$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39312e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e39312e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: jEFMN+/YArKXHWvdd9szTx7AeesDaLCCXkcmKURU2fg= Subject key identifier: C1:DF:9A:9B:8F:B9:E6:F2:22:45:2D:76:90:D2:D5:37:ED:D2:4E:35 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 100FE3A5A9F14B98DB8D9DE0CA909D4CB033864D Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39312e302f32342d3234203d3e203233363935.roa Signing time: Sat 16 Aug 2025 09:00:51 +0000 ROA not before: Sat 16 Aug 2025 08:55:51 +0000 ROA not after: Sat 15 Aug 2026 09:00:51 +0000 asID: 23695 IP address blocks: 202.173.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:0f:e3:a5:a9:f1:4b:98:db:8d:9d:e0:ca:90:9d:4c:b0:33:86:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 16 08:55:51 2025 GMT Not After : Aug 15 09:00:51 2026 GMT Subject: CN=C1DF9A9B8FB9E6F222452D7690D2D537EDD24E35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5c:1b:d0:3c:5a:44:6d:70:07:21:b1:02:48: 51:cf:52:fa:be:81:b4:28:3e:87:1d:34:61:9d:09: 77:eb:06:68:41:be:66:ee:dd:94:0f:5b:41:58:3c: be:31:02:4e:2e:42:3e:ef:39:61:70:d7:06:c9:62: fe:10:b0:92:84:83:1c:9a:e4:ff:25:18:e0:87:7d: 40:d7:a9:c0:54:fe:ab:32:12:04:82:8c:7c:7f:9c: b5:09:e5:8d:54:79:6f:ff:48:f5:7a:22:9b:c4:50: 34:0b:7b:e3:f6:96:79:46:cb:18:d7:b9:0d:1b:8e: df:50:b6:86:3d:89:d3:76:70:d5:d1:d2:93:91:2b: 3c:8b:9e:98:97:aa:9a:d6:a2:fb:14:a3:a5:09:da: 01:ec:75:24:6c:af:69:d9:ed:94:56:57:ce:83:a0: 41:8a:f9:19:7e:68:6a:ee:bb:1b:2c:4a:45:08:64: 37:c5:91:cc:d2:21:7b:ca:25:01:ba:68:dd:7c:6d: d8:90:92:71:bc:f0:3b:05:22:8d:a8:8e:61:30:b6: fe:e4:d2:99:57:60:11:6f:af:c1:b3:32:a8:41:b7: c0:eb:fc:3b:ac:88:7f:9f:c4:57:c0:aa:be:ec:d2: e6:3d:42:98:bb:06:1b:e0:3a:38:01:e0:80:69:0c: b9:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:DF:9A:9B:8F:B9:E6:F2:22:45:2D:76:90:D2:D5:37:ED:D2:4E:35 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39312e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.91.0/24 Signature Algorithm: sha256WithRSAEncryption 87:15:3d:a8:03:d5:74:ea:9b:cf:45:24:d1:c9:a3:de:13:86: bd:dd:c9:17:ee:02:96:6f:d0:14:9a:ac:9b:1d:7b:9b:fe:b8: 56:e9:e7:1b:7e:0c:fd:e6:f0:32:90:36:92:60:63:44:25:f9: 68:26:94:05:0a:db:04:20:01:17:99:23:d6:04:94:6b:ee:cb: be:fd:99:b2:c5:cd:7c:54:b6:6f:0c:24:e9:74:1f:db:79:8e: 31:d3:fc:3c:f2:30:85:69:ee:7b:b8:54:e9:6d:07:85:21:f3: 28:ae:01:b2:41:c7:88:08:34:35:ff:ff:4f:ef:23:f3:bc:e0: 7e:36:2d:b6:5a:82:6a:43:e3:df:70:2a:d0:6a:fd:4e:65:79: d3:d7:9e:67:da:69:3a:93:3c:2b:7a:7d:60:e3:10:a7:4b:35: 47:51:48:7a:cc:fe:35:8e:07:7f:72:3c:99:85:87:7a:59:c8: bc:b4:fe:84:e3:f0:5e:83:f9:fa:22:09:83:0b:2b:b6:93:a1: 27:0f:cc:e9:ac:b8:a4:70:41:65:d7:0f:d8:2c:5a:db:20:e3: 77:aa:5c:9d:9e:1f:31:2a:38:4c:f1:47:a5:5a:a3:f8:f8:30: cc:56:24:a9:e4:8e:d3:e1:3d:58:fc:2a:61:a7:16:0f:e0:59: cc:9d:a2:90 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEA/jpanxS5jbjZ3gypCdTLAzhk0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTYwODU1NTFaFw0yNjA4MTUwOTAwNTFaMDMxMTAvBgNV BAMTKEMxREY5QTlCOEZCOUU2RjIyMjQ1MkQ3NjkwRDJENTM3RUREMjRFMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcXBvQPFpEbXAHIbECSFHPUvq+ gbQoPocdNGGdCXfrBmhBvmbu3ZQPW0FYPL4xAk4uQj7vOWFw1wbJYv4QsJKEgxya 5P8lGOCHfUDXqcBU/qsyEgSCjHx/nLUJ5Y1UeW//SPV6IpvEUDQLe+P2lnlGyxjX uQ0bjt9QtoY9idN2cNXR0pORKzyLnpiXqprWovsUo6UJ2gHsdSRsr2nZ7ZRWV86D oEGK+Rl+aGruuxssSkUIZDfFkczSIXvKJQG6aN18bdiQknG88DsFIo2ojmEwtv7k 0plXYBFvr8GzMqhBt8Dr/DusiH+fxFfAqr7s0uY9Qpi7BhvgOjgB4IBpDLlNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwd+am4+55vIiRS12kNLVN+3STjUwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzOTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtWzANBgkqhkiG 9w0BAQsFAAOCAQEAhxU9qAPVdOqbz0Uk0cmj3hOGvd3JF+4Clm/QFJqsmx17m/64 VunnG34M/ebwMpA2kmBjRCX5aCaUBQrbBCABF5kj1gSUa+7Lvv2ZssXNfFS2bwwk 6XQf23mOMdP8PPIwhWnue7hU6W0HhSHzKK4BskHHiAg0Nf//T+8j87zgfjYttlqC akPj33Aq0Gr9TmV509eeZ9ppOpM8K3p9YOMQp0s1R1FIesz+NY4Hf3I8mYWHelnI vLT+hOPwXoP5+iIJgwsrtpOhJw/M6ay4pHBBZdcP2Cxa2yDjd6pcnZ4fMSo4TPFH pVqj+PgwzFYkqeSO0+E9WPwqYacWD+BZzJ2ikA== -----END CERTIFICATE-----Generated at Sat Aug 23 19:23:59 2025 by rpki-client