$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36352e302f32342d3234203d3e20313431303833.roa File: 3230322e34372e36352e302f32342d3234203d3e20313431303833.roa (raw, json) Hash identifier: 0k6NhznMzTxaSkOFRjyqYBNGbMAdlnus4yilyWVzugU= Subject key identifier: D6:EF:D9:62:2E:8D:8E:ED:FA:9B:32:0C:6D:92:A0:36:F9:53:86:7A Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 0959B4A63ED75C437710FF1DF5DC584E28DC982B Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36352e302f32342d3234203d3e20313431303833.roa Signing time: Wed 13 Aug 2025 08:00:02 +0000 ROA not before: Wed 13 Aug 2025 07:55:02 +0000 ROA not after: Wed 12 Aug 2026 08:00:02 +0000 asID: 141083 IP address blocks: 202.47.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 17:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:59:b4:a6:3e:d7:5c:43:77:10:ff:1d:f5:dc:58:4e:28:dc:98:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Aug 13 07:55:02 2025 GMT Not After : Aug 12 08:00:02 2026 GMT Subject: CN=D6EFD9622E8D8EEDFA9B320C6D92A036F953867A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:28:68:5f:61:7d:87:a6:d5:ec:b7:b5:28:98: cd:18:a9:15:05:68:62:5b:03:b2:31:12:6e:11:2c: 56:1b:b4:8f:84:35:1f:d8:a0:d0:93:28:99:d5:0a: 92:31:af:87:b0:18:13:1d:31:00:6b:29:36:2a:62: f6:8d:17:87:da:b4:e8:f7:fb:b3:86:11:e6:96:41: c7:6d:49:56:27:6b:44:b7:3b:85:6a:5c:f4:2b:7c: c4:aa:de:ba:b4:53:dc:75:0b:fc:49:eb:1e:d3:22: 08:63:58:8a:31:15:8a:b4:9c:ae:ac:6d:61:f2:c1: a5:38:d9:51:ba:75:3d:2c:63:61:ee:2d:9d:93:40: 1e:0b:ed:5c:03:c3:94:9d:f1:53:bd:59:a8:5d:61: cd:ac:93:54:42:36:91:45:de:bc:20:46:c1:92:56: 6b:49:f3:96:6d:37:e2:b8:64:a2:6a:c1:b5:8d:7b: 95:1c:4e:b6:f3:18:06:9a:3b:37:44:fc:0b:24:c0: 8f:26:9c:b2:ba:36:97:79:c5:2a:12:5f:fb:06:f6: c7:ce:eb:44:32:8d:db:5a:fe:2d:bf:52:e7:1a:73: 4d:eb:53:79:5d:ab:17:8d:24:a2:4e:bb:69:a4:33: 6d:f1:15:2b:4b:88:46:dd:45:fa:63:46:7f:8d:c4: e6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:EF:D9:62:2E:8D:8E:ED:FA:9B:32:0C:6D:92:A0:36:F9:53:86:7A X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36352e302f32342d3234203d3e20313431303833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.65.0/24 Signature Algorithm: sha256WithRSAEncryption 45:2e:2b:45:d4:a0:9f:a8:74:cc:8d:29:65:b9:9f:5c:59:ac: 9a:b2:39:d1:fb:de:51:9e:c2:12:4e:d2:06:23:43:f0:b2:ea: 8d:af:0d:b8:ff:63:34:a2:38:94:94:0f:f6:f2:45:c1:03:f8: 28:68:00:a1:80:46:ac:a8:d5:b4:85:d3:df:fc:f8:f7:49:65: 78:34:5d:ce:2d:27:3c:55:f6:bd:29:78:9a:8a:dd:92:b7:5b: 40:22:8f:65:7a:be:25:b9:a4:e2:08:a6:6f:98:6a:61:70:97: 09:93:35:a5:46:a3:d0:44:6a:2c:21:1e:f2:54:e8:02:73:9a: 9a:1e:50:7d:2a:4b:81:eb:f7:2b:24:cb:a2:7a:e3:97:b7:3b: ca:e0:97:7e:c5:ca:b7:de:15:6b:5d:b0:5a:c6:9f:7e:62:90: 8b:35:aa:8d:31:17:26:af:b5:0d:78:0b:ef:7d:97:1f:84:de: 5b:dc:a7:1b:07:30:09:03:18:0a:ab:16:d2:4f:9d:d8:31:f8: 25:c7:24:51:dd:10:49:e8:31:e0:fa:24:48:9d:4a:2d:e9:93: 87:c0:fa:fe:cc:0d:9e:df:1e:dd:5f:67:e7:98:6e:74:40:2d: 7d:13:aa:a9:c4:99:e5:81:53:3c:52:95:7e:c4:6a:88:d6:dc: 19:c8:24:2e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCVm0pj7XXEN3EP8d9dxYTijcmCswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA4MTMwNzU1MDJaFw0yNjA4MTIwODAwMDJaMDMxMTAvBgNV BAMTKEQ2RUZEOTYyMkU4RDhFRURGQTlCMzIwQzZEOTJBMDM2Rjk1Mzg2N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCKGhfYX2HptXst7UomM0YqRUF aGJbA7IxEm4RLFYbtI+ENR/YoNCTKJnVCpIxr4ewGBMdMQBrKTYqYvaNF4fatOj3 +7OGEeaWQcdtSVYna0S3O4VqXPQrfMSq3rq0U9x1C/xJ6x7TIghjWIoxFYq0nK6s bWHywaU42VG6dT0sY2HuLZ2TQB4L7VwDw5Sd8VO9WahdYc2sk1RCNpFF3rwgRsGS VmtJ85ZtN+K4ZKJqwbWNe5UcTrbzGAaaOzdE/AskwI8mnLK6Npd5xSoSX/sG9sfO 60Qyjdta/i2/Uucac03rU3ldqxeNJKJOu2mkM23xFStLiEbdRfpjRn+NxOb3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1u/ZYi6Nju36mzIMbZKgNvlThnowHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTMwMzgzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMovQTANBgkqhkiG 9w0BAQsFAAOCAQEARS4rRdSgn6h0zI0pZbmfXFmsmrI50fveUZ7CEk7SBiND8LLq ja8NuP9jNKI4lJQP9vJFwQP4KGgAoYBGrKjVtIXT3/z490lleDRdzi0nPFX2vSl4 mordkrdbQCKPZXq+Jbmk4gimb5hqYXCXCZM1pUaj0ERqLCEe8lToAnOamh5QfSpL gev3KyTLonrjl7c7yuCXfsXKt94Va12wWsaffmKQizWqjTEXJq+1DXgL732XH4Te W9ynGwcwCQMYCqsW0k+d2DH4JcckUd0QSegx4PokSJ1KLemTh8D6/swNnt8e3V9n 55hudEAtfROqqcSZ5YFTPFKVfsRqiNbcGcgkLg== -----END CERTIFICATE-----Generated at Sat Aug 23 16:17:47 2025 by rpki-client