$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32302d3230203d3e203137373237.roa File: 3230322e35392e3136302e302f32302d3230203d3e203137373237.roa (raw, json) Hash identifier: Yjl7qq7rMIPSP3kJ9/q4NQSEmjaQNb06n5aI1zvR2r0= Subject key identifier: E6:2F:8A:3C:67:0B:F0:86:6A:1E:6D:2C:F4:5B:9C:DB:53:26:8D:4F Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 185FF5116B33BBBFA4B071E1727F4BB071BE7AEC Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32302d3230203d3e203137373237.roa Signing time: Sun 31 Aug 2025 10:00:03 +0000 ROA not before: Sun 31 Aug 2025 09:55:03 +0000 ROA not after: Sun 30 Aug 2026 10:00:03 +0000 asID: 17727 IP address blocks: 202.59.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:5f:f5:11:6b:33:bb:bf:a4:b0:71:e1:72:7f:4b:b0:71:be:7a:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 09:55:03 2025 GMT Not After : Aug 30 10:00:03 2026 GMT Subject: CN=E62F8A3C670BF0866A1E6D2CF45B9CDB53268D4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:79:b1:7a:78:5a:0c:6d:29:e1:f8:ea:8d:17: e8:84:fc:80:c3:d7:3e:6f:f2:65:11:ad:9c:18:9f: de:05:27:e5:c2:10:30:a8:59:23:c8:ba:04:87:15: f2:1c:5d:a7:18:f2:80:e1:d9:f8:de:08:ef:cd:e5: ee:89:8c:5f:82:51:02:f1:f3:e7:3a:f2:85:60:11: da:fb:e5:7a:2e:10:71:75:5e:f4:85:f2:49:69:eb: 02:cc:72:3e:32:86:b4:6a:cc:aa:02:54:0f:a8:19: 11:22:61:d9:d8:e6:45:b4:d3:30:64:7b:c2:33:eb: ce:2e:32:e6:fd:52:4f:d6:55:3e:4d:9a:28:2e:12: 3c:46:a8:24:25:3e:26:59:e7:11:68:ff:cc:d7:67: a8:88:ca:39:2c:b9:1d:6e:fb:55:08:9a:d4:8e:a5: 89:aa:98:9f:4f:ec:a4:48:df:86:11:24:37:56:9c: a8:76:6d:ec:46:af:13:3b:a1:cf:0f:12:08:38:2a: f0:00:57:3f:15:a4:09:50:de:fa:57:72:05:b2:dd: 23:c2:39:07:86:e7:bd:61:17:c4:b7:1b:36:fb:c2: 86:5d:29:fb:15:28:53:5b:cb:d3:28:20:fb:1e:28: 53:ad:6c:0a:c7:e2:36:01:76:ad:3e:dc:53:c6:53: a8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:2F:8A:3C:67:0B:F0:86:6A:1E:6D:2C:F4:5B:9C:DB:53:26:8D:4F X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32302d3230203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.160.0/20 Signature Algorithm: sha256WithRSAEncryption a1:6f:9c:16:71:ef:b8:68:59:1e:74:a6:94:33:cb:cc:37:2c: 28:e2:29:6f:f1:60:a7:d4:3d:93:6e:fc:aa:43:c3:e4:38:25: 36:0d:f0:56:ec:ec:be:8a:64:c1:d1:69:06:cc:f8:8b:84:f4: b2:ef:5a:8a:65:9d:16:e7:ef:a3:1c:aa:ab:9d:07:30:aa:b3: 44:ae:d3:ff:fb:2e:b7:81:f1:e4:a1:c2:bb:d0:6d:71:1d:29: cd:87:83:76:b2:a9:55:a0:fe:62:6d:a3:c5:bf:c8:c5:9e:d1: 93:cc:71:d5:7a:3a:05:b5:35:83:cf:18:97:9f:6e:94:39:05: bb:4a:e0:57:fa:71:f1:20:ab:1e:9b:88:86:5d:78:18:e2:e9: aa:f2:5a:b7:79:76:4b:ee:01:30:76:9f:9e:f9:e8:8b:78:27: 56:b3:b7:18:22:61:02:ae:54:e2:84:32:3d:2d:14:8c:7d:0b: e1:45:a7:50:67:98:f6:17:5d:3d:f7:4a:68:42:d0:56:37:4d: f9:6b:c4:6e:15:c5:69:03:da:6f:b6:e0:cc:cf:14:fb:c3:de: b7:f1:1e:a2:1e:5f:1f:ab:2e:2d:ff:82:58:84:40:cd:f5:ab: 09:9e:fc:b4:88:2e:de:12:06:5d:84:fb:68:21:f0:ed:c5:1b: da:d4:0e:dc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGF/1EWszu7+ksHHhcn9LsHG+euwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwOTU1MDNaFw0yNjA4MzAxMDAwMDNaMDMxMTAvBgNV BAMTKEU2MkY4QTNDNjcwQkYwODY2QTFFNkQyQ0Y0NUI5Q0RCNTMyNjhENEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZebF6eFoMbSnh+OqNF+iE/IDD 1z5v8mURrZwYn94FJ+XCEDCoWSPIugSHFfIcXacY8oDh2fjeCO/N5e6JjF+CUQLx 8+c68oVgEdr75XouEHF1XvSF8klp6wLMcj4yhrRqzKoCVA+oGREiYdnY5kW00zBk e8Iz684uMub9Uk/WVT5NmiguEjxGqCQlPiZZ5xFo/8zXZ6iIyjksuR1u+1UImtSO pYmqmJ9P7KRI34YRJDdWnKh2bexGrxM7oc8PEgg4KvAAVz8VpAlQ3vpXcgWy3SPC OQeG571hF8S3Gzb7woZdKfsVKFNby9MoIPseKFOtbArH4jYBdq0+3FPGU6hPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU5i+KPGcL8IZqHm0s9Fuc21MmjU8wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjMwMmUzMDJmMzIz MDJkMzIzMDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMo7oDANBgkqhkiG 9w0BAQsFAAOCAQEAoW+cFnHvuGhZHnSmlDPLzDcsKOIpb/Fgp9Q9k278qkPD5Dgl Ng3wVuzsvopkwdFpBsz4i4T0su9aimWdFufvoxyqq50HMKqzRK7T//sut4Hx5KHC u9BtcR0pzYeDdrKpVaD+Ym2jxb/IxZ7Rk8xx1Xo6BbU1g88Yl59ulDkFu0rgV/px 8SCrHpuIhl14GOLpqvJat3l2S+4BMHafnvnoi3gnVrO3GCJhAq5U4oQyPS0UjH0L 4UWnUGeY9hddPfdKaELQVjdN+WvEbhXFaQPab7bgzM8U+8Pet/Eeoh5fH6suLf+C WIRAzfWrCZ78tIgu3hIGXYT7aCHw7cUb2tQO3A== -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:45 2025 by rpki-client