$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35392e302f32342d3234203d3e20313336313139.roa File: 3230322e31302e35392e302f32342d3234203d3e20313336313139.roa (raw, json) Hash identifier: p7znIjGrzIeqiJgSyw1Go9JzIhUPDTiZx2kzEBcMX+M= Subject key identifier: D3:9B:A6:43:70:D6:3C:6C:7C:3A:9F:22:5D:B3:B6:34:C3:3E:29:30 Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 3A79F92630F9FAF63739994F39E7A1EDE6EAD019 Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35392e302f32342d3234203d3e20313336313139.roa Signing time: Wed 20 Aug 2025 08:00:01 +0000 ROA not before: Wed 20 Aug 2025 07:55:01 +0000 ROA not after: Wed 19 Aug 2026 08:00:01 +0000 asID: 136119 IP address blocks: 202.10.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 18:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:79:f9:26:30:f9:fa:f6:37:39:99:4f:39:e7:a1:ed:e6:ea:d0:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Aug 20 07:55:01 2025 GMT Not After : Aug 19 08:00:01 2026 GMT Subject: CN=D39BA64370D63C6C7C3A9F225DB3B634C33E2930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9f:28:3b:a1:cf:32:0d:79:ca:0c:4d:81:19: 65:5c:90:c2:b9:74:de:e5:84:44:c1:90:28:24:8f: 8d:85:3d:9c:36:8b:92:31:ac:67:5b:70:6c:e9:6c: a1:5f:34:47:ab:fc:35:4c:d3:d4:c1:3b:c7:e7:7e: 14:c3:87:a1:b2:fa:e0:2a:d9:47:1d:d2:4a:1f:06: e4:80:32:7a:34:ef:9e:e9:b9:08:d0:73:5d:18:bb: 66:a6:0b:21:ad:31:5a:ea:c9:bd:81:0e:b9:82:73: ed:c3:94:b0:19:d7:5e:c7:01:bd:a8:2a:f9:7c:1b: 23:77:21:70:d7:dc:d3:c0:47:54:17:72:4c:58:dc: ff:1c:2a:1f:7a:07:0e:61:6e:1b:10:52:6a:14:bb: 2b:4c:c2:ba:d6:d4:cc:8c:0a:89:ba:e6:d0:4f:46: 9b:89:ce:1d:9f:a7:65:1d:4a:b4:b6:92:a2:32:c1: cd:8c:48:8a:5b:29:81:ee:48:67:27:ba:6e:31:f7: 09:ef:ff:46:0e:ca:8f:74:3f:a6:e5:76:48:a7:a8: e9:7d:1a:0e:46:38:14:f9:0e:33:e2:c3:ff:1c:2e: 90:c1:cc:cf:1d:40:6b:71:fa:12:e8:a0:37:0a:23: 05:d3:2e:53:dd:f4:5a:6c:82:1f:c7:25:5d:cb:a0: 3a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:9B:A6:43:70:D6:3C:6C:7C:3A:9F:22:5D:B3:B6:34:C3:3E:29:30 X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35392e302f32342d3234203d3e20313336313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.59.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:aa:c1:3d:20:7a:48:37:ee:de:70:6e:b8:b4:b0:c5:8c:d8: 7f:02:4e:2a:90:ec:ce:08:56:c4:a7:78:b4:17:d5:f8:55:a7: 15:55:d6:49:5c:6d:e0:b1:6e:4a:e5:40:02:0d:45:c4:18:54: 99:ca:48:12:ed:c1:20:3c:1c:58:3b:6f:92:55:05:3f:38:9a: 5d:47:46:8f:45:34:4a:9b:b4:fc:d7:ff:30:be:73:4f:35:a2: 02:61:db:8d:c7:a4:a7:37:9d:53:a9:32:75:30:1e:8f:c7:b3: b1:b8:19:a2:2f:73:99:08:ea:f8:47:0d:a6:9b:0b:7c:7f:28: 20:90:09:3f:9d:b2:7b:68:1f:9e:65:08:64:c7:3a:40:a0:c0: fd:0d:f3:5c:7b:ed:b6:2d:a2:ee:51:0a:36:10:92:e8:26:22: 07:02:2d:90:e5:b2:b1:2c:57:d7:07:6d:a0:57:89:78:09:10: 72:64:1c:dc:fb:ba:64:8c:70:08:97:e4:ca:67:6a:9d:ce:2c: b8:6b:b4:4c:4d:a1:ed:3e:77:8d:fd:af:92:70:12:c3:cb:9f: 04:81:3e:f1:62:83:a2:d0:f5:35:ec:36:1e:ec:70:18:1b:80: dc:40:0e:d1:c7:8e:6d:64:e9:3e:dd:67:79:c4:e2:ad:a3:44: 43:95:ec:cf -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOnn5JjD5+vY3OZlPOeeh7ebq0BkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yNTA4MjAwNzU1MDFaFw0yNjA4MTkwODAwMDFaMDMxMTAvBgNV BAMTKEQzOUJBNjQzNzBENjNDNkM3QzNBOUYyMjVEQjNCNjM0QzMzRTI5MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0nyg7oc8yDXnKDE2BGWVckMK5 dN7lhETBkCgkj42FPZw2i5IxrGdbcGzpbKFfNEer/DVM09TBO8fnfhTDh6Gy+uAq 2Ucd0kofBuSAMno0757puQjQc10Yu2amCyGtMVrqyb2BDrmCc+3DlLAZ117HAb2o Kvl8GyN3IXDX3NPAR1QXckxY3P8cKh96Bw5hbhsQUmoUuytMwrrW1MyMCom65tBP RpuJzh2fp2UdSrS2kqIywc2MSIpbKYHuSGcnum4x9wnv/0YOyo90P6bldkinqOl9 Gg5GOBT5DjPiw/8cLpDBzM8dQGtx+hLooDcKIwXTLlPd9Fpsgh/HJV3LoDpZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU05umQ3DWPGx8Op8iXbO2NMM+KTAwHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkYWJjMGJhLTkyMjItNGM0NS04 MzQyLWViODY0M2M0OTY3ZC8wLzMyMzAzMjJlMzEzMDJlMzUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNjMxMzEzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoKOzANBgkqhkiG 9w0BAQsFAAOCAQEACqrBPSB6SDfu3nBuuLSwxYzYfwJOKpDszghWxKd4tBfV+FWn FVXWSVxt4LFuSuVAAg1FxBhUmcpIEu3BIDwcWDtvklUFPziaXUdGj0U0Spu0/Nf/ ML5zTzWiAmHbjcekpzedU6kydTAej8ezsbgZoi9zmQjq+EcNppsLfH8oIJAJP52y e2gfnmUIZMc6QKDA/Q3zXHvtti2i7lEKNhCS6CYiBwItkOWysSxX1wdtoFeJeAkQ cmQc3Pu6ZIxwCJfkymdqnc4suGu0TE2h7T53jf2vknASw8ufBIE+8WKDotD1New2 HuxwGBuA3EAO0ceObWTpPt1necTiraNEQ5Xszw== -----END CERTIFICATE-----Generated at Sat Aug 23 15:50:09 2025 by rpki-client