$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39352e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e39352e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: 7hZ1/d8z8cuNOvDlKPy5v/4BiAJKyyXEJBjiAsWqzoc= Subject key identifier: 06:56:B3:19:45:6E:D4:15:90:79:D4:24:2E:50:28:E5:65:13:37:6A Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 4447FC5CAC0D3EF659B508C0E2E9E76ACD83DF39 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39352e302f32342d3234203d3e203233363935.roa Signing time: Tue 12 Aug 2025 04:02:26 +0000 ROA not before: Tue 12 Aug 2025 03:57:26 +0000 ROA not after: Tue 11 Aug 2026 04:02:26 +0000 asID: 23695 IP address blocks: 202.173.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:47:fc:5c:ac:0d:3e:f6:59:b5:08:c0:e2:e9:e7:6a:cd:83:df:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 12 03:57:26 2025 GMT Not After : Aug 11 04:02:26 2026 GMT Subject: CN=0656B319456ED4159079D4242E5028E56513376A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:8d:e1:89:0a:5e:e1:21:50:78:29:01:1d:bf: 81:85:1a:67:c2:fd:b1:d4:ef:03:b5:ce:5c:c0:16: 87:09:ab:26:15:99:70:9b:a6:cd:55:31:87:d8:f8: 21:5a:c3:e8:d5:4c:97:96:bd:41:1c:64:b3:e0:dd: 6f:22:bd:9c:6b:a7:4b:34:5e:18:cd:7a:22:ff:e7: cf:22:4b:5e:c8:fa:04:a0:99:a5:28:e8:3a:cf:9d: a9:7d:63:26:ab:49:37:8e:61:d3:40:25:1f:a2:33: ed:1f:b9:35:7b:1e:c9:f6:ee:08:61:f2:07:70:02: a3:07:82:cb:6b:f1:b9:59:ef:3c:94:23:c1:b6:0d: b9:d3:5b:27:13:0f:a5:d9:81:f4:4c:25:5c:e6:cb: fb:91:6e:e1:ab:a5:0a:6c:f3:e5:66:5f:df:95:a3: 1d:01:79:f1:d0:30:df:ae:2b:34:6c:51:c8:4d:48: 16:18:45:21:d0:be:98:b7:f9:f4:e5:43:47:86:72: 17:8b:6e:14:b6:79:55:3f:d4:e4:50:01:23:69:a2: 68:05:51:b7:e0:b6:44:81:86:24:8a:60:2d:2f:06: 74:43:ea:6a:78:14:79:cb:38:73:67:81:29:53:d0: d2:7f:9a:57:04:e9:43:bd:71:a3:6e:80:6f:3f:a3: bf:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:56:B3:19:45:6E:D4:15:90:79:D4:24:2E:50:28:E5:65:13:37:6A X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39352e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.95.0/24 Signature Algorithm: sha256WithRSAEncryption a7:4e:75:65:92:51:a5:0a:f5:c9:8a:01:b9:e6:ed:11:15:8e: 3c:62:e0:ab:53:08:ab:50:97:5e:77:0f:a1:99:75:83:95:5f: 7b:20:a4:0c:de:55:00:7f:96:e1:ab:59:8e:23:e0:0a:02:be: 39:37:1e:34:da:b3:2b:c7:bd:f0:84:03:d7:b0:06:95:cf:31: 31:58:27:fc:28:5c:90:50:67:1d:74:e1:19:6d:ed:33:62:77: 6f:b7:11:03:d9:0e:c0:66:c6:d6:7b:80:ec:bc:89:5d:a6:a0: 13:fc:08:a1:4f:f3:15:81:64:e0:26:6e:16:67:97:15:50:de: 57:02:a4:10:2e:4d:36:3c:68:b2:72:98:3c:33:a2:b7:9f:aa: 51:d8:af:af:23:8c:4d:70:1d:41:7d:f0:52:67:48:99:22:d5: d9:f2:21:74:1b:43:1d:75:ff:5d:31:a8:64:69:cd:d3:bb:4d: d1:71:6b:87:ac:33:74:30:30:a8:43:e2:38:87:a6:53:4f:e8: 58:31:e7:a2:24:45:28:28:51:bb:97:e2:6f:33:91:5c:90:9b: 7a:01:6f:f1:2a:36:ad:9b:43:97:c4:3b:e0:2a:95:ee:60:16: 4b:ea:b3:71:a1:ed:9b:ac:9c:04:84:66:d6:b2:e8:98:5e:07: 07:35:bd:fc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUREf8XKwNPvZZtQjA4unnas2D3zkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTIwMzU3MjZaFw0yNjA4MTEwNDAyMjZaMDMxMTAvBgNV BAMTKDA2NTZCMzE5NDU2RUQ0MTU5MDc5RDQyNDJFNTAyOEU1NjUxMzM3NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXjeGJCl7hIVB4KQEdv4GFGmfC /bHU7wO1zlzAFocJqyYVmXCbps1VMYfY+CFaw+jVTJeWvUEcZLPg3W8ivZxrp0s0 XhjNeiL/588iS17I+gSgmaUo6DrPnal9YyarSTeOYdNAJR+iM+0fuTV7Hsn27ghh 8gdwAqMHgstr8blZ7zyUI8G2DbnTWycTD6XZgfRMJVzmy/uRbuGrpQps8+VmX9+V ox0BefHQMN+uKzRsUchNSBYYRSHQvpi3+fTlQ0eGcheLbhS2eVU/1ORQASNpomgF UbfgtkSBhiSKYC0vBnRD6mp4FHnLOHNngSlT0NJ/mlcE6UO9caNugG8/o799AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBlazGUVu1BWQedQkLlAo5WUTN2owHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtXzANBgkqhkiG 9w0BAQsFAAOCAQEAp051ZZJRpQr1yYoBuebtERWOPGLgq1MIq1CXXncPoZl1g5Vf eyCkDN5VAH+W4atZjiPgCgK+OTceNNqzK8e98IQD17AGlc8xMVgn/ChckFBnHXTh GW3tM2J3b7cRA9kOwGbG1nuA7LyJXaagE/wIoU/zFYFk4CZuFmeXFVDeVwKkEC5N NjxosnKYPDOit5+qUdivryOMTXAdQX3wUmdImSLV2fIhdBtDHXX/XTGoZGnN07tN 0XFrh6wzdDAwqEPiOIemU0/oWDHnoiRFKChRu5fibzORXJCbegFv8So2rZtDl8Q7 4CqV7mAWS+qzcaHtm6ycBIRm1rLomF4HBzW9/A== -----END CERTIFICATE-----Generated at Sun Aug 24 01:33:17 2025 by rpki-client