$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136352e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136352e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: bdJ7A5Bj81/IJ+LqVqeUvMBA5JGQrZ1YyfdI6zmS4TE= Subject key identifier: BE:81:F5:57:04:2D:3C:5C:EC:36:83:3B:B7:03:AB:D6:41:41:EF:BF Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 08DC09DB722A7106C9D51CEC69D406F2013844FB Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136352e302f32342d3234203d3e203137373237.roa Signing time: Sun 31 Aug 2025 10:00:02 +0000 ROA not before: Sun 31 Aug 2025 09:55:02 +0000 ROA not after: Sun 30 Aug 2026 10:00:02 +0000 asID: 17727 IP address blocks: 202.59.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:dc:09:db:72:2a:71:06:c9:d5:1c:ec:69:d4:06:f2:01:38:44:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 09:55:02 2025 GMT Not After : Aug 30 10:00:02 2026 GMT Subject: CN=BE81F557042D3C5CEC36833BB703ABD64141EFBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:70:ff:7e:aa:e4:82:e1:bd:cd:4c:5b:67:51: fd:98:0b:43:1f:9c:74:c1:63:f5:80:eb:85:c5:e4: 53:29:5f:83:6b:29:47:ec:a0:49:94:e8:96:2a:39: d4:8b:8c:f6:c2:34:6c:6b:5b:8d:aa:43:28:35:98: 19:26:95:0a:11:ff:86:eb:38:f2:63:29:70:da:63: d9:a4:6d:b1:8c:b5:91:06:07:6f:3a:c1:bc:63:98: de:50:70:2f:4d:a9:5e:91:d6:83:de:2a:f3:ce:1b: b5:ca:8f:0f:22:c7:58:06:2b:5a:a0:39:dd:46:d4: 65:bd:06:7b:83:b0:01:43:71:36:b5:91:dd:6b:b3: 72:d9:b0:10:5b:83:86:ef:56:d3:7d:01:2f:76:f0: 3f:e0:58:d2:b6:e4:b4:f0:39:45:13:d1:2c:94:30: 53:c9:fa:02:00:9b:fb:29:9a:69:03:32:7a:07:6c: 9f:54:3b:45:61:01:f0:1c:9f:2b:23:5c:60:47:8a: 03:41:a5:a7:de:15:28:84:7f:8b:3b:e0:31:8b:db: a0:cb:af:1f:e4:24:bf:ac:d6:f6:28:98:c9:a0:65: 7c:2d:71:c3:e2:b4:e7:41:99:36:4a:ad:54:d2:1b: 78:d4:c1:4c:fc:cc:df:54:04:71:2b:0d:66:b4:fa: 98:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:81:F5:57:04:2D:3C:5C:EC:36:83:3B:B7:03:AB:D6:41:41:EF:BF X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136352e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.165.0/24 Signature Algorithm: sha256WithRSAEncryption b3:4f:55:39:30:9b:31:09:9b:d0:6e:7b:3a:b0:57:21:a6:fb: ec:ee:e1:3d:07:ba:57:50:b8:70:06:f3:75:66:05:02:9e:67: 55:5b:47:da:b7:95:3d:6d:a4:d0:50:c8:ce:06:50:e5:ac:35: f8:dd:32:96:40:3a:e5:fa:53:bf:7f:d2:b3:9e:93:40:72:23: 60:4a:2d:43:27:7e:66:64:e1:76:d0:7f:d2:f8:fb:1b:91:a0: df:e2:85:33:2c:81:b0:56:40:18:a7:14:3a:9b:8a:28:3c:3c: 39:4b:28:ab:58:03:be:15:4d:b3:f6:40:32:01:ab:41:d8:20: e6:c8:d2:b7:df:7d:7b:19:a9:85:08:42:eb:9a:3e:6c:ab:d8: ee:b3:6b:87:52:f1:b9:a7:71:4c:d5:65:38:f2:a1:88:ea:13: e8:b1:3d:0d:30:51:55:d5:4a:33:75:5e:6f:9b:2c:25:e3:7d: 9b:2f:dc:18:f5:58:b2:e9:05:cc:31:bf:5e:fd:0a:12:59:b3: f8:ac:62:40:cb:a8:2f:33:50:21:ea:0d:ce:cb:fc:f0:d6:05: 59:04:f8:96:98:7f:84:4a:7d:93:09:5e:fd:86:c7:97:a0:aa: f7:ff:f9:51:7f:64:fc:c2:a8:4d:6d:f5:de:26:a9:1c:37:83: c1:7e:6e:11 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCNwJ23IqcQbJ1RzsadQG8gE4RPswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwOTU1MDJaFw0yNjA4MzAxMDAwMDJaMDMxMTAvBgNV BAMTKEJFODFGNTU3MDQyRDNDNUNFQzM2ODMzQkI3MDNBQkQ2NDE0MUVGQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDucP9+quSC4b3NTFtnUf2YC0Mf nHTBY/WA64XF5FMpX4NrKUfsoEmU6JYqOdSLjPbCNGxrW42qQyg1mBkmlQoR/4br OPJjKXDaY9mkbbGMtZEGB286wbxjmN5QcC9NqV6R1oPeKvPOG7XKjw8ix1gGK1qg Od1G1GW9BnuDsAFDcTa1kd1rs3LZsBBbg4bvVtN9AS928D/gWNK25LTwOUUT0SyU MFPJ+gIAm/spmmkDMnoHbJ9UO0VhAfAcnysjXGBHigNBpafeFSiEf4s74DGL26DL rx/kJL+s1vYomMmgZXwtccPitOdBmTZKrVTSG3jUwUz8zN9UBHErDWa0+phLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvoH1VwQtPFzsNoM7twOr1kFB778wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7pTANBgkqhkiG 9w0BAQsFAAOCAQEAs09VOTCbMQmb0G57OrBXIab77O7hPQe6V1C4cAbzdWYFAp5n VVtH2reVPW2k0FDIzgZQ5aw1+N0ylkA65fpTv3/Ss56TQHIjYEotQyd+ZmThdtB/ 0vj7G5Gg3+KFMyyBsFZAGKcUOpuKKDw8OUsoq1gDvhVNs/ZAMgGrQdgg5sjSt999 exmphQhC65o+bKvY7rNrh1LxuadxTNVlOPKhiOoT6LE9DTBRVdVKM3Veb5ssJeN9 my/cGPVYsukFzDG/Xv0KElmz+KxiQMuoLzNQIeoNzsv88NYFWQT4lph/hEp9kwle /YbHl6Cq9//5UX9k/MKoTW313iapHDeDwX5uEQ== -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:49 2025 by rpki-client