$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136382e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136382e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: qy11Ux0D4O26sNzgdnu8KAsC2rtsLeEJm3ayfuXr5UI= Subject key identifier: 97:5A:99:EB:26:24:12:81:07:96:F0:C6:28:86:83:07:CD:1D:54:AA Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 462FD0F6BED0AB21B1F2F4E64E974410C442A589 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136382e302f32342d3234203d3e203138303539.roa Signing time: Fri 26 Sep 2025 04:02:58 +0000 ROA not before: Fri 26 Sep 2025 03:57:58 +0000 ROA not after: Fri 25 Sep 2026 04:02:58 +0000 asID: 18059 IP address blocks: 202.43.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:2f:d0:f6:be:d0:ab:21:b1:f2:f4:e6:4e:97:44:10:c4:42:a5:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 26 03:57:58 2025 GMT Not After : Sep 25 04:02:58 2026 GMT Subject: CN=975A99EB262412810796F0C628868307CD1D54AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8f:30:29:35:97:4e:af:48:42:c2:0a:d6:c1: 40:28:f1:0f:5a:d3:e0:94:99:f6:20:ce:3b:65:a4: 04:fe:e8:f4:ce:29:40:de:ab:73:de:7c:ff:32:fd: 2f:53:ba:89:1b:02:12:1c:35:69:5d:23:a0:ce:6c: 69:2c:66:fd:a5:31:f0:7c:18:27:08:f5:f8:2f:12: 0a:91:03:03:d8:60:da:45:01:aa:57:3e:b1:77:9a: 89:44:23:8d:f5:d6:74:9c:36:88:01:15:ef:ae:75: 1c:c5:27:94:ba:39:7e:fe:f9:23:2f:55:9b:23:c5: 9f:79:3d:51:82:04:5b:f5:d8:05:ea:2e:a7:16:ae: fd:c0:1b:f4:2d:a2:d7:17:cb:cf:e0:a3:68:25:4f: 91:c4:76:ce:fe:30:25:69:c7:5e:c1:c0:cd:26:9e: c8:ad:e5:a8:fa:6d:f5:07:c5:bd:88:55:da:04:7f: 62:af:92:ef:0b:45:db:12:c6:79:ec:d7:63:b4:6c: 72:3c:35:b7:5d:7c:c7:4d:70:4d:0e:40:d7:42:87: e0:9e:7b:ab:5c:40:ce:fa:13:93:89:b2:e4:5b:ae: 4d:ce:54:13:57:37:af:e1:18:d4:dc:10:39:a9:cf: d0:99:fc:07:6d:97:eb:4e:6c:b1:be:39:1b:e4:63: 49:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:5A:99:EB:26:24:12:81:07:96:F0:C6:28:86:83:07:CD:1D:54:AA X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136382e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.168.0/24 Signature Algorithm: sha256WithRSAEncryption 17:04:1f:f5:00:be:42:01:bb:75:3b:04:25:c4:58:bb:39:87: 40:d0:aa:ba:b3:0f:f7:9c:e4:fb:ce:ab:cd:69:61:5b:1f:25: 7c:6f:bc:84:3b:d6:c8:84:49:46:3f:33:c3:e7:88:0f:18:f0: cd:68:8c:46:ea:13:7e:8f:9a:a9:b6:c3:b3:77:2c:f2:5c:19: 4c:21:c1:b8:67:b2:35:77:8a:62:34:cd:30:06:03:b8:ea:21: cf:44:87:63:62:0b:0a:ec:35:52:00:76:af:ea:7c:6b:e8:39: 0c:66:42:98:a1:0f:d0:7a:6e:08:42:8b:56:45:64:a9:d3:02: 08:10:77:9b:e5:45:9d:26:54:5c:6e:b6:87:92:76:29:40:92: 35:2f:e9:a6:ba:a1:af:ec:d8:e4:90:ef:b7:3f:ed:da:f6:bb: 4a:c9:3d:a9:46:e0:6c:64:27:ea:57:29:47:a6:46:14:46:69: dd:62:2a:89:45:9a:69:9f:14:0c:35:d5:ff:cf:d4:ef:66:f6: 9d:6e:39:15:d6:64:76:a2:9d:75:0d:2a:71:28:b3:4d:58:ba: 41:95:50:63:fb:3e:82:32:55:39:cd:a6:8d:d1:02:c0:1e:95: 48:a2:b6:fb:0f:16:3f:94:d7:3e:85:c0:47:35:f1:2a:39:aa: 46:91:4e:b8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURi/Q9r7QqyGx8vTmTpdEEMRCpYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjYwMzU3NThaFw0yNjA5MjUwNDAyNThaMDMxMTAvBgNV BAMTKDk3NUE5OUVCMjYyNDEyODEwNzk2RjBDNjI4ODY4MzA3Q0QxRDU0QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNjzApNZdOr0hCwgrWwUAo8Q9a 0+CUmfYgzjtlpAT+6PTOKUDeq3PefP8y/S9TuokbAhIcNWldI6DObGksZv2lMfB8 GCcI9fgvEgqRAwPYYNpFAapXPrF3molEI4311nScNogBFe+udRzFJ5S6OX7++SMv VZsjxZ95PVGCBFv12AXqLqcWrv3AG/QtotcXy8/go2glT5HEds7+MCVpx17BwM0m nsit5aj6bfUHxb2IVdoEf2Kvku8LRdsSxnns12O0bHI8NbddfMdNcE0OQNdCh+Ce e6tcQM76E5OJsuRbrk3OVBNXN6/hGNTcEDmpz9CZ/Adtl+tObLG+ORvkY0lnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUl1qZ6yYkEoEHlvDGKIaDB80dVKowHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorqDANBgkqhkiG 9w0BAQsFAAOCAQEAFwQf9QC+QgG7dTsEJcRYuzmHQNCqurMP95zk+86rzWlhWx8l fG+8hDvWyIRJRj8zw+eIDxjwzWiMRuoTfo+aqbbDs3cs8lwZTCHBuGeyNXeKYjTN MAYDuOohz0SHY2ILCuw1UgB2r+p8a+g5DGZCmKEP0HpuCEKLVkVkqdMCCBB3m+VF nSZUXG62h5J2KUCSNS/pprqhr+zY5JDvtz/t2va7Ssk9qUbgbGQn6lcpR6ZGFEZp 3WIqiUWaaZ8UDDXV/8/U72b2nW45FdZkdqKddQ0qcSizTVi6QZVQY/s+gjJVOc2m jdECwB6VSKK2+w8WP5TXPoXARzXxKjmqRpFOuA== -----END CERTIFICATE-----Generated at Mon Oct 20 20:40:44 2025 by rpki-client