$ rpki-client -vvf repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e31362e302f32332d3234203d3e203233393530.roa File: 3230322e35312e31362e302f32332d3234203d3e203233393530.roa (raw, json) Hash identifier: gpChKqdsCYOp/lH5E0Zrms5qo7Kcyfa0mYD/MLgV2Ps= Subject key identifier: 19:85:87:13:BF:13:A8:C0:F5:6F:7F:C3:78:8B:28:A7:BA:B0:06:3D Certificate issuer: /CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0 Certificate serial: 7AF9ED5166FED85FF0554F8D63EC8658047180C9 Authority key identifier: 9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e31362e302f32332d3234203d3e203233393530.roa Signing time: Thu 09 Oct 2025 15:00:00 +0000 ROA not before: Thu 09 Oct 2025 14:55:00 +0000 ROA not after: Thu 08 Oct 2026 15:00:00 +0000 asID: 23950 IP address blocks: 202.51.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 16:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:f9:ed:51:66:fe:d8:5f:f0:55:4f:8d:63:ec:86:58:04:71:80:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0 Validity Not Before: Oct 9 14:55:00 2025 GMT Not After : Oct 8 15:00:00 2026 GMT Subject: CN=19858713BF13A8C0F56F7FC3788B28A7BAB0063D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d4:30:35:4d:81:9a:49:2e:c7:ae:17:e5:44: 58:2c:2d:4a:6d:37:83:13:f9:25:7b:ca:59:8f:75: 98:d6:fb:28:1c:fd:06:65:4b:d0:d6:8f:05:ce:e3: dd:88:04:35:eb:03:ae:b3:5d:2c:1b:27:e6:f7:ca: 05:de:9b:18:5d:6b:9b:09:fc:10:f7:52:cd:1b:26: 01:e4:c9:9d:23:5e:c5:60:25:29:f1:18:c6:6f:4f: 49:da:6c:79:21:2b:93:b3:29:74:fd:c4:0c:eb:81: 99:4f:83:83:56:72:aa:61:ab:60:b6:eb:97:c4:1c: 08:2f:4a:b2:ff:1f:f3:4c:62:3d:00:3d:59:75:90: 64:b5:bd:1a:9e:13:ab:41:de:eb:9e:2e:88:30:cd: aa:1c:f3:8e:60:98:a3:4a:5b:0e:a2:88:3c:94:67: 6f:9f:97:70:b0:cc:62:54:c9:ee:da:4a:20:91:b8: 28:75:42:21:2a:c8:f9:f4:85:b2:06:1d:2a:c2:fe: d8:63:dc:d5:d7:0e:ce:ca:5f:7d:47:f0:35:51:0e: 78:5f:18:19:52:33:56:bd:6e:a1:8e:90:37:6d:f5: 30:d9:e0:9b:94:f4:52:76:6f:7d:c5:3d:16:5c:bf: 49:eb:af:b3:56:57:ac:ee:b9:90:34:ab:d8:39:69: 25:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:85:87:13:BF:13:A8:C0:F5:6F:7F:C3:78:8B:28:A7:BA:B0:06:3D X509v3 Authority Key Identifier: keyid:9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e31362e302f32332d3234203d3e203233393530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.16.0/23 Signature Algorithm: sha256WithRSAEncryption 64:4e:bf:86:89:ce:73:a6:1c:28:54:32:bd:89:d9:9d:5b:d3: 17:07:f4:1a:ae:79:54:fe:4a:d9:1a:b9:bd:51:3d:0b:9e:b8: 