$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e3136322e3230382e302f32302d3230203d3e2039333431.roa File: 3230322e3136322e3230382e302f32302d3230203d3e2039333431.roa (raw, json) Hash identifier: DBTGEHFyW2n3ALQ7kcagxe1wXGaGylHCjRanj7frGyE= Subject key identifier: BE:9B:E2:9D:66:52:21:F7:DA:27:C3:CF:1A:AC:B0:73:EB:FF:20:EF Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 4E6D3CB98B007CB63003CA24CFC125F9A94228D5 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e3136322e3230382e302f32302d3230203d3e2039333431.roa Signing time: Tue 06 May 2025 05:02:53 +0000 ROA not before: Tue 06 May 2025 04:57:53 +0000 ROA not after: Tue 05 May 2026 05:02:53 +0000 asID: 9341 IP address blocks: 202.162.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 01:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:6d:3c:b9:8b:00:7c:b6:30:03:ca:24:cf:c1:25:f9:a9:42:28:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: May 6 04:57:53 2025 GMT Not After : May 5 05:02:53 2026 GMT Subject: CN=BE9BE29D665221F7DA27C3CF1AACB073EBFF20EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:95:6b:17:bb:41:0b:c0:8a:99:97:81:f9:4c: 2b:bc:e3:aa:6e:7b:b9:b7:33:5b:91:17:94:97:2b: a8:00:04:e6:21:33:4d:2f:f9:76:9b:58:87:15:f9: b7:a7:13:68:dd:3f:03:a1:71:be:38:7e:f8:fb:d5: 3e:a6:8d:0d:53:9b:55:1a:61:c6:ad:61:3b:49:69: 29:a9:8e:8c:ce:b2:9b:ba:7b:18:02:6e:59:b5:8f: bd:30:81:fd:5a:c2:94:ee:66:0a:4f:a8:49:49:51: 0e:f7:d5:51:0c:9d:fa:dd:14:94:8a:42:79:07:5f: 6d:64:25:47:e3:61:a9:0a:b5:55:07:fa:50:6c:b4: 1f:26:36:92:c9:42:71:d6:e5:f0:9e:46:8d:8e:d2: 38:00:42:6c:54:b7:a0:db:d0:09:f2:53:8e:52:37: ed:ac:9b:6f:6c:3c:bb:df:3a:2e:b9:ac:12:3d:68: 47:3e:c1:75:26:66:47:eb:7c:0e:05:eb:37:47:88: a4:fa:45:52:e4:f8:ba:f3:3f:18:b1:95:e9:39:07: c8:3a:60:11:d6:9d:ce:f5:e2:22:67:c9:1a:6b:f6: 39:28:9b:fb:e5:f3:93:66:00:c8:a2:b7:88:bb:c0: 01:9e:89:5b:4f:f2:10:ba:78:12:4d:e2:96:bc:81: ef:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:9B:E2:9D:66:52:21:F7:DA:27:C3:CF:1A:AC:B0:73:EB:FF:20:EF X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e3136322e3230382e302f32302d3230203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.208.0/20 Signature Algorithm: sha256WithRSAEncryption 5a:77:7d:1d:47:e3:d1:d5:62:01:29:ec:3b:09:4b:cd:3c:ba: 71:5f:8f:f5:8a:cc:79:b0:fa:5d:bb:be:51:62:6f:17:d2:a8: 34:54:6a:a2:67:ed:29:12:92:89:b1:6a:2b:ee:27:3f:9c:e7: 12:1f:af:2a:f0:dd:9e:64:2c:ea:df:6c:24:36:99:88:f3:7b: 19:84:64:66:0e:f3:a7:22:42:97:35:58:30:cb:66:13:74:29: b2:2e:b3:f2:08:29:75:42:8c:f4:22:87:2a:24:d7:f1:83:90: a0:1c:1c:6b:f3:53:be:ea:f0:1c:40:95:e1:fc:f7:18:b0:ac: c5:f5:30:b3:16:06:ff:f9:3e:01:c8:d9:77:fe:bc:17:56:1b: d9:4a:c3:6c:16:b5:56:74:22:51:95:5e:1d:f3:3d:62:c6:be: 31:ce:b3:17:6f:31:49:88:d6:82:9e:75:d4:a8:7d:9b:60:fa: 11:a3:e2:35:e6:f5:93:52:1a:8f:f8:09:ab:4e:bd:63:07:d5: 42:b0:ee:9b:02:7e:45:7e:78:ca:fb:92:e5:16:8c:49:b6:1b: f3:5e:24:06:5e:6e:6e:71:f5:c8:e8:1d:1c:5b:9a:39:87:ed: 4d:a1:70:4b:19:74:16:2e:96:42:e3:cc:c9:c0:93:54:64:3b: a5:1d:8e:1c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTm08uYsAfLYwA8okz8El+alCKNUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNTA1MDYwNDU3NTNaFw0yNjA1MDUwNTAyNTNaMDMxMTAvBgNV BAMTKEJFOUJFMjlENjY1MjIxRjdEQTI3QzNDRjFBQUNCMDczRUJGRjIwRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnlWsXu0ELwIqZl4H5TCu846pu e7m3M1uRF5SXK6gABOYhM00v+XabWIcV+benE2jdPwOhcb44fvj71T6mjQ1Tm1Ua YcatYTtJaSmpjozOspu6exgCblm1j70wgf1awpTuZgpPqElJUQ731VEMnfrdFJSK QnkHX21kJUfjYakKtVUH+lBstB8mNpLJQnHW5fCeRo2O0jgAQmxUt6Db0AnyU45S N+2sm29sPLvfOi65rBI9aEc+wXUmZkfrfA4F6zdHiKT6RVLk+LrzPxixlek5B8g6 YBHWnc714iJnyRpr9jkom/vl85NmAMiit4i7wAGeiVtP8hC6eBJN4pa8ge/xAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvpvinWZSIffaJ8PPGqywc+v/IO8wHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzgyZTMwMmYz MjMwMmQzMjMwMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMqi0DANBgkqhkiG 9w0BAQsFAAOCAQEAWnd9HUfj0dViASnsOwlLzTy6cV+P9YrMebD6Xbu+UWJvF9Ko NFRqomftKRKSibFqK+4nP5znEh+vKvDdnmQs6t9sJDaZiPN7GYRkZg7zpyJClzVY MMtmE3Qpsi6z8ggpdUKM9CKHKiTX8YOQoBwca/NTvurwHECV4fz3GLCsxfUwsxYG //k+AcjZd/68F1Yb2UrDbBa1VnQiUZVeHfM9Ysa+Mc6zF28xSYjWgp511Kh9m2D6 EaPiNeb1k1Iaj/gJq069YwfVQrDumwJ+RX54yvuS5RaMSbYb814kBl5ubnH1yOgd HFuaOYftTaFwSxl0Fi6WQuPMycCTVGQ7pR2OHA== -----END CERTIFICATE-----Generated at Mon Oct 20 19:02:16 2025 by rpki-client