$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136322e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136322e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: 4h6sFy0M1pxtkycr6ptQ0epeNjRbHwpZB2G9wtJthY8= Subject key identifier: 61:80:3E:BF:A6:C0:F2:06:8B:31:11:B3:E9:89:93:F9:54:9A:24:A5 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 3AEDA7800046BAD5D310C1A210DE832FE75329C9 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136322e302f32342d3234203d3e203137373237.roa Signing time: Sun 31 Aug 2025 10:00:01 +0000 ROA not before: Sun 31 Aug 2025 09:55:01 +0000 ROA not after: Sun 30 Aug 2026 10:00:01 +0000 asID: 17727 IP address blocks: 202.59.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:ed:a7:80:00:46:ba:d5:d3:10:c1:a2:10:de:83:2f:e7:53:29:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 09:55:01 2025 GMT Not After : Aug 30 10:00:01 2026 GMT Subject: CN=61803EBFA6C0F2068B3111B3E98993F9549A24A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d1:ea:60:2d:a7:78:60:76:9f:78:c0:2c:80: 30:f7:b8:72:7f:af:83:d7:5a:3e:ba:6b:ea:d3:c8: 73:01:ea:b3:75:35:c4:3f:e8:a5:7a:fd:12:dd:94: 6f:f9:e5:50:6f:37:94:8f:f9:81:3e:5e:49:a2:84: f0:a9:1a:91:6a:d0:31:84:b1:17:b8:30:5f:a7:a0: f2:29:be:78:af:90:1a:2e:b9:9e:b1:dc:f7:a0:da: 6e:7b:67:8d:b8:a2:64:61:e1:6b:56:82:68:87:41: 3c:d2:53:51:ec:46:10:c2:87:66:3f:89:3d:5f:64: 47:40:c2:3f:69:39:13:5f:8e:60:74:f8:79:f6:fb: c9:b9:54:75:0b:ee:8f:cc:fd:6d:c6:27:5a:3e:5a: 93:41:e6:bf:37:7b:ee:2d:4b:4a:9c:72:81:c7:27: 9f:a6:eb:9d:47:dc:04:49:21:c0:fb:0e:0d:b9:40: b5:f4:55:99:a0:5d:0d:2c:2d:35:9e:ca:f5:43:9b: 11:fc:fc:c6:37:19:58:8c:8b:54:db:1c:25:5e:f6: 8a:e1:59:6b:36:8f:56:d1:9c:30:f6:84:f8:81:6a: d1:0d:04:07:e9:bd:9d:dd:d2:0a:e6:e3:16:a2:8b: df:ca:57:83:ce:27:33:3d:cf:59:e3:0e:5b:06:b2: 60:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:80:3E:BF:A6:C0:F2:06:8B:31:11:B3:E9:89:93:F9:54:9A:24:A5 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136322e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.162.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:48:79:c4:0c:66:e7:47:d0:79:02:04:6f:fe:0a:73:da:e9: 6b:bb:d0:47:48:cf:42:46:8f:13:00:4f:0b:f6:fc:1c:68:1b: ff:1d:ea:cf:f4:c4:08:d4:6e:3d:72:cf:d2:4e:8b:84:fc:03: 18:00:42:cd:33:93:55:2d:e0:82:3a:26:f8:0d:37:e7:8c:bf: 49:df:3f:7b:9f:09:f9:29:c7:21:1a:5a:a1:e9:c0:3e:ee:8e: 83:61:66:9d:8b:b5:bf:99:7f:4b:3f:c9:7d:90:94:7f:ef:31: 02:11:32:8b:56:ff:fb:de:32:b0:9a:9c:6b:3d:73:ac:c6:3f: 5b:0f:c0:a2:f5:f0:a2:82:52:a4:d7:81:03:e5:51:30:9d:91: 32:9a:9c:f0:d0:fe:c7:01:a5:34:af:8a:ff:1f:ab:57:5f:cb: 7c:93:65:5b:9d:87:a2:14:af:94:49:c7:d8:d2:57:f5:2d:31: 22:59:b5:1d:8d:a1:48:54:37:4c:c2:16:89:04:cd:2e:45:97: 46:d1:a4:b4:4c:c9:28:6e:4e:11:9b:c5:7e:7e:62:d0:f6:94: da:f9:be:fe:80:14:67:e1:9d:8b:2c:fb:4a:84:08:f8:a2:70: 86:13:8d:6f:19:7f:c0:8a:d0:2d:6d:f5:ed:cf:fd:be:ff:56: d4:24:13:31 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOu2ngABGutXTEMGiEN6DL+dTKckwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwOTU1MDFaFw0yNjA4MzAxMDAwMDFaMDMxMTAvBgNV BAMTKDYxODAzRUJGQTZDMEYyMDY4QjMxMTFCM0U5ODk5M0Y5NTQ5QTI0QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg0epgLad4YHafeMAsgDD3uHJ/ r4PXWj66a+rTyHMB6rN1NcQ/6KV6/RLdlG/55VBvN5SP+YE+XkmihPCpGpFq0DGE sRe4MF+noPIpvnivkBouuZ6x3Peg2m57Z424omRh4WtWgmiHQTzSU1HsRhDCh2Y/ iT1fZEdAwj9pORNfjmB0+Hn2+8m5VHUL7o/M/W3GJ1o+WpNB5r83e+4tS0qccoHH J5+m651H3ARJIcD7Dg25QLX0VZmgXQ0sLTWeyvVDmxH8/MY3GViMi1TbHCVe9orh WWs2j1bRnDD2hPiBatENBAfpvZ3d0grm4xaii9/KV4POJzM9z1njDlsGsmBrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYYA+v6bA8gaLMRGz6YmT+VSaJKUwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7ojANBgkqhkiG 9w0BAQsFAAOCAQEAH0h5xAxm50fQeQIEb/4Kc9rpa7vQR0jPQkaPEwBPC/b8HGgb /x3qz/TECNRuPXLP0k6LhPwDGABCzTOTVS3ggjom+A0354y/Sd8/e58J+SnHIRpa oenAPu6Og2FmnYu1v5l/Sz/JfZCUf+8xAhEyi1b/+94ysJqcaz1zrMY/Ww/AovXw ooJSpNeBA+VRMJ2RMpqc8ND+xwGlNK+K/x+rV1/LfJNlW52HohSvlEnH2NJX9S0x Ilm1HY2hSFQ3TMIWiQTNLkWXRtGktEzJKG5OEZvFfn5i0PaU2vm+/oAUZ+Gdiyz7 SoQI+KJwhhONbxl/wIrQLW317c/9vv9W1CQTMQ== -----END CERTIFICATE-----Generated at Mon Sep 8 12:37:34 2025 by rpki-client