$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230322e35382e3234322e302f32342d3234203d3e203435333235.roa File: 3230322e35382e3234322e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: vfSJs3OGToXJYOrii1md06kGIUgxpU6Nq1gMsM7qNrc= Subject key identifier: 91:31:33:99:F1:63:8A:ED:DE:4D:18:32:4F:1D:46:F0:87:F4:BB:4C Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 4F47315FD5F7DF0B99BA19669D959BFC89AD52EE Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230322e35382e3234322e302f32342d3234203d3e203435333235.roa Signing time: Thu 10 Jul 2025 03:37:25 +0000 ROA not before: Thu 10 Jul 2025 03:32:25 +0000 ROA not after: Thu 09 Jul 2026 03:37:25 +0000 asID: 45325 IP address blocks: 202.58.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 06:29:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:47:31:5f:d5:f7:df:0b:99:ba:19:66:9d:95:9b:fc:89:ad:52:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Jul 10 03:32:25 2025 GMT Not After : Jul 9 03:37:25 2026 GMT Subject: CN=91313399F1638AEDDE4D18324F1D46F087F4BB4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:8a:db:8f:4f:34:8c:7f:9a:b2:ee:45:8f:39: f0:07:19:cb:e4:e2:25:15:e9:6b:e0:55:1c:38:fb: 31:a0:40:9a:25:69:a5:69:3c:44:3f:64:9b:15:87: fe:92:fa:62:23:da:32:86:c4:db:64:08:1e:89:97: 6d:0b:e1:09:e1:4d:d8:50:c5:68:93:5c:06:64:5c: 6f:6d:e1:7f:96:83:24:13:8f:bd:be:09:66:42:79: 88:ec:d7:46:f0:40:de:93:11:54:e1:9a:9b:f2:c2: d0:2a:88:c2:a0:b3:5e:ab:a8:08:d2:ce:90:17:9c: 5b:97:79:88:da:89:78:23:69:12:28:fd:04:04:57: b9:9e:28:a1:76:d7:37:45:91:78:31:07:57:b2:aa: 36:59:17:70:5f:f9:40:3a:d6:bb:95:2f:79:cf:72: 1e:bf:81:8c:22:9b:e9:18:08:68:62:79:42:46:48: 7a:35:85:a8:c0:bc:5f:34:0a:b6:83:6a:93:42:3e: 1e:ec:bc:a7:6a:7c:78:76:49:34:31:73:08:3d:e4: 2e:dd:58:24:3b:e9:41:c0:62:fd:59:36:56:b3:9c: b3:df:00:94:72:83:ec:bb:a5:92:21:54:6b:b0:cb: f8:56:8b:ad:46:cc:45:ba:ac:b6:77:85:4e:25:ad: 93:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:31:33:99:F1:63:8A:ED:DE:4D:18:32:4F:1D:46:F0:87:F4:BB:4C X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230322e35382e3234322e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.242.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:04:ac:fe:b5:8e:12:47:44:da:33:62:4a:d5:0c:98:2b:5a: 67:34:2d:d2:e5:ff:6d:60:56:13:37:b2:79:26:5e:a1:9e:f0: b4:03:66:9f:7e:44:d9:84:51:97:a3:b3:cb:69:69:75:75:1f: a8:09:72:a8:97:47:10:c9:47:e1:ee:b5:11:26:da:04:a5:07: 15:af:5e:fd:d2:d8:26:0b:cc:5d:c6:9d:9c:25:68:d7:86:b4: 96:09:f5:74:96:80:40:ac:12:9e:df:ce:3e:28:be:b5:f7:07: 49:e4:02:45:8e:e6:55:c2:7d:07:3c:aa:3d:74:30:5c:34:6f: c7:5d:d8:fa:18:3e:0b:33:e5:97:cb:7f:18:37:d8:1e:53:bb: f7:62:8b:19:f1:d2:11:9b:22:66:bd:ee:23:7d:4c:ea:02:43: d4:cc:7d:45:84:e4:cc:8f:ab:ae:bd:7e:1d:32:d3:4d:80:4f: bd:6c:0d:55:b2:cd:fc:65:e9:ee:a4:05:eb:09:55:7b:3f:58: 75:7e:16:7f:a2:57:6e:ad:5e:31:5c:bb:13:36:8f:b0:75:07: 26:db:ec:3a:83:39:68:ef:1a:c9:61:11:f5:e0:45:3e:72:11: eb:84:71:f8:a4:89:ee:91:cb:ee:aa:01:33:f2:13:52:ff:d2: 01:6e:a9:28 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUT0cxX9X33wuZuhlmnZWb/ImtUu4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNTA3MTAwMzMyMjVaFw0yNjA3MDkwMzM3MjVaMDMxMTAvBgNV BAMTKDkxMzEzMzk5RjE2MzhBRURERTREMTgzMjRGMUQ0NkYwODdGNEJCNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmituPTzSMf5qy7kWPOfAHGcvk 4iUV6WvgVRw4+zGgQJolaaVpPEQ/ZJsVh/6S+mIj2jKGxNtkCB6Jl20L4QnhTdhQ xWiTXAZkXG9t4X+WgyQTj72+CWZCeYjs10bwQN6TEVThmpvywtAqiMKgs16rqAjS zpAXnFuXeYjaiXgjaRIo/QQEV7meKKF21zdFkXgxB1eyqjZZF3Bf+UA61ruVL3nP ch6/gYwim+kYCGhieUJGSHo1hajAvF80CraDapNCPh7svKdqfHh2STQxcwg95C7d WCQ76UHAYv1ZNlaznLPfAJRyg+y7pZIhVGuwy/hWi61GzEW6rLZ3hU4lrZPlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkTEzmfFjiu3eTRgyTx1G8If0u0wwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMyMzAzMjJlMzUzODJlMzIzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo68jANBgkqhkiG 9w0BAQsFAAOCAQEAXwSs/rWOEkdE2jNiStUMmCtaZzQt0uX/bWBWEzeyeSZeoZ7w tANmn35E2YRRl6Ozy2lpdXUfqAlyqJdHEMlH4e61ESbaBKUHFa9e/dLYJgvMXcad nCVo14a0lgn1dJaAQKwSnt/OPii+tfcHSeQCRY7mVcJ9BzyqPXQwXDRvx13Y+hg+ CzPll8t/GDfYHlO792KLGfHSEZsiZr3uI31M6gJD1Mx9RYTkzI+rrr1+HTLTTYBP vWwNVbLN/GXp7qQF6wlVez9YdX4Wf6JXbq1eMVy7EzaPsHUHJtvsOoM5aO8ayWER 9eBFPnIR64Rx+KSJ7pHL7qoBM/ITUv/SAW6pKA== -----END CERTIFICATE-----Generated at Mon Jul 21 23:24:47 2025 by rpki-client