$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38312e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e38312e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: 3yHj4lXLINuzyHkwTxJmt8yGObuCgxfBF7xbnpVP4Bw= Subject key identifier: 95:9A:35:5E:5A:6E:95:C6:5F:B9:F7:A5:9A:E8:7E:21:A7:C5:F0:5D Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 53A79C6E5A6FFB016A2CC64A8EB7D40E6925F5B1 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38312e302f32342d3234203d3e203233363935.roa Signing time: Tue 12 Aug 2025 04:02:24 +0000 ROA not before: Tue 12 Aug 2025 03:57:24 +0000 ROA not after: Tue 11 Aug 2026 04:02:24 +0000 asID: 23695 IP address blocks: 202.173.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:a7:9c:6e:5a:6f:fb:01:6a:2c:c6:4a:8e:b7:d4:0e:69:25:f5:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 12 03:57:24 2025 GMT Not After : Aug 11 04:02:24 2026 GMT Subject: CN=959A355E5A6E95C65FB9F7A59AE87E21A7C5F05D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:91:32:aa:da:7f:b6:9f:25:af:ec:bb:b6:0e: 0d:a2:d4:64:68:84:d6:20:4d:77:90:e0:22:2d:1f: ab:9a:d5:c8:92:f2:c0:e4:8c:ba:e6:76:7b:40:10: 36:76:24:b3:ab:36:25:64:69:ce:eb:0c:26:fa:7c: ae:ec:a0:5c:12:b6:d5:f0:ec:85:39:41:b5:cc:61: e0:fc:f3:45:cd:0e:b6:60:26:4c:f6:9b:47:cf:04: d5:f1:19:c4:f9:8c:1a:7e:e9:a8:0b:13:74:d9:99: 16:c7:ab:b2:2a:2f:6d:0f:2d:85:99:4e:f0:3d:3d: f1:cf:73:e5:4e:40:46:3e:3f:8d:70:c2:86:dd:17: 74:58:da:52:68:eb:c8:43:3e:b5:78:25:b9:f8:76: 82:95:ac:b0:41:43:a4:8a:dc:7b:13:e2:58:95:da: 64:0d:ae:01:4f:08:85:1b:5b:5f:a6:f1:8e:e6:97: 70:c7:af:bd:d0:1a:8d:aa:44:7d:57:3f:3d:a8:2a: 05:62:b2:de:8e:52:17:25:02:1b:ca:0b:de:b5:87: c9:bd:5c:36:bc:91:32:cb:02:2f:a9:7e:f0:27:bf: 93:66:a6:fd:98:16:0c:76:92:30:d1:a9:48:b8:51: 42:65:4e:2e:0a:81:48:6d:06:78:f1:a9:bd:d0:39: f2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:9A:35:5E:5A:6E:95:C6:5F:B9:F7:A5:9A:E8:7E:21:A7:C5:F0:5D X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38312e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.81.0/24 Signature Algorithm: sha256WithRSAEncryption c6:cf:3b:1c:54:ee:9e:da:21:56:27:c2:9b:76:2d:ac:a6:5f: ec:5a:f9:84:03:25:4a:e2:cb:b7:6b:6f:2c:98:4a:cf:5b:d4: 41:60:58:a2:ce:08:11:8a:c4:d9:43:b7:3c:c8:ab:28:ea:2f: fc:86:64:95:bc:79:7f:ed:f0:a8:07:91:3a:e5:7e:de:e2:a8: f9:1c:9f:db:59:57:87:d9:7a:00:da:6d:a0:d4:f7:d6:40:3f: e4:54:f1:2f:75:9a:9b:94:63:2c:b8:8f:97:59:ab:e2:ee:47: 7d:a1:ae:54:bd:f4:ab:18:b9:11:1d:20:eb:7b:22:46:e8:e4: c9:74:88:61:3a:2d:26:3c:9f:8a:ab:c4:0e:a4:dd:6c:5c:a5: f7:95:3a:cc:f4:04:15:ff:2f:bd:64:d6:28:a8:c6:5a:a7:70: 1c:ab:56:e2:5d:56:c4:9b:91:01:37:72:3d:e4:cf:61:89:d3: 1d:91:ac:94:6a:d2:7c:c4:19:e3:2d:9b:ca:c1:a9:9f:04:80: 2a:23:93:13:90:48:a6:0a:27:39:01:43:54:43:75:b7:cf:2c: 7c:50:47:54:08:2a:1c:5f:79:f1:12:21:8d:0a:52:50:49:07: e1:cf:f3:68:fe:24:8a:67:5a:94:66:88:98:2b:28:c7:94:1b: ee:59:4f:03 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUU6ecblpv+wFqLMZKjrfUDmkl9bEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTIwMzU3MjRaFw0yNjA4MTEwNDAyMjRaMDMxMTAvBgNV BAMTKDk1OUEzNTVFNUE2RTk1QzY1RkI5RjdBNTlBRTg3RTIxQTdDNUYwNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlkTKq2n+2nyWv7Lu2Dg2i1GRo hNYgTXeQ4CItH6ua1ciS8sDkjLrmdntAEDZ2JLOrNiVkac7rDCb6fK7soFwSttXw 7IU5QbXMYeD880XNDrZgJkz2m0fPBNXxGcT5jBp+6agLE3TZmRbHq7IqL20PLYWZ TvA9PfHPc+VOQEY+P41wwobdF3RY2lJo68hDPrV4Jbn4doKVrLBBQ6SK3HsT4liV 2mQNrgFPCIUbW1+m8Y7ml3DHr73QGo2qRH1XPz2oKgVist6OUhclAhvKC961h8m9 XDa8kTLLAi+pfvAnv5Nmpv2YFgx2kjDRqUi4UUJlTi4KgUhtBnjxqb3QOfLfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlZo1XlpulcZfufelmuh+IafF8F0wHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzODMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtUTANBgkqhkiG 9w0BAQsFAAOCAQEAxs87HFTuntohVifCm3YtrKZf7Fr5hAMlSuLLt2tvLJhKz1vU QWBYos4IEYrE2UO3PMirKOov/IZklbx5f+3wqAeROuV+3uKo+Ryf21lXh9l6ANpt oNT31kA/5FTxL3Wam5RjLLiPl1mr4u5HfaGuVL30qxi5ER0g63siRujkyXSIYTot JjyfiqvEDqTdbFyl95U6zPQEFf8vvWTWKKjGWqdwHKtW4l1WxJuRATdyPeTPYYnT HZGslGrSfMQZ4y2bysGpnwSAKiOTE5BIpgonOQFDVEN1t88sfFBHVAgqHF958RIh jQpSUEkH4c/zaP4kimdalGaImCsox5Qb7llPAw== -----END CERTIFICATE-----Generated at Sat Aug 23 19:23:52 2025 by rpki-client