$ rpki-client -vvf repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32332d3234203d3e20313439343039.roa File: 3230322e35312e32302e302f32332d3234203d3e20313439343039.roa (raw, json) Hash identifier: v7Ey731jJwlD4HvgKBVZcbXNxnHRRgslCOi7jV3EI/A= Subject key identifier: 86:D8:67:90:BC:88:AB:D4:C5:2F:97:E2:B5:F9:DB:AA:E0:59:9B:1B Certificate issuer: /CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0 Certificate serial: 3F31837870218FCC2AC69A9F4DF8B499B3BF9741 Authority key identifier: 9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32332d3234203d3e20313439343039.roa Signing time: Wed 20 Aug 2025 09:00:00 +0000 ROA not before: Wed 20 Aug 2025 08:55:00 +0000 ROA not after: Wed 19 Aug 2026 09:00:00 +0000 asID: 149409 IP address blocks: 202.51.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 18:52:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:31:83:78:70:21:8f:cc:2a:c6:9a:9f:4d:f8:b4:99:b3:bf:97:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0 Validity Not Before: Aug 20 08:55:00 2025 GMT Not After : Aug 19 09:00:00 2026 GMT Subject: CN=86D86790BC88ABD4C52F97E2B5F9DBAAE0599B1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4a:a7:74:be:c3:8a:2d:32:a7:06:a5:ab:0e: 33:24:b4:34:3b:66:0d:07:99:36:f6:51:12:42:33: eb:64:e5:eb:2b:8a:ed:7d:cb:03:fe:7a:0c:69:0e: f8:b0:cb:01:24:77:b9:8d:0f:28:3b:bd:06:5f:33: 58:16:c1:42:1e:b6:52:99:e9:3e:0f:d3:5c:f5:80: e7:a4:6f:69:ff:9c:3c:9b:54:e7:1d:63:37:84:44: 93:fc:ea:85:a0:48:fc:15:a8:54:c9:99:d0:79:c3: d0:a0:b1:1d:43:f6:73:f6:19:0d:05:56:1a:3b:5b: b1:a2:33:2b:23:e5:94:5f:dc:85:95:36:56:36:6a: 87:6e:60:58:ec:51:d2:68:46:4c:aa:d4:06:25:d6: 76:ab:a9:a0:70:e3:15:f9:01:bd:8d:1b:2a:7d:77: a4:bb:85:d4:5e:80:a1:4e:92:1a:4e:0f:28:e5:5f: 83:12:8f:1a:ae:6f:e6:c1:51:3b:b7:60:b6:5d:88: f3:06:32:78:cb:52:72:02:99:53:6c:77:be:1f:31: ae:09:ba:5c:12:d4:0a:20:90:a6:c8:73:93:b0:5d: db:01:f2:4a:85:91:8a:9f:be:26:b2:05:06:49:d6: 6c:bd:05:ef:72:43:85:86:b8:26:4b:d3:1c:dd:dd: a5:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D8:67:90:BC:88:AB:D4:C5:2F:97:E2:B5:F9:DB:AA:E0:59:9B:1B X509v3 Authority Key Identifier: keyid:9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32332d3234203d3e20313439343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.20.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:28:01:9d:65:d5:18:3b:57:73:3e:59:61:4d:2b:32:80:05: e3:5a:01:ef:77:5e:f6:a7:56:72:d0:8e:32:44:51:37:b5:88: f5:fd:5d:c1:35:df:17:e4:67:ca:2e:ab:75:f1:ca:4c:4b:dc: aa:1b:3e:7d:1f:47:6b:f5:18:45:69:f2:01:aa:bf:3b:35:1e: fd:93:12:76:7a:38:0f:cf:42:84:17:8c:04:cc:f1:20:25:09: 48:48:c7:67:e7:f1:ca:1a:af:23:dd:00:bd:b0:fe:50:94:86: 2c:36:00:a1:b1:e1:30:ea:6f:45:35:31:17:02:f5:65:85:a3: 67:0f:69:65:ad:cf:84:ba:fb:3e:0b:69:83:16:7b:a4:f1:3d: 35:c4:75:b7:da:f4:cc:63:38:7d:a5:25:e7:07:e0:74:20:fd: a6:9e:a6:24:45:23:b0:94:99:56:68:c7:3f:08:38:64:f3:a0: 22:28:b2:c1:9f:32:c1:d5:7e:ca:2d:4f:48:3d:13:5b:e6:b3: 6d:d0:5c:e3:b5:13:47:ab:23:0f:90:90:7a:33:38:0f:12:e5: 9f:fa:e5:97:fb:ae:be:23:cf:ac:02:a3:28:30:91:c7:1a:23: 4e:d1:94:b5:6a:b3:8e:ad:00:e9:90:03:94:ef:d1:5f:c5:92: 5f:5e:71:97 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPzGDeHAhj8wqxpqfTfi0mbO/l0EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcx QUI0MjBBMDAeFw0yNTA4MjAwODU1MDBaFw0yNjA4MTkwOTAwMDBaMDMxMTAvBgNV BAMTKDg2RDg2NzkwQkM4OEFCRDRDNTJGOTdFMkI1RjlEQkFBRTA1OTlCMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpSqd0vsOKLTKnBqWrDjMktDQ7 Zg0HmTb2URJCM+tk5esriu19ywP+egxpDviwywEkd7mNDyg7vQZfM1gWwUIetlKZ 6T4P01z1gOekb2n/nDybVOcdYzeERJP86oWgSPwVqFTJmdB5w9CgsR1D9nP2GQ0F Vho7W7GiMysj5ZRf3IWVNlY2aoduYFjsUdJoRkyq1AYl1narqaBw4xX5Ab2NGyp9 d6S7hdRegKFOkhpODyjlX4MSjxqub+bBUTu3YLZdiPMGMnjLUnICmVNsd74fMa4J ulwS1AogkKbIc5OwXdsB8kqFkYqfviayBQZJ1my9Be9yQ4WGuCZL0xzd3aXPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhthnkLyIq9TFL5fitfnbquBZmxswHwYDVR0j BBgwFoAUnmpn1bnXJcH0Can7O/NaBxq0IKAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTRlNmIyZC0zZGRiLTQ2ZWItODNlZi1jOTliMjAwMzc4M2YvMC85RTZBNjdENUI5 RDcyNUMxRjQwOUE5RkIzQkYzNUEwNzFBQjQyMEEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcxQUI0 MjBBMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5NGU2YjJkLTNkZGItNDZlYi04 M2VmLWM5OWIyMDAzNzgzZi8wLzMyMzAzMjJlMzUzMTJlMzIzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzQzOTM0MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcozFDANBgkqhkiG 9w0BAQsFAAOCAQEAGigBnWXVGDtXcz5ZYU0rMoAF41oB73de9qdWctCOMkRRN7WI 9f1dwTXfF+Rnyi6rdfHKTEvcqhs+fR9Ha/UYRWnyAaq/OzUe/ZMSdno4D89ChBeM BMzxICUJSEjHZ+fxyhqvI90AvbD+UJSGLDYAobHhMOpvRTUxFwL1ZYWjZw9pZa3P hLr7PgtpgxZ7pPE9NcR1t9r0zGM4faUl5wfgdCD9pp6mJEUjsJSZVmjHPwg4ZPOg IiiywZ8ywdV+yi1PSD0TW+azbdBc47UTR6sjD5CQejM4DxLln/rll/uuviPPrAKj KDCRxxojTtGUtWqzjq0A6ZADlO/RX8WSX15xlw== -----END CERTIFICATE-----Generated at Sat Aug 23 20:21:53 2025 by rpki-client