$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38372e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e38372e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: Z/thAbfiH6aci7mCfAjuPHRMycQOfIBu73zKFBwRIHE= Subject key identifier: B8:97:FB:0A:6A:FF:7B:0D:38:7F:C2:7A:5D:BB:CB:3E:AC:20:78:87 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 66F4902138F32EC9102D5317403CD01B6A73467F Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38372e302f32342d3234203d3e203233363935.roa Signing time: Sat 16 Aug 2025 09:00:51 +0000 ROA not before: Sat 16 Aug 2025 08:55:51 +0000 ROA not after: Sat 15 Aug 2026 09:00:51 +0000 asID: 23695 IP address blocks: 202.173.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:f4:90:21:38:f3:2e:c9:10:2d:53:17:40:3c:d0:1b:6a:73:46:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 16 08:55:51 2025 GMT Not After : Aug 15 09:00:51 2026 GMT Subject: CN=B897FB0A6AFF7B0D387FC27A5DBBCB3EAC207887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b5:a7:b1:59:1c:9c:92:be:10:e0:1f:f8:8c: 33:ef:5c:53:13:8c:5a:2f:88:dd:88:fd:b5:0e:81: 4e:cc:77:8c:7c:ca:2a:13:97:f8:d5:2a:1c:d7:f9: 36:2d:c3:7e:e4:f8:61:96:cd:3b:8b:e3:de:f7:1a: 70:f9:aa:9f:15:ff:d3:b3:57:b4:51:5b:f4:7b:f9: 17:8c:7b:5b:87:c6:aa:84:d1:38:8a:ec:18:ac:18: b9:bd:f8:60:c6:0a:a4:77:76:37:7b:41:7f:ff:a0: 9b:5a:0d:10:12:8d:59:15:38:40:07:14:a6:0e:d6: 1a:bd:3d:0d:a0:e6:f3:95:62:03:c1:06:37:e4:11: 02:66:b9:0a:9e:9b:c5:7e:26:46:aa:40:b9:88:29: 40:c6:38:06:29:38:84:86:ae:d6:42:70:d4:11:07: e9:cd:b5:86:fe:10:ad:f2:4e:56:a3:32:0b:88:d7: dd:f7:1a:f5:42:ac:20:d1:6a:bb:f3:14:1c:9c:bb: a8:de:09:08:f2:5b:72:a0:ed:fc:23:e6:82:b7:52: fa:77:63:0e:c0:18:8d:1f:c2:ad:b6:f5:8b:92:9e: a5:76:41:a4:93:01:c3:7e:5f:91:92:a3:ac:6e:2c: 48:51:fe:6f:12:7f:68:31:2d:15:26:f5:a1:9d:6a: e9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:97:FB:0A:6A:FF:7B:0D:38:7F:C2:7A:5D:BB:CB:3E:AC:20:78:87 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38372e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.87.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:1d:b9:c6:a2:cd:d9:1a:e4:a3:fd:c7:3f:96:cf:cf:b8:d2: 97:ba:cb:1c:1e:fb:1d:d5:28:1f:b4:76:b5:0a:f0:4e:b9:b9: ca:cf:5d:79:0a:71:8f:d1:d4:66:86:e7:98:53:be:97:5d:09: d4:ed:92:d5:8a:47:e2:01:64:f6:a4:71:19:eb:72:ad:40:97: b6:07:02:ac:83:9f:0e:18:d4:8c:f4:df:16:d3:a6:94:31:4c: aa:d9:b8:79:f7:d0:88:fa:0e:0f:0b:9b:c5:48:53:c8:60:dd: 1a:7a:cc:79:46:fc:e5:26:0a:fb:a0:87:fb:1b:c4:13:a6:b4: b4:2a:dd:ce:fc:e0:e2:22:3e:12:9d:f2:d9:25:fb:07:af:ca: 7d:95:5e:33:18:9c:3f:7e:02:b8:f0:da:ba:31:9e:32:09:c3: 8f:1b:ff:07:19:67:85:72:0d:7e:62:92:f8:ed:81:3d:b1:bf: a8:b5:3b:18:48:ab:d0:d7:41:4b:0c:23:c9:82:93:57:51:39: 06:43:8b:f0:7c:08:41:bf:ef:f8:53:40:f9:2a:84:96:68:4a: 8b:3a:57:18:aa:39:d3:df:fb:d0:1b:3b:14:63:3f:b5:9f:ae: ee:04:89:15:7a:57:8f:a5:77:d7:bd:e8:7f:ca:f8:e6:cc:c9: ec:a2:d5:bb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZvSQITjzLskQLVMXQDzQG2pzRn8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTYwODU1NTFaFw0yNjA4MTUwOTAwNTFaMDMxMTAvBgNV BAMTKEI4OTdGQjBBNkFGRjdCMEQzODdGQzI3QTVEQkJDQjNFQUMyMDc4ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKtaexWRyckr4Q4B/4jDPvXFMT jFoviN2I/bUOgU7Md4x8yioTl/jVKhzX+TYtw37k+GGWzTuL4973GnD5qp8V/9Oz V7RRW/R7+ReMe1uHxqqE0TiK7BisGLm9+GDGCqR3djd7QX//oJtaDRASjVkVOEAH FKYO1hq9PQ2g5vOVYgPBBjfkEQJmuQqem8V+JkaqQLmIKUDGOAYpOISGrtZCcNQR B+nNtYb+EK3yTlajMguI1933GvVCrCDRarvzFBycu6jeCQjyW3Kg7fwj5oK3Uvp3 Yw7AGI0fwq229YuSnqV2QaSTAcN+X5GSo6xuLEhR/m8Sf2gxLRUm9aGdaumXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuJf7Cmr/ew04f8J6XbvLPqwgeIcwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtVzANBgkqhkiG 9w0BAQsFAAOCAQEATh25xqLN2Rrko/3HP5bPz7jSl7rLHB77HdUoH7R2tQrwTrm5 ys9deQpxj9HUZobnmFO+l10J1O2S1YpH4gFk9qRxGetyrUCXtgcCrIOfDhjUjPTf FtOmlDFMqtm4effQiPoODwubxUhTyGDdGnrMeUb85SYK+6CH+xvEE6a0tCrdzvzg 4iI+Ep3y2SX7B6/KfZVeMxicP34CuPDaujGeMgnDjxv/BxlnhXINfmKS+O2BPbG/ qLU7GEir0NdBSwwjyYKTV1E5BkOL8HwIQb/v+FNA+SqElmhKizpXGKo509/70Bs7 FGM/tZ+u7gSJFXpXj6V3173of8r45szJ7KLVuw== -----END CERTIFICATE-----Generated at Sat Aug 23 23:20:04 2025 by rpki-client