$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32342d3234203d3e20313430343433.roa File: 3230322e37302e3133322e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: hnSe2L9heULKYvVeefFY6CeCDXE6iTWu+s4r/qCo/4o= Subject key identifier: B5:12:06:FD:84:B1:A8:01:F0:67:99:DF:2D:5D:4F:79:30:49:E7:F3 Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610 Certificate serial: 290324AF913CBBFB57AF58B3B5D6AFF4A9DE45BA Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32342d3234203d3e20313430343433.roa Signing time: Mon 11 Aug 2025 15:00:00 +0000 ROA not before: Mon 11 Aug 2025 14:55:00 +0000 ROA not after: Mon 10 Aug 2026 15:00:00 +0000 asID: 140443 IP address blocks: 202.70.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 22:14:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:03:24:af:91:3c:bb:fb:57:af:58:b3:b5:d6:af:f4:a9:de:45:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610 Validity Not Before: Aug 11 14:55:00 2025 GMT Not After : Aug 10 15:00:00 2026 GMT Subject: CN=B51206FD84B1A801F06799DF2D5D4F793049E7F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d6:21:43:34:d3:1c:f4:ea:ac:7c:ef:5b:44: 2a:09:24:de:ed:50:0a:5e:58:13:7c:25:20:b7:62: 2e:2d:7a:75:81:45:d6:b8:18:42:10:d2:f5:7a:7a: 80:08:e1:2e:86:06:96:51:71:91:88:d4:c8:9b:f0: ff:dc:ed:7e:16:78:19:33:e8:27:34:4a:b2:3a:99: 31:a6:56:ce:0d:18:25:80:89:50:63:2f:c0:81:52: 7a:c9:56:7b:70:89:21:1b:05:c5:fe:b2:da:05:4c: 15:45:df:c2:3a:a2:05:d9:ab:0a:8e:db:ed:5a:da: 19:a9:b9:ec:de:a3:7f:e3:31:81:d1:a7:18:01:3c: d5:7d:6a:da:3f:84:3a:04:cc:56:55:f3:14:7b:9b: 68:b5:47:cb:d5:04:71:aa:ce:d8:19:8f:6c:c8:fe: c6:7c:a5:d0:e7:7d:fc:92:ed:73:7f:95:b4:23:05: de:24:4e:97:98:df:12:38:1d:ef:de:e7:fd:f5:96: 60:93:68:47:ad:93:a4:c2:a7:93:a5:87:3b:8d:ec: 66:8f:6d:9d:0a:d3:7b:bf:bd:22:b8:2c:8c:f6:d0: 40:a9:e6:2e:45:16:bd:a1:cf:90:0d:e0:b5:93:09: bf:6c:f3:07:f0:c6:22:10:c0:86:71:29:78:10:0c: 01:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:12:06:FD:84:B1:A8:01:F0:67:99:DF:2D:5D:4F:79:30:49:E7:F3 X509v3 Authority Key Identifier: keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.70.132.0/24 Signature Algorithm: sha256WithRSAEncryption a0:a4:8f:a4:b7:d1:af:9c:31:3d:98:a1:0e:a3:22:bf:14:b5: 97:d4:48:4f:bf:13:ee:7f:9d:dd:5d:d6:39:8f:5a:65:03:b5: 36:39:91:f9:7a:57:bc:60:14:43:73:ec:0c:ee:d5:6d:ea:92: a3:b5:ba:5f:0f:93:9d:28:f6:f5:77:67:f0:13:97:d3:85:e0: 19:1d:63:8d:fd:13:59:c1:8f:6a:23:b8:78:46:c1:80:34:ad: 77:46:e3:21:fb:f6:89:a6:0b:fc:db:3b:2b:78:ad:30:d9:8a: 32:51:70:83:46:1b:aa:ba:c8:5e:d2:5f:26:f2:f5:96:e0:71: 49:dd:82:1e:ce:5a:b6:63:3f:28:c8:ca:08:51:76:33:65:6a: 37:2f:5d:a0:1b:83:d3:a0:b1:c1:01:99:a6:04:19:04:a5:5e: 5b:98:33:86:ef:17:08:47:42:c9:aa:44:f3:5b:78:5a:80:81: 5e:ff:73:de:7b:cd:e1:2b:1f:eb:b6:16:a9:90:7a:4e:64:f6: 8b:68:a9:d7:6f:e9:24:28:6e:d3:17:c5:11:cf:9a:24:51:c8: 10:f2:f7:bf:96:4e:3d:47:f3:a8:00:0f:6a:aa:88:b1:17:26: 38:24:0b:7d:a7:0c:14:5f:f6:00:59:26:d7:b5:71:a2:1e:9e: 2c:6a:24:60 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKQMkr5E8u/tXr1iztdav9KneRbowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYx MkIxNTYxMDAeFw0yNTA4MTExNDU1MDBaFw0yNjA4MTAxNTAwMDBaMDMxMTAvBgNV BAMTKEI1MTIwNkZEODRCMUE4MDFGMDY3OTlERjJENUQ0Rjc5MzA0OUU3RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx1iFDNNMc9OqsfO9bRCoJJN7t UApeWBN8JSC3Yi4tenWBRda4GEIQ0vV6eoAI4S6GBpZRcZGI1Mib8P/c7X4WeBkz 6Cc0SrI6mTGmVs4NGCWAiVBjL8CBUnrJVntwiSEbBcX+stoFTBVF38I6ogXZqwqO 2+1a2hmpuezeo3/jMYHRpxgBPNV9ato/hDoEzFZV8xR7m2i1R8vVBHGqztgZj2zI /sZ8pdDnffyS7XN/lbQjBd4kTpeY3xI4He/e5/31lmCTaEetk6TCp5OlhzuN7GaP bZ0K03u/vSK4LIz20ECp5i5FFr2hz5AN4LWTCb9s8wfwxiIQwIZxKXgQDAEVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtRIG/YSxqAHwZ5nfLV1PeTBJ5/MwHwYDVR0j BBgwFoAUsJKKRdAU2NX61QMU6CgIbxKxVhAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2QzMjNiZS04MzdkLTQyNDQtODQ2Yy03ZDIzOTNhOWEwMDkvMC9CMDkyOEE0NUQw MTREOEQ1RkFENTAzMTRFODI4MDg2RjEyQjE1NjEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYxMkIx NTYxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZDMyM2JlLTgzN2QtNDI0NC04 NDZjLTdkMjM5M2E5YTAwOS8wLzMyMzAzMjJlMzczMDJlMzEzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAykaEMA0GCSqG SIb3DQEBCwUAA4IBAQCgpI+kt9GvnDE9mKEOoyK/FLWX1EhPvxPuf53dXdY5j1pl A7U2OZH5ele8YBRDc+wM7tVt6pKjtbpfD5OdKPb1d2fwE5fTheAZHWON/RNZwY9q I7h4RsGANK13RuMh+/aJpgv82zsreK0w2YoyUXCDRhuqushe0l8m8vWW4HFJ3YIe zlq2Yz8oyMoIUXYzZWo3L12gG4PToLHBAZmmBBkEpV5bmDOG7xcIR0LJqkTzW3ha gIFe/3Pee83hKx/rthapkHpOZPaLaKnXb+kkKG7TF8URz5okUcgQ8ve/lk49R/Oo AA9qqoixFyY4JAt9pwwUX/YAWSbXtXGiHp4saiRg -----END CERTIFICATE-----Generated at Sat Aug 23 18:02:04 2025 by rpki-client