$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39322e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e39322e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: MAZtj8wCYeyMLR/QhCtmH1rAozS439X8LKLLq7J1p+k= Subject key identifier: A2:68:31:F7:6E:E2:6C:E0:51:92:8A:25:47:D4:D9:56:BD:12:DC:56 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 5037ABA4CC3856BA65D002DC49E6F0E9E0602A69 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39322e302f32342d3234203d3e203233363935.roa Signing time: Tue 12 Aug 2025 04:02:26 +0000 ROA not before: Tue 12 Aug 2025 03:57:26 +0000 ROA not after: Tue 11 Aug 2026 04:02:26 +0000 asID: 23695 IP address blocks: 202.173.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:37:ab:a4:cc:38:56:ba:65:d0:02:dc:49:e6:f0:e9:e0:60:2a:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 12 03:57:26 2025 GMT Not After : Aug 11 04:02:26 2026 GMT Subject: CN=A26831F76EE26CE051928A2547D4D956BD12DC56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:83:23:ad:df:81:75:3c:f4:67:88:65:49:02: 80:be:54:8a:fe:11:c4:11:00:93:36:a4:be:8b:12: 1b:11:3d:a6:f1:f4:93:6a:64:5d:cc:3b:63:e2:63: 2f:02:25:9c:81:59:c6:b1:35:7b:80:71:6d:22:d1: f4:9c:15:08:f7:9d:63:64:74:aa:f3:e2:eb:7c:cd: 18:7b:83:2d:d5:06:b5:ac:f8:b8:37:23:d3:bd:1a: d1:7c:7c:f1:80:71:a9:1e:54:6d:3c:4e:42:d5:3d: 6e:73:d1:c4:53:09:61:75:cb:60:b0:78:0d:ca:13: be:da:63:a4:00:7a:38:04:f0:d2:c7:93:55:36:de: 21:e9:d1:32:ed:b5:bd:a6:dd:a7:e1:f2:11:58:de: 47:76:a8:d6:68:1c:c8:06:75:3b:0a:db:69:f8:b6: 76:9b:a6:51:61:bb:b5:64:41:6c:80:b2:64:21:af: b9:28:73:62:65:23:1d:0f:d2:a5:6a:71:e6:7c:1c: 27:e7:6b:79:d9:2d:11:72:d9:4d:16:27:eb:bb:33: 02:6d:b2:a6:22:59:25:99:65:98:6a:ab:e5:8c:dc: 6c:06:45:a7:a6:97:a7:ae:bb:20:58:ba:e3:1f:81: 0b:7b:45:fb:9e:be:25:4e:c6:00:96:0a:9e:39:b9: 42:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:68:31:F7:6E:E2:6C:E0:51:92:8A:25:47:D4:D9:56:BD:12:DC:56 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39322e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.92.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:7d:86:c4:27:32:3a:d2:63:22:0d:0f:a9:95:51:be:9c:0e: 34:ab:1b:7e:c7:f7:16:83:2b:af:5a:ad:35:57:21:78:f1:c1: 0f:0b:54:13:88:e3:f5:9e:c6:77:16:9a:1f:24:33:79:4c:00: 63:42:2f:60:5c:cc:67:c4:e0:81:a8:f6:c5:8e:15:52:6b:28: 47:52:18:a1:11:92:ed:65:cb:60:cc:49:2c:8e:57:79:8f:54: 2e:b6:af:8c:e0:32:14:b1:d3:52:ad:9a:a8:53:e2:df:d9:43: 8b:55:3d:16:b5:2f:3a:65:a1:b7:c8:34:c7:46:ed:da:10:ea: dd:e0:b1:5b:0a:da:a3:3f:ad:13:7b:19:73:01:af:46:dd:ee: fa:3c:33:d6:52:2a:d0:a7:c9:cd:cc:b8:e9:aa:c3:56:01:63: 19:d4:a3:07:41:e3:ad:bb:73:47:c7:16:5d:40:7f:63:39:1c: b0:7c:26:b6:2f:97:cf:0e:08:71:ea:12:14:2a:c2:60:82:9b: 05:5a:93:8c:cb:d0:23:2e:5b:fa:7b:92:e7:d6:33:a5:06:14: 9d:85:e7:2d:0d:b8:f4:fe:fd:26:14:87:19:27:60:51:ec:c2: af:cf:cb:aa:9d:aa:f7:d2:e5:51:a4:69:43:d1:dc:65:4e:7d: cf:20:8a:de -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUDerpMw4Vrpl0ALcSebw6eBgKmkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTIwMzU3MjZaFw0yNjA4MTEwNDAyMjZaMDMxMTAvBgNV BAMTKEEyNjgzMUY3NkVFMjZDRTA1MTkyOEEyNTQ3RDREOTU2QkQxMkRDNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVgyOt34F1PPRniGVJAoC+VIr+ EcQRAJM2pL6LEhsRPabx9JNqZF3MO2PiYy8CJZyBWcaxNXuAcW0i0fScFQj3nWNk dKrz4ut8zRh7gy3VBrWs+Lg3I9O9GtF8fPGAcakeVG08TkLVPW5z0cRTCWF1y2Cw eA3KE77aY6QAejgE8NLHk1U23iHp0TLttb2m3afh8hFY3kd2qNZoHMgGdTsK22n4 tnabplFhu7VkQWyAsmQhr7koc2JlIx0P0qVqceZ8HCfna3nZLRFy2U0WJ+u7MwJt sqYiWSWZZZhqq+WM3GwGRaeml6euuyBYuuMfgQt7RfueviVOxgCWCp45uUKrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUomgx927ibOBRkoolR9TZVr0S3FYwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzOTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtXDANBgkqhkiG 9w0BAQsFAAOCAQEADn2GxCcyOtJjIg0PqZVRvpwONKsbfsf3FoMrr1qtNVchePHB DwtUE4jj9Z7GdxaaHyQzeUwAY0IvYFzMZ8Tggaj2xY4VUmsoR1IYoRGS7WXLYMxJ LI5XeY9ULravjOAyFLHTUq2aqFPi39lDi1U9FrUvOmWht8g0x0bt2hDq3eCxWwra oz+tE3sZcwGvRt3u+jwz1lIq0KfJzcy46arDVgFjGdSjB0HjrbtzR8cWXUB/Yzkc sHwmti+Xzw4IceoSFCrCYIKbBVqTjMvQIy5b+nuS59YzpQYUnYXnLQ249P79JhSH GSdgUezCr8/Lqp2q99LlUaRpQ9HcZU59zyCK3g== -----END CERTIFICATE-----Generated at Sat Aug 23 19:23:43 2025 by rpki-client