$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39302e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e39302e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: aqr9G7daeMRwOwIQcJJyRek+PwNLD3VNhiJaFW2F3a8= Subject key identifier: 1C:63:F1:71:6D:E7:39:89:14:F8:16:5F:E2:0D:07:7E:DF:AC:77:D4 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 5E504B56EB3D40B9E5CB575C7D2E8D33C550C308 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39302e302f32342d3234203d3e203233363935.roa Signing time: Tue 12 Aug 2025 04:02:25 +0000 ROA not before: Tue 12 Aug 2025 03:57:25 +0000 ROA not after: Tue 11 Aug 2026 04:02:25 +0000 asID: 23695 IP address blocks: 202.173.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:50:4b:56:eb:3d:40:b9:e5:cb:57:5c:7d:2e:8d:33:c5:50:c3:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 12 03:57:25 2025 GMT Not After : Aug 11 04:02:25 2026 GMT Subject: CN=1C63F1716DE7398914F8165FE20D077EDFAC77D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4d:b5:78:cb:82:74:94:f5:59:d6:56:a5:1d: bf:25:e1:b5:04:0b:52:51:05:9f:09:80:25:25:87: 2f:a6:69:25:a1:87:26:18:33:31:dd:cd:61:ee:aa: a6:55:f7:a2:52:44:43:9a:64:8f:fa:89:d0:5b:97: e7:90:0a:1c:34:6b:c2:5d:17:41:f0:9a:88:8f:68: 93:fd:87:9a:56:2b:fe:a1:b8:95:83:dd:44:e6:cb: 17:37:ec:21:53:7d:b1:d7:56:0b:eb:39:e5:f3:6a: be:46:7e:c9:25:24:69:b1:36:93:cf:20:71:e5:b1: 42:2c:c8:5c:ce:18:1c:fb:9d:c5:fb:05:53:fe:15: 86:49:01:36:86:0c:64:e7:3e:c3:cf:4c:cd:d4:b8: 74:1f:07:d8:f6:e2:6e:3c:5d:be:49:99:32:29:19: 14:25:40:10:79:ba:a9:70:d4:3e:d3:bd:1e:8e:ff: d8:3f:08:40:47:e1:74:ff:ea:f4:b7:94:98:c8:cb: 4a:ab:0c:49:4a:81:20:ac:9c:61:16:32:23:2a:a0: b7:e5:d5:98:b4:ea:5f:30:f2:e7:82:8d:20:18:12: cb:b0:d0:2e:f6:2a:54:f5:21:65:25:6a:19:b6:11: 53:02:4b:d8:11:cb:74:f2:48:10:9d:5a:5b:93:94: 50:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:63:F1:71:6D:E7:39:89:14:F8:16:5F:E2:0D:07:7E:DF:AC:77:D4 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39302e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.90.0/24 Signature Algorithm: sha256WithRSAEncryption 25:11:81:09:c6:34:92:9b:2a:1d:bf:6c:79:b0:da:79:0b:2d: c6:85:73:1e:29:f3:f4:04:15:13:04:6e:10:90:7d:ab:6b:3e: bb:2a:71:46:39:22:6f:97:fb:4e:29:9e:b0:1d:d4:ea:95:b9: dd:c7:5d:57:10:eb:e5:cd:55:b5:16:3e:8d:ce:9c:2d:5d:f3: b9:1b:ae:b4:e2:e8:21:90:72:cb:53:40:d4:8a:a1:49:a7:8d: 87:46:7d:31:e3:2c:6f:8c:79:1c:8a:b0:c5:72:85:19:32:2d: ec:d8:c1:5a:f3:8f:69:95:93:fa:74:18:e1:35:3b:8c:88:eb: 58:6a:26:d8:fa:60:ad:4c:13:6c:49:f8:c8:b0:c0:b1:9c:be: 2c:60:e1:17:b9:b4:03:69:55:f5:cc:c2:32:95:cf:36:58:09: e0:a7:e5:9d:7a:99:7a:d1:c1:1f:e0:0f:9b:08:11:ec:eb:16: 3a:bc:e8:6a:99:dd:0d:fb:4c:42:fb:91:33:2c:65:b5:5e:ca: 2b:d6:c9:cc:ed:92:d9:c5:ec:a9:a8:d6:44:5b:b5:ce:e4:0c: a1:a7:6c:80:6a:93:2b:18:87:03:b2:9c:3b:8a:a6:f2:55:d6: 45:a7:e6:ae:4c:bf:8e:14:78:c2:c2:bc:7a:a4:32:48:16:ca: bb:cb:33:ad -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXlBLVus9QLnly1dcfS6NM8VQwwgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTIwMzU3MjVaFw0yNjA4MTEwNDAyMjVaMDMxMTAvBgNV BAMTKDFDNjNGMTcxNkRFNzM5ODkxNEY4MTY1RkUyMEQwNzdFREZBQzc3RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQTbV4y4J0lPVZ1lalHb8l4bUE C1JRBZ8JgCUlhy+maSWhhyYYMzHdzWHuqqZV96JSREOaZI/6idBbl+eQChw0a8Jd F0HwmoiPaJP9h5pWK/6huJWD3UTmyxc37CFTfbHXVgvrOeXzar5GfsklJGmxNpPP IHHlsUIsyFzOGBz7ncX7BVP+FYZJATaGDGTnPsPPTM3UuHQfB9j24m48Xb5JmTIp GRQlQBB5uqlw1D7TvR6O/9g/CEBH4XT/6vS3lJjIy0qrDElKgSCsnGEWMiMqoLfl 1Zi06l8w8ueCjSAYEsuw0C72KlT1IWUlahm2EVMCS9gRy3TySBCdWluTlFBDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHGPxcW3nOYkU+BZf4g0Hft+sd9QwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzOTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtWjANBgkqhkiG 9w0BAQsFAAOCAQEAJRGBCcY0kpsqHb9sebDaeQstxoVzHinz9AQVEwRuEJB9q2s+ uypxRjkib5f7TimesB3U6pW53cddVxDr5c1VtRY+jc6cLV3zuRuutOLoIZByy1NA 1IqhSaeNh0Z9MeMsb4x5HIqwxXKFGTIt7NjBWvOPaZWT+nQY4TU7jIjrWGom2Ppg rUwTbEn4yLDAsZy+LGDhF7m0A2lV9czCMpXPNlgJ4KflnXqZetHBH+APmwgR7OsW OrzoapndDftMQvuRMyxltV7KK9bJzO2S2cXsqajWRFu1zuQMoadsgGqTKxiHA7Kc O4qm8lXWRafmrky/jhR4wsK8eqQySBbKu8szrQ== -----END CERTIFICATE-----Generated at Sun Aug 24 05:41:41 2025 by rpki-client