$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32322d3233203d3e203233393531.roa File: 3230322e36352e3132302e302f32322d3233203d3e203233393531.roa (raw, json) Hash identifier: bHw7ucEbh58xjruyf4VXXtftgFiKqgJhqbjayjPsTrs= Subject key identifier: 6B:6B:93:14:DF:9D:3D:79:EE:EC:64:96:75:4D:9D:D1:6A:AD:64:1B Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 29B5F7B528B1255743EFDE7BB7637F6B1D61C697 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32322d3233203d3e203233393531.roa Signing time: Fri 04 Jul 2025 03:00:00 +0000 ROA not before: Fri 04 Jul 2025 02:55:00 +0000 ROA not after: Fri 03 Jul 2026 03:00:00 +0000 asID: 23951 IP address blocks: 202.65.120.0/22 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 01:30:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:b5:f7:b5:28:b1:25:57:43:ef:de:7b:b7:63:7f:6b:1d:61:c6:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Jul 4 02:55:00 2025 GMT Not After : Jul 3 03:00:00 2026 GMT Subject: CN=6B6B9314DF9D3D79EEEC6496754D9DD16AAD641B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:69:85:67:79:c0:49:52:d5:e8:97:2c:bb:6c: 36:86:6f:ae:90:27:18:6c:8e:28:74:14:04:83:63: 9e:07:20:96:ef:9a:20:ae:3a:b7:61:92:46:3d:76: cc:e6:e3:d9:bd:86:4c:89:9c:4d:29:50:ba:73:7a: f7:00:c6:4d:94:d7:69:4c:7a:f0:49:d6:63:bd:c3: d4:93:5e:0a:e4:eb:20:88:30:15:9c:4d:4a:64:76: 89:bd:35:1f:a7:9e:56:72:0a:67:37:71:b9:f3:44: 75:7b:fe:46:49:3c:5c:39:cb:0c:9b:43:c6:b0:f2: 1c:cc:69:fd:55:ee:8c:c0:44:c8:aa:63:e5:53:2f: 34:a5:9a:c6:c2:3f:f2:00:85:ad:43:3d:91:82:21: 14:cd:b4:a7:cc:ab:32:1e:cf:dd:99:a0:17:58:4d: 4f:57:50:c3:cf:d5:f6:cf:a3:02:04:a8:74:ef:b0: f0:7e:54:ee:52:a8:31:96:2e:27:1a:4e:5e:be:f5: 26:14:02:68:21:db:98:12:7f:ed:f6:29:22:13:0f: a0:d2:c2:df:31:15:77:fe:e4:a5:c1:0c:f0:d8:00: f0:77:db:6e:7f:6e:96:14:8b:c3:15:96:d8:01:12: 7b:32:64:71:bf:1e:e6:27:9f:6d:69:02:d9:5f:af: bf:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:6B:93:14:DF:9D:3D:79:EE:EC:64:96:75:4D:9D:D1:6A:AD:64:1B X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32322d3233203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.120.0/22 Signature Algorithm: sha256WithRSAEncryption 04:64:cb:28:cb:87:3d:11:e8:4e:59:e6:71:b9:42:dd:b0:a1: c2:6a:24:cc:cc:2e:3a:83:92:ce:09:35:77:a3:10:bf:03:38: db:5b:4b:cd:dd:c2:0d:91:e2:13:e6:6e:8b:ac:f1:4e:1a:c2: 8a:5d:c1:ea:f8:b6:3d:41:07:84:32:fa:fb:85:d9:79:26:ab: 73:19:2a:84:20:60:66:a5:a4:ee:d6:68:1c:47:e1:d8:ae:e1: 04:30:fd:1c:ab:04:f9:83:bf:e6:f9:8a:7c:42:64:95:3c:9b: 0d:1f:d8:a3:2d:ee:44:ee:d9:0b:79:8f:d6:cd:5b:0c:55:2c: 9d:5a:7a:c7:9e:d6:2d:c7:b2:8e:e8:e9:2a:03:53:a8:f2:85: 28:c3:a5:f4:56:06:a6:df:1c:64:0d:d0:34:a6:d9:df:a6:d6: f9:b6:0f:b4:33:29:d7:48:7b:33:f8:9b:15:62:11:32:8e:27: cc:d8:fb:84:65:c7:80:3c:0f:3f:33:ec:cc:44:6e:94:d4:29: c0:51:fd:8e:bb:03:cc:b4:25:84:2e:47:1f:75:64:0d:ca:ef: 3a:3f:fc:e6:7a:9c:df:f8:71:40:f3:40:ba:5f:54:89:94:e6: a1:c4:f8:bc:32:f0:dd:d4:2f:a0:72:c5:b6:55:68:66:8e:db: af:46:01:b9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKbX3tSixJVdD7957t2N/ax1hxpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNTA3MDQwMjU1MDBaFw0yNjA3MDMwMzAwMDBaMDMxMTAvBgNV BAMTKDZCNkI5MzE0REY5RDNENzlFRUVDNjQ5Njc1NEQ5REQxNkFBRDY0MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnaYVnecBJUtXolyy7bDaGb66Q Jxhsjih0FASDY54HIJbvmiCuOrdhkkY9dszm49m9hkyJnE0pULpzevcAxk2U12lM evBJ1mO9w9STXgrk6yCIMBWcTUpkdom9NR+nnlZyCmc3cbnzRHV7/kZJPFw5ywyb Q8aw8hzMaf1V7ozARMiqY+VTLzSlmsbCP/IAha1DPZGCIRTNtKfMqzIez92ZoBdY TU9XUMPP1fbPowIEqHTvsPB+VO5SqDGWLicaTl6+9SYUAmgh25gSf+32KSITD6DS wt8xFXf+5KXBDPDYAPB3225/bpYUi8MVltgBEnsyZHG/HuYnn21pAtlfr79jAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUa2uTFN+dPXnu7GSWdU2d0WqtZBswHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMjMwMmUzMDJmMzIz MjJkMzIzMzIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAspBeDANBgkqhkiG 9w0BAQsFAAOCAQEABGTLKMuHPRHoTlnmcblC3bChwmokzMwuOoOSzgk1d6MQvwM4 21tLzd3CDZHiE+Zui6zxThrCil3B6vi2PUEHhDL6+4XZeSarcxkqhCBgZqWk7tZo HEfh2K7hBDD9HKsE+YO/5vmKfEJklTybDR/Yoy3uRO7ZC3mP1s1bDFUsnVp6x57W LceyjujpKgNTqPKFKMOl9FYGpt8cZA3QNKbZ36bW+bYPtDMp10h7M/ibFWIRMo4n zNj7hGXHgDwPPzPszERulNQpwFH9jrsDzLQlhC5HH3VkDcrvOj/85nqc3/hxQPNA ul9UiZTmocT4vDLw3dQvoHLFtlVoZo7br0YBuQ== -----END CERTIFICATE-----Generated at Mon Jul 21 23:20:31 2025 by rpki-client