$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38362e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e38362e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: Kuw7lUkD47qMQ8N9t8f+0cUPW15btvt7raHQz8c4jwE= Subject key identifier: 26:02:D0:D3:FF:5D:F3:BB:59:B7:AB:7E:4E:5A:38:67:27:B2:19:1E Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 4F151C88DC1640A3267AB14FBA8932D666EB6102 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38362e302f32342d3234203d3e203233363935.roa Signing time: Sat 16 Aug 2025 09:00:51 +0000 ROA not before: Sat 16 Aug 2025 08:55:51 +0000 ROA not after: Sat 15 Aug 2026 09:00:51 +0000 asID: 23695 IP address blocks: 202.173.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:15:1c:88:dc:16:40:a3:26:7a:b1:4f:ba:89:32:d6:66:eb:61:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 16 08:55:51 2025 GMT Not After : Aug 15 09:00:51 2026 GMT Subject: CN=2602D0D3FF5DF3BB59B7AB7E4E5A386727B2191E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d7:e5:b3:bb:26:78:69:a2:c4:a0:c0:0e:68: ae:03:62:52:d9:c9:62:88:a5:02:63:a5:75:d7:00: df:28:ae:0e:25:23:86:8b:60:5b:69:eb:bd:15:27: 7a:5d:9d:76:90:0e:d8:0f:0b:db:25:7f:70:ec:2e: 0e:b2:d6:02:f9:88:7f:0e:2e:5b:5a:2d:d9:f4:1a: 2b:f6:c2:34:6c:c5:45:fb:63:90:ec:1e:9d:6c:41: 63:fa:16:45:92:51:b3:c4:48:4a:f6:83:f1:fa:17: 3e:72:2d:22:1c:97:ec:2e:60:a9:5b:1a:7f:f7:9e: ef:a7:04:35:2c:9b:08:2d:99:e8:22:b9:ec:83:58: 83:66:a9:a8:e6:d6:9b:bb:75:22:70:8b:04:dd:46: 60:2e:e0:5b:7d:5f:36:d4:19:ad:33:e9:d6:f6:c8: 20:d8:f9:4d:21:63:ac:90:d3:79:06:bc:f2:7f:0d: a5:1b:f4:0a:ac:40:64:f1:11:01:08:8a:fc:30:1c: e4:22:6b:50:9d:9e:2a:ea:5f:2c:ce:0d:7c:61:07: 58:c1:21:97:6a:ea:b3:a3:07:fe:bd:9d:2e:0b:2b: 17:1c:f9:cf:f5:ef:d5:a2:62:21:dc:f0:04:6e:c2: 8a:67:f7:51:80:bd:6c:9c:13:f9:f3:9c:3d:de:2d: 6f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:02:D0:D3:FF:5D:F3:BB:59:B7:AB:7E:4E:5A:38:67:27:B2:19:1E X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38362e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.86.0/24 Signature Algorithm: sha256WithRSAEncryption 92:fd:d1:78:91:a5:dd:7c:49:16:5c:eb:5e:28:59:b9:c9:6e: 5a:1f:40:14:aa:5f:ee:65:94:f1:4b:f8:15:d6:3f:d1:80:b9: 59:f6:c3:dc:44:29:6e:32:ae:fc:46:06:58:e9:d8:38:5f:af: 1e:2a:18:0d:a6:d0:58:5b:e0:87:23:a5:3f:5f:2f:04:7d:e7: e5:c2:ca:25:03:86:54:f8:b1:b4:48:b1:76:9b:40:a0:e1:72: 4c:20:c5:c3:48:6c:7b:85:6c:2c:9b:f0:fc:08:08:b8:4f:3f: e1:99:2f:5e:f9:5b:f7:f4:5f:b8:73:0c:fb:96:df:c4:9f:7b: 3f:7e:a0:f4:7d:03:df:33:e4:e5:4c:c4:6b:27:a9:29:ac:6d: ec:ec:3b:c3:a6:03:f9:0a:a3:6d:72:2f:5a:6d:d5:99:77:52: 85:94:30:82:f0:20:f0:a2:f2:24:41:fa:0e:c5:4c:ce:ef:c0: af:94:db:f2:71:21:ff:84:c7:17:f0:9e:10:5a:55:a3:a7:4e: dc:a0:aa:50:8c:48:70:74:e1:62:13:41:69:7b:e3:95:23:8f: 61:02:5c:15:b6:16:35:42:f8:21:3c:ee:a9:d4:43:9c:d8:21: fd:ee:8e:1d:d8:df:1a:e3:48:c2:1e:4e:f7:bb:5c:f0:ad:9d: 4c:5d:17:37 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTxUciNwWQKMmerFPuoky1mbrYQIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTYwODU1NTFaFw0yNjA4MTUwOTAwNTFaMDMxMTAvBgNV BAMTKDI2MDJEMEQzRkY1REYzQkI1OUI3QUI3RTRFNUEzODY3MjdCMjE5MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD1+WzuyZ4aaLEoMAOaK4DYlLZ yWKIpQJjpXXXAN8org4lI4aLYFtp670VJ3pdnXaQDtgPC9slf3DsLg6y1gL5iH8O LltaLdn0Giv2wjRsxUX7Y5DsHp1sQWP6FkWSUbPESEr2g/H6Fz5yLSIcl+wuYKlb Gn/3nu+nBDUsmwgtmegiueyDWINmqajm1pu7dSJwiwTdRmAu4Ft9XzbUGa0z6db2 yCDY+U0hY6yQ03kGvPJ/DaUb9AqsQGTxEQEIivwwHOQia1CdnirqXyzODXxhB1jB IZdq6rOjB/69nS4LKxcc+c/179WiYiHc8ARuwopn91GAvWycE/nznD3eLW/TAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJgLQ0/9d87tZt6t+Tlo4ZyeyGR4wHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzODM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtVjANBgkqhkiG 9w0BAQsFAAOCAQEAkv3ReJGl3XxJFlzrXihZucluWh9AFKpf7mWU8Uv4FdY/0YC5 WfbD3EQpbjKu/EYGWOnYOF+vHioYDabQWFvghyOlP18vBH3n5cLKJQOGVPixtEix dptAoOFyTCDFw0hse4VsLJvw/AgIuE8/4ZkvXvlb9/RfuHMM+5bfxJ97P36g9H0D 3zPk5UzEayepKaxt7Ow7w6YD+QqjbXIvWm3VmXdShZQwgvAg8KLyJEH6DsVMzu/A r5Tb8nEh/4THF/CeEFpVo6dO3KCqUIxIcHThYhNBaXvjlSOPYQJcFbYWNUL4ITzu qdRDnNgh/e6OHdjfGuNIwh5O97tc8K2dTF0XNw== -----END CERTIFICATE-----Generated at Sat Aug 23 21:20:04 2025 by rpki-client