$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139382e302f32342d3234203d3e203138303539.roa File: 3230322e37382e3139382e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: hiO+ZmbUmpMGXAig2r3aIWAPSygOWSbdkXu+kQE6Bpc= Subject key identifier: A9:24:2D:B7:B2:36:C8:0E:7A:7E:55:10:7F:34:3F:78:C2:A0:CD:F4 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 198B890276E62378638C41FFF24F33862EDA8D62 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139382e302f32342d3234203d3e203138303539.roa Signing time: Fri 26 Sep 2025 04:02:55 +0000 ROA not before: Fri 26 Sep 2025 03:57:55 +0000 ROA not after: Fri 25 Sep 2026 04:02:55 +0000 asID: 18059 IP address blocks: 202.78.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 21:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:8b:89:02:76:e6:23:78:63:8c:41:ff:f2:4f:33:86:2e:da:8d:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 26 03:57:55 2025 GMT Not After : Sep 25 04:02:55 2026 GMT Subject: CN=A9242DB7B236C80E7A7E55107F343F78C2A0CDF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a2:0a:79:51:ea:5a:c7:7e:ea:fd:a9:21:d0: fb:c9:61:89:11:e7:ab:9b:fc:fd:91:1f:20:b0:b3: 7e:cd:2d:3e:d2:b9:7a:27:3a:e7:9c:76:c1:38:21: c3:ef:a0:33:41:d5:10:8f:79:f2:b5:a5:0a:ee:48: b5:30:72:94:af:f6:9d:00:0e:8f:ca:48:a6:ec:dd: 8a:6e:fa:69:ef:1c:61:95:40:c8:bb:fe:89:48:06: 1e:ae:b7:95:62:61:7b:02:49:f3:a5:b5:e6:39:80: a1:24:fb:75:ee:fd:c2:46:80:b4:f1:67:27:02:d6: 67:68:25:49:3f:ce:4c:19:8b:86:d3:0b:92:58:61: 79:4c:52:47:6a:b9:83:69:b5:d3:0d:91:f0:24:90: 2c:cc:60:ff:af:da:f4:f6:9f:7a:a9:5f:95:8f:57: 8e:6b:21:22:6b:05:06:ac:a2:a5:37:b1:3f:ed:c9: 3d:30:e0:0a:70:6d:f4:6b:2a:11:3b:52:12:83:ca: e7:76:8b:f5:14:47:ea:76:f4:44:df:5c:51:0b:76: 48:7f:c7:d7:ca:48:50:f6:5b:1b:69:55:fc:b2:44: f0:3d:31:2a:c1:51:91:bc:7c:7d:2b:00:99:2f:de: 72:46:74:36:ac:92:b1:65:dd:25:b8:4c:41:fc:3c: 2d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:24:2D:B7:B2:36:C8:0E:7A:7E:55:10:7F:34:3F:78:C2:A0:CD:F4 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139382e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.78.198.0/24 Signature Algorithm: sha256WithRSAEncryption 15:85:36:56:f5:3d:fd:1d:8f:db:c4:02:70:f2:3d:3b:b6:10: e7:33:e0:cf:1e:ab:a9:36:49:31:bd:66:08:58:03:7e:73:6c: 23:c3:11:71:34:57:fc:84:e3:85:e6:7d:ca:c7:9b:c9:c1:b9: 5f:9c:64:5b:84:1c:9d:c6:4e:2a:f5:95:a4:a9:3b:00:12:63: e8:e7:69:c8:39:f0:9e:90:37:bc:aa:d9:ad:7e:85:83:50:aa: 71:f0:41:40:40:03:93:e0:40:ab:14:f3:20:c1:31:e1:96:9a: e1:f7:70:e2:09:5c:6f:8c:93:1e:b5:0e:e5:c4:84:2d:15:e9: fa:0e:ae:87:0a:a6:fe:b5:83:ae:10:6c:66:6b:d5:52:e0:f8: b7:55:f9:82:a6:63:4f:cb:ed:20:93:07:d0:10:8f:7f:f6:4d: 90:99:ea:2a:21:10:da:f0:a6:e9:d9:ec:28:ba:f8:e0:ff:df: 52:80:b1:b6:0e:be:f5:b8:28:7e:24:90:bb:10:05:af:fb:bb: 86:29:b1:89:e8:23:f0:6e:48:25:65:6a:3e:bc:a4:b6:44:b1: 73:ec:de:99:ed:96:25:95:b2:11:ae:48:a2:93:de:3c:2c:21: d2:c9:2d:3d:c2:d0:19:b0:7c:69:cf:ba:2d:11:9b:94:3b:c0: 64:a7:c9:c4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGYuJAnbmI3hjjEH/8k8zhi7ajWIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjYwMzU3NTVaFw0yNjA5MjUwNDAyNTVaMDMxMTAvBgNV BAMTKEE5MjQyREI3QjIzNkM4MEU3QTdFNTUxMDdGMzQzRjc4QzJBMENERjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeogp5Uepax37q/akh0PvJYYkR 56ub/P2RHyCws37NLT7SuXonOuecdsE4IcPvoDNB1RCPefK1pQruSLUwcpSv9p0A Do/KSKbs3Ypu+mnvHGGVQMi7/olIBh6ut5ViYXsCSfOlteY5gKEk+3Xu/cJGgLTx ZycC1mdoJUk/zkwZi4bTC5JYYXlMUkdquYNptdMNkfAkkCzMYP+v2vT2n3qpX5WP V45rISJrBQasoqU3sT/tyT0w4ApwbfRrKhE7UhKDyud2i/UUR+p29ETfXFELdkh/ x9fKSFD2WxtpVfyyRPA9MSrBUZG8fH0rAJkv3nJGdDaskrFl3SW4TEH8PC07AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqSQtt7I2yA56flUQfzQ/eMKgzfQwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzczODJlMzEzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpOxjANBgkqhkiG 9w0BAQsFAAOCAQEAFYU2VvU9/R2P28QCcPI9O7YQ5zPgzx6rqTZJMb1mCFgDfnNs I8MRcTRX/ITjheZ9ysebycG5X5xkW4QcncZOKvWVpKk7ABJj6OdpyDnwnpA3vKrZ rX6Fg1CqcfBBQEADk+BAqxTzIMEx4Zaa4fdw4glcb4yTHrUO5cSELRXp+g6uhwqm /rWDrhBsZmvVUuD4t1X5gqZjT8vtIJMH0BCPf/ZNkJnqKiEQ2vCm6dnsKLr44P/f UoCxtg6+9bgofiSQuxAFr/u7himxiegj8G5IJWVqPryktkSxc+zeme2WJZWyEa5I opPePCwh0sktPcLQGbB8ac+6LRGblDvAZKfJxA== -----END CERTIFICATE-----Generated at Tue Oct 21 06:29:33 2025 by rpki-client