$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136302e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: oi4UoCM4jw6PQfRNxXWV206Uzx3sGz+0YVnMIm74c00= Subject key identifier: C3:BA:BA:2D:7A:65:F8:90:42:5A:A4:9E:1E:12:67:FA:0D:DC:E4:32 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 520083F97D77DBA414FA20D299AEC71428A5ABA6 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32342d3234203d3e203137373237.roa Signing time: Sun 31 Aug 2025 10:00:01 +0000 ROA not before: Sun 31 Aug 2025 09:55:01 +0000 ROA not after: Sun 30 Aug 2026 10:00:01 +0000 asID: 17727 IP address blocks: 202.59.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:00:83:f9:7d:77:db:a4:14:fa:20:d2:99:ae:c7:14:28:a5:ab:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 09:55:01 2025 GMT Not After : Aug 30 10:00:01 2026 GMT Subject: CN=C3BABA2D7A65F890425AA49E1E1267FA0DDCE432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:73:a6:d7:d0:eb:07:13:df:de:cf:71:cf:c5: 7a:ad:b4:a7:97:e5:54:48:dd:61:c7:6d:5d:4f:6d: 94:40:da:90:b1:52:36:94:00:cf:32:30:da:ac:11: 5e:68:f2:28:ad:8b:28:6c:49:45:46:af:28:2c:d1: 95:97:fc:93:b0:fd:28:b2:d9:ae:7f:a5:36:18:d8: 26:c6:3f:59:99:2d:05:b4:3f:3e:82:0d:83:34:38: 0c:83:87:e8:d0:0c:0c:9a:b6:8f:ac:0f:70:21:ac: 42:f3:56:cf:d0:3c:69:f3:92:b3:34:20:be:fb:b8: 31:df:54:0e:46:f0:07:60:0a:69:2d:bc:0b:5c:e6: dd:f6:e5:5c:cb:2b:b3:09:14:e5:c6:b1:cf:37:ea: 64:5f:7f:f7:44:cf:cc:91:9b:46:4d:d1:55:cd:27: 40:77:cf:9b:48:7b:48:5f:45:c8:88:d1:8c:3d:c2: 7b:28:c8:d5:bf:09:be:7e:eb:c0:8c:df:2e:a1:7a: ff:fb:e6:95:b2:be:75:15:b0:17:35:19:00:23:06: ac:3f:10:d2:da:81:b6:de:94:7e:4a:a1:24:4e:5e: e2:42:23:45:f3:15:0f:0a:52:21:23:c1:8b:06:0e: f6:9a:a2:95:1a:49:c0:2e:f2:35:fc:fe:1e:30:60: 91:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:BA:BA:2D:7A:65:F8:90:42:5A:A4:9E:1E:12:67:FA:0D:DC:E4:32 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.160.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:03:2e:ac:90:71:ec:70:c0:bd:77:80:06:4d:1c:8a:d8:55: 7d:7b:dd:a3:cd:c0:8c:fa:f6:81:39:c1:e8:41:43:46:8d:e2: c1:f0:7d:3b:96:ba:f9:ec:ec:1c:3a:93:2a:9b:7d:b6:d6:41: 29:51:3d:34:fe:fe:0a:f7:f9:41:b6:b2:2e:2b:e0:7b:b6:c9: 1c:87:21:29:92:1e:9c:63:18:28:cb:6b:d5:ba:4a:e3:1f:72: e6:c6:7f:65:15:63:19:e8:15:23:b9:2b:c1:c9:4b:a0:a8:22: 08:2c:a5:fc:0f:19:d8:48:66:0c:60:f7:51:4b:22:36:cb:f9: 89:83:3c:56:06:26:d9:68:d1:68:ff:30:29:98:f1:21:b7:19: f8:6b:61:07:7b:76:80:e0:e1:d3:14:8b:3a:a2:6e:a0:da:b5: 45:e6:36:d2:00:ec:7d:95:3f:f4:d9:8f:d2:d9:da:8d:03:ce: 58:8a:d3:60:2f:b8:fa:e6:a5:4e:7a:8d:05:53:4e:4b:b5:2a: cb:41:2b:fc:41:01:32:02:76:b5:5d:e3:a2:3a:fa:0d:a2:aa: 5b:cd:8b:27:f5:cb:28:97:fe:35:6b:7a:cd:3d:2e:e5:a0:b8: cd:d6:b1:ea:49:ff:49:57:55:58:b3:54:e4:4b:64:6a:06:47: 21:dd:72:20 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUgCD+X1326QU+iDSma7HFCilq6YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwOTU1MDFaFw0yNjA4MzAxMDAwMDFaMDMxMTAvBgNV BAMTKEMzQkFCQTJEN0E2NUY4OTA0MjVBQTQ5RTFFMTI2N0ZBMEREQ0U0MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMc6bX0OsHE9/ez3HPxXqttKeX 5VRI3WHHbV1PbZRA2pCxUjaUAM8yMNqsEV5o8iitiyhsSUVGrygs0ZWX/JOw/Siy 2a5/pTYY2CbGP1mZLQW0Pz6CDYM0OAyDh+jQDAyato+sD3AhrELzVs/QPGnzkrM0 IL77uDHfVA5G8AdgCmktvAtc5t325VzLK7MJFOXGsc836mRff/dEz8yRm0ZN0VXN J0B3z5tIe0hfRciI0Yw9wnsoyNW/Cb5+68CM3y6hev/75pWyvnUVsBc1GQAjBqw/ ENLagbbelH5KoSROXuJCI0XzFQ8KUiEjwYsGDvaaopUaScAu8jX8/h4wYJGnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUw7q6LXpl+JBCWqSeHhJn+g3c5DIwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7oDANBgkqhkiG 9w0BAQsFAAOCAQEAnQMurJBx7HDAvXeABk0cithVfXvdo83AjPr2gTnB6EFDRo3i wfB9O5a6+ezsHDqTKpt9ttZBKVE9NP7+Cvf5QbayLivge7bJHIchKZIenGMYKMtr 1bpK4x9y5sZ/ZRVjGegVI7krwclLoKgiCCyl/A8Z2EhmDGD3UUsiNsv5iYM8VgYm 2WjRaP8wKZjxIbcZ+GthB3t2gODh0xSLOqJuoNq1ReY20gDsfZU/9NmP0tnajQPO WIrTYC+4+ualTnqNBVNOS7Uqy0Er/EEBMgJ2tV3jojr6DaKqW82LJ/XLKJf+NWt6 zT0u5aC4zdax6kn/SVdVWLNU5EtkagZHId1yIA== -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:47 2025 by rpki-client