$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136312e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136312e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: Z7sGOs8p2QMSq0gIW/S2Go4HOkApk3gtf0468w0vot4= Subject key identifier: F1:E8:77:91:B9:E5:62:22:A4:72:E5:4C:F8:37:A9:0E:B4:BA:A4:CF Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 71E4A171C7E3A12C1C1EF98CA2248AABE69A6EAE Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136312e302f32342d3234203d3e203137373237.roa Signing time: Sun 31 Aug 2025 10:00:00 +0000 ROA not before: Sun 31 Aug 2025 09:55:00 +0000 ROA not after: Sun 30 Aug 2026 10:00:00 +0000 asID: 17727 IP address blocks: 202.59.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:e4:a1:71:c7:e3:a1:2c:1c:1e:f9:8c:a2:24:8a:ab:e6:9a:6e:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 09:55:00 2025 GMT Not After : Aug 30 10:00:00 2026 GMT Subject: CN=F1E87791B9E56222A472E54CF837A90EB4BAA4CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:64:86:b2:55:8a:28:77:c3:1d:1d:95:04:cc: 0a:36:4d:8e:56:57:34:6a:dc:d3:16:f2:7b:3b:20: fd:40:b7:05:ef:cb:ce:82:89:0c:9c:93:ff:c5:64: 99:ae:02:69:77:52:be:84:18:96:0b:0f:e0:6f:87: 44:33:f1:c0:51:b7:ce:42:e2:8d:29:24:48:a8:0f: 04:4f:34:d1:57:c6:d8:2d:e5:5b:98:32:a2:58:88: 7c:a4:7c:e1:f7:42:ae:45:de:72:6c:f4:ce:f1:95: 62:9c:ca:f1:b6:3c:6b:3f:a7:da:8a:9c:4d:67:31: 77:94:17:3f:91:07:b1:ce:1a:23:04:ba:91:71:72: 6a:46:b8:e6:5b:10:92:aa:b5:09:25:ff:ae:46:b6: 8c:ef:41:e8:c8:09:71:c1:0d:e4:ca:3c:c0:1c:38: 6e:c1:a6:0d:c9:2b:5b:f2:1d:d8:3f:9d:85:85:51: f5:c6:56:e4:c1:b2:3e:cc:14:02:71:23:ab:e2:15: ba:44:f8:20:1a:ae:ac:d3:58:53:5e:22:73:44:1d: 53:23:ce:2e:bc:63:0e:e2:1e:48:af:b9:98:22:85: 27:13:3d:57:92:7b:99:40:b6:64:05:0f:e6:2d:7a: 70:15:dc:a7:67:8a:b3:54:e3:e9:43:7f:e7:14:5e: 1e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:E8:77:91:B9:E5:62:22:A4:72:E5:4C:F8:37:A9:0E:B4:BA:A4:CF X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136312e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.161.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:2a:75:d1:d8:06:37:a2:3c:89:95:8a:4e:d2:dd:02:9e:82: 71:c9:a6:8a:7d:4f:d4:19:88:b3:dc:2b:4b:da:46:16:d1:77: a6:02:8f:74:ca:d1:a6:6a:78:d2:45:91:d5:94:61:97:2a:2a: 95:9b:27:84:43:2e:1f:07:ea:bf:7e:0b:f8:54:cc:63:4b:17: 31:33:d6:50:28:fe:14:ea:b6:78:5f:34:57:e4:0b:07:c4:6a: e1:f8:c4:ea:6b:6e:fc:28:d5:98:c3:98:af:c4:bf:fb:58:45: 61:f6:9c:af:e6:70:90:94:a0:7b:66:67:98:8d:32:1f:86:cf: 67:a9:a1:69:ad:e1:09:5b:f6:3a:b3:98:f2:f3:50:3b:44:d2: 8e:b8:ac:ba:fb:5d:ca:5f:83:be:2b:ad:5f:37:00:88:81:8d: 07:e7:2c:6a:ac:74:0b:f3:da:d4:58:29:58:3d:f8:34:02:77: c2:09:54:dc:03:23:22:e2:2d:81:75:5d:92:f0:c9:6a:ab:f2: 27:da:c4:e6:5e:5b:9e:9f:01:43:54:2d:12:2b:0a:9d:a4:20: 59:0d:33:21:a2:c7:07:19:99:6f:24:73:1d:25:ba:d1:5c:08: 08:3d:56:c6:cb:d5:20:3e:fe:41:53:22:8e:d6:98:15:5e:ff: 74:4e:cd:6c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUceShccfjoSwcHvmMoiSKq+aabq4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwOTU1MDBaFw0yNjA4MzAxMDAwMDBaMDMxMTAvBgNV BAMTKEYxRTg3NzkxQjlFNTYyMjJBNDcyRTU0Q0Y4MzdBOTBFQjRCQUE0Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXZIayVYood8MdHZUEzAo2TY5W VzRq3NMW8ns7IP1AtwXvy86CiQyck//FZJmuAml3Ur6EGJYLD+Bvh0Qz8cBRt85C 4o0pJEioDwRPNNFXxtgt5VuYMqJYiHykfOH3Qq5F3nJs9M7xlWKcyvG2PGs/p9qK nE1nMXeUFz+RB7HOGiMEupFxcmpGuOZbEJKqtQkl/65GtozvQejICXHBDeTKPMAc OG7Bpg3JK1vyHdg/nYWFUfXGVuTBsj7MFAJxI6viFbpE+CAarqzTWFNeInNEHVMj zi68Yw7iHkivuZgihScTPVeSe5lAtmQFD+YtenAV3KdnirNU4+lDf+cUXh7HAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8eh3kbnlYiKkcuVM+DepDrS6pM8wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7oTANBgkqhkiG 9w0BAQsFAAOCAQEAXip10dgGN6I8iZWKTtLdAp6Cccmmin1P1BmIs9wrS9pGFtF3 pgKPdMrRpmp40kWR1ZRhlyoqlZsnhEMuHwfqv34L+FTMY0sXMTPWUCj+FOq2eF80 V+QLB8Rq4fjE6mtu/CjVmMOYr8S/+1hFYfacr+ZwkJSge2ZnmI0yH4bPZ6mhaa3h CVv2OrOY8vNQO0TSjrisuvtdyl+DviutXzcAiIGNB+csaqx0C/Pa1FgpWD34NAJ3 wglU3AMjIuItgXVdkvDJaqvyJ9rE5l5bnp8BQ1QtEisKnaQgWQ0zIaLHBxmZbyRz HSW60VwICD1WxsvVID7+QVMijtaYFV7/dE7NbA== -----END CERTIFICATE-----Generated at Mon Sep 8 09:35:50 2025 by rpki-client