$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230362e302f32342d3234203d3e203138303539.roa File: 3230322e37382e3230362e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: wudSNqVZe9ITV0rdUmNRj8uzzYzmuEq/EI3TrWm+MVo= Subject key identifier: 01:F9:A1:BC:F0:39:AB:B6:B0:B3:AD:55:70:AE:4A:85:7B:4F:7B:20 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 39E3115E0C654C5AD65669371772DAF9044641AF Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230362e302f32342d3234203d3e203138303539.roa Signing time: Fri 26 Sep 2025 04:02:58 +0000 ROA not before: Fri 26 Sep 2025 03:57:58 +0000 ROA not after: Fri 25 Sep 2026 04:02:58 +0000 asID: 18059 IP address blocks: 202.78.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:e3:11:5e:0c:65:4c:5a:d6:56:69:37:17:72:da:f9:04:46:41:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 26 03:57:58 2025 GMT Not After : Sep 25 04:02:58 2026 GMT Subject: CN=01F9A1BCF039ABB6B0B3AD5570AE4A857B4F7B20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2a:4e:41:91:7c:11:45:27:14:ef:17:df:16: c6:c4:66:4b:bd:c3:51:b5:10:eb:5c:3e:9b:4f:b2: f4:bf:cd:16:bd:5e:a5:87:10:7e:27:4d:f1:22:64: 23:e4:39:a8:6d:7b:43:1d:26:f3:22:3a:1a:10:c1: 45:52:45:fa:36:24:df:b2:0f:76:81:4d:fe:a4:0d: e5:98:89:05:6b:01:25:bd:bb:5b:aa:49:97:68:ec: 6b:80:5b:5d:18:73:77:aa:6d:90:3e:e2:ab:0c:5a: d6:6a:6e:31:f5:c4:87:1a:6d:f5:26:94:7c:01:61: a4:2f:12:b8:6b:c8:b0:71:16:26:00:fe:20:9b:42: c8:e2:63:4d:75:14:ca:5f:0e:7a:28:65:04:21:0b: 29:ea:1f:53:90:49:1f:0d:d7:0f:7d:89:a4:86:23: 01:72:78:93:30:45:1b:2a:00:f0:b9:c2:b4:8c:24: 7d:18:c7:0a:1a:c0:5c:33:8b:ba:e2:f9:1f:f3:4c: 2a:57:3a:fe:7c:cc:fb:47:4f:db:49:a9:a7:bb:39: b5:f5:6b:9d:34:59:a1:a2:6f:0f:a6:51:c2:50:ef: ad:9d:48:89:a4:40:cc:aa:09:23:ab:85:ef:a3:c6: 81:66:95:41:10:33:15:73:8a:72:1b:a0:9e:83:7d: ab:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:F9:A1:BC:F0:39:AB:B6:B0:B3:AD:55:70:AE:4A:85:7B:4F:7B:20 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230362e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.78.206.0/24 Signature Algorithm: sha256WithRSAEncryption 88:49:44:4b:8b:06:42:fc:cf:ef:26:8b:59:f7:57:9c:6a:20: eb:0a:a0:4a:26:e1:0f:99:b1:6a:fa:49:8f:df:1b:90:26:b7: 62:f1:5f:f0:ca:4a:73:c2:5f:32:c0:14:f9:db:e0:2c:96:ea: 22:50:58:6c:be:14:31:ac:f4:c1:de:e0:6d:13:3e:62:15:b0: 3b:44:52:a9:49:ad:63:1b:28:d3:f3:7a:dc:83:23:25:9e:d8: 6b:cc:16:f7:b0:7c:eb:23:d1:03:91:22:3d:9b:5d:8c:37:47: 06:dc:3b:52:a4:9c:66:9e:a9:17:fc:b9:42:ae:93:f4:46:f5: 97:45:fa:80:1c:01:70:4e:6f:c4:af:cd:6a:36:29:d9:9f:f4: 72:7a:f7:73:11:4f:a4:d5:e8:d1:61:57:ad:63:c6:3f:ad:1a: 8a:34:d7:94:5a:83:21:35:74:bb:8a:a2:d6:76:82:f2:e7:df: 78:18:c6:14:a4:5d:89:db:39:49:2d:2b:a1:3f:b1:17:37:f6: 86:9e:42:eb:79:2e:e9:8b:c3:29:3c:59:9e:ba:b5:d6:8a:66: e9:cf:18:23:d7:a3:4d:1f:05:6c:0e:5d:f0:1e:74:77:c6:35: cc:8e:f5:57:79:1a:29:2b:42:b2:72:3b:c1:be:65:31:69:12: 5a:9f:a1:70 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOeMRXgxlTFrWVmk3F3La+QRGQa8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjYwMzU3NThaFw0yNjA5MjUwNDAyNThaMDMxMTAvBgNV BAMTKDAxRjlBMUJDRjAzOUFCQjZCMEIzQUQ1NTcwQUU0QTg1N0I0RjdCMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6Kk5BkXwRRScU7xffFsbEZku9 w1G1EOtcPptPsvS/zRa9XqWHEH4nTfEiZCPkOahte0MdJvMiOhoQwUVSRfo2JN+y D3aBTf6kDeWYiQVrASW9u1uqSZdo7GuAW10Yc3eqbZA+4qsMWtZqbjH1xIcabfUm lHwBYaQvErhryLBxFiYA/iCbQsjiY011FMpfDnooZQQhCynqH1OQSR8N1w99iaSG IwFyeJMwRRsqAPC5wrSMJH0YxwoawFwzi7ri+R/zTCpXOv58zPtHT9tJqae7ObX1 a500WaGibw+mUcJQ762dSImkQMyqCSOrhe+jxoFmlUEQMxVzinIboJ6DfatfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAfmhvPA5q7aws61VcK5KhXtPeyAwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzczODJlMzIzMDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpOzjANBgkqhkiG 9w0BAQsFAAOCAQEAiElES4sGQvzP7yaLWfdXnGog6wqgSibhD5mxavpJj98bkCa3 YvFf8MpKc8JfMsAU+dvgLJbqIlBYbL4UMaz0wd7gbRM+YhWwO0RSqUmtYxso0/N6 3IMjJZ7Ya8wW97B86yPRA5EiPZtdjDdHBtw7UqScZp6pF/y5Qq6T9Eb1l0X6gBwB cE5vxK/NajYp2Z/0cnr3cxFPpNXo0WFXrWPGP60aijTXlFqDITV0u4qi1naC8uff eBjGFKRdids5SS0roT+xFzf2hp5C63ku6YvDKTxZnrq11opm6c8YI9ejTR8FbA5d 8B50d8Y1zI71V3kaKStCsnI7wb5lMWkSWp+hcA== -----END CERTIFICATE-----Generated at Mon Oct 20 17:54:14 2025 by rpki-client