$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38382e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e38382e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: MTpdwnhfQZSQAh1ZGXABlj9jbImFIxLfXoLJhkWTtoM= Subject key identifier: 51:A2:2F:BA:E6:58:20:C1:26:CE:56:C8:67:6F:BC:08:96:61:88:78 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 645FE4BB17CC5EDCB5AE08F258E319F2536AF334 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38382e302f32342d3234203d3e203233363935.roa Signing time: Tue 12 Aug 2025 04:02:25 +0000 ROA not before: Tue 12 Aug 2025 03:57:25 +0000 ROA not after: Tue 11 Aug 2026 04:02:25 +0000 asID: 23695 IP address blocks: 202.173.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:5f:e4:bb:17:cc:5e:dc:b5:ae:08:f2:58:e3:19:f2:53:6a:f3:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 12 03:57:25 2025 GMT Not After : Aug 11 04:02:25 2026 GMT Subject: CN=51A22FBAE65820C126CE56C8676FBC0896618878 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:86:cc:30:a6:bf:84:63:77:b0:3a:82:9a:62: 29:19:dd:96:3c:a6:fb:f5:77:17:41:46:4d:cf:1f: 77:04:37:a4:40:26:67:dd:37:55:78:27:db:fc:da: a1:f0:34:ea:9c:f8:38:dd:0f:17:4f:97:84:6c:10: ce:0f:8c:89:73:44:fb:94:1c:06:74:13:f9:68:77: fc:be:e0:3a:fc:f3:2b:b4:a6:66:20:f1:38:83:34: 50:f6:c3:6f:70:d0:37:d4:75:1b:29:fe:81:5c:50: ee:e3:f5:60:a8:af:a9:08:9e:9e:f1:d7:48:be:e6: c8:83:94:fa:e9:3e:8b:fe:c2:44:3f:29:06:12:31: f1:49:e3:1d:41:16:ff:fe:74:19:ed:80:39:2c:1a: 3e:fc:a8:3a:94:ac:a9:22:96:50:33:5c:9c:7a:28: fe:a4:f9:f1:aa:9c:80:63:43:92:46:41:64:32:7a: 15:93:32:fb:1c:8e:60:5f:f1:ae:11:0e:c7:f3:de: a0:d7:6b:52:8b:4e:35:03:9c:b9:16:01:3e:c8:63: 2f:46:ae:50:7e:3a:30:bf:e1:2b:e8:49:3c:b3:3c: d2:1b:3e:3a:32:0c:4a:a2:38:e8:49:e4:be:fa:31: 79:ef:7d:d4:b5:9a:9e:47:39:57:d8:25:d3:16:c4: b2:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:A2:2F:BA:E6:58:20:C1:26:CE:56:C8:67:6F:BC:08:96:61:88:78 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38382e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.88.0/24 Signature Algorithm: sha256WithRSAEncryption ab:69:19:77:68:8a:9f:f3:7a:70:0d:d5:9b:fc:6e:b7:5b:09: 88:65:43:b0:3e:62:94:f1:04:bb:3d:59:4d:61:ee:15:ff:6e: c9:0f:11:7c:6c:b1:80:be:30:bc:73:a2:a5:b1:00:bb:cc:ef: e9:a5:d4:c5:91:b3:dd:91:f2:ee:ff:7d:4a:37:6e:38:f1:98: e8:b6:af:bb:a7:82:72:05:44:6d:7a:0f:1c:09:ab:25:e9:8b: 4f:0b:80:44:28:95:0a:52:4f:43:fa:06:da:42:44:ff:60:76: 37:bc:0d:8c:27:ef:c0:28:63:66:03:04:f5:4f:77:d1:a0:85: c1:1a:5e:8b:c7:26:9a:04:0b:1b:17:c9:43:ee:0b:b8:ac:30: 5b:65:05:3e:bc:42:af:96:6d:4d:60:dd:c7:80:b8:08:30:e9: b6:e4:87:be:2d:72:bc:e9:f1:af:c6:84:d3:5b:44:7c:00:ae: 67:48:49:23:5b:a2:e2:5b:81:95:fe:63:96:a6:37:bb:2e:1e: cb:09:eb:c6:3e:fd:3c:53:39:70:23:ae:95:56:82:4c:a6:ce: 5f:5a:90:47:9a:b3:b0:bb:2d:89:4a:b7:7d:34:aa:3e:c7:dc: aa:0b:04:4c:61:25:c8:e6:75:5a:dd:1b:c8:f6:91:f2:96:6f: 6b:ee:95:ed -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZF/kuxfMXty1rgjyWOMZ8lNq8zQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTIwMzU3MjVaFw0yNjA4MTEwNDAyMjVaMDMxMTAvBgNV BAMTKDUxQTIyRkJBRTY1ODIwQzEyNkNFNTZDODY3NkZCQzA4OTY2MTg4NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3hswwpr+EY3ewOoKaYikZ3ZY8 pvv1dxdBRk3PH3cEN6RAJmfdN1V4J9v82qHwNOqc+DjdDxdPl4RsEM4PjIlzRPuU HAZ0E/lod/y+4Dr88yu0pmYg8TiDNFD2w29w0DfUdRsp/oFcUO7j9WCor6kInp7x 10i+5siDlPrpPov+wkQ/KQYSMfFJ4x1BFv/+dBntgDksGj78qDqUrKkillAzXJx6 KP6k+fGqnIBjQ5JGQWQyehWTMvscjmBf8a4RDsfz3qDXa1KLTjUDnLkWAT7IYy9G rlB+OjC/4SvoSTyzPNIbPjoyDEqiOOhJ5L76MXnvfdS1mp5HOVfYJdMWxLI3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUUaIvuuZYIMEmzlbIZ2+8CJZhiHgwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzODM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtWDANBgkqhkiG 9w0BAQsFAAOCAQEAq2kZd2iKn/N6cA3Vm/xut1sJiGVDsD5ilPEEuz1ZTWHuFf9u yQ8RfGyxgL4wvHOipbEAu8zv6aXUxZGz3ZHy7v99SjduOPGY6Lavu6eCcgVEbXoP HAmrJemLTwuARCiVClJPQ/oG2kJE/2B2N7wNjCfvwChjZgME9U930aCFwRpei8cm mgQLGxfJQ+4LuKwwW2UFPrxCr5ZtTWDdx4C4CDDptuSHvi1yvOnxr8aE01tEfACu Z0hJI1ui4luBlf5jlqY3uy4eywnrxj79PFM5cCOulVaCTKbOX1qQR5qzsLstiUq3 fTSqPsfcqgsETGElyOZ1Wt0byPaR8pZva+6V7Q== -----END CERTIFICATE-----Generated at Sat Aug 23 19:23:57 2025 by rpki-client