$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137342e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3137342e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: ps7MxkSGDw16hBBHKM+bWTLHc/jM9ib87FucM4bgA1Y= Subject key identifier: D2:5A:60:AD:ED:85:43:26:AF:D2:CD:15:A1:92:F0:B7:EF:D9:7F:6F Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 64017AB018417FD57EE6AB3C9191C59F0EEB2D41 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137342e302f32342d3234203d3e203138303539.roa Signing time: Fri 26 Sep 2025 04:02:55 +0000 ROA not before: Fri 26 Sep 2025 03:57:55 +0000 ROA not after: Fri 25 Sep 2026 04:02:55 +0000 asID: 18059 IP address blocks: 202.43.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:01:7a:b0:18:41:7f:d5:7e:e6:ab:3c:91:91:c5:9f:0e:eb:2d:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 26 03:57:55 2025 GMT Not After : Sep 25 04:02:55 2026 GMT Subject: CN=D25A60ADED854326AFD2CD15A192F0B7EFD97F6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6f:53:a7:93:d8:8f:38:49:05:7f:a0:72:2e: 28:ae:58:7e:38:69:45:ed:b7:c3:f4:70:99:00:48: 9d:e4:34:0b:58:c3:af:59:7b:ae:5b:89:eb:6a:88: 48:54:b2:4c:bc:5a:b1:f3:8b:27:21:46:05:d1:26: 8a:15:66:5f:ac:e9:0d:02:62:c9:81:20:66:57:0f: 9e:6d:1e:50:78:55:64:5c:20:57:3c:10:78:2a:34: f5:b2:cc:c7:43:f5:9a:35:31:e5:ea:3c:a4:45:ae: 89:64:ce:43:ce:d4:40:d5:92:ff:eb:18:c4:9f:61: 1b:22:eb:02:78:ce:32:56:61:3c:0e:a8:36:60:13: 80:14:3c:94:fe:a1:87:4d:fc:11:2d:db:da:5c:b8: e9:93:44:d7:9c:53:8d:f9:01:8b:c7:8b:9c:76:9f: fb:29:57:b4:34:de:48:0b:cf:5f:ef:43:09:fe:94: 65:2d:bc:b3:7b:c1:d5:6b:b2:62:d0:4d:59:f5:d4: cf:86:6b:5e:d3:69:0b:bc:eb:02:ad:3b:f9:92:08: 23:e7:fd:5a:d4:f0:e0:a4:62:06:93:04:a6:a2:ac: 54:f1:51:c6:4b:cc:51:54:e7:f4:45:f7:73:b6:5a: 82:2e:c7:7c:65:f8:7e:57:b8:c7:3e:f8:69:b3:51: 69:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:5A:60:AD:ED:85:43:26:AF:D2:CD:15:A1:92:F0:B7:EF:D9:7F:6F X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137342e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.174.0/24 Signature Algorithm: sha256WithRSAEncryption 21:d0:93:c4:4e:29:34:ce:61:28:da:bb:2c:65:79:6b:23:91: 9e:17:d2:77:ea:7c:88:c2:98:2f:81:72:47:2c:b6:a0:b6:9a: 1a:1f:7b:71:19:02:cb:b7:ee:37:ee:5d:3c:d4:00:2f:fc:70: 63:ce:31:01:d9:02:81:95:a5:67:aa:b1:38:a2:33:db:c0:46: 48:38:2c:76:df:fc:aa:03:4f:55:5a:44:2d:eb:b3:0d:7f:4a: aa:8c:b2:cb:6a:45:65:d4:36:29:39:e6:a7:6b:bb:d6:c1:67: e9:18:8b:f8:85:82:db:6e:78:75:3d:78:34:95:2b:1b:19:ba: 8b:8a:3d:a0:82:3b:59:71:87:1c:de:d2:e5:0b:0a:b4:a9:30: 2f:6a:1e:f6:ff:14:52:cb:6a:54:20:ed:86:e9:51:36:9d:d5: 29:40:9a:30:60:22:cc:3d:5e:f0:26:69:24:e0:52:54:3e:f0: 16:57:10:15:ba:b0:59:96:a8:4b:5d:37:2d:a9:92:a4:55:95: 9c:75:af:6c:44:ae:e8:58:5d:e3:4d:45:a9:14:18:62:5a:3d: 2e:31:ae:b3:45:b4:4b:3e:68:b3:7e:2c:d9:d0:27:22:88:f8: 73:b2:49:6f:ca:1e:db:f6:83:be:14:fe:3b:8a:20:8d:51:8e: 7b:4d:9e:d9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZAF6sBhBf9V+5qs8kZHFnw7rLUEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjYwMzU3NTVaFw0yNjA5MjUwNDAyNTVaMDMxMTAvBgNV BAMTKEQyNUE2MEFERUQ4NTQzMjZBRkQyQ0QxNUExOTJGMEI3RUZEOTdGNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAb1Onk9iPOEkFf6ByLiiuWH44 aUXtt8P0cJkASJ3kNAtYw69Ze65bietqiEhUsky8WrHziychRgXRJooVZl+s6Q0C YsmBIGZXD55tHlB4VWRcIFc8EHgqNPWyzMdD9Zo1MeXqPKRFrolkzkPO1EDVkv/r GMSfYRsi6wJ4zjJWYTwOqDZgE4AUPJT+oYdN/BEt29pcuOmTRNecU435AYvHi5x2 n/spV7Q03kgLz1/vQwn+lGUtvLN7wdVrsmLQTVn11M+Ga17TaQu86wKtO/mSCCPn /VrU8OCkYgaTBKairFTxUcZLzFFU5/RF93O2WoIux3xl+H5XuMc++GmzUWllAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0lpgre2FQyav0s0VoZLwt+/Zf28wHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorrjANBgkqhkiG 9w0BAQsFAAOCAQEAIdCTxE4pNM5hKNq7LGV5ayORnhfSd+p8iMKYL4FyRyy2oLaa Gh97cRkCy7fuN+5dPNQAL/xwY84xAdkCgZWlZ6qxOKIz28BGSDgsdt/8qgNPVVpE LeuzDX9Kqoyyy2pFZdQ2KTnmp2u71sFn6RiL+IWC2254dT14NJUrGxm6i4o9oII7 WXGHHN7S5QsKtKkwL2oe9v8UUstqVCDthulRNp3VKUCaMGAizD1e8CZpJOBSVD7w FlcQFbqwWZaoS103LamSpFWVnHWvbESu6Fhd401FqRQYYlo9LjGus0W0Sz5os34s 2dAnIoj4c7JJb8oe2/aDvhT+O4ogjVGOe02e2Q== -----END CERTIFICATE-----Generated at Mon Oct 20 20:40:14 2025 by rpki-client