$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136352e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136352e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: 4XVr/QPrqpPFPS0fJyLeYcOW3QzSIy0gkTtvZHzDX3Y= Subject key identifier: 25:13:21:1C:60:7F:8B:D3:8C:3E:9A:2F:26:18:8B:85:2E:76:2D:9C Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 26A0E3ADBFD38234FA52A738AF8D811A6DEE2CAD Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136352e302f32342d3234203d3e203138303539.roa Signing time: Fri 26 Sep 2025 04:03:01 +0000 ROA not before: Fri 26 Sep 2025 03:58:01 +0000 ROA not after: Fri 25 Sep 2026 04:03:01 +0000 asID: 18059 IP address blocks: 202.43.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:a0:e3:ad:bf:d3:82:34:fa:52:a7:38:af:8d:81:1a:6d:ee:2c:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 26 03:58:01 2025 GMT Not After : Sep 25 04:03:01 2026 GMT Subject: CN=2513211C607F8BD38C3E9A2F26188B852E762D9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:95:32:bd:1d:e7:fc:53:c1:c6:18:3b:04:f2: e7:bf:46:8b:26:56:20:32:ad:bf:4f:6c:25:55:47: 17:d5:91:bf:55:d4:f2:7e:fe:96:17:d4:bd:77:29: 15:c3:37:e9:12:b3:d6:9f:88:b3:e0:87:46:e6:65: a7:95:38:26:f1:3c:b8:aa:f4:f4:0b:fe:6f:5d:09: 8c:39:17:94:d4:67:7b:f8:6c:93:30:f3:c0:c5:33: 7a:54:43:57:89:4f:de:c1:87:72:b0:21:00:a3:53: ab:ea:82:ff:f0:fc:60:4a:25:16:16:f3:3e:7a:66: 91:16:bf:f7:13:de:3f:cb:e8:4f:ba:b5:7b:65:b7: b9:bd:8d:fa:4d:32:6e:62:70:6a:cf:0d:da:18:0a: 09:fc:fa:72:e5:f6:2e:9b:0e:ff:f1:45:5d:ef:db: f3:7d:ab:c8:84:d1:72:cb:5e:04:ee:62:f5:0e:53: 5d:d5:2a:3c:1a:88:23:9c:95:b4:2a:c1:59:b9:3d: 56:ab:b8:da:70:2b:94:c0:ea:cf:12:57:9e:85:80: f0:25:40:50:b2:09:a4:2e:3a:fc:bd:c7:fc:f7:0b: a8:8d:c8:12:6a:2b:8c:cb:ec:45:08:e9:aa:54:ed: fe:79:6b:1d:59:55:2c:db:79:f7:70:bd:77:68:17: 3a:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:13:21:1C:60:7F:8B:D3:8C:3E:9A:2F:26:18:8B:85:2E:76:2D:9C X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136352e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.165.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:c8:30:6f:d7:10:a8:49:59:c2:48:a0:ad:9b:d2:74:2e:c7: 5a:02:93:0e:34:91:38:39:ef:9a:58:40:6f:86:e5:51:ea:73: 08:57:7d:01:d5:35:46:d1:97:b2:e6:45:50:84:3d:7a:2d:9a: ae:eb:05:4b:15:8a:c9:3e:8b:92:84:85:b9:2a:a7:c7:2e:ab: e9:60:e2:91:fa:9f:9d:c4:a5:83:dc:f7:c7:cd:9a:91:61:5f: 82:9d:cc:a2:b0:f9:87:be:72:f4:cf:f1:43:b5:05:1c:05:8a: 5c:cd:37:eb:bb:44:e4:88:d6:8b:da:96:d7:af:a0:53:89:61: 1b:67:b3:4f:37:f2:fa:6d:6a:aa:10:04:79:5b:58:80:56:d9: 25:bd:32:c5:50:d9:d9:e1:1e:54:e5:98:e2:63:2f:c5:2a:a1: b9:e0:33:96:05:f4:fb:b8:bd:61:9f:dd:27:a0:29:c3:fb:e1: 2b:b8:c5:18:8e:ba:0d:e8:1e:fd:4c:c9:3f:c5:b1:ff:e6:5b: 69:98:7a:66:11:b7:5a:20:ed:b4:99:8c:1f:f3:7a:14:80:b0: 0c:48:7c:0d:94:21:fb:87:93:0e:cf:b2:c8:e1:fc:32:e6:f8: 38:1e:c2:85:4b:60:3c:fe:a0:00:15:a7:c9:d0:35:2c:c7:fb: 96:aa:b7:e3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJqDjrb/TgjT6Uqc4r42BGm3uLK0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjYwMzU4MDFaFw0yNjA5MjUwNDAzMDFaMDMxMTAvBgNV BAMTKDI1MTMyMTFDNjA3RjhCRDM4QzNFOUEyRjI2MTg4Qjg1MkU3NjJEOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5lTK9Hef8U8HGGDsE8ue/Rosm ViAyrb9PbCVVRxfVkb9V1PJ+/pYX1L13KRXDN+kSs9afiLPgh0bmZaeVOCbxPLiq 9PQL/m9dCYw5F5TUZ3v4bJMw88DFM3pUQ1eJT97Bh3KwIQCjU6vqgv/w/GBKJRYW 8z56ZpEWv/cT3j/L6E+6tXtlt7m9jfpNMm5icGrPDdoYCgn8+nLl9i6bDv/xRV3v 2/N9q8iE0XLLXgTuYvUOU13VKjwaiCOclbQqwVm5PVaruNpwK5TA6s8SV56FgPAl QFCyCaQuOvy9x/z3C6iNyBJqK4zL7EUI6apU7f55ax1ZVSzbefdwvXdoFzqdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJRMhHGB/i9OMPpovJhiLhS52LZwwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorpTANBgkqhkiG 9w0BAQsFAAOCAQEAT8gwb9cQqElZwkigrZvSdC7HWgKTDjSRODnvmlhAb4blUepz CFd9AdU1RtGXsuZFUIQ9ei2arusFSxWKyT6LkoSFuSqnxy6r6WDikfqfncSlg9z3 x82akWFfgp3MorD5h75y9M/xQ7UFHAWKXM0367tE5IjWi9qW16+gU4lhG2ezTzfy +m1qqhAEeVtYgFbZJb0yxVDZ2eEeVOWY4mMvxSqhueAzlgX0+7i9YZ/dJ6Apw/vh K7jFGI66Dege/UzJP8Wx/+ZbaZh6ZhG3WiDttJmMH/N6FICwDEh8DZQh+4eTDs+y yOH8Mub4OB7ChUtgPP6gABWnydA1LMf7lqq34w== -----END CERTIFICATE-----Generated at Mon Oct 20 20:41:00 2025 by rpki-client