$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38332e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e38332e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: +q3wlg13BeY7XP8EgfGzrDoOCR+6sfClfQe2l9amwig= Subject key identifier: A9:EA:AF:81:7A:D9:11:1B:52:2B:42:A5:1B:1E:0A:16:84:A3:DD:80 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 43C6CF8CFBB2CFF30E6284E769164789EA88EC49 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38332e302f32342d3234203d3e203233363935.roa Signing time: Tue 19 Aug 2025 17:00:01 +0000 ROA not before: Tue 19 Aug 2025 16:55:01 +0000 ROA not after: Tue 18 Aug 2026 17:00:01 +0000 asID: 23695 IP address blocks: 202.173.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:c6:cf:8c:fb:b2:cf:f3:0e:62:84:e7:69:16:47:89:ea:88:ec:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 19 16:55:01 2025 GMT Not After : Aug 18 17:00:01 2026 GMT Subject: CN=A9EAAF817AD9111B522B42A51B1E0A1684A3DD80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:59:ad:62:13:3e:59:6f:98:98:99:a4:47:67: bd:d3:24:94:6e:dd:41:68:4d:37:45:02:cb:85:ef: f1:87:1b:68:34:c6:40:6c:2d:a8:a6:d1:45:0a:af: 7f:37:3e:b1:e1:bb:0d:af:78:57:0c:c4:1f:00:f2: 4a:05:6d:7f:30:69:1f:df:f4:a8:ab:26:15:b7:86: e1:90:71:d4:09:eb:6f:d6:78:03:8b:d9:66:ed:a9: bd:5b:19:66:d0:b1:17:37:cf:02:d6:11:d8:70:da: 89:c3:7a:1c:0b:a1:8a:2a:76:e9:98:b3:93:00:ca: ff:ed:be:a1:87:43:ef:7c:c3:c9:bf:a4:08:0a:b3: 76:0d:f9:47:cf:f3:b5:0a:22:99:d2:12:eb:d3:09: a4:3e:68:03:19:a7:13:1f:35:b1:6a:40:eb:58:b5: 58:3e:b8:f6:69:bb:b9:05:09:ed:1a:59:dc:2f:25: 78:9b:f2:7b:b3:d0:eb:a3:a3:57:aa:cd:f0:8a:95: dd:00:d3:1b:b3:49:72:51:59:b3:fd:b9:e9:59:32: 65:76:a9:25:56:1b:64:df:a4:46:3b:2a:08:48:52: 33:52:5f:73:01:eb:23:5a:7f:31:9d:f3:48:44:02: 16:01:02:e3:9b:df:de:ae:8a:78:a9:a9:11:03:d7: 8e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:EA:AF:81:7A:D9:11:1B:52:2B:42:A5:1B:1E:0A:16:84:A3:DD:80 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38332e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.83.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:6b:65:55:16:9d:1b:9d:c6:00:2c:c7:c3:a6:72:fd:b2:02: 56:2c:54:d4:51:fd:d0:16:8e:13:a1:05:6f:c9:99:4f:82:b6: a9:36:f3:8e:70:67:6b:6f:8e:4a:b4:8e:0b:a9:72:a7:2e:3a: ed:f0:1b:89:df:23:5e:e8:ca:6e:80:ac:ed:c1:c0:bb:a7:00: 31:b3:f6:0b:ef:e6:02:51:57:d8:02:46:ce:23:74:5f:57:b1: a7:48:50:0e:11:89:09:91:4b:25:5e:c7:95:e6:15:d7:6e:d0: 42:4b:35:68:50:e4:de:f0:f3:5d:7c:88:9e:2c:e9:18:63:22: 4f:91:b6:42:d1:62:65:21:16:42:b5:f4:3c:25:94:44:4e:4d: 65:90:c1:d4:0a:6f:24:e5:79:c8:19:57:2a:74:f1:48:88:9a: b8:d2:95:a9:6b:08:b9:ab:b7:cf:f0:4b:f2:3e:b8:2f:4b:29: bb:94:06:89:0e:91:72:e1:50:e0:d8:91:df:d4:76:d5:7f:92: 5a:6c:40:5d:2b:2d:52:86:e2:d6:f0:63:61:75:f3:2d:5c:04: b4:6d:7d:9f:ef:2f:3a:46:15:0b:de:80:a7:d4:58:31:95:b2: 0c:bf:ad:9c:3e:8c:45:07:71:d2:3c:5a:bc:51:97:a4:0a:ac: bc:63:12:36 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQ8bPjPuyz/MOYoTnaRZHieqI7EkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTkxNjU1MDFaFw0yNjA4MTgxNzAwMDFaMDMxMTAvBgNV BAMTKEE5RUFBRjgxN0FEOTExMUI1MjJCNDJBNTFCMUUwQTE2ODRBM0REODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQWa1iEz5Zb5iYmaRHZ73TJJRu 3UFoTTdFAsuF7/GHG2g0xkBsLaim0UUKr383PrHhuw2veFcMxB8A8koFbX8waR/f 9KirJhW3huGQcdQJ62/WeAOL2Wbtqb1bGWbQsRc3zwLWEdhw2onDehwLoYoqdumY s5MAyv/tvqGHQ+98w8m/pAgKs3YN+UfP87UKIpnSEuvTCaQ+aAMZpxMfNbFqQOtY tVg+uPZpu7kFCe0aWdwvJXib8nuz0Oujo1eqzfCKld0A0xuzSXJRWbP9uelZMmV2 qSVWG2TfpEY7KghIUjNSX3MB6yNafzGd80hEAhYBAuOb396uinipqRED147RAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqeqvgXrZERtSK0KlGx4KFoSj3YAwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtUzANBgkqhkiG 9w0BAQsFAAOCAQEADmtlVRadG53GACzHw6Zy/bICVixU1FH90BaOE6EFb8mZT4K2 qTbzjnBna2+OSrSOC6lypy467fAbid8jXujKboCs7cHAu6cAMbP2C+/mAlFX2AJG ziN0X1exp0hQDhGJCZFLJV7HleYV127QQks1aFDk3vDzXXyInizpGGMiT5G2QtFi ZSEWQrX0PCWURE5NZZDB1ApvJOV5yBlXKnTxSIiauNKVqWsIuau3z/BL8j64L0sp u5QGiQ6RcuFQ4NiR39R21X+SWmxAXSstUobi1vBjYXXzLVwEtG19n+8vOkYVC96A p9RYMZWyDL+tnD6MRQdx0jxavFGXpAqsvGMSNg== -----END CERTIFICATE-----Generated at Sat Aug 23 21:20:11 2025 by rpki-client