$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133392e302f32342d3234203d3e20313338383433.roa File: 3230332e38342e3133392e302f32342d3234203d3e20313338383433.roa (raw, json) Hash identifier: wu8diV5jdWuux9C39Tvhu1GJ88vcA6Du/7ncHsnVM8k= Subject key identifier: 64:64:F9:41:9D:4F:3F:B0:15:57:FC:26:CE:D1:65:AC:60:CF:96:4D Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 3E336BB118FC647180DD6B1B6F223FCD75CC7E5E Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133392e302f32342d3234203d3e20313338383433.roa Signing time: Sat 23 Aug 2025 07:01:59 +0000 ROA not before: Sat 23 Aug 2025 06:56:59 +0000 ROA not after: Sat 22 Aug 2026 07:01:59 +0000 asID: 138843 IP address blocks: 203.84.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:36:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:33:6b:b1:18:fc:64:71:80:dd:6b:1b:6f:22:3f:cd:75:cc:7e:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Aug 23 06:56:59 2025 GMT Not After : Aug 22 07:01:59 2026 GMT Subject: CN=6464F9419D4F3FB01557FC26CED165AC60CF964D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0f:05:0e:a8:91:77:14:a6:6e:9b:46:c3:23: dc:37:20:c7:bb:9b:53:23:a4:a6:8c:a2:3a:db:93: 3d:8e:c1:12:d4:7e:38:13:2a:a7:6c:16:dd:02:ab: 25:47:a0:00:f7:6c:27:de:4f:66:2d:38:27:1c:fd: 1a:37:3e:27:c9:62:15:cf:c7:26:d0:9b:27:95:44: e6:44:b0:2c:2d:ab:d0:0d:c8:8c:bb:f4:a9:99:06: 65:05:0c:7c:bb:a8:24:a9:69:8b:67:64:71:39:44: 74:19:16:e2:c9:d0:7d:56:63:c8:e6:ca:4f:52:a2: 7f:16:cd:d9:01:a2:d0:52:e3:71:2b:1f:a1:99:49: ff:30:15:71:92:2a:f6:e9:d2:aa:a9:6b:d2:40:1c: 5b:61:9b:35:8c:12:d7:83:f6:ab:ff:cd:27:ed:a1: 0e:ed:41:6a:09:77:01:49:da:28:80:05:a5:c3:dd: 50:d9:7f:cd:6d:a4:62:f1:bf:40:4e:0f:4e:3f:c1: 61:54:30:c3:e3:3a:4c:22:97:4d:4c:4c:3f:7c:2e: 3f:82:36:73:d6:ca:35:13:46:26:b6:97:d4:bc:c3: 29:6e:23:37:16:0a:3c:89:36:bd:35:d5:d4:c8:bd: 60:8b:02:79:b8:2c:2c:95:be:b4:03:b6:fe:84:e4: 27:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:64:F9:41:9D:4F:3F:B0:15:57:FC:26:CE:D1:65:AC:60:CF:96:4D X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133392e302f32342d3234203d3e20313338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.139.0/24 Signature Algorithm: sha256WithRSAEncryption 39:0b:f6:1f:e9:31:9f:b0:aa:18:5a:40:f3:52:3d:a9:07:8d: 10:7f:25:cf:18:76:8b:4e:11:9e:6c:96:e8:9d:9d:54:88:e7: 2c:06:fc:f1:9c:4d:f3:14:78:4a:59:9f:f8:f3:0c:1e:fa:d0: 9c:94:b0:3a:48:75:e2:69:b3:f8:89:41:4a:b8:ca:ed:dc:c1: 19:48:81:af:11:70:02:bf:fb:5d:ae:6c:56:4d:b7:b2:b4:51: dd:99:b5:7a:82:e8:a5:7c:36:0c:bc:70:3b:30:d1:9d:d3:a5: ec:19:d1:e9:06:17:f0:49:e4:3d:b4:3c:75:9a:a4:a0:a5:33: e3:48:58:14:4c:2a:f0:97:94:ef:54:8b:d4:70:b7:39:a5:5c: 35:32:70:97:cd:90:60:03:49:46:97:4e:f0:e0:16:92:57:cb: bc:ec:fc:df:16:38:e4:7c:dc:ff:07:22:bd:00:30:58:c5:fc: 25:60:45:43:fa:30:bd:59:1a:e5:4e:62:e5:ff:8f:a2:32:d4: bc:b3:7a:bc:b5:7f:e2:cd:e6:2b:79:b9:5e:c2:66:ab:c8:10: 6d:29:60:80:13:55:41:8b:b3:3d:9a:fc:ab:11:cd:81:28:b3: 92:7f:ff:25:6e:92:ab:8c:ef:41:fe:85:5f:3f:48:3a:e9:fe: 3c:d1:eb:fa -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPjNrsRj8ZHGA3WsbbyI/zXXMfl4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNTA4MjMwNjU2NTlaFw0yNjA4MjIwNzAxNTlaMDMxMTAvBgNV BAMTKDY0NjRGOTQxOUQ0RjNGQjAxNTU3RkMyNkNFRDE2NUFDNjBDRjk2NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzDwUOqJF3FKZum0bDI9w3IMe7 m1MjpKaMojrbkz2OwRLUfjgTKqdsFt0CqyVHoAD3bCfeT2YtOCcc/Ro3PifJYhXP xybQmyeVROZEsCwtq9ANyIy79KmZBmUFDHy7qCSpaYtnZHE5RHQZFuLJ0H1WY8jm yk9Son8WzdkBotBS43ErH6GZSf8wFXGSKvbp0qqpa9JAHFthmzWMEteD9qv/zSft oQ7tQWoJdwFJ2iiABaXD3VDZf81tpGLxv0BOD04/wWFUMMPjOkwil01MTD98Lj+C NnPWyjUTRia2l9S8wyluIzcWCjyJNr011dTIvWCLAnm4LCyVvrQDtv6E5CepAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZGT5QZ1PP7AVV/wmztFlrGDPlk0wHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzAzMzJlMzgzNDJlMzEzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy1SLMA0GCSqG SIb3DQEBCwUAA4IBAQA5C/Yf6TGfsKoYWkDzUj2pB40QfyXPGHaLThGebJbonZ1U iOcsBvzxnE3zFHhKWZ/48wwe+tCclLA6SHXiabP4iUFKuMrt3MEZSIGvEXACv/td rmxWTbeytFHdmbV6guilfDYMvHA7MNGd06XsGdHpBhfwSeQ9tDx1mqSgpTPjSFgU TCrwl5TvVIvUcLc5pVw1MnCXzZBgA0lGl07w4BaSV8u87PzfFjjkfNz/ByK9ADBY xfwlYEVD+jC9WRrlTmLl/4+iMtS8s3q8tX/izeYreblewmaryBBtKWCAE1VBi7M9 mvyrEc2BKLOSf/8lbpKrjO9B/oVfP0g66f480ev6 -----END CERTIFICATE-----Generated at Sat Aug 23 18:38:33 2025 by rpki-client