$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39342e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e39342e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: PFFF7wOzswXkUvuXZAL6iT8tVDgOdkVdZ6Rau5XCsgs= Subject key identifier: E8:DD:AA:D6:BC:CF:00:A5:EC:C2:0F:44:73:CB:0B:CB:6B:EF:88:C1 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 77772A78D6CA35D64D73157E16B0427EBBDF02E4 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39342e302f32342d3234203d3e203233363935.roa Signing time: Tue 12 Aug 2025 04:02:27 +0000 ROA not before: Tue 12 Aug 2025 03:57:27 +0000 ROA not after: Tue 11 Aug 2026 04:02:27 +0000 asID: 23695 IP address blocks: 202.173.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:77:2a:78:d6:ca:35:d6:4d:73:15:7e:16:b0:42:7e:bb:df:02:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 12 03:57:27 2025 GMT Not After : Aug 11 04:02:27 2026 GMT Subject: CN=E8DDAAD6BCCF00A5ECC20F4473CB0BCB6BEF88C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:22:1b:14:21:5c:21:b6:33:f1:71:f5:91:0b: a8:55:14:46:4d:e3:a1:18:8f:e4:c8:f6:2b:4f:da: af:a0:09:47:65:95:94:b9:03:e0:48:5a:7b:79:4d: ce:75:85:d4:64:ad:a7:71:a5:0e:87:e9:12:c5:c3: 16:88:fa:fb:ec:6d:82:b4:1e:1f:b2:9f:97:6e:30: ae:1d:4c:75:14:87:6f:a2:80:60:21:04:86:3e:4e: 05:2a:93:17:a7:3f:01:8c:65:c7:45:9f:cd:90:e3: 65:bd:b7:5a:10:69:dd:2e:c0:b7:4d:f4:6f:4a:06: fb:a2:a2:f5:3f:24:b9:e2:db:7e:bd:6a:38:c4:04: 3d:fd:2f:a3:a3:2d:b4:b7:6d:70:b9:81:da:19:77: 75:c5:d4:6e:b8:ca:53:15:a4:58:19:7a:63:07:8e: 7e:ba:a0:9a:84:ea:03:fe:76:bd:6d:b1:de:b1:4d: 79:2f:7b:6e:d8:6e:e5:98:05:c1:af:59:9e:02:26: 6f:47:07:fd:55:99:3e:b9:28:71:b7:ff:95:8b:03: 94:dc:a5:4c:61:a1:a3:bd:d6:da:b2:e7:c6:79:60: 60:03:46:aa:20:28:13:a6:32:76:59:ed:b7:85:b9: 08:2a:d1:fe:75:cf:7d:a4:44:5f:25:5c:6b:50:d9: 38:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:DD:AA:D6:BC:CF:00:A5:EC:C2:0F:44:73:CB:0B:CB:6B:EF:88:C1 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39342e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.94.0/24 Signature Algorithm: sha256WithRSAEncryption 85:9b:0a:7f:c7:b8:29:bc:1a:d2:a1:38:78:3a:6d:eb:6a:be: ba:82:22:74:a9:df:3a:fa:0a:ac:6d:d9:fd:49:08:1a:3a:00: bf:ed:7e:8c:68:53:c4:3d:41:c8:fc:7a:f8:27:11:89:e5:64: a1:6b:b4:b6:75:23:a4:f4:fa:09:62:58:53:d9:ea:9f:f9:88: f7:09:bd:25:90:76:76:d5:8e:15:9d:62:89:b0:e0:db:3e:18: 11:a6:e8:bb:07:63:45:9b:d5:30:5b:cd:65:ab:17:6c:56:0c: 42:56:73:de:5f:c1:00:19:01:80:a4:9e:ae:2f:21:a7:a5:8b: 5b:bc:af:5f:ed:5c:49:4c:b3:66:92:7c:a4:5f:14:33:c7:d9: c4:5a:65:a3:3f:46:ac:15:07:b3:89:c6:9a:86:74:23:cb:c8: 71:40:91:94:65:74:ef:03:52:2c:a5:0c:92:17:8c:51:3c:22: 1b:5b:32:30:64:db:65:1e:5e:9b:7e:23:63:03:f3:2f:25:2f: 05:92:22:14:36:43:be:82:c2:31:7c:85:bd:a5:72:bb:f2:c7: 19:0e:95:7e:91:79:7e:c6:4d:75:76:a5:ae:fa:9b:fd:cd:cb: e1:be:dc:cc:02:79:8d:72:19:eb:f1:3f:30:c8:2b:1a:29:68: eb:23:11:6a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUd3cqeNbKNdZNcxV+FrBCfrvfAuQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTIwMzU3MjdaFw0yNjA4MTEwNDAyMjdaMDMxMTAvBgNV BAMTKEU4RERBQUQ2QkNDRjAwQTVFQ0MyMEY0NDczQ0IwQkNCNkJFRjg4QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClIhsUIVwhtjPxcfWRC6hVFEZN 46EYj+TI9itP2q+gCUdllZS5A+BIWnt5Tc51hdRkradxpQ6H6RLFwxaI+vvsbYK0 Hh+yn5duMK4dTHUUh2+igGAhBIY+TgUqkxenPwGMZcdFn82Q42W9t1oQad0uwLdN 9G9KBvuiovU/JLni2369ajjEBD39L6OjLbS3bXC5gdoZd3XF1G64ylMVpFgZemMH jn66oJqE6gP+dr1tsd6xTXkve27YbuWYBcGvWZ4CJm9HB/1VmT65KHG3/5WLA5Tc pUxhoaO91tqy58Z5YGADRqogKBOmMnZZ7beFuQgq0f51z32kRF8lXGtQ2ThtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6N2q1rzPAKXswg9Ec8sLy2vviMEwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzOTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtXjANBgkqhkiG 9w0BAQsFAAOCAQEAhZsKf8e4Kbwa0qE4eDpt62q+uoIidKnfOvoKrG3Z/UkIGjoA v+1+jGhTxD1ByPx6+CcRieVkoWu0tnUjpPT6CWJYU9nqn/mI9wm9JZB2dtWOFZ1i ibDg2z4YEabouwdjRZvVMFvNZasXbFYMQlZz3l/BABkBgKSeri8hp6WLW7yvX+1c SUyzZpJ8pF8UM8fZxFploz9GrBUHs4nGmoZ0I8vIcUCRlGV07wNSLKUMkheMUTwi G1syMGTbZR5em34jYwPzLyUvBZIiFDZDvoLCMXyFvaVyu/LHGQ6VfpF5fsZNdXal rvqb/c3L4b7czAJ5jXIZ6/E/MMgrGilo6yMRag== -----END CERTIFICATE-----Generated at Sat Aug 23 21:15:19 2025 by rpki-client