$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138342e302f32342d3234203d3e203338373530.roa File: 3230322e3137392e3138342e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: 9Eop7Wi9KDAgTJcnqm4m9VblRXdXAgnSYGkJE3U1uCo= Subject key identifier: 3E:CD:0F:58:E8:F4:7D:B5:DB:77:AD:A8:07:54:F5:02:47:CD:7B:08 Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 706F49C18B4E207AF498C238D3A84BEDBC180596 Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138342e302f32342d3234203d3e203338373530.roa Signing time: Mon 13 Oct 2025 08:00:00 +0000 ROA not before: Mon 13 Oct 2025 07:55:00 +0000 ROA not after: Mon 12 Oct 2026 08:00:00 +0000 asID: 38750 IP address blocks: 202.179.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:6f:49:c1:8b:4e:20:7a:f4:98:c2:38:d3:a8:4b:ed:bc:18:05:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Oct 13 07:55:00 2025 GMT Not After : Oct 12 08:00:00 2026 GMT Subject: CN=3ECD0F58E8F47DB5DB77ADA80754F50247CD7B08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:61:58:1b:42:e7:8d:a1:bf:f1:b5:f4:71:cd: 5e:d4:91:28:7f:44:fe:83:50:76:89:94:ec:1b:18: e8:f7:11:84:a7:26:34:74:8b:b2:e4:ae:c3:a0:ea: e4:05:a8:fe:93:6e:5c:be:5c:7b:9f:75:cc:2e:82: 5e:76:67:e2:3d:ec:85:a3:76:6b:de:fe:53:96:d7: e4:4b:5d:42:10:ac:c6:13:a5:87:77:06:39:15:16: 0c:47:d9:93:a4:97:0c:1e:c7:b5:10:1c:d7:20:21: fa:8d:76:0e:de:e5:03:80:63:b2:c8:f3:58:5e:a5: 0d:06:85:28:1d:b0:fd:da:9b:22:88:2f:b5:34:5d: 31:d7:1f:92:c1:9a:73:6f:7b:7c:f4:c0:34:f5:90: 6f:59:9b:5c:2a:cf:b3:d8:2c:ef:42:44:0d:f0:bd: f4:4a:0f:87:bc:6d:6a:c3:14:d5:2c:a1:39:33:eb: 56:f8:d6:3d:64:a5:89:00:82:7c:4c:0d:bb:83:d6: 4e:59:f0:fe:1f:98:fa:ce:22:e4:0c:5f:01:34:e8: 00:2b:0c:87:0d:7c:6d:b3:53:73:a1:25:0c:98:4a: 55:66:1a:8d:5f:cb:35:70:b2:5a:bb:ff:8f:37:06: 9b:b7:dd:80:74:f3:26:28:66:14:5c:02:cf:12:07: 1f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:CD:0F:58:E8:F4:7D:B5:DB:77:AD:A8:07:54:F5:02:47:CD:7B:08 X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138342e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.179.184.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:42:e8:b0:0b:a8:6e:5f:ba:f6:03:44:b8:b8:bf:98:0e:c6: 53:eb:0a:da:8a:96:89:b9:b8:ff:35:4e:69:42:32:3e:ce:d9: 3c:8d:78:e4:c7:a0:27:8f:d0:5d:4a:13:ad:d0:2a:ed:db:38: ec:a5:7f:50:e9:23:f4:b1:5b:5a:28:ad:54:d1:f5:06:05:95: 4f:ab:88:d4:49:a2:67:c5:3d:4d:53:5f:04:15:36:cf:bc:9e: 51:21:ef:2d:44:63:55:e6:04:3a:b7:2a:e2:a5:35:e9:dc:b6: ae:5d:78:33:74:78:4d:e3:c1:6c:6f:05:e0:00:98:87:5a:74: 59:55:72:7f:c9:4a:a3:5e:ff:cc:43:ca:4f:ce:14:2e:79:c7: 39:d3:4b:14:56:f1:ca:6d:c4:05:df:cf:ff:5d:6f:9f:9f:2f: 3e:50:46:90:73:64:1d:35:f8:ff:0b:60:4c:5d:5c:66:10:34: e4:66:ea:c4:2b:e5:41:e5:c3:8b:06:69:aa:01:ea:ec:ff:09: 03:0d:ef:04:28:49:90:53:6c:d7:53:24:c6:18:60:1f:75:9b: 82:33:e5:75:eb:83:1a:dd:11:c6:8c:ea:94:22:c1:73:69:b2: 04:6e:de:07:e3:49:e2:25:99:e3:33:e6:64:e8:d7:72:29:d6: 15:bb:e4:22 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcG9JwYtOIHr0mMI406hL7bwYBZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNTEwMTMwNzU1MDBaFw0yNjEwMTIwODAwMDBaMDMxMTAvBgNV BAMTKDNFQ0QwRjU4RThGNDdEQjVEQjc3QURBODA3NTRGNTAyNDdDRDdCMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtYVgbQueNob/xtfRxzV7UkSh/ RP6DUHaJlOwbGOj3EYSnJjR0i7LkrsOg6uQFqP6Tbly+XHufdcwugl52Z+I97IWj dmve/lOW1+RLXUIQrMYTpYd3BjkVFgxH2ZOklwwex7UQHNcgIfqNdg7e5QOAY7LI 81hepQ0GhSgdsP3amyKIL7U0XTHXH5LBmnNve3z0wDT1kG9Zm1wqz7PYLO9CRA3w vfRKD4e8bWrDFNUsoTkz61b41j1kpYkAgnxMDbuD1k5Z8P4fmPrOIuQMXwE06AAr DIcNfG2zU3OhJQyYSlVmGo1fyzVwslq7/483Bpu33YB08yYoZhRcAs8SBx8TAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPs0PWOj0fbXbd62oB1T1AkfNewgwHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMyMzAzMjJlMzEzNzM5MmUzMTM4MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyrO4MA0GCSqG SIb3DQEBCwUAA4IBAQAfQuiwC6huX7r2A0S4uL+YDsZT6wraipaJubj/NU5pQjI+ ztk8jXjkx6Anj9BdShOt0Crt2zjspX9Q6SP0sVtaKK1U0fUGBZVPq4jUSaJnxT1N U18EFTbPvJ5RIe8tRGNV5gQ6tyripTXp3LauXXgzdHhN48FsbwXgAJiHWnRZVXJ/ yUqjXv/MQ8pPzhQuecc500sUVvHKbcQF38//XW+fny8+UEaQc2QdNfj/C2BMXVxm EDTkZurEK+VB5cOLBmmqAers/wkDDe8EKEmQU2zXUyTGGGAfdZuCM+V164Ma3RHG jOqUIsFzabIEbt4H40niJZnjM+Zk6NdyKdYVu+Qi -----END CERTIFICATE-----Generated at Mon Oct 20 20:35:10 2025 by rpki-client