8c:97:2d:04:d7:53:73:a3:7c:fd:7c:c6:73:bd:0c:50:20:ac: fd:6e:42:e0:2d:eb:0a:3b:f0:a5:79:03:2f:b5:e5:b0:68:63: e3:e9:cd:16:b7:71:41:e6:bf:18:b4:65:47:a5:0b:48:41:d2: ab:25:28:2f:d6:11:43:16:3b:3c:a1:17:df:e2:60:0f:7c:c9: c7:00:da:e0:07:58:87:39:6d:23:65:34:c8:4c:e0:a1:23:8c: f4:65:ea:ae:a9:06:34:30:c9:fc:a1:29:1e:9d:55:3d:ad:db: 41:f4:e6:08:3c:a9:67:80:d3:fe:16:a1:dc:7d:55:f6:e3:d2: e1:32:ce:af:93:92:7d:4c:db:df:4b:17:11:50:2b:9f:e1:0e: 87:60:4e:71:cc:8c:ba:50:34:20:d3:7a:77:03:4c:af:1e:74: 6d:68:52:95:ae:4e:35:4d:b3:71:46:25:a4:8d:89:28:7a:81: 68:ae:e6:b0:c6:bc:94:a7:1e:36:01:c6:45:41:0d:68:c3:7d: 59:c7:f8:ec:80:4e:f7:f3:d8:99:14:6d:b3:86:a2:5f:6b:b9: fb:a3:4b:38 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUevntUWb+2F/wVU+NY+yGWARxgMkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcx QUI0MjBBMDAeFw0yNTEwMDkxNDU1MDBaFw0yNjEwMDgxNTAwMDBaMDMxMTAvBgNV BAMTKDE5ODU4NzEzQkYxM0E4QzBGNTZGN0ZDMzc4OEIyOEE3QkFCMDA2M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB1DA1TYGaSS7HrhflRFgsLUpt N4MT+SV7ylmPdZjW+ygc/QZlS9DWjwXO492IBDXrA66zXSwbJ+b3ygXemxhda5sJ /BD3Us0bJgHkyZ0jXsVgJSnxGMZvT0nabHkhK5OzKXT9xAzrgZlPg4NWcqphq2C2 65fEHAgvSrL/H/NMYj0APVl1kGS1vRqeE6tB3uueLogwzaoc845gmKNKWw6iiDyU Z2+fl3CwzGJUye7aSiCRuCh1QiEqyPn0hbIGHSrC/thj3NXXDs7KX31H8DVRDnhf GBlSM1a9bqGOkDdt9TDZ4JuU9FJ2b33FPRZcv0nrr7NWV6zuuZA0q9g5aSUpAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUGYWHE78TqMD1b3/DeIsop7qwBj0wHwYDVR0j BBgwFoAUnmpn1bnXJcH0Can7O/NaBxq0IKAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTRlNmIyZC0zZGRiLTQ2ZWItODNlZi1jOTliMjAwMzc4M2YvMC85RTZBNjdENUI5 RDcyNUMxRjQwOUE5RkIzQkYzNUEwNzFBQjQyMEEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcxQUI0 MjBBMC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5NGU2YjJkLTNkZGItNDZlYi04 M2VmLWM5OWIyMDAzNzgzZi8wLzMyMzAzMjJlMzUzMTJlMzEzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMyMzMzOTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKMxAwDQYJKoZIhvcN AQELBQADggEBAGROv4aJznOmHChUMr2J2Z1b0xcH9BqueVT+Stkaub1RPQueuIyX LQTXU3OjfP18xnO9DFAgrP1uQuAt6wo78KV5Ay+15bBoY+PpzRa3cUHmvxi0ZUel C0hB0qslKC/WEUMWOzyhF9/iYA98yccA2uAHWIc5bSNlNMhM4KEjjPRl6q6pBjQw yfyhKR6dVT2t20H05gg8qWeA0/4Wodx9Vfbj0uEyzq+Tkn1M299LFxFQK5/hDodg TnHMjLpQNCDTencDTK8edG1oUpWuTjVNs3FGJaSNiSh6gWiu5rDGvJSnHjYBxkVB DWjDfVnH+OyATvfz2JkUbbOGol9rufujSzg= -----END CERTIFICATE-----Generated at Mon Oct 20 17:48:25 2025 by rpki-client