$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138352e302f32342d3234203d3e203338373530.roa File: 3230322e3137392e3138352e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: Y4Wi8qAYZ81rv46ZtcXhKaHsjEBVaOJAYBhmKDi8JTE= Subject key identifier: 15:0C:AC:65:01:F9:CB:80:D3:8C:4B:36:22:94:48:40:D4:2D:77:06 Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 778D219FF7DAF097D7264A188CA221B554440B1D Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138352e302f32342d3234203d3e203338373530.roa Signing time: Mon 13 Oct 2025 09:00:00 +0000 ROA not before: Mon 13 Oct 2025 08:55:00 +0000 ROA not after: Mon 12 Oct 2026 09:00:00 +0000 asID: 38750 IP address blocks: 202.179.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:8d:21:9f:f7:da:f0:97:d7:26:4a:18:8c:a2:21:b5:54:44:0b:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Oct 13 08:55:00 2025 GMT Not After : Oct 12 09:00:00 2026 GMT Subject: CN=150CAC6501F9CB80D38C4B3622944840D42D7706 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:0b:98:48:a5:b2:7c:2d:ef:d3:09:6f:80:3f: d4:b5:44:a7:4b:55:e0:a4:ff:11:58:4b:59:43:f7: 70:73:bf:2c:d3:29:f6:23:f9:93:df:7b:9c:15:e1: 43:31:ff:33:79:74:de:54:32:ed:31:de:cd:f1:51: 98:bd:35:43:49:af:6b:43:6c:be:06:0d:f5:4a:3e: a2:91:5e:d6:5c:45:f1:5b:78:30:aa:f5:d7:5a:e8: 04:07:f4:d5:02:eb:34:08:34:4c:e0:79:e9:86:0c: d0:47:fb:d4:0e:2e:e4:fe:a8:4a:69:ba:26:9b:2d: 28:61:3a:39:fe:62:c8:c9:ad:31:38:ea:0e:71:89: 38:11:85:63:15:a4:e1:6d:ef:db:37:d2:68:e3:8b: 3c:97:28:31:df:61:0f:13:0a:ac:ec:97:d8:c1:5a: 86:28:3a:01:0f:6d:b0:cb:cd:b7:68:42:06:03:fe: 77:e1:da:77:36:99:2c:cb:d0:63:c9:45:74:6e:31: 52:8e:f5:94:7b:be:9e:db:fc:41:d8:c9:4c:3b:e3: da:cf:8e:ec:b8:86:6a:04:4d:6e:6b:33:da:ec:2d: 6f:1d:10:6b:9b:d0:7b:c3:b5:d3:01:37:e0:b8:41: c6:17:8e:4a:05:97:09:00:d6:7e:9d:a8:b2:09:68: 5c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:0C:AC:65:01:F9:CB:80:D3:8C:4B:36:22:94:48:40:D4:2D:77:06 X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138352e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.179.185.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:3e:e8:4e:7e:1e:1f:32:0f:0f:de:76:4d:09:66:26:32:26: 1e:e0:b2:c1:9f:2a:44:c0:c0:e0:7b:f9:51:73:ad:fc:0d:55: 21:c7:f1:bf:fd:93:f2:d8:7d:00:9e:8a:a0:8f:99:2e:95:45: df:21:62:ae:e9:84:53:49:7e:47:a8:bb:e5:40:18:a8:57:d9: 6b:d2:0a:b6:ea:ed:c7:c9:6a:bb:2e:17:65:61:e3:e3:39:5b: ec:32:cd:37:7d:e8:1e:6d:15:6f:bc:39:57:24:7f:65:b7:d4: ea:dc:44:ea:e1:6f:4b:00:d5:15:f9:91:b0:1e:66:8a:cc:ab: 9b:ff:53:97:2c:f9:80:41:c9:29:d7:41:be:e0:24:70:93:15: 54:dc:b4:d9:bc:a5:9c:85:6e:04:ee:a0:e9:9c:fd:60:ee:c6: 6e:09:07:7c:a3:9b:d9:87:92:90:80:43:b2:a0:11:89:0b:c3: c3:9c:bd:46:10:7a:0d:66:09:2c:25:95:e3:ef:5d:4a:36:d4: a2:3b:85:16:d5:90:00:9a:79:32:02:88:35:5d:93:a6:ce:b3: a8:af:ee:c7:95:d2:33:01:01:45:9d:9d:d4:57:9c:0e:30:5f: d4:09:96:a7:4c:4e:14:85:e8:54:00:18:e1:1a:a8:e6:37:b3: 8e:5d:83:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUd40hn/fa8JfXJkoYjKIhtVRECx0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNTEwMTMwODU1MDBaFw0yNjEwMTIwOTAwMDBaMDMxMTAvBgNV BAMTKDE1MENBQzY1MDFGOUNCODBEMzhDNEIzNjIyOTQ0ODQwRDQyRDc3MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD+C5hIpbJ8Le/TCW+AP9S1RKdL VeCk/xFYS1lD93BzvyzTKfYj+ZPfe5wV4UMx/zN5dN5UMu0x3s3xUZi9NUNJr2tD bL4GDfVKPqKRXtZcRfFbeDCq9dda6AQH9NUC6zQINEzgeemGDNBH+9QOLuT+qEpp uiabLShhOjn+YsjJrTE46g5xiTgRhWMVpOFt79s30mjjizyXKDHfYQ8TCqzsl9jB WoYoOgEPbbDLzbdoQgYD/nfh2nc2mSzL0GPJRXRuMVKO9ZR7vp7b/EHYyUw749rP juy4hmoETW5rM9rsLW8dEGub0HvDtdMBN+C4QcYXjkoFlwkA1n6dqLIJaFwhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFQysZQH5y4DTjEs2IpRIQNQtdwYwHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMyMzAzMjJlMzEzNzM5MmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyrO5MA0GCSqG SIb3DQEBCwUAA4IBAQBKPuhOfh4fMg8P3nZNCWYmMiYe4LLBnypEwMDge/lRc638 DVUhx/G//ZPy2H0Anoqgj5kulUXfIWKu6YRTSX5HqLvlQBioV9lr0gq26u3HyWq7 LhdlYePjOVvsMs03fegebRVvvDlXJH9lt9Tq3ETq4W9LANUV+ZGwHmaKzKub/1OX LPmAQckp10G+4CRwkxVU3LTZvKWchW4E7qDpnP1g7sZuCQd8o5vZh5KQgEOyoBGJ C8PDnL1GEHoNZgksJZXj711KNtSiO4UW1ZAAmnkyAog1XZOmzrOor+7HldIzAQFF nZ3UV5wOMF/UCZanTE4UhehUABjhGqjmN7OOXYNk -----END CERTIFICATE-----Generated at Mon Oct 20 20:36:16 2025 by rpki-client