$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230372e302f32342d3234203d3e203138303539.roa File: 3230322e37382e3230372e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: qYkykPCf70Y8PqPjQcQ/fPJptLekLhvSsddaJEmJMyY= Subject key identifier: AE:9B:A8:A1:DE:16:AC:A1:1C:2F:E7:41:CD:2D:79:4A:2E:A4:3B:17 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 0158E33F5F22CC14A4B22739801C92BD99C561F9 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230372e302f32342d3234203d3e203138303539.roa Signing time: Fri 26 Sep 2025 04:02:58 +0000 ROA not before: Fri 26 Sep 2025 03:57:58 +0000 ROA not after: Fri 25 Sep 2026 04:02:58 +0000 asID: 18059 IP address blocks: 202.78.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:58:e3:3f:5f:22:cc:14:a4:b2:27:39:80:1c:92:bd:99:c5:61:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 26 03:57:58 2025 GMT Not After : Sep 25 04:02:58 2026 GMT Subject: CN=AE9BA8A1DE16ACA11C2FE741CD2D794A2EA43B17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5a:c5:45:9b:0f:80:c9:83:8a:7d:fa:08:64: 2f:05:8d:eb:c6:41:a5:c9:2e:21:90:52:db:4b:a7: 2e:a9:ab:73:8d:69:38:ea:70:60:2a:08:e7:de:a9: fe:56:06:4f:c4:4b:42:19:d1:c6:54:88:a7:d1:71: 6a:0f:c6:dc:cd:60:31:7b:f7:88:01:bc:07:0a:58: 23:d8:19:0e:88:ef:64:4e:e2:7f:c2:79:5d:92:2a: 66:6a:90:40:61:16:25:01:70:cb:9f:c1:66:34:27: 71:a6:b3:a7:4a:9a:94:79:03:13:6c:8f:ac:43:0e: 07:51:87:5e:7e:4f:64:7e:a3:0e:12:e5:df:5e:a1: a8:59:15:fe:31:f8:67:5f:18:e8:7b:8f:09:0a:10: 4c:fa:bc:3c:0f:6f:3d:a9:ee:01:ce:bc:4f:9c:8e: d3:51:3a:50:2c:f7:11:3d:68:73:ce:a3:fd:82:04: 9a:93:6a:a0:e6:b3:09:ae:5f:b4:e2:37:4a:f5:cf: 5a:60:35:dd:da:95:ca:c4:53:3d:8b:75:29:df:d2: dd:15:5c:87:3b:70:97:2b:41:ed:84:e2:ce:c9:e5: 7a:24:a7:4e:ae:34:62:d8:d3:fd:19:9d:fb:8f:23: 3d:f8:b9:51:46:1d:25:e7:03:46:0a:98:af:41:2b: a4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:9B:A8:A1:DE:16:AC:A1:1C:2F:E7:41:CD:2D:79:4A:2E:A4:3B:17 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230372e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.78.207.0/24 Signature Algorithm: sha256WithRSAEncryption 60:3f:5b:38:c3:1c:5b:14:43:f9:01:bf:c4:f6:b0:99:44:78: aa:2b:60:5f:5e:f8:47:f7:dc:54:fc:85:66:57:82:24:72:d3: 86:2b:3c:9c:4d:b9:e2:b0:0f:ae:24:d2:7f:73:73:5b:6a:35: a5:61:23:e6:b6:c3:34:39:6c:45:6f:af:6f:1a:2b:78:a1:86: ed:d6:53:c3:b7:df:49:69:0e:68:28:eb:db:b7:7f:90:1f:9a: 00:7b:40:f8:ac:48:00:2d:da:8f:3c:f8:43:4f:e9:e1:d5:8c: 1d:49:d2:9f:4f:ff:1b:1a:57:4c:da:9a:90:ec:93:eb:b8:af: f1:e5:82:1d:c7:86:e2:d0:dc:82:a3:37:e1:59:f0:3a:7c:3f: 65:a1:3b:32:42:bc:c6:e0:59:bc:d9:72:db:34:e1:be:35:11: e9:9f:66:3a:fb:64:6a:fa:c7:33:8f:07:4e:c8:d4:ba:b0:4c: 5c:09:37:60:ab:2b:d6:2e:7f:09:2b:50:cb:82:5b:40:30:94: c0:ed:42:b4:01:a9:12:6e:fd:3c:2d:38:6c:e8:46:69:54:f0: 20:56:d7:cb:e7:e8:3a:1c:7e:e3:d9:20:92:e2:7e:c6:aa:31: 27:9f:6b:a6:fe:9f:33:e9:81:16:fb:48:2b:55:8f:0a:c8:8d: 73:cf:7f:02 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAVjjP18izBSksic5gBySvZnFYfkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjYwMzU3NThaFw0yNjA5MjUwNDAyNThaMDMxMTAvBgNV BAMTKEFFOUJBOEExREUxNkFDQTExQzJGRTc0MUNEMkQ3OTRBMkVBNDNCMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9WsVFmw+AyYOKffoIZC8FjevG QaXJLiGQUttLpy6pq3ONaTjqcGAqCOfeqf5WBk/ES0IZ0cZUiKfRcWoPxtzNYDF7 94gBvAcKWCPYGQ6I72RO4n/CeV2SKmZqkEBhFiUBcMufwWY0J3Gms6dKmpR5AxNs j6xDDgdRh15+T2R+ow4S5d9eoahZFf4x+GdfGOh7jwkKEEz6vDwPbz2p7gHOvE+c jtNROlAs9xE9aHPOo/2CBJqTaqDmswmuX7TiN0r1z1pgNd3alcrEUz2LdSnf0t0V XIc7cJcrQe2E4s7J5Xokp06uNGLY0/0ZnfuPIz34uVFGHSXnA0YKmK9BK6RrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrpuood4WrKEcL+dBzS15Si6kOxcwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzczODJlMzIzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpOzzANBgkqhkiG 9w0BAQsFAAOCAQEAYD9bOMMcWxRD+QG/xPawmUR4qitgX174R/fcVPyFZleCJHLT his8nE254rAPriTSf3NzW2o1pWEj5rbDNDlsRW+vbxoreKGG7dZTw7ffSWkOaCjr 27d/kB+aAHtA+KxIAC3ajzz4Q0/p4dWMHUnSn0//GxpXTNqakOyT67iv8eWCHceG 4tDcgqM34VnwOnw/ZaE7MkK8xuBZvNly2zThvjUR6Z9mOvtkavrHM48HTsjUurBM XAk3YKsr1i5/CStQy4JbQDCUwO1CtAGpEm79PC04bOhGaVTwIFbXy+foOhx+49kg kuJ+xqoxJ59rpv6fM+mBFvtIK1WPCsiNc89/Ag== -----END CERTIFICATE-----Generated at Mon Oct 20 23:10:34 2025 by rpki-client