnkM6guE4q1ZFlpDLABzRRmjK5 0o9fNrynJGgaPqoD6tRqJm3LHvzz+tBS4fgHj0MIvRlWyKnPPldA7qSud26H1fKc u5UQKRpXPn21rjQBSUrohSmr8gvZgqC0suQvbFFYBGbYk7JHyCzQeO/iIxdhwnwo xEDlbdKTPGnbnQe2TbnXTIt9T20AI1VrCJ/zrA== -----END CERTIFICATE-----Generated at Sun Aug 24 07:37:59 2025 by rpki-client