$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38342e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e38342e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: ebTZrvCC33wSXgS/vmMuYEvFlyItzY4A65tpm7b8XjA= Subject key identifier: 31:62:13:E1:C1:11:EB:25:C7:1C:8E:A3:FE:51:09:F3:96:FE:E6:11 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 7DB49E11D5A586D069D0A6616027DE07198BEC08 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38342e302f32342d3234203d3e203233363935.roa Signing time: Tue 19 Aug 2025 16:00:01 +0000 ROA not before: Tue 19 Aug 2025 15:55:01 +0000 ROA not after: Tue 18 Aug 2026 16:00:01 +0000 asID: 23695 IP address blocks: 202.173.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:b4:9e:11:d5:a5:86:d0:69:d0:a6:61:60:27:de:07:19:8b:ec:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 19 15:55:01 2025 GMT Not After : Aug 18 16:00:01 2026 GMT Subject: CN=316213E1C111EB25C71C8EA3FE5109F396FEE611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9d:59:26:49:5f:7b:b9:9b:c9:70:d4:44:e5: 47:88:5b:13:b8:2d:a1:16:fa:74:97:37:b8:4b:47: fd:03:f8:ef:09:0b:53:3e:f0:b6:7d:e8:b4:e6:b3: a5:1f:3e:9e:75:d4:ef:88:7c:4c:f3:0c:ba:3a:55: 4e:8d:a5:66:59:4b:83:30:0d:f1:3e:be:b0:8e:15: 30:00:f4:b9:f8:a8:46:91:1e:fe:f5:78:ab:7d:73: d2:fc:fa:e9:d6:06:7d:a1:08:1d:bb:92:d6:d6:13: 6c:94:98:27:6d:f0:3e:fe:89:88:8a:2f:a2:f0:2d: 32:a7:3a:84:7c:8b:f8:2c:69:0e:e1:1d:c2:bc:55: 5b:ef:b9:20:8f:10:07:f0:10:7a:1a:75:1e:35:2c: cf:30:b2:db:2e:14:d7:2d:50:14:dd:00:f1:d5:eb: dd:0c:78:1b:0c:21:42:c7:65:8a:74:51:5b:8f:bf: 30:d8:49:14:9f:ca:d7:dc:b4:55:d4:8c:42:02:e5: e1:4c:43:ba:93:b5:87:ad:91:d6:90:41:0c:fc:b9: ff:a6:92:70:a8:df:ed:a2:96:f5:2a:c1:db:a5:8e: c1:08:6b:cc:0b:65:aa:b0:ee:a6:7b:db:ca:4d:fe: e9:73:e0:53:dd:38:9b:90:ab:32:fe:01:a9:ec:44: b0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:62:13:E1:C1:11:EB:25:C7:1C:8E:A3:FE:51:09:F3:96:FE:E6:11 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38342e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.84.0/24 Signature Algorithm: sha256WithRSAEncryption cd:f3:27:94:88:0b:55:e3:7a:0d:18:3d:29:79:f6:33:6d:fc: f2:80:d5:63:fb:05:76:42:94:21:69:6a:54:03:b0:a6:d6:a5: ea:c4:d2:2b:1c:3a:cf:dc:c8:83:60:04:b5:48:3c:25:08:7c: 2d:70:d4:40:04:6a:55:5a:fa:52:11:fe:5f:a2:3e:67:4f:2b: 7b:26:40:a3:a7:36:f2:e4:6c:99:53:55:ac:59:98:00:cb:13: 47:7f:84:63:f5:b9:e9:49:c5:05:18:18:30:00:d0:18:1e:15: 47:21:4f:59:dd:33:f0:4c:8f:ee:8c:bc:40:da:f0:4d:6d:89: a0:f8:33:20:4b:86:d9:6f:80:b2:c9:00:32:39:d2:a7:c0:d9: bf:7a:9e:9b:c2:cf:36:da:6a:8a:44:ca:b3:57:e5:77:3e:6c: a4:c0:e7:87:e9:ba:6d:a4:8f:07:9e:a3:ee:4d:0a:4e:f0:4f: e9:3b:3f:cf:f5:36:75:20:fe:c3:8c:9a:ee:a4:9f:59:d8:41: fc:ab:df:d8:10:48:a4:24:9b:6a:ee:b3:77:43:7d:91:08:0d: 81:66:85:74:06:fa:78:d5:1a:4d:ec:13:b1:1c:33:c5:e9:42: e0:a1:24:7a:91:aa:ff:1c:20:ec:27:d9:2d:ed:b3:5f:c7:56: c2:ea:b2:f7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfbSeEdWlhtBp0KZhYCfeBxmL7AgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTkxNTU1MDFaFw0yNjA4MTgxNjAwMDFaMDMxMTAvBgNV BAMTKDMxNjIxM0UxQzExMUVCMjVDNzFDOEVBM0ZFNTEwOUYzOTZGRUU2MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDnVkmSV97uZvJcNRE5UeIWxO4 LaEW+nSXN7hLR/0D+O8JC1M+8LZ96LTms6UfPp511O+IfEzzDLo6VU6NpWZZS4Mw DfE+vrCOFTAA9Ln4qEaRHv71eKt9c9L8+unWBn2hCB27ktbWE2yUmCdt8D7+iYiK L6LwLTKnOoR8i/gsaQ7hHcK8VVvvuSCPEAfwEHoadR41LM8wstsuFNctUBTdAPHV 690MeBsMIULHZYp0UVuPvzDYSRSfytfctFXUjEIC5eFMQ7qTtYetkdaQQQz8uf+m knCo3+2ilvUqwduljsEIa8wLZaqw7qZ728pN/ulz4FPdOJuQqzL+AansRLBTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMWIT4cER6yXHHI6j/lEJ85b+5hEwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtVDANBgkqhkiG 9w0BAQsFAAOCAQEAzfMnlIgLVeN6DRg9KXn2M2388oDVY/sFdkKUIWlqVAOwptal 6sTSKxw6z9zIg2AEtUg8JQh8LXDUQARqVVr6UhH+X6I+Z08reyZAo6c28uRsmVNV rFmYAMsTR3+EY/W56UnFBRgYMADQGB4VRyFPWd0z8EyP7oy8QNrwTW2JoPgzIEuG 2W+AsskAMjnSp8DZv3qem8LPNtpqikTKs1fldz5spMDnh+m6baSPB56j7k0KTvBP 6Ts/z/U2dSD+w4ya7qSfWdhB/Kvf2BBIpCSbau6zd0N9kQgNgWaFdAb6eNUaTewT sRwzxelC4KEkepGq/xwg7CfZLe2zX8dWwuqy9w== -----END CERTIFICATE-----Generated at Sun Aug 24 05:40:10 2025 by rpki-client