$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136372e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136372e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: ZuHAe7JYUHccFlZ/Uln2wee3HYWIzE8L1lme1/Va+ig= Subject key identifier: 2D:33:8B:2F:90:7F:08:E2:0B:FC:21:38:B3:BB:23:DA:8A:D2:F5:16 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 3C5D9E883E128527198BAC80E5EC8DF2CC14FDF2 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136372e302f32342d3234203d3e203137373237.roa Signing time: Sun 31 Aug 2025 10:00:03 +0000 ROA not before: Sun 31 Aug 2025 09:55:03 +0000 ROA not after: Sun 30 Aug 2026 10:00:03 +0000 asID: 17727 IP address blocks: 202.59.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:5d:9e:88:3e:12:85:27:19:8b:ac:80:e5:ec:8d:f2:cc:14:fd:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 09:55:03 2025 GMT Not After : Aug 30 10:00:03 2026 GMT Subject: CN=2D338B2F907F08E20BFC2138B3BB23DA8AD2F516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fa:98:a8:43:11:74:72:1b:f7:2b:e8:1e:1b: 15:64:69:d0:25:da:94:7f:80:fd:5c:c6:68:4c:ac: 55:35:79:c4:6c:f1:cd:16:5d:00:fa:ea:1a:a0:48: b9:6d:4d:6b:d1:fc:74:61:40:60:88:2b:50:70:7a: 3c:c0:63:c8:44:52:94:98:0a:9a:74:2e:b5:99:dd: 8d:6c:c0:45:8b:13:dc:1b:e5:4f:7c:8c:08:7c:97: d1:0f:df:1a:76:68:fa:d1:8f:13:0d:ed:c8:90:66: 1f:0b:c9:08:ad:a7:24:15:6d:23:43:f1:3c:74:9a: 40:33:b0:e3:a5:18:a1:32:b6:54:4d:88:17:65:3b: d8:2c:ed:51:5f:89:fc:16:a4:da:21:5b:99:04:2b: f0:d2:68:2b:ed:f6:66:99:5d:96:53:73:ec:eb:22: 55:d0:35:92:21:d3:35:6d:d5:73:60:c9:1b:09:a9: 47:8c:ca:40:6f:b8:3d:79:3b:e9:a5:5f:f2:f4:30: e2:df:da:e6:2b:0c:34:b2:cc:c8:02:31:ac:45:63: 4c:40:9f:26:b7:99:b1:d3:9a:13:b1:a9:dc:0a:da: ae:7a:72:27:17:c3:d7:3a:64:33:42:ba:ca:8f:d5: aa:c8:ac:40:df:5e:3a:51:a3:67:d0:2c:88:e9:48: 4f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:33:8B:2F:90:7F:08:E2:0B:FC:21:38:B3:BB:23:DA:8A:D2:F5:16 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136372e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.167.0/24 Signature Algorithm: sha256WithRSAEncryption 88:3e:92:14:cf:22:d0:10:99:f6:5e:d4:63:54:18:40:ae:5b: 9c:a5:e3:00:2f:ab:e0:15:be:d5:d3:d4:ed:0b:7b:06:39:80: e0:d1:43:28:64:d7:0c:26:f7:dd:7b:56:26:ba:7e:e4:c7:40: 5d:ed:a2:87:59:4e:17:f7:28:8d:f5:59:3e:3e:55:c8:d7:c5: f2:80:c2:05:d8:a8:f7:56:14:24:14:07:99:c1:9d:93:c1:5d: d9:08:da:14:ee:35:ac:45:4a:3e:0f:74:6d:09:1f:57:8b:b4: ec:69:c3:84:01:fb:3f:f9:c5:83:b0:1b:67:e8:a8:07:ba:59: 26:61:a6:ba:cd:34:de:63:2b:33:38:92:af:b9:b4:17:70:b4: de:2c:e7:2b:b8:a4:d7:2b:b9:08:a5:62:59:7d:61:be:38:ad: 25:13:81:9b:90:11:3c:83:13:94:49:f6:a6:76:75:48:e7:7b: 71:98:40:0a:fc:e3:62:ca:28:68:6f:3d:e0:b8:9d:65:ba:82: 4b:b6:46:17:43:8b:ae:35:04:26:2c:4f:05:73:a0:fb:c6:c0: 2c:27:40:d4:63:33:cb:88:59:84:8b:14:17:5a:91:a7:c0:34: b9:95:cb:2c:e8:eb:f3:e2:7d:7c:94:31:52:b6:db:b6:d5:0f: 43:0d:9b:b1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPF2eiD4ShScZi6yA5eyN8swU/fIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwOTU1MDNaFw0yNjA4MzAxMDAwMDNaMDMxMTAvBgNV BAMTKDJEMzM4QjJGOTA3RjA4RTIwQkZDMjEzOEIzQkIyM0RBOEFEMkY1MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF+pioQxF0chv3K+geGxVkadAl 2pR/gP1cxmhMrFU1ecRs8c0WXQD66hqgSLltTWvR/HRhQGCIK1BwejzAY8hEUpSY Cpp0LrWZ3Y1swEWLE9wb5U98jAh8l9EP3xp2aPrRjxMN7ciQZh8LyQitpyQVbSND 8Tx0mkAzsOOlGKEytlRNiBdlO9gs7VFfifwWpNohW5kEK/DSaCvt9maZXZZTc+zr IlXQNZIh0zVt1XNgyRsJqUeMykBvuD15O+mlX/L0MOLf2uYrDDSyzMgCMaxFY0xA nya3mbHTmhOxqdwK2q56cicXw9c6ZDNCusqP1arIrEDfXjpRo2fQLIjpSE8bAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULTOLL5B/COIL/CE4s7sj2orS9RYwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7pzANBgkqhkiG 9w0BAQsFAAOCAQEAiD6SFM8i0BCZ9l7UY1QYQK5bnKXjAC+r4BW+1dPU7Qt7BjmA 4NFDKGTXDCb33XtWJrp+5MdAXe2ih1lOF/cojfVZPj5VyNfF8oDCBdio91YUJBQH mcGdk8Fd2QjaFO41rEVKPg90bQkfV4u07GnDhAH7P/nFg7AbZ+ioB7pZJmGmus00 3mMrMziSr7m0F3C03iznK7ik1yu5CKViWX1hvjitJROBm5ARPIMTlEn2pnZ1SOd7 cZhACvzjYsooaG894LidZbqCS7ZGF0OLrjUEJixPBXOg+8bALCdA1GMzy4hZhIsU F1qRp8A0uZXLLOjr8+J9fJQxUrbbttUPQw2bsQ== -----END CERTIFICATE-----Generated at Mon Sep 8 12:15:42 2025 by rpki-client