$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136382e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136382e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: g4OCYHAxYtPEXU6cixIS2FJWJnVxZMd2KPH1qAYiasQ= Subject key identifier: CC:D2:E9:F1:BC:E4:5E:BF:E3:75:8E:A2:B7:C4:2B:E6:CF:A7:CA:9B Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 49E6734607934CFF1EFF9B58A2C31D545F6FDEC7 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136382e302f32342d3234203d3e203137373237.roa Signing time: Sun 31 Aug 2025 09:00:00 +0000 ROA not before: Sun 31 Aug 2025 08:55:00 +0000 ROA not after: Sun 30 Aug 2026 09:00:00 +0000 asID: 17727 IP address blocks: 202.59.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:e6:73:46:07:93:4c:ff:1e:ff:9b:58:a2:c3:1d:54:5f:6f:de:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 08:55:00 2025 GMT Not After : Aug 30 09:00:00 2026 GMT Subject: CN=CCD2E9F1BCE45EBFE3758EA2B7C42BE6CFA7CA9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ee:34:f6:f2:d7:94:f7:c0:6b:3b:f9:81:44: 4f:6b:27:42:e1:5a:c2:a5:95:ba:94:49:1d:48:4d: 47:82:1c:92:ca:cf:57:35:9f:95:25:5a:d6:eb:8f: 7b:a6:34:a5:a1:3f:cf:ab:81:c9:d7:13:78:e9:0c: 17:c6:12:8b:96:61:86:8a:01:a9:93:c8:d0:0b:81: d6:c5:a9:d4:66:63:f5:4f:85:72:e8:c8:2a:c1:05: fe:57:91:1c:79:e7:85:6d:d7:d9:de:d3:0b:8e:6b: a2:b7:a2:13:4b:78:14:cd:cc:e3:48:84:bf:85:2b: d7:53:5a:c3:84:35:89:09:2b:5e:58:f7:f5:b7:7b: cb:4d:75:d5:f3:7e:7b:51:0a:0c:fa:cc:05:99:91: ae:6a:d2:ae:bf:11:13:70:2d:30:e0:20:9d:ed:61: a1:55:97:59:56:c7:00:9a:5d:5e:bf:d8:f9:2e:76: 33:53:04:5c:2c:98:a1:0e:ec:1e:cb:de:b3:22:ec: a0:28:f7:f1:69:e8:7e:1d:26:91:66:5d:42:57:74: 68:0f:44:75:68:a0:59:8e:b6:b6:b1:6f:8c:17:ff: 3e:6e:ee:fd:7a:05:14:c6:f6:4b:82:47:64:4b:03: c0:d3:32:24:9c:04:35:90:83:ad:a2:a5:db:0d:0e: 8d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:D2:E9:F1:BC:E4:5E:BF:E3:75:8E:A2:B7:C4:2B:E6:CF:A7:CA:9B X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136382e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.168.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:19:e3:50:10:6b:76:ef:83:36:7b:59:21:11:5c:b3:65:ee: fc:93:78:61:80:8c:59:cc:6d:5c:48:88:39:ca:2c:17:47:58: 1f:08:87:7a:f1:5a:a5:f0:23:a1:c2:99:28:2d:db:6a:0b:c4: e5:d1:2a:7c:b2:4b:9a:75:fe:bb:e6:82:98:c9:cc:81:dd:59: c5:83:e4:8f:68:f8:31:d7:f3:03:43:7e:99:5d:23:6b:64:3b: eb:77:0b:a8:1f:8f:0b:21:ac:39:80:66:0f:b7:67:25:df:cf: e8:f3:1c:f9:d1:c3:c8:87:17:e0:f5:8d:68:7e:dc:6e:76:86: eb:82:b6:49:0c:49:fc:45:1d:c0:d1:0a:ae:81:4d:9c:92:fe: 54:f3:da:96:15:80:52:a1:2e:7e:59:45:8e:b5:e5:c8:71:91: 1e:2b:19:13:a8:db:fe:2a:55:33:9d:3f:f1:8a:cf:6f:df:65: 80:e4:ee:65:68:d1:cd:10:89:b0:32:1f:13:5d:31:88:27:20: f1:16:b7:b0:5c:be:20:d0:bb:ad:5d:3a:9e:c8:f3:1f:1d:ce: 90:ac:a8:80:30:d6:e8:98:67:a5:d5:83:e9:c5:a6:99:b6:13: dc:78:e8:bd:b5:63:cb:c3:5e:9f:7b:b7:66:33:b4:88:e2:90: 9a:a7:02:5e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSeZzRgeTTP8e/5tYosMdVF9v3scwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwODU1MDBaFw0yNjA4MzAwOTAwMDBaMDMxMTAvBgNV BAMTKENDRDJFOUYxQkNFNDVFQkZFMzc1OEVBMkI3QzQyQkU2Q0ZBN0NBOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC07jT28teU98BrO/mBRE9rJ0Lh WsKllbqUSR1ITUeCHJLKz1c1n5UlWtbrj3umNKWhP8+rgcnXE3jpDBfGEouWYYaK AamTyNALgdbFqdRmY/VPhXLoyCrBBf5XkRx554Vt19ne0wuOa6K3ohNLeBTNzONI hL+FK9dTWsOENYkJK15Y9/W3e8tNddXzfntRCgz6zAWZka5q0q6/ERNwLTDgIJ3t YaFVl1lWxwCaXV6/2PkudjNTBFwsmKEO7B7L3rMi7KAo9/Fp6H4dJpFmXUJXdGgP RHVooFmOtraxb4wX/z5u7v16BRTG9kuCR2RLA8DTMiScBDWQg62ipdsNDo3FAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzNLp8bzkXr/jdY6it8Qr5s+nypswHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7qDANBgkqhkiG 9w0BAQsFAAOCAQEAOhnjUBBrdu+DNntZIRFcs2Xu/JN4YYCMWcxtXEiIOcosF0dY HwiHevFapfAjocKZKC3bagvE5dEqfLJLmnX+u+aCmMnMgd1ZxYPkj2j4MdfzA0N+ mV0ja2Q763cLqB+PCyGsOYBmD7dnJd/P6PMc+dHDyIcX4PWNaH7cbnaG64K2SQxJ /EUdwNEKroFNnJL+VPPalhWAUqEufllFjrXlyHGRHisZE6jb/ipVM50/8YrPb99l gOTuZWjRzRCJsDIfE10xiCcg8Ra3sFy+INC7rV06nsjzHx3OkKyogDDW6JhnpdWD 6cWmmbYT3HjovbVjy8Nen3u3ZjO0iOKQmqcCXg== -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:42 2025 by rpki-client