$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136362e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136362e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: WlrZzh9niI+GP2O3dIbs5AUWgpOQ22/U+gQNV+8mGDg= Subject key identifier: CC:EE:C7:08:1F:CA:7E:47:04:C7:4A:FA:1B:AF:E5:31:DE:EC:CE:A9 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 78C0DBFDF81BC49A37EBCC5B311673B69895AAF7 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136362e302f32342d3234203d3e203137373237.roa Signing time: Sun 31 Aug 2025 08:00:01 +0000 ROA not before: Sun 31 Aug 2025 07:55:01 +0000 ROA not after: Sun 30 Aug 2026 08:00:01 +0000 asID: 17727 IP address blocks: 202.59.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:c0:db:fd:f8:1b:c4:9a:37:eb:cc:5b:31:16:73:b6:98:95:aa:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 07:55:01 2025 GMT Not After : Aug 30 08:00:01 2026 GMT Subject: CN=CCEEC7081FCA7E4704C74AFA1BAFE531DEECCEA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3b:84:78:25:b5:a3:c4:2a:14:01:b5:50:7e: c7:23:d3:e3:e5:a7:74:e7:e7:5b:eb:d6:5f:02:20: f5:49:07:cc:72:1f:b4:9a:51:f5:64:f4:77:d5:e0: 20:b3:5b:58:00:3f:02:dc:32:aa:75:9c:9f:d0:42: 95:69:5b:70:03:2d:fc:9c:8b:35:45:2e:86:51:e9: 9a:0b:99:e9:85:60:1d:e6:ee:e1:c7:a6:c3:7a:6a: d2:c8:89:e2:41:2f:7f:97:19:91:47:e2:37:58:df: 7b:5b:1c:ef:fa:73:e2:80:50:54:e3:0c:67:f3:46: 21:e4:bf:54:34:3d:a1:98:1b:8d:24:29:24:48:cb: 26:fd:31:c2:b3:89:5b:73:36:57:f0:3d:9f:24:44: 13:b1:41:34:ef:ee:9b:af:0a:89:d4:81:ef:23:d8: 95:42:67:1c:39:44:07:7d:1a:12:cc:ad:cf:5f:89: 50:ca:ee:0d:31:79:35:08:5f:30:89:0e:f4:d7:d0: f8:7d:7e:4b:79:68:15:73:6e:66:ed:c6:32:4b:7f: 1c:3f:79:e7:c7:be:c9:ad:65:7b:36:cf:ca:e8:5e: 0a:e9:74:f0:78:cd:5d:90:c1:42:04:bf:90:18:61: 06:04:99:79:d3:c2:06:21:b2:91:eb:60:e4:d9:8d: d3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:EE:C7:08:1F:CA:7E:47:04:C7:4A:FA:1B:AF:E5:31:DE:EC:CE:A9 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136362e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.166.0/24 Signature Algorithm: sha256WithRSAEncryption 92:c1:c8:9d:16:6a:1b:5d:de:77:1c:4b:e5:7d:f2:20:5c:de: 4e:6c:a7:d9:99:83:59:6e:b0:ae:82:cc:9c:27:b2:d5:29:ef: da:54:19:51:db:db:ad:ac:70:ae:3b:8d:1c:42:3a:60:af:1e: 62:7c:c3:b1:cc:3f:b0:83:e2:41:77:f1:9d:a4:81:49:d3:20: 6c:9b:83:d2:d7:7d:dc:ea:e8:ce:d3:18:57:16:4f:e4:fd:05: df:02:0b:f3:03:d0:c3:84:4d:48:d3:b6:9e:54:c5:81:38:3c: e2:8e:f8:5d:31:56:cd:44:90:7b:76:70:9b:65:dd:30:40:5f: 5e:b6:0c:9c:63:0b:b3:ca:50:11:4f:63:92:f4:9a:a5:65:bc: 3d:34:e7:ba:35:f3:b5:27:51:4c:ed:4b:78:69:7d:87:da:d5: 14:b9:56:ea:57:bb:f6:0e:21:38:61:16:19:07:f3:66:6f:e4: 0d:3a:34:1e:d6:3f:ee:0c:b7:d9:88:0c:9a:17:a0:b4:90:ad: 52:77:13:79:ea:e7:8c:fb:81:5b:fd:e3:bb:93:c7:6d:dd:fc: ec:d3:05:60:85:39:be:02:53:8d:bb:48:0c:ef:2b:11:46:55: 26:0c:d2:f7:b8:f9:32:53:03:fc:03:d8:d8:20:18:a9:58:67: 31:65:d1:9e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeMDb/fgbxJo368xbMRZztpiVqvcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwNzU1MDFaFw0yNjA4MzAwODAwMDFaMDMxMTAvBgNV BAMTKENDRUVDNzA4MUZDQTdFNDcwNEM3NEFGQTFCQUZFNTMxREVFQ0NFQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvO4R4JbWjxCoUAbVQfscj0+Pl p3Tn51vr1l8CIPVJB8xyH7SaUfVk9HfV4CCzW1gAPwLcMqp1nJ/QQpVpW3ADLfyc izVFLoZR6ZoLmemFYB3m7uHHpsN6atLIieJBL3+XGZFH4jdY33tbHO/6c+KAUFTj DGfzRiHkv1Q0PaGYG40kKSRIyyb9McKziVtzNlfwPZ8kRBOxQTTv7puvConUge8j 2JVCZxw5RAd9GhLMrc9fiVDK7g0xeTUIXzCJDvTX0Ph9fkt5aBVzbmbtxjJLfxw/ eefHvsmtZXs2z8roXgrpdPB4zV2QwUIEv5AYYQYEmXnTwgYhspHrYOTZjdNzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzO7HCB/KfkcEx0r6G6/lMd7szqkwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7pjANBgkqhkiG 9w0BAQsFAAOCAQEAksHInRZqG13edxxL5X3yIFzeTmyn2ZmDWW6wroLMnCey1Snv 2lQZUdvbraxwrjuNHEI6YK8eYnzDscw/sIPiQXfxnaSBSdMgbJuD0td93OroztMY VxZP5P0F3wIL8wPQw4RNSNO2nlTFgTg84o74XTFWzUSQe3Zwm2XdMEBfXrYMnGML s8pQEU9jkvSapWW8PTTnujXztSdRTO1LeGl9h9rVFLlW6le79g4hOGEWGQfzZm/k DTo0HtY/7gy32YgMmhegtJCtUncTeernjPuBW/3ju5PHbd387NMFYIU5vgJTjbtI DO8rEUZVJgzS97j5MlMD/APY2CAYqVhnMWXRng== -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:50 2025 by rpki-client