$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230332e302f32342d3234203d3e203138303539.roa File: 3230322e37382e3230332e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: 4U1/Tlwzvl2aoOeQffwbTb2Vr6MedKRPUYKvRcoF/z8= Subject key identifier: C5:43:52:4C:27:A5:C4:39:8A:D8:8C:A6:04:32:16:51:88:0D:FE:1D Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 12678EF0FDF8EB4540E75397EEEFF7264FD61F8D Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230332e302f32342d3234203d3e203138303539.roa Signing time: Fri 26 Sep 2025 04:02:57 +0000 ROA not before: Fri 26 Sep 2025 03:57:57 +0000 ROA not after: Fri 25 Sep 2026 04:02:57 +0000 asID: 18059 IP address blocks: 202.78.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:67:8e:f0:fd:f8:eb:45:40:e7:53:97:ee:ef:f7:26:4f:d6:1f:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 26 03:57:57 2025 GMT Not After : Sep 25 04:02:57 2026 GMT Subject: CN=C543524C27A5C4398AD88CA604321651880DFE1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:64:d9:a0:1e:ae:83:0a:23:3c:33:cb:9c:d7: d7:9e:9a:4b:98:eb:44:bb:b6:5b:a5:cf:4c:9e:67: be:98:d2:80:29:97:03:e7:13:fd:46:54:86:1b:58: bf:d2:32:90:c2:73:f3:92:35:f2:65:85:ab:ba:c5: fa:a2:1b:7b:93:a2:6b:39:1a:33:24:56:3e:b1:a9: ba:d7:13:0d:2d:e6:4a:f9:c4:fe:55:68:ac:f5:15: c1:57:cb:54:d2:7c:5a:6b:6a:50:35:eb:bf:f3:82: 1d:10:44:52:80:2f:db:47:d7:7c:fc:97:ca:11:93: 24:ab:81:61:e8:63:77:68:59:24:a5:24:b8:56:b6: 48:8b:0c:f8:74:dd:a5:64:81:99:44:8e:9d:6a:a2: ee:b4:71:19:46:c2:ac:c5:93:46:1f:73:52:20:31: c2:98:5f:e8:61:ec:54:0c:e2:14:19:66:7d:2b:86: 01:48:1b:2d:db:9b:6a:a1:08:fc:b5:b1:fe:20:1c: 7a:34:9a:31:4f:03:4f:e9:44:b7:c0:0f:6f:07:80: eb:01:3d:79:b5:68:40:a9:43:52:3a:ea:18:36:15: 6c:23:43:09:8c:1f:b1:5b:4b:89:92:fd:55:92:27: b6:ec:56:bd:5b:23:de:db:67:cb:ae:9e:aa:65:04: 62:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:43:52:4C:27:A5:C4:39:8A:D8:8C:A6:04:32:16:51:88:0D:FE:1D X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230332e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.78.203.0/24 Signature Algorithm: sha256WithRSAEncryption 40:b7:35:fb:8e:cb:6f:b4:d9:47:cc:94:47:89:c6:79:d5:f6: 62:bd:66:90:91:28:8b:3e:ec:43:09:6b:e4:44:db:f0:14:13: 43:73:f4:82:8e:39:c6:24:2e:a8:1c:97:2e:bd:2f:dd:b4:88: 75:53:86:8b:71:75:e8:cc:84:0c:2f:06:4a:f4:ce:b3:7e:6f: 8c:71:81:b1:e9:05:22:8f:23:e3:5b:74:ac:5f:4c:77:e2:69: 0c:67:87:41:53:3c:96:dc:e9:88:ec:ef:74:f3:82:40:d8:c1: 3f:a5:55:53:0b:b8:52:76:d4:3d:38:03:41:4d:73:38:05:a0: 6a:54:12:18:84:50:a4:82:cc:0c:60:0c:89:cf:35:45:4e:03: 37:b1:c2:d1:15:e8:52:c0:d7:61:3b:71:31:84:ec:ce:e1:dc: bf:44:5e:df:a3:65:5a:d4:d0:19:38:fb:dc:48:e4:d4:a5:89: e1:46:54:38:ab:bf:c6:33:2a:d9:4c:c1:47:59:75:cd:97:ed: 24:d6:0f:48:f4:f2:8c:e3:a5:03:ce:ea:18:11:df:9d:d2:7d: f7:fc:40:e1:27:4d:49:55:12:68:1a:4f:b7:8b:ff:b3:48:c0: d9:46:41:68:71:e9:79:97:12:5d:0c:b6:d4:a4:e9:f3:b4:47: 27:85:d2:dd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEmeO8P3460VA51OX7u/3Jk/WH40wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjYwMzU3NTdaFw0yNjA5MjUwNDAyNTdaMDMxMTAvBgNV BAMTKEM1NDM1MjRDMjdBNUM0Mzk4QUQ4OENBNjA0MzIxNjUxODgwREZFMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxZNmgHq6DCiM8M8uc19eemkuY 60S7tlulz0yeZ76Y0oAplwPnE/1GVIYbWL/SMpDCc/OSNfJlhau6xfqiG3uToms5 GjMkVj6xqbrXEw0t5kr5xP5VaKz1FcFXy1TSfFpralA167/zgh0QRFKAL9tH13z8 l8oRkySrgWHoY3doWSSlJLhWtkiLDPh03aVkgZlEjp1qou60cRlGwqzFk0Yfc1Ig McKYX+hh7FQM4hQZZn0rhgFIGy3bm2qhCPy1sf4gHHo0mjFPA0/pRLfAD28HgOsB PXm1aECpQ1I66hg2FWwjQwmMH7FbS4mS/VWSJ7bsVr1bI97bZ8uunqplBGIBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxUNSTCelxDmK2IymBDIWUYgN/h0wHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzczODJlMzIzMDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpOyzANBgkqhkiG 9w0BAQsFAAOCAQEAQLc1+47Lb7TZR8yUR4nGedX2Yr1mkJEoiz7sQwlr5ETb8BQT Q3P0go45xiQuqByXLr0v3bSIdVOGi3F16MyEDC8GSvTOs35vjHGBsekFIo8j41t0 rF9Md+JpDGeHQVM8ltzpiOzvdPOCQNjBP6VVUwu4UnbUPTgDQU1zOAWgalQSGIRQ pILMDGAMic81RU4DN7HC0RXoUsDXYTtxMYTszuHcv0Re36NlWtTQGTj73Ejk1KWJ 4UZUOKu/xjMq2UzBR1l1zZftJNYPSPTyjOOlA87qGBHfndJ99/xA4SdNSVUSaBpP t4v/s0jA2UZBaHHpeZcSXQy21KTp87RHJ4XS3Q== -----END CERTIFICATE-----Generated at Mon Oct 20 17:53:27 2025 by rpki-client