$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32332d3233203d3e20313430343433.roa File: 3230322e37302e3133322e302f32332d3233203d3e20313430343433.roa (raw, json) Hash identifier: unxNSSNtfbW/QtJSHv1+Jppsd16Z88+qlZSg2ZXLUc0= Subject key identifier: 29:03:E6:52:19:88:E4:D7:D5:B9:36:FB:E4:2A:DC:66:83:C4:DB:FF Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610 Certificate serial: 6A7D24961B938D7253B292B530ACCFC837B8B8F6 Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32332d3233203d3e20313430343433.roa Signing time: Mon 11 Aug 2025 16:02:27 +0000 ROA not before: Mon 11 Aug 2025 15:57:27 +0000 ROA not after: Mon 10 Aug 2026 16:02:27 +0000 asID: 140443 IP address blocks: 202.70.132.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 22:14:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:7d:24:96:1b:93:8d:72:53:b2:92:b5:30:ac:cf:c8:37:b8:b8:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610 Validity Not Before: Aug 11 15:57:27 2025 GMT Not After : Aug 10 16:02:27 2026 GMT Subject: CN=2903E6521988E4D7D5B936FBE42ADC6683C4DBFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b4:80:c8:a7:01:6c:04:8a:c6:11:5c:75:6a: 20:7d:8b:91:85:7f:86:a7:56:d8:8e:b9:60:29:98: 64:d1:e9:fd:91:77:1c:9c:0a:d9:c5:ed:58:06:04: 0d:51:0f:56:e8:1c:ca:83:97:60:ae:54:8c:22:65: 5b:73:ce:29:96:72:3a:de:fe:97:d5:82:0c:7b:f4: 26:31:3a:10:90:d1:35:fe:3f:bc:41:7c:df:f7:eb: 3d:7b:c5:c0:a6:53:ec:48:d7:b1:20:cf:7d:d5:4a: c0:8a:de:18:28:0a:28:ba:b2:b9:a3:5b:c5:0f:c8: 34:b3:d7:02:b7:76:7e:4f:11:bc:34:50:8d:ba:b8: 51:50:be:8a:c9:d8:f9:58:c7:6b:ab:2b:5f:e5:6a: 89:01:aa:61:8d:43:ab:2a:f1:fd:55:4a:d9:b9:f8: 5b:6c:a3:ba:7d:99:90:9a:ab:1c:52:9a:b1:8c:4e: ca:44:94:5e:07:62:b0:f0:13:80:fb:a0:f3:e9:f4: ec:6f:89:6e:03:d9:60:dd:1d:36:2e:d2:bb:ab:ff: b6:09:2e:78:ea:30:b9:25:41:65:d7:71:2a:b5:21: bb:26:69:80:2e:a8:16:cf:78:b5:b6:d6:9f:6b:c1: a7:ee:9d:dd:19:f7:9a:33:bd:c4:19:00:af:70:1f: e3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:03:E6:52:19:88:E4:D7:D5:B9:36:FB:E4:2A:DC:66:83:C4:DB:FF X509v3 Authority Key Identifier: keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32332d3233203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.70.132.0/23 Signature Algorithm: sha256WithRSAEncryption 74:6c:57:17:64:2d:d2:b6:63:10:c8:2c:2a:84:be:32:28:db: 6a:1e:da:fb:6c:91:6f:27:d5:01:d3:87:44:18:b5:72:d0:a0: 2a:91:e9:33:e3:9b:ab:ec:be:d6:ee:15:ef:75:02:80:88:56: 55:9f:8a:08:d6:e5:9a:b1:b9:4e:e0:f8:03:63:46:6a:5d:2b: 18:fa:23:96:94:e7:79:ee:b6:43:d4:75:0f:c6:0b:19:64:79: f1:3a:a5:34:ac:52:db:84:2d:10:ef:72:21:67:59:f3:18:a4: ba:c3:b1:91:ff:4b:bc:32:d9:54:65:63:66:3e:40:0a:c8:45: 56:49:7f:83:cb:b1:6f:c2:ba:9a:26:91:e2:5a:d6:9e:83:96: aa:ac:2d:e2:06:b0:d6:e7:f8:56:87:91:06:32:cf:1a:9e:e4: 67:e4:07:87:10:93:7d:1a:3b:14:13:f4:a4:42:b2:db:d9:f1: cd:b6:5a:d3:30:41:3b:bf:00:6d:45:b2:09:24:42:b2:72:7f: 30:16:c6:b0:8e:c4:2e:9f:24:23:1b:f5:dd:28:e2:c7:12:0d: 4b:2f:0c:09:51:18:e2:61:40:25:6e:05:6e:7e:a3:d0:9f:ec: 35:ed:06:2b:fa:a0:b6:72:69:65:01:ca:c9:b7:22:78:13:05: 75:d2:31:b1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUan0klhuTjXJTspK1MKzPyDe4uPYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYx MkIxNTYxMDAeFw0yNTA4MTExNTU3MjdaFw0yNjA4MTAxNjAyMjdaMDMxMTAvBgNV BAMTKDI5MDNFNjUyMTk4OEU0RDdENUI5MzZGQkU0MkFEQzY2ODNDNERCRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBtIDIpwFsBIrGEVx1aiB9i5GF f4anVtiOuWApmGTR6f2RdxycCtnF7VgGBA1RD1boHMqDl2CuVIwiZVtzzimWcjre /pfVggx79CYxOhCQ0TX+P7xBfN/36z17xcCmU+xI17Egz33VSsCK3hgoCii6srmj W8UPyDSz1wK3dn5PEbw0UI26uFFQvorJ2PlYx2urK1/laokBqmGNQ6sq8f1VStm5 +Ftso7p9mZCaqxxSmrGMTspElF4HYrDwE4D7oPPp9OxviW4D2WDdHTYu0rur/7YJ LnjqMLklQWXXcSq1IbsmaYAuqBbPeLW21p9rwafund0Z95ozvcQZAK9wH+MpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKQPmUhmI5NfVuTb75CrcZoPE2/8wHwYDVR0j BBgwFoAUsJKKRdAU2NX61QMU6CgIbxKxVhAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2QzMjNiZS04MzdkLTQyNDQtODQ2Yy03ZDIzOTNhOWEwMDkvMC9CMDkyOEE0NUQw MTREOEQ1RkFENTAzMTRFODI4MDg2RjEyQjE1NjEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYxMkIx NTYxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZDMyM2JlLTgzN2QtNDI0NC04 NDZjLTdkMjM5M2E5YTAwOS8wLzMyMzAzMjJlMzczMDJlMzEzMzMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBykaEMA0GCSqG SIb3DQEBCwUAA4IBAQB0bFcXZC3StmMQyCwqhL4yKNtqHtr7bJFvJ9UB04dEGLVy 0KAqkekz45ur7L7W7hXvdQKAiFZVn4oI1uWasblO4PgDY0ZqXSsY+iOWlOd57rZD 1HUPxgsZZHnxOqU0rFLbhC0Q73IhZ1nzGKS6w7GR/0u8MtlUZWNmPkAKyEVWSX+D y7FvwrqaJpHiWtaeg5aqrC3iBrDW5/hWh5EGMs8anuRn5AeHEJN9GjsUE/SkQrLb 2fHNtlrTMEE7vwBtRbIJJEKycn8wFsawjsQunyQjG/XdKOLHEg1LLwwJURjiYUAl bgVufqPQn+w17QYr+qC2cmllAcrJtyJ4EwV10jGx -----END CERTIFICATE-----Generated at Sat Aug 23 17:54:41 2025 by rpki-client