$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136342e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136342e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: JPfYiVNbJO7avdH/tfjRfR0Z2hRGKRBgVz77lFeXzSE= Subject key identifier: 63:84:4B:3C:5A:41:87:66:72:48:8F:7A:AF:CC:1F:63:AB:DB:14:3B Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 63C21FD601A90466B2D19DD0F6D7B16C5DFD1EC9 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136342e302f32342d3234203d3e203137373237.roa Signing time: Sun 31 Aug 2025 10:00:00 +0000 ROA not before: Sun 31 Aug 2025 09:55:00 +0000 ROA not after: Sun 30 Aug 2026 10:00:00 +0000 asID: 17727 IP address blocks: 202.59.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:c2:1f:d6:01:a9:04:66:b2:d1:9d:d0:f6:d7:b1:6c:5d:fd:1e:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 09:55:00 2025 GMT Not After : Aug 30 10:00:00 2026 GMT Subject: CN=63844B3C5A41876672488F7AAFCC1F63ABDB143B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:36:9b:d6:24:b7:2d:68:0f:1b:a4:b9:07:17: 06:e7:f2:6e:b6:5e:54:d2:52:6a:75:98:5e:9b:f1: ae:aa:87:56:45:15:d9:bf:94:1e:7b:51:c3:7d:ff: 03:9c:d4:6e:d3:62:d8:9d:01:9c:00:e4:24:23:47: 5b:12:02:22:bb:d5:00:09:e2:88:eb:51:a5:53:2c: 6e:81:58:e3:50:dd:2d:47:4b:b5:97:c5:50:32:1a: d2:ae:66:1f:5f:f1:30:70:49:46:b7:bc:dd:b3:6a: fc:08:0b:bf:6c:47:25:2e:b4:b7:4e:56:bc:ed:8a: b3:24:9c:8e:aa:ef:b9:1f:96:43:6a:c4:53:eb:82: 89:0f:24:62:d0:70:75:9a:ec:4a:24:d8:e9:3d:bc: 21:e2:8f:fc:8a:79:99:40:c7:a6:d0:d8:31:b8:8d: 47:6e:1e:cd:bd:44:e5:e5:b8:cc:ca:e5:64:25:cf: e2:f8:31:e2:d2:1a:2d:93:43:aa:ec:72:b7:92:1b: bd:e9:38:6f:9d:a3:5a:b6:6a:1e:d0:1a:64:8a:7e: 4a:25:a0:35:2e:1a:b3:48:4f:3b:7c:a1:95:2e:c0: 30:80:dc:6e:da:55:3e:74:de:3e:44:c6:c2:e4:14: f9:82:77:01:48:29:62:ad:34:61:92:35:da:d2:fe: 9c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:84:4B:3C:5A:41:87:66:72:48:8F:7A:AF:CC:1F:63:AB:DB:14:3B X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136342e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.164.0/24 Signature Algorithm: sha256WithRSAEncryption b0:4d:db:26:2e:d5:bf:20:79:4a:41:3f:46:2c:0d:af:8c:09: 70:cc:fa:0c:da:e6:c5:24:d8:1f:f7:fd:f6:f3:71:de:3b:c5: 89:2e:0e:7b:01:a7:37:4a:ef:be:63:54:87:47:e5:3a:f5:ff: 18:41:e0:e0:1f:65:94:f4:38:f5:a3:3e:9e:a8:cb:f6:f9:39: a7:e7:63:5f:cf:09:27:74:0e:2c:70:8d:69:50:c5:d6:81:5f: 31:19:f9:c6:5c:07:85:c0:ae:0e:df:b7:07:a9:14:12:97:2e: e4:5a:7d:1b:e7:b8:33:46:9a:9d:df:e3:e8:ca:d4:32:c8:ae: c1:3f:51:82:cd:0d:b9:a4:db:ae:12:37:aa:3b:0e:37:2e:31: 06:23:43:12:d3:de:23:db:42:9b:b0:aa:47:ee:78:18:5a:96: 9c:e5:71:5b:98:b4:45:1a:e7:3d:75:3f:33:3d:20:c7:e4:24: c2:be:00:97:91:4d:f3:76:fa:53:d7:a2:ec:67:80:7b:47:c1: 01:2d:82:41:47:cd:28:5e:02:bd:4b:b6:c4:7e:ff:e0:8d:bd: e3:64:c8:c8:cd:29:e2:2c:57:7a:2d:71:e6:6d:7b:66:89:14: 6a:51:ea:f6:3b:77:c7:05:a4:42:1f:89:fa:52:65:dc:ca:c8: 1e:a4:f4:db -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUY8If1gGpBGay0Z3Q9texbF39HskwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwOTU1MDBaFw0yNjA4MzAxMDAwMDBaMDMxMTAvBgNV BAMTKDYzODQ0QjNDNUE0MTg3NjY3MjQ4OEY3QUFGQ0MxRjYzQUJEQjE0M0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZNpvWJLctaA8bpLkHFwbn8m62 XlTSUmp1mF6b8a6qh1ZFFdm/lB57UcN9/wOc1G7TYtidAZwA5CQjR1sSAiK71QAJ 4ojrUaVTLG6BWONQ3S1HS7WXxVAyGtKuZh9f8TBwSUa3vN2zavwIC79sRyUutLdO VrztirMknI6q77kflkNqxFPrgokPJGLQcHWa7Eok2Ok9vCHij/yKeZlAx6bQ2DG4 jUduHs29ROXluMzK5WQlz+L4MeLSGi2TQ6rscreSG73pOG+do1q2ah7QGmSKfkol oDUuGrNITzt8oZUuwDCA3G7aVT503j5ExsLkFPmCdwFIKWKtNGGSNdrS/pwfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUY4RLPFpBh2ZySI96r8wfY6vbFDswHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7pDANBgkqhkiG 9w0BAQsFAAOCAQEAsE3bJi7VvyB5SkE/RiwNr4wJcMz6DNrmxSTYH/f99vNx3jvF iS4OewGnN0rvvmNUh0flOvX/GEHg4B9llPQ49aM+nqjL9vk5p+djX88JJ3QOLHCN aVDF1oFfMRn5xlwHhcCuDt+3B6kUEpcu5Fp9G+e4M0aand/j6MrUMsiuwT9Rgs0N uaTbrhI3qjsONy4xBiNDEtPeI9tCm7CqR+54GFqWnOVxW5i0RRrnPXU/Mz0gx+Qk wr4Al5FN83b6U9ei7GeAe0fBAS2CQUfNKF4CvUu2xH7/4I2942TIyM0p4ixXei1x 5m17ZokUalHq9jt3xwWkQh+J+lJl3MrIHqT02w== -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:22 2025 by rpki-client