$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136312e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136312e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: F1ocLlqPtmXqyYChI+Fi14MprfWT3xZYJOPM2v7vtek= Subject key identifier: 03:4C:9E:52:2E:86:71:FF:22:47:53:66:1A:09:F2:9C:D4:EF:4B:A3 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 27011D5B9E9EF53B750436B92D8D1AF3ED33EB33 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136312e302f32342d3234203d3e203138303539.roa Signing time: Fri 26 Sep 2025 04:03:00 +0000 ROA not before: Fri 26 Sep 2025 03:58:00 +0000 ROA not after: Fri 25 Sep 2026 04:03:00 +0000 asID: 18059 IP address blocks: 202.43.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:01:1d:5b:9e:9e:f5:3b:75:04:36:b9:2d:8d:1a:f3:ed:33:eb:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 26 03:58:00 2025 GMT Not After : Sep 25 04:03:00 2026 GMT Subject: CN=034C9E522E8671FF224753661A09F29CD4EF4BA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:04:0a:87:8d:c0:63:15:f0:22:bc:9c:1d:48: 7f:56:2e:97:c6:ba:fa:7f:9c:15:ed:83:d2:86:92: 4b:c3:ce:e9:25:19:40:fc:38:16:72:bd:18:81:0d: 43:6a:6a:07:fa:4f:8b:65:c0:90:c1:3d:ce:84:45: 4e:5e:81:e7:ae:0b:5b:ce:9d:a8:00:06:28:7c:60: f7:ab:b5:d1:bd:c2:84:04:38:4e:c9:d9:42:10:28: 34:ea:78:80:19:96:34:3d:55:c5:66:9e:f7:05:df: f8:44:ed:f1:0a:d9:dc:6c:44:29:62:0b:7f:a0:b7: 6f:f8:1b:7e:c6:c7:6a:4d:06:32:08:fd:82:bc:17: e3:36:c7:22:f0:28:3d:3d:84:d6:53:50:66:e2:e4: dc:c7:1b:16:d5:ad:dc:56:b2:ff:ea:30:fe:7f:2b: 23:41:9e:52:1e:09:00:ef:6a:7d:af:29:37:78:0e: 16:07:8b:a6:41:29:d5:92:76:77:67:6e:43:86:37: 26:88:bf:a5:1c:11:d5:af:11:f8:b6:c1:6e:0a:b4: da:14:91:00:ef:27:45:6a:49:ec:8b:05:08:b7:24: fd:22:17:da:5c:35:31:46:19:48:bf:8b:11:57:58: 53:9b:50:81:da:5e:f1:53:f5:4a:f2:28:cc:05:45: f2:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:4C:9E:52:2E:86:71:FF:22:47:53:66:1A:09:F2:9C:D4:EF:4B:A3 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136312e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.161.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:4f:80:2d:19:2c:4b:3a:5e:81:d5:3a:56:84:91:75:12:51: 9e:2b:e8:57:27:02:c8:51:dd:58:c3:dc:82:08:b6:b5:2d:58: 87:74:b1:c5:4a:1e:fb:42:f2:a9:6e:5b:82:52:d0:69:5b:fd: 85:f2:14:7a:5a:1f:49:66:a1:38:c8:fa:52:b4:a0:2a:ad:be: 22:2e:b4:c2:e9:0c:db:8e:f8:c4:cb:8d:df:b6:f1:12:16:08: fd:07:c0:e0:b2:9a:99:7a:66:58:59:92:95:d5:18:d4:c6:24: f6:67:1f:37:41:17:f6:91:47:78:8a:57:9d:f0:be:11:5a:9e: 5b:0b:2f:f0:95:e3:1d:5b:5f:c2:ba:d9:c5:59:61:9c:cb:e9: c0:46:28:08:9a:c5:be:7a:51:17:7f:9a:c2:ec:8c:cd:e7:31: 88:0a:63:fb:c7:da:69:50:41:03:a8:48:bf:0f:a0:64:b2:17: ae:84:02:79:62:bd:75:2b:84:0a:96:35:80:31:58:e0:bf:59: c2:f7:35:e6:a7:9c:2f:9e:85:72:5c:88:b1:aa:7e:dd:6d:90: 34:50:11:91:35:a4:f5:cc:9a:24:8f:f0:a9:4f:9f:4a:47:81: 1d:ed:d4:47:45:16:16:b7:77:ed:1d:5b:da:28:9b:a9:69:a5: 6d:d4:03:9c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJwEdW56e9Tt1BDa5LY0a8+0z6zMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjYwMzU4MDBaFw0yNjA5MjUwNDAzMDBaMDMxMTAvBgNV BAMTKDAzNEM5RTUyMkU4NjcxRkYyMjQ3NTM2NjFBMDlGMjlDRDRFRjRCQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJBAqHjcBjFfAivJwdSH9WLpfG uvp/nBXtg9KGkkvDzuklGUD8OBZyvRiBDUNqagf6T4tlwJDBPc6ERU5egeeuC1vO nagABih8YPertdG9woQEOE7J2UIQKDTqeIAZljQ9VcVmnvcF3/hE7fEK2dxsRCli C3+gt2/4G37Gx2pNBjII/YK8F+M2xyLwKD09hNZTUGbi5NzHGxbVrdxWsv/qMP5/ KyNBnlIeCQDvan2vKTd4DhYHi6ZBKdWSdndnbkOGNyaIv6UcEdWvEfi2wW4KtNoU kQDvJ0VqSeyLBQi3JP0iF9pcNTFGGUi/ixFXWFObUIHaXvFT9UryKMwFRfL9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUA0yeUi6Gcf8iR1NmGgnynNTvS6MwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoroTANBgkqhkiG 9w0BAQsFAAOCAQEAbE+ALRksSzpegdU6VoSRdRJRnivoVycCyFHdWMPcggi2tS1Y h3SxxUoe+0LyqW5bglLQaVv9hfIUelofSWahOMj6UrSgKq2+Ii60wukM2474xMuN 37bxEhYI/QfA4LKamXpmWFmSldUY1MYk9mcfN0EX9pFHeIpXnfC+EVqeWwsv8JXj HVtfwrrZxVlhnMvpwEYoCJrFvnpRF3+awuyMzecxiApj+8faaVBBA6hIvw+gZLIX roQCeWK9dSuECpY1gDFY4L9Zwvc15qecL56FclyIsap+3W2QNFARkTWk9cyaJI/w qU+fSkeBHe3UR0UWFrd37R1b2iibqWmlbdQDnA== -----END CERTIFICATE-----Generated at Mon Oct 20 20:44:56 2025 by rpki-client