$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137312e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3137312e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: tNikowLZPEBxg3YKLXvRr9X4eZn4gTeEOuM3vde7EfI= Subject key identifier: F7:AC:78:57:17:07:0B:6E:8E:98:BA:8F:68:BF:F4:4F:49:88:EE:EA Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 1F4E00B5F614FC122ECA1D691C397A1911C5E4A8 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137312e302f32342d3234203d3e203138303539.roa Signing time: Fri 26 Sep 2025 04:02:57 +0000 ROA not before: Fri 26 Sep 2025 03:57:57 +0000 ROA not after: Fri 25 Sep 2026 04:02:57 +0000 asID: 18059 IP address blocks: 202.43.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:4e:00:b5:f6:14:fc:12:2e:ca:1d:69:1c:39:7a:19:11:c5:e4:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 26 03:57:57 2025 GMT Not After : Sep 25 04:02:57 2026 GMT Subject: CN=F7AC785717070B6E8E98BA8F68BFF44F4988EEEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:74:17:df:1d:cc:44:44:26:45:1e:22:63:9e: 81:f0:8a:7a:96:c9:c6:4d:b5:3b:b2:70:6b:83:1e: 6d:2e:48:b3:cc:ac:61:6f:93:c6:73:e0:b3:c7:bf: d4:4a:6b:6a:09:4a:99:05:4a:51:61:47:a8:6a:ff: d1:cb:ab:ba:8d:a5:e2:cf:1e:84:83:30:3c:e0:28: 9c:64:d0:f4:c7:39:3a:44:e5:1c:4e:c6:0b:14:89: bb:79:ab:19:e2:f6:0f:24:00:b8:40:a0:35:55:37: d1:e4:b7:ff:30:c1:3b:f3:05:27:6e:ed:59:ae:fd: 50:77:76:e9:33:d0:2b:3f:cc:3e:00:ae:b0:37:d5: 84:1a:b8:1b:38:73:66:83:90:79:4f:47:e7:c3:14: 87:8a:c8:bc:d4:35:7e:8e:a9:bd:d4:ee:ff:8e:fe: 17:68:9c:61:36:7b:37:29:6a:ad:93:88:8f:58:6c: 08:1a:46:d0:14:49:46:e1:8d:67:3a:12:64:55:70: 2a:05:46:30:7c:9c:7c:e6:19:ac:a9:9b:23:d6:6e: 36:f1:80:d0:4b:20:57:f4:64:87:d2:8b:a6:fa:a3: 11:37:b4:8f:d4:84:10:ae:b5:81:72:25:e7:39:16: 2e:4c:e7:71:83:e6:b2:4a:83:01:61:ae:4c:5c:8d: 57:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:AC:78:57:17:07:0B:6E:8E:98:BA:8F:68:BF:F4:4F:49:88:EE:EA X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137312e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.171.0/24 Signature Algorithm: sha256WithRSAEncryption 85:10:8c:9a:f1:f6:7b:5f:10:cb:89:66:e7:a6:4c:fe:13:e1: 24:1f:9c:86:c6:91:cc:cc:c7:e0:b3:26:83:56:ff:74:cc:3e: ea:d8:40:f3:c5:82:03:d5:a7:73:22:c7:40:81:74:7e:3d:b0: 3c:6c:0c:91:54:d2:b7:cd:4c:b1:bd:a6:ab:07:b4:cb:cf:33: eb:a4:a4:7b:17:9b:67:a5:eb:98:11:18:74:cd:0a:87:2d:6b: d1:c4:60:0f:af:f2:9a:c9:9b:d0:34:8b:b2:4e:2e:4d:98:86: a6:98:41:a4:70:1b:b6:cc:cf:82:89:02:fe:cd:f0:51:c3:c5: ad:8b:8d:f9:7f:82:5a:a0:86:e3:c3:16:e7:ef:ac:e2:77:9e: 8d:b0:c8:05:c0:f5:0c:26:07:72:e0:c3:e6:5f:27:56:7e:7b: 64:74:f0:67:1c:d5:bd:5a:06:ff:44:9c:68:5f:ff:7a:6d:08: 9f:72:bf:62:80:16:80:f1:d6:20:ca:fa:42:b4:84:f9:ad:ca: 41:27:28:06:82:b9:23:21:74:63:b1:8f:fa:df:c3:38:a6:56: 21:5f:1b:4c:e2:ad:eb:2d:37:55:12:bf:11:a7:2a:19:5b:99: 83:c8:ed:7b:c1:3a:71:25:34:94:aa:2c:42:75:7d:c0:3e:f9: 01:41:4c:08 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUH04AtfYU/BIuyh1pHDl6GRHF5KgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjYwMzU3NTdaFw0yNjA5MjUwNDAyNTdaMDMxMTAvBgNV BAMTKEY3QUM3ODU3MTcwNzBCNkU4RTk4QkE4RjY4QkZGNDRGNDk4OEVFRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjdBffHcxERCZFHiJjnoHwinqW ycZNtTuycGuDHm0uSLPMrGFvk8Zz4LPHv9RKa2oJSpkFSlFhR6hq/9HLq7qNpeLP HoSDMDzgKJxk0PTHOTpE5RxOxgsUibt5qxni9g8kALhAoDVVN9Hkt/8wwTvzBSdu 7Vmu/VB3dukz0Cs/zD4ArrA31YQauBs4c2aDkHlPR+fDFIeKyLzUNX6Oqb3U7v+O /hdonGE2ezcpaq2TiI9YbAgaRtAUSUbhjWc6EmRVcCoFRjB8nHzmGaypmyPWbjbx gNBLIFf0ZIfSi6b6oxE3tI/UhBCutYFyJec5Fi5M53GD5rJKgwFhrkxcjVe5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU96x4VxcHC26OmLqPaL/0T0mI7uowHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorqzANBgkqhkiG 9w0BAQsFAAOCAQEAhRCMmvH2e18Qy4lm56ZM/hPhJB+chsaRzMzH4LMmg1b/dMw+ 6thA88WCA9WncyLHQIF0fj2wPGwMkVTSt81Msb2mqwe0y88z66SkexebZ6XrmBEY dM0Khy1r0cRgD6/ymsmb0DSLsk4uTZiGpphBpHAbtszPgokC/s3wUcPFrYuN+X+C WqCG48MW5++s4neejbDIBcD1DCYHcuDD5l8nVn57ZHTwZxzVvVoG/0ScaF//em0I n3K/YoAWgPHWIMr6QrSE+a3KQScoBoK5IyF0Y7GP+t/DOKZWIV8bTOKt6y03VRK/ EacqGVuZg8jte8E6cSU0lKosQnV9wD75AUFMCA== -----END CERTIFICATE-----Generated at Mon Oct 20 20:44:34 2025 by rpki-client