$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136342e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136342e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: 4yD+LnIonaJjjpwq/ZSwey15A9lovJNE0ry97U2XdT0= Subject key identifier: 89:EA:E7:E9:C0:90:1E:50:F8:4F:B6:64:D8:81:D9:65:5F:2B:3E:5F Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 6A1E000BEF13A8C221F70624580ED27EBDF44292 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136342e302f32342d3234203d3e203138303539.roa Signing time: Fri 26 Sep 2025 04:02:56 +0000 ROA not before: Fri 26 Sep 2025 03:57:56 +0000 ROA not after: Fri 25 Sep 2026 04:02:56 +0000 asID: 18059 IP address blocks: 202.43.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:1e:00:0b:ef:13:a8:c2:21:f7:06:24:58:0e:d2:7e:bd:f4:42:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 26 03:57:56 2025 GMT Not After : Sep 25 04:02:56 2026 GMT Subject: CN=89EAE7E9C0901E50F84FB664D881D9655F2B3E5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:be:e4:95:f1:08:95:15:d7:9b:ee:07:d1:d0: 3f:64:92:64:91:dc:0c:f2:ce:ce:30:7e:2f:df:1d: 04:f2:c1:2a:0d:c1:ab:59:88:a0:aa:a3:15:6b:62: fa:61:e0:33:74:23:88:db:63:d5:67:d7:da:1d:c0: 3d:ae:90:f0:40:4e:dd:fb:34:b0:f4:91:68:74:f4: 99:b6:20:3b:ca:13:bc:cc:cd:63:a1:26:c2:27:04: dc:f2:26:02:63:c6:c1:cd:1d:fc:69:c7:09:75:97: be:be:66:9c:5c:41:45:6c:62:ea:c4:1a:9e:1a:59: fc:9c:c7:79:15:55:7e:8c:27:e2:1b:1c:be:9d:c2: 1a:bd:27:e3:f9:6b:88:9a:fc:50:53:60:44:29:d1: 4b:72:b7:8b:de:40:cd:6b:3e:b8:cb:29:5a:1e:99: 48:f2:ff:95:5f:a1:35:52:1c:b0:90:59:d5:1a:98: 68:11:bf:9b:77:1e:b6:00:98:14:ce:25:7f:b7:b7: 81:45:68:2f:00:60:86:e4:be:86:59:26:df:e6:bc: a2:36:e5:a6:5d:79:88:da:62:73:b3:7d:26:dc:d6: 8b:e1:45:78:78:d9:a5:4d:d2:64:92:36:ba:87:dc: 29:98:60:7c:85:7a:5a:9e:b0:5b:46:3b:7d:0a:90: 21:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:EA:E7:E9:C0:90:1E:50:F8:4F:B6:64:D8:81:D9:65:5F:2B:3E:5F X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136342e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.164.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:f7:12:f2:3b:51:ff:7b:d4:7a:fe:8c:96:66:ef:ba:17:0f: b4:39:7b:e8:06:8b:5d:82:5a:8a:a6:6f:ab:d1:c0:80:06:50: b7:47:b4:84:38:5b:6d:5e:39:c7:0b:1d:ab:56:b4:57:26:66: e9:b0:a2:91:c2:87:6c:e8:7c:0f:4c:f1:d8:50:26:bc:26:ba: 5c:8e:29:fc:0a:f6:20:e0:f4:3e:b8:ad:04:92:98:10:cb:9d: e4:cd:f0:11:d0:0d:60:19:2f:41:5c:2c:28:cc:f2:94:36:42: 99:f7:9a:1f:41:67:10:b2:79:d4:ee:f8:0d:6e:e3:a4:5a:34: 23:fa:ec:f7:32:fa:51:12:f0:27:42:25:6c:f7:c1:80:4d:1d: ef:1a:3b:33:78:60:26:26:51:2c:a0:98:b0:c7:5c:88:c4:19: 70:f4:08:1c:74:bf:80:39:59:ee:97:05:77:6e:11:47:21:c5: f1:e8:aa:ff:89:db:2b:66:62:c5:54:52:28:c8:c9:b6:1d:0e: 23:86:c9:db:b0:22:6f:00:0c:13:1d:29:57:71:00:55:76:06: b0:f5:d5:f6:38:46:39:08:54:92:2c:e3:bc:38:d3:45:8e:80: 4a:5a:b4:41:b8:69:1f:be:bd:3c:11:0e:ef:48:f8:7d:45:13: 01:36:7d:9a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUah4AC+8TqMIh9wYkWA7Sfr30QpIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjYwMzU3NTZaFw0yNjA5MjUwNDAyNTZaMDMxMTAvBgNV BAMTKDg5RUFFN0U5QzA5MDFFNTBGODRGQjY2NEQ4ODFEOTY1NUYyQjNFNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTvuSV8QiVFdeb7gfR0D9kkmSR 3Azyzs4wfi/fHQTywSoNwatZiKCqoxVrYvph4DN0I4jbY9Vn19odwD2ukPBATt37 NLD0kWh09Jm2IDvKE7zMzWOhJsInBNzyJgJjxsHNHfxpxwl1l76+ZpxcQUVsYurE Gp4aWfycx3kVVX6MJ+IbHL6dwhq9J+P5a4ia/FBTYEQp0Utyt4veQM1rPrjLKVoe mUjy/5VfoTVSHLCQWdUamGgRv5t3HrYAmBTOJX+3t4FFaC8AYIbkvoZZJt/mvKI2 5aZdeYjaYnOzfSbc1ovhRXh42aVN0mSSNrqH3CmYYHyFelqesFtGO30KkCHpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUiern6cCQHlD4T7Zk2IHZZV8rPl8wHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorpDANBgkqhkiG 9w0BAQsFAAOCAQEADfcS8jtR/3vUev6MlmbvuhcPtDl76AaLXYJaiqZvq9HAgAZQ t0e0hDhbbV45xwsdq1a0VyZm6bCikcKHbOh8D0zx2FAmvCa6XI4p/Ar2IOD0Prit BJKYEMud5M3wEdANYBkvQVwsKMzylDZCmfeaH0FnELJ51O74DW7jpFo0I/rs9zL6 URLwJ0IlbPfBgE0d7xo7M3hgJiZRLKCYsMdciMQZcPQIHHS/gDlZ7pcFd24RRyHF 8eiq/4nbK2ZixVRSKMjJth0OI4bJ27AibwAMEx0pV3EAVXYGsPXV9jhGOQhUkizj vDjTRY6ASlq0QbhpH769PBEO70j4fUUTATZ9mg== -----END CERTIFICATE-----Generated at Mon Oct 20 20:41:52 2025 by rpki-client