$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132322e302f32342d3234203d3e203233393531.roa File: 3230322e36352e3132322e302f32342d3234203d3e203233393531.roa (raw, json) Hash identifier: 09wWxPVAnpsug3YZq5fezhFaG7QDA9T1Mjs7NiJLE+g= Subject key identifier: 65:48:21:22:A9:F0:26:6A:2A:63:83:6D:60:05:C4:92:27:BA:B8:62 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 2CDBA2D8ADD5A7AC4AF86B253ED5E9EC04BBA2D3 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132322e302f32342d3234203d3e203233393531.roa Signing time: Fri 25 Jul 2025 03:00:00 +0000 ROA not before: Fri 25 Jul 2025 02:55:00 +0000 ROA not after: Fri 24 Jul 2026 03:00:00 +0000 asID: 23951 IP address blocks: 202.65.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 09:29:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:db:a2:d8:ad:d5:a7:ac:4a:f8:6b:25:3e:d5:e9:ec:04:bb:a2:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Jul 25 02:55:00 2025 GMT Not After : Jul 24 03:00:00 2026 GMT Subject: CN=65482122A9F0266A2A63836D6005C49227BAB862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:80:ad:3a:60:6d:41:cf:94:2d:97:c7:3d:f4: 5e:3b:91:37:69:b0:99:2a:0b:6e:f6:50:70:e0:36: b1:3e:76:4f:e0:da:f2:8f:8f:6a:0a:d1:ef:29:e7: 1f:4b:6c:f5:60:f2:98:34:15:4c:d0:a7:c3:5b:cf: b7:92:f0:0d:27:ed:ab:4e:e1:b2:8a:72:49:17:4f: 72:6f:fa:4e:62:49:7c:e8:43:7e:2c:08:7d:ff:f7: 25:51:72:e2:bd:cb:67:2d:3d:96:b6:c6:f8:66:08: 75:20:93:80:12:af:ea:03:d6:01:f9:f7:01:56:71: 5c:d4:b4:cf:8b:60:b0:eb:85:c7:fc:4e:93:92:55: 53:ce:0c:26:ad:56:b6:fb:5d:a8:ab:e9:51:ec:46: 92:36:3d:f3:b9:e7:60:c8:a6:ec:8e:72:fc:0a:d9: 8b:5d:a3:7a:4c:52:dc:94:1d:a9:ef:57:67:62:c2: c2:da:a3:04:cd:90:03:ed:78:f0:7f:cc:7e:84:c1: cc:c4:9b:d3:7f:c7:6c:75:63:59:38:4e:66:4b:0a: c1:e3:d7:20:0e:fa:4a:67:4c:ce:cf:49:32:e3:b9: 9a:cd:6a:88:23:21:83:c0:5d:a2:37:4e:24:18:c4: d1:51:6e:8b:cf:b2:51:9c:69:87:52:b7:cb:2e:a8: 04:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:48:21:22:A9:F0:26:6A:2A:63:83:6D:60:05:C4:92:27:BA:B8:62 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132322e302f32342d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.122.0/24 Signature Algorithm: sha256WithRSAEncryption 41:3b:96:a4:de:57:cd:ce:ab:74:57:08:5f:d5:d8:86:8d:79: da:a5:c5:05:5f:d5:d2:58:a6:2a:36:86:79:8d:c8:7b:a4:bb: a1:a7:3a:d5:6e:2f:82:48:75:36:45:a4:a5:80:d8:26:97:5f: 34:95:dc:50:a9:e1:d3:9e:78:0c:0f:95:a9:1f:d9:85:8c:8b: 3a:8f:26:a5:97:ca:91:9f:ea:32:31:21:7b:5e:ae:76:50:65: 38:f9:8b:d3:8d:1c:ce:e1:1c:74:a8:c8:73:59:5f:5c:08:4b: d0:f4:4a:1b:64:64:db:74:e4:ef:45:d1:38:88:eb:65:f9:0a: 3d:89:71:48:1d:df:a4:6c:dc:16:94:79:9f:6f:4a:ac:fd:c9: da:96:29:0d:dd:bd:2a:a2:0d:97:c0:bd:47:4e:d7:50:1e:36: 8e:3b:2f:39:db:de:72:f2:07:16:c4:db:c8:30:47:05:c3:98: bc:ea:72:ed:14:8a:cd:c4:3c:be:ef:57:38:b7:8f:32:6b:1c: 97:df:32:e1:d7:88:10:97:a6:83:fb:01:4b:0d:0f:13:1e:05: 79:99:54:fa:eb:19:ea:d3:79:51:d4:7e:c3:36:87:b8:ed:27: 51:88:cc:4f:08:59:cc:f8:fa:65:61:b4:eb:52:62:72:55:55: 3d:a0:6f:ef -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULNui2K3Vp6xK+GslPtXp7AS7otMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNTA3MjUwMjU1MDBaFw0yNjA3MjQwMzAwMDBaMDMxMTAvBgNV BAMTKDY1NDgyMTIyQTlGMDI2NkEyQTYzODM2RDYwMDVDNDkyMjdCQUI4NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7gK06YG1Bz5Qtl8c99F47kTdp sJkqC272UHDgNrE+dk/g2vKPj2oK0e8p5x9LbPVg8pg0FUzQp8Nbz7eS8A0n7atO 4bKKckkXT3Jv+k5iSXzoQ34sCH3/9yVRcuK9y2ctPZa2xvhmCHUgk4ASr+oD1gH5 9wFWcVzUtM+LYLDrhcf8TpOSVVPODCatVrb7Xair6VHsRpI2PfO552DIpuyOcvwK 2Ytdo3pMUtyUHanvV2diwsLaowTNkAPtePB/zH6EwczEm9N/x2x1Y1k4TmZLCsHj 1yAO+kpnTM7PSTLjuZrNaogjIYPAXaI3TiQYxNFRbovPslGcaYdSt8suqAQdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZUghIqnwJmoqY4NtYAXEkie6uGIwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpBejANBgkqhkiG 9w0BAQsFAAOCAQEAQTuWpN5Xzc6rdFcIX9XYho152qXFBV/V0limKjaGeY3Ie6S7 oac61W4vgkh1NkWkpYDYJpdfNJXcUKnh0554DA+VqR/ZhYyLOo8mpZfKkZ/qMjEh e16udlBlOPmL040czuEcdKjIc1lfXAhL0PRKG2Rk23Tk70XROIjrZfkKPYlxSB3f pGzcFpR5n29KrP3J2pYpDd29KqINl8C9R07XUB42jjsvOdvecvIHFsTbyDBHBcOY vOpy7RSKzcQ8vu9XOLePMmscl98y4deIEJemg/sBSw0PEx4FeZlU+usZ6tN5UdR+ wzaHuO0nUYjMTwhZzPj6ZWG061JiclVVPaBv7w== -----END CERTIFICATE-----Generated at Tue Oct 28 06:12:36 2025 by rpki-client