$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3139312e302f32342d3234203d3e203338373530.roa File: 3230322e3137392e3139312e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: L4h2Wp4fQdhUrMD0z3Ssoa6P+p1dDNjkEiybK+QQebs= Subject key identifier: 1D:A7:37:42:A0:87:73:7B:93:04:C7:B3:9F:BE:BC:A4:5D:5D:66:B5 Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 07CDDF5DD25F165FA28A0A2916499C2D6B6C3DC9 Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3139312e302f32342d3234203d3e203338373530.roa Signing time: Mon 13 Oct 2025 09:00:00 +0000 ROA not before: Mon 13 Oct 2025 08:55:00 +0000 ROA not after: Mon 12 Oct 2026 09:00:00 +0000 asID: 38750 IP address blocks: 202.179.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:cd:df:5d:d2:5f:16:5f:a2:8a:0a:29:16:49:9c:2d:6b:6c:3d:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Oct 13 08:55:00 2025 GMT Not After : Oct 12 09:00:00 2026 GMT Subject: CN=1DA73742A087737B9304C7B39FBEBCA45D5D66B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3a:e2:25:cf:a1:8e:d0:48:da:58:e8:d4:63: bc:5a:e9:5c:64:63:77:a3:01:8e:9d:5a:58:d8:80: 24:f0:a8:53:bc:52:80:5f:e7:0f:be:c3:36:d8:f9: 68:07:19:90:5b:fe:5d:68:9f:4c:66:69:b5:14:bb: 8f:2a:7a:a1:bc:31:96:93:75:6f:fc:97:8b:4f:53: 1c:cd:4d:aa:9e:58:27:84:c9:81:40:97:37:f8:e0: f0:f2:92:bf:bc:a8:40:e9:19:69:d9:4d:1c:85:92: 46:2d:e2:e7:dd:d2:cf:9f:35:3a:ea:2b:53:08:05: 5a:d9:ae:4f:5c:92:c4:bb:9f:a3:55:28:11:50:c6: 86:e5:a2:e6:f2:be:c8:0f:c2:90:63:ed:aa:ca:96: ee:ca:83:4e:e4:65:4f:d1:3a:45:01:1a:27:59:a5: ec:49:f2:a4:69:a5:37:5f:a5:e9:0d:83:b1:84:11: 76:e6:cd:a6:22:f9:8c:20:c9:64:cb:0b:c1:69:6b: 18:02:a5:8c:b0:cf:81:ef:5a:d1:5c:1e:87:37:2b: ef:70:a4:e1:55:29:a3:0f:c5:61:22:0f:19:16:19: 53:cc:d1:4c:2e:fa:3f:d4:d9:03:ac:92:8a:e4:b7: 39:eb:3c:de:3e:65:0e:f4:4a:5c:62:6c:52:4d:7d: 5c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:A7:37:42:A0:87:73:7B:93:04:C7:B3:9F:BE:BC:A4:5D:5D:66:B5 X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3139312e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.179.191.0/24 Signature Algorithm: sha256WithRSAEncryption 85:a1:b2:98:ba:6a:76:b7:0d:7b:53:a0:bf:1d:cb:0b:b9:f7: 96:db:56:67:02:a7:51:4e:20:a3:74:83:ef:e4:ed:14:2a:03: 06:6b:a3:79:ee:5b:59:8b:bb:4d:0b:89:d0:98:bd:cd:1e:02: bd:41:ec:22:c9:fc:66:09:06:a7:c9:98:b1:cb:1b:8c:c4:0c: f8:b1:1d:fe:29:88:59:a1:fd:1d:18:6e:e5:65:6e:01:35:fe: 1c:7d:6a:93:ab:ee:50:ac:8a:2d:a7:ed:9e:3c:06:c7:41:90: bb:30:2b:2f:33:9b:ce:0e:85:f2:05:b9:7d:94:f5:ee:5a:b0: 52:00:12:86:bb:75:a2:71:ee:af:fe:df:c3:ff:1b:35:f6:fa: 58:c6:f8:0d:43:97:be:0e:e6:e2:5b:ff:3e:b1:97:cd:fd:8e: e1:e9:05:f9:46:32:da:d3:89:14:cd:ce:a9:07:a8:0d:dc:88: 31:04:57:d7:24:1d:50:35:4b:c5:37:f9:8a:4a:9e:2c:25:9d: 2e:bf:bd:0a:c5:0d:5e:d4:2b:f3:2e:cd:95:47:c5:77:46:60: b7:63:b6:04:2f:55:59:59:a9:b2:1a:33:50:8b:b0:c0:d1:ed: 67:37:82:ae:3f:7a:33:4b:6c:c9:dc:fe:52:31:6f:6b:a6:37: 83:da:e1:e6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUB83fXdJfFl+iigopFkmcLWtsPckwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNTEwMTMwODU1MDBaFw0yNjEwMTIwOTAwMDBaMDMxMTAvBgNV BAMTKDFEQTczNzQyQTA4NzczN0I5MzA0QzdCMzlGQkVCQ0E0NUQ1RDY2QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpOuIlz6GO0EjaWOjUY7xa6Vxk Y3ejAY6dWljYgCTwqFO8UoBf5w++wzbY+WgHGZBb/l1on0xmabUUu48qeqG8MZaT dW/8l4tPUxzNTaqeWCeEyYFAlzf44PDykr+8qEDpGWnZTRyFkkYt4ufd0s+fNTrq K1MIBVrZrk9cksS7n6NVKBFQxobloubyvsgPwpBj7arKlu7Kg07kZU/ROkUBGidZ pexJ8qRppTdfpekNg7GEEXbmzaYi+YwgyWTLC8FpaxgCpYywz4HvWtFcHoc3K+9w pOFVKaMPxWEiDxkWGVPM0Uwu+j/U2QOskorktznrPN4+ZQ70SlxibFJNfVwBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHac3QqCHc3uTBMezn768pF1dZrUwHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMyMzAzMjJlMzEzNzM5MmUzMTM5MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyrO/MA0GCSqG SIb3DQEBCwUAA4IBAQCFobKYump2tw17U6C/HcsLufeW21ZnAqdRTiCjdIPv5O0U KgMGa6N57ltZi7tNC4nQmL3NHgK9QewiyfxmCQanyZixyxuMxAz4sR3+KYhZof0d GG7lZW4BNf4cfWqTq+5QrIotp+2ePAbHQZC7MCsvM5vODoXyBbl9lPXuWrBSABKG u3Wice6v/t/D/xs19vpYxvgNQ5e+DubiW/8+sZfN/Y7h6QX5RjLa04kUzc6pB6gN 3IgxBFfXJB1QNUvFN/mKSp4sJZ0uv70KxQ1e1CvzLs2VR8V3RmC3Y7YEL1VZWamy GjNQi7DA0e1nN4KuP3ozS2zJ3P5SMW9rpjeD2uHm -----END CERTIFICATE-----Generated at Mon Oct 20 20:34:51 2025 by rpki-client