$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3139302e302f32342d3234203d3e203338373530.roa File: 3230322e3137392e3139302e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: IlfpZnqN0u5jMQ+MMy/Uh2Q/ScrlgNhJWft3oBH8Ovo= Subject key identifier: B0:3F:AD:31:C0:87:FC:A4:45:B3:F5:5A:2D:F8:87:69:62:6D:7F:C6 Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 0162205FDA6866C6DEB7ADE41545FE1C65AEC335 Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3139302e302f32342d3234203d3e203338373530.roa Signing time: Mon 13 Oct 2025 09:00:00 +0000 ROA not before: Mon 13 Oct 2025 08:55:00 +0000 ROA not after: Mon 12 Oct 2026 09:00:00 +0000 asID: 38750 IP address blocks: 202.179.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:62:20:5f:da:68:66:c6:de:b7:ad:e4:15:45:fe:1c:65:ae:c3:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Oct 13 08:55:00 2025 GMT Not After : Oct 12 09:00:00 2026 GMT Subject: CN=B03FAD31C087FCA445B3F55A2DF88769626D7FC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:36:ce:4c:81:7d:8b:7b:50:29:e4:f9:0f:df: 19:16:d1:aa:08:4c:15:ca:7b:e2:3d:9d:db:dd:0a: 5a:92:5a:f4:7e:f0:3a:14:24:6a:ec:c1:2a:5d:5b: 12:61:b8:06:bf:89:a8:e6:01:04:bd:ce:8a:73:16: d4:22:7b:d0:d1:d2:6e:e5:de:e6:51:de:eb:e5:64: 36:20:c0:bf:6b:36:10:60:df:9f:27:2f:0c:10:a5: 2e:77:8e:78:53:4d:06:84:57:82:a0:e3:e3:bc:43: 1e:f7:b1:b0:f7:ba:d0:d2:5a:fe:5f:18:a6:86:99: 5b:8e:8f:f0:65:9c:46:99:73:29:8c:b6:ff:b1:5b: 2d:74:18:79:6f:cc:00:a7:ee:20:d2:20:bf:dc:d9: e9:53:7f:83:7d:6e:63:e7:68:e5:42:de:b7:16:8b: 37:0e:6a:05:18:a8:c1:8a:38:9f:1a:31:ce:34:95: a0:91:96:e4:ce:43:3c:82:12:57:94:8d:21:9f:c2: c9:37:52:4c:ca:eb:0a:bd:2b:b7:51:89:5e:a9:f4: 0e:ba:9d:28:a5:ea:87:46:2c:39:04:ed:ea:c4:71: 3e:4f:28:15:1c:5f:3e:64:c8:19:84:47:c0:95:6c: ff:18:97:89:4b:9b:cf:91:4b:47:ff:6c:f0:01:c8: 1c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:3F:AD:31:C0:87:FC:A4:45:B3:F5:5A:2D:F8:87:69:62:6D:7F:C6 X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3139302e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.179.190.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:4b:69:cd:3a:fa:be:4a:11:6f:ba:10:57:b0:8d:be:c3:a9: 4c:70:d5:7d:da:45:19:7e:99:50:72:f6:fd:b0:54:69:11:da: 79:bb:0b:0a:dd:bf:a5:e5:ca:f7:2b:65:1c:e9:46:35:f7:13: 10:29:aa:e5:93:6e:6f:33:9c:e2:c9:5d:d5:2f:94:f7:e7:98: 4a:43:4e:4d:b4:86:15:b7:99:b9:41:c7:bb:a6:3b:6e:57:42: ab:cb:a4:3f:48:9e:9a:08:fb:66:89:dc:80:aa:0a:fc:60:61: d2:bd:fa:b0:59:ac:35:a0:a4:6a:8d:06:cd:0c:1d:f7:88:1a: 3f:52:b7:63:e2:91:da:4c:c7:66:35:31:a8:fe:33:26:e2:6d: 2d:6d:f9:9b:b3:04:f0:31:f3:31:17:0a:ba:51:11:b8:1f:e4: 82:54:2b:12:80:f9:54:0e:3f:0c:d9:cf:15:5c:90:99:41:0c: f3:6c:b8:33:a7:8e:69:81:06:eb:60:41:e3:61:c0:53:38:19: 00:df:a0:24:ea:31:ac:45:c5:a0:6b:0c:b9:ac:bb:ee:5e:96: 48:d2:78:59:d4:d6:0d:b8:13:a5:31:a6:b6:76:04:3f:99:c7: dc:b8:72:a7:9b:01:9c:91:16:65:2e:a1:98:74:55:89:16:23: cd:ec:cc:51 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAWIgX9poZsbet63kFUX+HGWuwzUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNTEwMTMwODU1MDBaFw0yNjEwMTIwOTAwMDBaMDMxMTAvBgNV BAMTKEIwM0ZBRDMxQzA4N0ZDQTQ0NUIzRjU1QTJERjg4NzY5NjI2RDdGQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxNs5MgX2Le1Ap5PkP3xkW0aoI TBXKe+I9ndvdClqSWvR+8DoUJGrswSpdWxJhuAa/iajmAQS9zopzFtQie9DR0m7l 3uZR3uvlZDYgwL9rNhBg358nLwwQpS53jnhTTQaEV4Kg4+O8Qx73sbD3utDSWv5f GKaGmVuOj/BlnEaZcymMtv+xWy10GHlvzACn7iDSIL/c2elTf4N9bmPnaOVC3rcW izcOagUYqMGKOJ8aMc40laCRluTOQzyCEleUjSGfwsk3UkzK6wq9K7dRiV6p9A66 nSil6odGLDkE7erEcT5PKBUcXz5kyBmER8CVbP8Yl4lLm8+RS0f/bPAByBwRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsD+tMcCH/KRFs/VaLfiHaWJtf8YwHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMyMzAzMjJlMzEzNzM5MmUzMTM5MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyrO+MA0GCSqG SIb3DQEBCwUAA4IBAQBuS2nNOvq+ShFvuhBXsI2+w6lMcNV92kUZfplQcvb9sFRp Edp5uwsK3b+l5cr3K2Uc6UY19xMQKarlk25vM5ziyV3VL5T355hKQ05NtIYVt5m5 Qce7pjtuV0Kry6Q/SJ6aCPtmidyAqgr8YGHSvfqwWaw1oKRqjQbNDB33iBo/Urdj 4pHaTMdmNTGo/jMm4m0tbfmbswTwMfMxFwq6URG4H+SCVCsSgPlUDj8M2c8VXJCZ QQzzbLgzp45pgQbrYEHjYcBTOBkA36Ak6jGsRcWgawy5rLvuXpZI0nhZ1NYNuBOl Maa2dgQ/mcfcuHKnmwGckRZlLqGYdFWJFiPN7MxR -----END CERTIFICATE-----Generated at Mon Oct 20 17:48:38 2025 by rpki-client