$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38352e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e38352e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: CZ00gqTzVUJ95u4ziPkcHi+fVrKdKn0XMZAWrlb+XPc= Subject key identifier: A1:48:78:F8:8A:D4:D6:B4:D9:83:5E:B2:3E:20:D1:10:88:34:57:40 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 2B2F3005D66ECEEB98C7D28B29F7A8D8214A9731 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38352e302f32342d3234203d3e203233363935.roa Signing time: Tue 19 Aug 2025 17:00:01 +0000 ROA not before: Tue 19 Aug 2025 16:55:01 +0000 ROA not after: Tue 18 Aug 2026 17:00:01 +0000 asID: 23695 IP address blocks: 202.173.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:2f:30:05:d6:6e:ce:eb:98:c7:d2:8b:29:f7:a8:d8:21:4a:97:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 19 16:55:01 2025 GMT Not After : Aug 18 17:00:01 2026 GMT Subject: CN=A14878F88AD4D6B4D9835EB23E20D11088345740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a9:26:92:6f:17:82:01:be:71:5e:7f:ae:fe: 87:4d:ca:e1:c5:2b:dc:e5:c3:e0:e1:5e:55:2f:3a: 09:33:20:1e:3c:da:48:55:05:f3:20:4e:d4:f9:fd: 60:cd:5a:de:ec:fc:c4:3c:2f:5e:95:26:f5:ba:ac: 47:66:be:8b:af:8d:6b:e4:92:b6:2d:1f:e0:8c:cc: 88:e0:3f:34:4e:4e:07:6b:44:13:a8:fa:7b:17:bc: 17:bb:e0:5c:44:a1:79:4c:20:87:c1:de:fe:84:d4: 77:ed:a1:b0:58:ef:9d:ab:fa:90:fa:c4:15:15:ef: 43:16:15:d7:2f:25:37:db:bb:fa:54:7b:9f:21:28: de:c5:9f:01:98:62:df:e9:1c:16:3a:4b:53:e7:30: 83:91:c6:bf:09:9c:c1:0f:48:53:03:f3:12:40:fa: 67:bb:65:41:f9:36:f5:ae:f8:0a:f0:40:96:25:02: 5c:2f:0e:1d:e6:db:8e:bc:df:cf:db:a6:00:34:23: 26:b4:fd:76:ff:db:03:ff:e6:58:f2:97:4d:d3:77: ea:52:18:bb:a0:ec:db:5d:8c:63:76:cc:32:d1:b1: a3:9e:dd:74:d9:c4:01:a8:6f:17:22:f5:00:03:3b: 81:fc:17:c7:87:72:a7:0b:69:09:7c:57:1e:01:4b: 93:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:48:78:F8:8A:D4:D6:B4:D9:83:5E:B2:3E:20:D1:10:88:34:57:40 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38352e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.85.0/24 Signature Algorithm: sha256WithRSAEncryption 88:a4:9d:c0:63:82:41:0f:cf:61:ad:2d:ab:24:34:06:88:e1: a1:c0:e2:83:1c:1f:c8:10:ff:af:63:60:a9:a8:1f:54:f4:92: 92:53:62:a3:09:e9:26:3c:5c:61:a8:93:3f:de:70:69:fc:2b: 02:94:34:1f:37:4e:76:24:8e:00:d7:e0:e5:12:56:55:a1:b1: 5a:fb:3e:c5:e2:b8:6c:6b:dc:a7:06:04:de:d8:07:d6:5b:14: a8:0c:31:6e:24:73:3b:31:c2:88:9f:c1:8f:dc:1f:8a:46:3c: 7e:44:15:79:50:05:68:9c:32:e4:c7:db:04:5d:eb:24:31:37: 00:72:54:2c:d6:60:bd:87:d7:e8:5e:ff:fa:ab:57:35:fb:8e: 77:80:eb:33:f4:62:9d:c4:51:ce:15:fe:4c:03:c3:85:b9:c1: 82:ce:55:e0:d6:8e:20:bc:6e:d0:1b:ff:3e:eb:cc:cf:71:ce: ba:89:69:ab:3e:34:04:4b:b3:44:b0:7d:7c:a3:cd:7b:63:40: 5d:2f:10:64:b9:85:bd:d8:d5:31:da:0f:73:9f:b9:39:e7:a2: bb:2b:33:8e:d6:b9:2c:f3:bf:be:82:2d:98:b4:e3:49:33:a6: 15:56:84:ee:43:3e:33:43:ac:87:90:94:f0:a9:81:68:30:9f: fb:78:6d:d8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKy8wBdZuzuuYx9KLKfeo2CFKlzEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTkxNjU1MDFaFw0yNjA4MTgxNzAwMDFaMDMxMTAvBgNV BAMTKEExNDg3OEY4OEFENEQ2QjREOTgzNUVCMjNFMjBEMTEwODgzNDU3NDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvqSaSbxeCAb5xXn+u/odNyuHF K9zlw+DhXlUvOgkzIB482khVBfMgTtT5/WDNWt7s/MQ8L16VJvW6rEdmvouvjWvk krYtH+CMzIjgPzROTgdrRBOo+nsXvBe74FxEoXlMIIfB3v6E1HftobBY752r+pD6 xBUV70MWFdcvJTfbu/pUe58hKN7FnwGYYt/pHBY6S1PnMIORxr8JnMEPSFMD8xJA +me7ZUH5NvWu+ArwQJYlAlwvDh3m246838/bpgA0Iya0/Xb/2wP/5ljyl03Td+pS GLug7NtdjGN2zDLRsaOe3XTZxAGobxci9QADO4H8F8eHcqcLaQl8Vx4BS5N/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUoUh4+IrU1rTZg16yPiDREIg0V0AwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtVTANBgkqhkiG 9w0BAQsFAAOCAQEAiKSdwGOCQQ/PYa0tqyQ0BojhocDigxwfyBD/r2NgqagfVPSS klNiownpJjxcYaiTP95wafwrApQ0HzdOdiSOANfg5RJWVaGxWvs+xeK4bGvcpwYE 3tgH1lsUqAwxbiRzOzHCiJ/Bj9wfikY8fkQVeVAFaJwy5MfbBF3rJDE3AHJULNZg vYfX6F7/+qtXNfuOd4DrM/RincRRzhX+TAPDhbnBgs5V4NaOILxu0Bv/PuvMz3HO uolpqz40BEuzRLB9fKPNe2NAXS8QZLmFvdjVMdoPc5+5Oeeiuyszjta5LPO/voIt mLTjSTOmFVaE7kM+M0Osh5CU8KmBaDCf+3ht2A== -----END CERTIFICATE-----Generated at Sat Aug 23 23:20:12 2025 by rpki-client