$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137302e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137302e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: MgoZBzMy5nn8Ztrlwm8elZ5WCQKpHF93OvOnYN4y7jY= Subject key identifier: 47:38:5F:9D:C8:58:62:4F:C7:AA:50:F8:9A:31:75:35:ED:93:73:70 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 0A7CA6F9463D326B45E231A856A91BE906990EA3 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137302e302f32342d3234203d3e203137373237.roa Signing time: Sun 31 Aug 2025 10:00:02 +0000 ROA not before: Sun 31 Aug 2025 09:55:02 +0000 ROA not after: Sun 30 Aug 2026 10:00:02 +0000 asID: 17727 IP address blocks: 202.59.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:7c:a6:f9:46:3d:32:6b:45:e2:31:a8:56:a9:1b:e9:06:99:0e:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 09:55:02 2025 GMT Not After : Aug 30 10:00:02 2026 GMT Subject: CN=47385F9DC858624FC7AA50F89A317535ED937370 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:41:d3:bd:9e:a2:39:30:51:17:1c:e6:5b:76: b6:f5:38:27:fe:db:c2:e4:d2:68:76:b0:40:b2:e2: 1d:18:64:97:02:51:48:64:cc:dc:a1:a1:09:91:30: 25:2f:7f:af:e0:e2:cd:14:a4:ea:4f:2e:84:63:09: ff:83:ed:30:c2:6d:7d:7e:20:60:d4:0e:a6:e5:ff: df:c6:2e:a1:31:3c:a6:eb:73:b1:d9:c2:49:b8:0d: ed:cf:c5:03:43:e0:71:92:f3:77:35:6f:15:f5:7b: ae:c3:40:10:c7:e2:01:86:26:2d:88:6a:93:eb:ac: 9d:29:01:04:e6:52:b7:09:6c:44:5b:a5:9e:30:9e: 44:e8:4e:cf:84:64:1c:7c:5c:04:51:8b:b4:3a:73: f1:2a:fb:d0:18:29:f2:23:15:ca:f3:7a:11:63:59: 78:0b:f1:99:b0:22:ab:ef:2c:3e:27:89:89:c5:71: a0:09:43:7c:28:ab:bd:44:00:de:09:c0:53:68:02: c7:25:0f:52:42:18:4e:3a:28:3a:2b:c4:e8:ce:9a: 10:93:41:98:69:4d:ad:b7:81:8c:1f:3e:f3:a1:3f: ae:25:d3:6b:3a:45:ab:84:a3:57:34:c9:84:9e:d9: 06:64:52:f2:60:ea:8f:cd:27:81:29:1c:aa:92:8c: 5c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:38:5F:9D:C8:58:62:4F:C7:AA:50:F8:9A:31:75:35:ED:93:73:70 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137302e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.170.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:e3:ea:0d:0b:df:8a:1f:d8:da:17:7d:b0:1a:f2:33:59:71: 4d:f0:f2:d0:ae:9b:dc:28:db:d2:1f:1b:24:fd:4d:24:99:bf: 50:c7:1e:ed:94:f8:30:8e:d2:65:82:4e:91:8a:75:02:3a:b7: 9e:2d:0d:d5:54:b4:f7:1d:07:48:ad:a7:61:0d:9a:c4:ea:02: 89:8d:84:92:af:b6:c1:64:48:9f:bd:9f:41:e6:e2:92:81:de: 93:37:8c:bb:f2:68:54:34:f4:e6:ae:c7:f2:80:db:37:94:fa: e6:15:d5:99:81:a3:60:1c:7f:13:2f:25:a5:5d:a2:72:e6:d7: c0:1a:86:63:2d:13:95:92:b1:d2:ba:d5:a9:1b:04:cc:f2:4f: c1:93:56:d4:96:0a:39:a8:ee:d2:61:37:81:77:a0:43:a5:f0: 8b:9e:ee:30:3d:68:d1:bf:1c:5e:77:db:e3:d9:f6:88:48:13: b9:0f:f0:c2:f4:26:5f:0e:51:ed:ed:bc:94:f6:12:cd:28:ed: b9:78:3b:da:cc:6f:6b:22:ce:f5:86:e1:e5:b2:22:87:d6:51: e8:2a:be:73:1a:57:2b:ed:1e:71:f4:78:29:67:53:48:2f:b8: 5f:f8:de:19:c9:8a:06:2b:97:9a:ca:49:28:f2:3b:31:95:dd: 3f:f6:5d:fb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCnym+UY9MmtF4jGoVqkb6QaZDqMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwOTU1MDJaFw0yNjA4MzAxMDAwMDJaMDMxMTAvBgNV BAMTKDQ3Mzg1RjlEQzg1ODYyNEZDN0FBNTBGODlBMzE3NTM1RUQ5MzczNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1QdO9nqI5MFEXHOZbdrb1OCf+ 28Lk0mh2sECy4h0YZJcCUUhkzNyhoQmRMCUvf6/g4s0UpOpPLoRjCf+D7TDCbX1+ IGDUDqbl/9/GLqExPKbrc7HZwkm4De3PxQND4HGS83c1bxX1e67DQBDH4gGGJi2I apPrrJ0pAQTmUrcJbERbpZ4wnkToTs+EZBx8XARRi7Q6c/Eq+9AYKfIjFcrzehFj WXgL8ZmwIqvvLD4niYnFcaAJQ3woq71EAN4JwFNoAsclD1JCGE46KDorxOjOmhCT QZhpTa23gYwfPvOhP64l02s6RauEo1c0yYSe2QZkUvJg6o/NJ4EpHKqSjFwpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURzhfnchYYk/HqlD4mjF1Ne2Tc3AwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7qjANBgkqhkiG 9w0BAQsFAAOCAQEATePqDQvfih/Y2hd9sBryM1lxTfDy0K6b3Cjb0h8bJP1NJJm/ UMce7ZT4MI7SZYJOkYp1Ajq3ni0N1VS09x0HSK2nYQ2axOoCiY2Ekq+2wWRIn72f QebikoHekzeMu/JoVDT05q7H8oDbN5T65hXVmYGjYBx/Ey8lpV2icubXwBqGYy0T lZKx0rrVqRsEzPJPwZNW1JYKOaju0mE3gXegQ6Xwi57uMD1o0b8cXnfb49n2iEgT uQ/wwvQmXw5R7e28lPYSzSjtuXg72sxvayLO9Ybh5bIih9ZR6Cq+cxpXK+0ecfR4 KWdTSC+4X/jeGcmKBiuXmspJKPI7MZXdP/Zd+w== -----END CERTIFICATE-----Generated at Mon Sep 8 09:38:19 2025 by rpki-client