$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136332e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136332e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: ObHvQg8fSkTmFC+LypkUepMfPqheaVUAUDYf4bnBsJY= Subject key identifier: 79:8C:6C:59:E5:67:2B:F1:AC:1B:48:E7:0E:A6:88:B4:69:61:D3:61 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 756E2D5EDA9EE667D41F7541322154A18E4A0ECC Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136332e302f32342d3234203d3e203137373237.roa Signing time: Sun 31 Aug 2025 10:00:01 +0000 ROA not before: Sun 31 Aug 2025 09:55:01 +0000 ROA not after: Sun 30 Aug 2026 10:00:01 +0000 asID: 17727 IP address blocks: 202.59.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:6e:2d:5e:da:9e:e6:67:d4:1f:75:41:32:21:54:a1:8e:4a:0e:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 09:55:01 2025 GMT Not After : Aug 30 10:00:01 2026 GMT Subject: CN=798C6C59E5672BF1AC1B48E70EA688B46961D361 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:75:76:7d:08:f6:70:2e:e1:c1:bc:d4:ef:cb: 24:61:67:90:c8:d1:6b:e8:1b:c2:26:50:ea:dc:12: d5:36:05:1b:d0:01:99:3b:02:62:c8:cc:5c:9b:82: 5a:e2:4a:c9:f8:c1:96:b7:6d:99:e6:59:72:cb:4b: 73:d2:1a:39:37:50:75:24:56:ff:40:23:31:c3:14: 54:85:24:37:94:e5:22:2f:7e:87:4d:d5:70:20:25: c1:85:32:ad:2a:c3:af:3e:08:af:60:4e:c8:5c:67: fa:1e:77:3b:d9:f7:be:2e:a6:e4:19:77:bf:88:cb: 23:d4:2c:8d:69:96:9e:53:b5:5e:f5:09:e1:e9:b4: b6:a3:fa:62:82:b5:6a:52:d1:21:c5:9d:45:c9:c5: 87:0d:44:78:d8:e5:e8:7d:39:df:97:e1:01:3a:f5: c6:ba:28:8e:39:2c:3d:e2:06:79:b7:77:9d:95:18: 3c:91:1d:d6:ea:05:1c:1d:d4:74:af:52:0a:8a:e9: 54:38:52:b8:58:26:1b:4f:f4:1e:a8:f2:92:35:96: db:3d:3a:2c:a6:2c:1a:21:5f:05:9c:33:9c:e9:23: 37:0e:a7:7d:c8:3e:4f:d5:a4:7a:a9:37:ed:ca:d9: 0b:c4:71:d0:c1:7d:32:3a:cc:24:d7:6e:4f:6e:e1: 42:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:8C:6C:59:E5:67:2B:F1:AC:1B:48:E7:0E:A6:88:B4:69:61:D3:61 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136332e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.163.0/24 Signature Algorithm: sha256WithRSAEncryption 55:e8:8e:9f:5e:ed:a5:2a:27:d4:53:d7:34:62:70:9b:78:0b: 74:54:69:ec:fb:01:a9:2f:30:fe:1f:eb:0f:7a:ae:a7:c7:ab: e1:3c:24:51:36:81:3c:fe:3f:f7:ed:59:1f:d7:99:7e:06:28: cb:17:c9:46:81:ef:5c:ef:fa:5a:e3:6e:c7:81:31:5c:8b:6e: 01:12:ed:3a:86:e8:54:22:9c:4b:20:bb:89:8c:48:df:bb:1f: 50:e7:30:84:b0:8b:06:d6:41:93:f6:b2:d0:11:f0:fb:1b:68: 84:e5:2d:18:dd:8e:03:c9:2e:06:59:03:d9:05:48:87:2f:c8: 21:16:ab:4a:91:c1:fe:5b:01:b8:d5:31:26:86:a8:6b:93:e1: 70:df:92:ef:59:7c:c2:85:c2:c5:6f:d2:eb:dc:1f:a3:5d:be: 8d:ac:87:dd:40:d3:d5:1a:cf:8b:ba:42:a3:ae:e7:05:96:30: 34:18:6f:a8:91:b7:d5:d8:70:6a:4a:bf:72:14:1b:e9:6d:54: 9b:62:c6:8c:bc:42:f0:10:54:7f:af:90:08:bc:cb:d8:e6:1f: fa:c1:d7:a4:b7:e1:27:92:5f:89:26:e3:8e:1f:ea:26:e2:06: a4:65:e2:95:74:36:72:3e:ec:5b:d5:4f:0c:ae:c2:0c:3c:8a: f2:a5:16:21 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdW4tXtqe5mfUH3VBMiFUoY5KDswwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwOTU1MDFaFw0yNjA4MzAxMDAwMDFaMDMxMTAvBgNV BAMTKDc5OEM2QzU5RTU2NzJCRjFBQzFCNDhFNzBFQTY4OEI0Njk2MUQzNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMdXZ9CPZwLuHBvNTvyyRhZ5DI 0WvoG8ImUOrcEtU2BRvQAZk7AmLIzFybglriSsn4wZa3bZnmWXLLS3PSGjk3UHUk Vv9AIzHDFFSFJDeU5SIvfodN1XAgJcGFMq0qw68+CK9gTshcZ/oedzvZ974upuQZ d7+IyyPULI1plp5TtV71CeHptLaj+mKCtWpS0SHFnUXJxYcNRHjY5eh9Od+X4QE6 9ca6KI45LD3iBnm3d52VGDyRHdbqBRwd1HSvUgqK6VQ4UrhYJhtP9B6o8pI1lts9 OiymLBohXwWcM5zpIzcOp33IPk/VpHqpN+3K2QvEcdDBfTI6zCTXbk9u4UJFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeYxsWeVnK/GsG0jnDqaItGlh02EwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7ozANBgkqhkiG 9w0BAQsFAAOCAQEAVeiOn17tpSon1FPXNGJwm3gLdFRp7PsBqS8w/h/rD3qup8er 4TwkUTaBPP4/9+1ZH9eZfgYoyxfJRoHvXO/6WuNux4ExXItuARLtOoboVCKcSyC7 iYxI37sfUOcwhLCLBtZBk/ay0BHw+xtohOUtGN2OA8kuBlkD2QVIhy/IIRarSpHB /lsBuNUxJoaoa5PhcN+S71l8woXCxW/S69wfo12+jayH3UDT1RrPi7pCo67nBZYw NBhvqJG31dhwakq/chQb6W1Um2LGjLxC8BBUf6+QCLzL2OYf+sHXpLfhJ5JfiSbj jh/qJuIGpGXilXQ2cj7sW9VPDK7CDDyK8qUWIQ== -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:50 2025 by rpki-client