$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136372e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136372e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: bWibCBymDKZ2neZhzZgE30rv37Qj+DdIvk2cfpHih38= Subject key identifier: EF:FA:88:A0:40:D7:0E:FC:18:9D:1B:AB:00:28:E5:E7:5C:EE:4B:7D Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 79645438C138190AD5ACB72B13988DD09F6C9D92 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136372e302f32342d3234203d3e203138303539.roa Signing time: Fri 26 Sep 2025 04:03:02 +0000 ROA not before: Fri 26 Sep 2025 03:58:02 +0000 ROA not after: Fri 25 Sep 2026 04:03:02 +0000 asID: 18059 IP address blocks: 202.43.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:64:54:38:c1:38:19:0a:d5:ac:b7:2b:13:98:8d:d0:9f:6c:9d:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 26 03:58:02 2025 GMT Not After : Sep 25 04:03:02 2026 GMT Subject: CN=EFFA88A040D70EFC189D1BAB0028E5E75CEE4B7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cc:f3:a1:67:0f:bf:e2:dd:d3:63:03:e3:b8: 17:b3:6e:df:be:5d:54:e3:a4:00:6e:b8:7e:5d:bb: 77:7c:c1:4b:3a:ba:ba:54:d6:b8:06:2b:f6:33:d7: 9d:e1:50:a9:0d:c1:15:fc:0f:e7:2d:7a:c4:19:69: 2c:aa:b0:4c:63:35:19:1a:7d:0f:53:a3:cf:c1:b2: ce:93:44:38:36:3f:3a:8c:7b:56:f4:5a:84:18:45: 28:07:9f:f4:e6:d0:8a:76:90:ce:23:15:1d:41:0d: 21:ce:5f:a7:e8:19:8c:72:3b:af:44:1c:a3:b8:e8: c7:a7:b4:f4:c7:a8:c2:21:5e:ab:45:56:e4:e9:4f: 5e:d6:59:b8:64:75:7f:de:cc:89:c3:bb:0e:32:8f: cd:0a:b2:e5:f9:a5:d4:3d:36:d7:d9:ee:c0:47:3f: df:96:f9:b3:8c:02:0d:37:b0:bd:06:03:6b:32:9e: 53:7e:cf:d5:5c:f6:81:bc:d6:0a:9a:f3:98:61:15: e6:a0:b2:56:ed:39:2a:c0:ad:94:cf:05:34:54:31: b8:54:f7:2f:9f:c7:27:cf:f1:64:5f:ad:53:cb:22: 72:f0:fa:51:f1:b7:80:6b:5a:df:38:00:15:7d:c9: fa:5c:8c:4e:1c:73:7e:c4:4a:ef:a6:c7:58:11:b1: 4f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:FA:88:A0:40:D7:0E:FC:18:9D:1B:AB:00:28:E5:E7:5C:EE:4B:7D X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136372e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.167.0/24 Signature Algorithm: sha256WithRSAEncryption 48:40:64:7c:b9:c7:4d:f5:87:99:4b:a2:f0:28:be:0a:4d:16: 1e:27:e0:d5:ee:8f:aa:48:7a:17:49:de:e7:f4:e6:91:e8:e2: 9e:b8:89:35:97:28:a6:e7:55:c3:b8:57:79:f1:7a:ca:3b:ff: 63:d3:cb:19:1e:88:eb:5e:56:50:88:62:fa:fb:30:53:45:62: dc:5d:5a:32:38:e5:57:cc:b3:42:5a:6f:ee:7b:5d:ad:96:18: e1:e6:df:6f:f5:c9:eb:a2:38:3c:b4:1d:83:8c:b6:3b:9b:b7: 3e:41:63:ed:58:93:50:8d:85:33:85:98:6a:70:ed:54:66:5d: 35:5c:45:e0:dd:ee:14:74:f3:2a:29:41:16:b1:68:66:51:bd: b2:51:41:40:15:07:b7:09:64:21:7e:f6:cd:94:e1:1a:ef:0c: 41:d7:cd:0f:ae:e8:d7:0b:b6:3a:be:81:26:0d:19:53:14:03: 65:ad:93:53:2b:0b:1c:c4:25:0c:cc:fc:a6:7f:54:b2:d8:6a: ee:30:c4:7c:88:9a:d6:bc:03:2f:7d:d3:66:15:64:2b:9d:41: b4:e4:72:8d:6a:7d:c3:91:4e:4a:db:4e:4f:63:fe:52:16:51: 98:59:2a:60:79:20:fa:9e:dc:94:5f:15:a7:ba:03:ff:e8:a7: a5:86:f2:da -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeWRUOME4GQrVrLcrE5iN0J9snZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjYwMzU4MDJaFw0yNjA5MjUwNDAzMDJaMDMxMTAvBgNV BAMTKEVGRkE4OEEwNDBENzBFRkMxODlEMUJBQjAwMjhFNUU3NUNFRTRCN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNzPOhZw+/4t3TYwPjuBezbt++ XVTjpABuuH5du3d8wUs6urpU1rgGK/Yz153hUKkNwRX8D+ctesQZaSyqsExjNRka fQ9To8/Bss6TRDg2PzqMe1b0WoQYRSgHn/Tm0Ip2kM4jFR1BDSHOX6foGYxyO69E HKO46MentPTHqMIhXqtFVuTpT17WWbhkdX/ezInDuw4yj80KsuX5pdQ9NtfZ7sBH P9+W+bOMAg03sL0GA2synlN+z9Vc9oG81gqa85hhFeagslbtOSrArZTPBTRUMbhU 9y+fxyfP8WRfrVPLInLw+lHxt4BrWt84ABV9yfpcjE4cc37ESu+mx1gRsU97AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7/qIoEDXDvwYnRurACjl51zuS30wHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorpzANBgkqhkiG 9w0BAQsFAAOCAQEASEBkfLnHTfWHmUui8Ci+Ck0WHifg1e6Pqkh6F0ne5/Tmkeji nriJNZcopudVw7hXefF6yjv/Y9PLGR6I615WUIhi+vswU0Vi3F1aMjjlV8yzQlpv 7ntdrZYY4ebfb/XJ66I4PLQdg4y2O5u3PkFj7ViTUI2FM4WYanDtVGZdNVxF4N3u FHTzKilBFrFoZlG9slFBQBUHtwlkIX72zZThGu8MQdfND67o1wu2Or6BJg0ZUxQD Za2TUysLHMQlDMz8pn9Usthq7jDEfIia1rwDL33TZhVkK51BtORyjWp9w5FOSttO T2P+UhZRmFkqYHkg+p7clF8Vp7oD/+inpYby2g== -----END CERTIFICATE-----Generated at Mon Oct 20 20:41:29 2025 by rpki-client