$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32342d3234203d3e203233393531.roa File: 3230322e36352e3132302e302f32342d3234203d3e203233393531.roa (raw, json) Hash identifier: HWfHUrPU0i0A++2BYGkQMMOMjrzhDkKb6wybSU/0t9A= Subject key identifier: 37:32:23:78:79:33:70:18:B6:FF:F7:42:88:6E:A1:26:98:D7:85:24 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 06650E91E7A86F442D0CEF3BD61D649F7D7E8FAE Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32342d3234203d3e203233393531.roa Signing time: Fri 04 Jul 2025 03:00:00 +0000 ROA not before: Fri 04 Jul 2025 02:55:00 +0000 ROA not after: Fri 03 Jul 2026 03:00:00 +0000 asID: 23951 IP address blocks: 202.65.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 10:32:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:65:0e:91:e7:a8:6f:44:2d:0c:ef:3b:d6:1d:64:9f:7d:7e:8f:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Jul 4 02:55:00 2025 GMT Not After : Jul 3 03:00:00 2026 GMT Subject: CN=3732237879337018B6FFF742886EA12698D78524 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d1:81:6c:79:19:de:37:1e:b2:97:9b:d2:0a: 3b:ba:0f:fb:cf:2a:27:ef:c5:ab:c4:d9:0e:6e:25: f4:96:2c:db:dc:33:8e:ac:03:0d:77:6b:6a:59:f4: c0:35:03:f1:20:9f:15:04:4d:89:fe:70:90:12:3e: 3d:50:ce:5e:77:fd:84:33:44:5f:c5:f8:64:5b:4c: 87:e7:5d:1b:d2:8c:83:2f:c8:9a:9f:21:95:3c:8c: c2:63:fb:f3:7e:07:ab:24:87:38:f4:74:93:88:12: 48:f6:3f:a5:c1:bc:c1:2c:09:b0:72:6d:fa:7d:75: 38:18:87:08:79:e7:82:bc:f2:ce:30:ca:95:6c:1d: 37:3c:e9:fc:0a:df:be:ad:2c:5f:6b:b4:35:56:2a: 3d:e7:4d:9b:93:8a:6e:5a:0a:49:41:ee:66:fb:50: 1c:8e:4c:78:2c:9b:ce:1c:ed:15:1f:bd:dd:4f:a7: 05:9d:c1:1f:ca:41:ec:04:b2:f8:b9:5d:cd:ef:67: 5a:0b:c5:9a:3c:85:e8:97:c7:32:8c:7b:b4:35:00: dc:cf:e4:f7:e2:0e:8e:6c:99:3d:f3:51:18:3c:56: cc:16:9a:74:0d:b2:01:0b:7b:c2:78:1e:06:af:65: 49:6a:50:e6:9d:68:43:8d:12:d5:51:b4:5b:3a:6a: 0b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:32:23:78:79:33:70:18:B6:FF:F7:42:88:6E:A1:26:98:D7:85:24 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32342d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.120.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:10:95:fc:22:aa:44:2f:13:56:73:c8:66:60:c8:f1:0d:4c: 51:0c:91:cf:0a:37:0f:2a:7e:01:c7:f7:37:33:d6:2d:f2:da: b6:68:b8:42:68:24:07:05:c2:71:87:fb:03:8f:01:cc:e4:50: 1f:d8:7f:16:ef:7a:c9:f9:98:ce:9c:4e:09:84:03:ad:8d:67: ca:11:b3:6c:46:c7:86:8d:ee:e3:e3:70:d1:c3:80:3b:a8:76: 9d:03:1b:78:e6:cf:36:b9:8d:f3:92:25:58:68:b3:66:a0:99: a3:33:f2:8a:86:a1:19:0f:78:7f:85:61:ba:47:0d:d7:eb:78: 62:68:a6:bf:7b:2a:ff:ef:bd:5b:4b:e0:5c:f0:36:17:54:75: a1:17:74:86:b4:37:45:e9:d2:fc:a6:02:fe:17:bc:ac:d5:c1: 32:42:64:97:25:46:d9:6e:14:9f:75:06:01:5a:f5:c3:56:58: 4a:dd:52:ec:37:b9:a1:20:94:62:f5:2a:cf:09:57:e0:b8:e8: c7:44:74:b0:14:25:da:f3:6e:45:8c:45:ba:1c:5d:a6:0a:04: 9f:a5:c8:77:66:f9:eb:d9:f4:3e:fc:0a:3c:71:74:56:d5:fd: 01:78:74:89:5d:79:39:0d:3b:7e:e6:0c:1e:5e:24:e4:e8:fc: 93:77:31:06 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBmUOkeeob0QtDO871h1kn31+j64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNTA3MDQwMjU1MDBaFw0yNjA3MDMwMzAwMDBaMDMxMTAvBgNV BAMTKDM3MzIyMzc4NzkzMzcwMThCNkZGRjc0Mjg4NkVBMTI2OThENzg1MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi0YFseRneNx6yl5vSCju6D/vP KifvxavE2Q5uJfSWLNvcM46sAw13a2pZ9MA1A/EgnxUETYn+cJASPj1Qzl53/YQz RF/F+GRbTIfnXRvSjIMvyJqfIZU8jMJj+/N+B6skhzj0dJOIEkj2P6XBvMEsCbBy bfp9dTgYhwh554K88s4wypVsHTc86fwK376tLF9rtDVWKj3nTZuTim5aCklB7mb7 UByOTHgsm84c7RUfvd1PpwWdwR/KQewEsvi5Xc3vZ1oLxZo8heiXxzKMe7Q1ANzP 5PfiDo5smT3zURg8VswWmnQNsgELe8J4HgavZUlqUOadaEONEtVRtFs6agubAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNzIjeHkzcBi2//dCiG6hJpjXhSQwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpBeDANBgkqhkiG 9w0BAQsFAAOCAQEAnhCV/CKqRC8TVnPIZmDI8Q1MUQyRzwo3Dyp+Acf3NzPWLfLa tmi4QmgkBwXCcYf7A48BzORQH9h/Fu96yfmYzpxOCYQDrY1nyhGzbEbHho3u4+Nw 0cOAO6h2nQMbeObPNrmN85IlWGizZqCZozPyioahGQ94f4VhukcN1+t4Ymimv3sq /++9W0vgXPA2F1R1oRd0hrQ3RenS/KYC/he8rNXBMkJklyVG2W4Un3UGAVr1w1ZY St1S7De5oSCUYvUqzwlX4Ljox0R0sBQl2vNuRYxFuhxdpgoEn6XId2b569n0PvwK PHF0VtX9AXh0iV15OQ07fuYMHl4k5Oj8k3cxBg== -----END CERTIFICATE-----Generated at Tue Jul 22 11:49:56 2025 by rpki-client