$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137312e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137312e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: ZrU3h40BTr4l2AauEOhgF/f21GkJABmEzPWAIIz1D+o= Subject key identifier: BF:0F:90:FB:B4:BC:71:20:95:41:99:A0:EA:0B:C9:DC:BE:4F:09:1C Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 580311C1CE8C8B3C7ABFDC562DE90A9FD96B5FC6 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137312e302f32342d3234203d3e203137373237.roa Signing time: Sun 31 Aug 2025 10:00:01 +0000 ROA not before: Sun 31 Aug 2025 09:55:01 +0000 ROA not after: Sun 30 Aug 2026 10:00:01 +0000 asID: 17727 IP address blocks: 202.59.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:03:11:c1:ce:8c:8b:3c:7a:bf:dc:56:2d:e9:0a:9f:d9:6b:5f:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 09:55:01 2025 GMT Not After : Aug 30 10:00:01 2026 GMT Subject: CN=BF0F90FBB4BC7120954199A0EA0BC9DCBE4F091C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9d:77:00:9e:18:06:3b:c2:4b:3f:f3:9f:20: fe:fa:7d:05:d9:9f:e4:a1:01:93:35:24:4e:0b:0b: 25:cc:c0:47:00:32:61:2a:20:b7:17:0d:14:68:79: d0:79:37:99:61:01:73:61:8d:29:64:1d:34:55:d9: 88:43:42:63:eb:a4:38:6e:da:fb:2f:6b:d3:51:cb: 5f:73:47:33:01:5f:eb:f6:6c:2e:3d:5e:b5:55:22: 94:7a:65:f2:f0:55:34:b1:4f:86:c9:e7:50:85:3d: 98:84:25:6b:04:4c:78:5f:8b:8a:dc:35:65:f8:d2: 20:ac:da:20:a1:d6:f8:18:0f:aa:95:60:87:cb:2e: 53:0c:7f:26:5a:9a:eb:8b:ba:90:58:8a:75:63:e5: 28:c6:0c:7e:99:bc:5a:c8:7a:0f:d4:9f:12:d2:41: f9:25:3c:38:6e:54:11:5b:c0:7d:b3:bd:0c:e8:21: 13:96:fd:63:db:89:58:e9:4a:e0:98:dd:3c:0e:cd: 0a:00:12:86:24:b8:51:02:a0:46:b8:2a:4b:10:f7: c6:fe:72:0a:f9:cb:e1:77:6e:72:d9:30:e9:4c:15: df:15:89:96:86:3a:c3:4e:43:48:7d:72:d9:7f:4f: f3:84:83:5a:a3:bd:4c:ac:00:0e:31:e4:5c:2e:31: 7c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:0F:90:FB:B4:BC:71:20:95:41:99:A0:EA:0B:C9:DC:BE:4F:09:1C X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137312e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.171.0/24 Signature Algorithm: sha256WithRSAEncryption 97:37:6e:4c:de:54:11:0e:4e:37:ba:4a:ca:c0:44:26:30:a9: e6:da:73:86:ce:c2:9a:57:9f:7e:f4:2b:73:4f:9f:26:b2:7e: 97:e4:1d:79:18:0a:93:9b:6d:e7:0a:b4:e5:6e:06:47:c1:39: 3f:b3:84:b4:4b:6a:b3:32:9d:f3:a0:27:11:c8:de:e6:e2:44: ac:28:35:5f:1a:2c:f7:2e:4f:b4:54:f3:ee:e6:c1:9a:0f:3d: 99:09:c5:91:10:ef:80:01:63:49:6b:de:6e:d9:f9:33:2a:a4: d5:90:2a:01:4a:ee:13:4b:fc:01:44:e9:ed:5d:9c:6d:56:f5: 6e:a8:3e:5e:bc:2d:bc:14:2c:5e:c3:7f:a9:85:88:30:30:a3: ba:1b:65:56:86:15:4b:7e:43:72:c2:fb:00:6a:f0:63:5f:d4: 34:de:97:31:1a:36:7c:ba:7f:00:c5:67:04:84:f4:29:90:64: 31:d8:64:e7:ef:8c:55:ec:87:56:4d:51:f8:53:92:e0:ab:d1: 1d:89:8e:94:1a:e8:38:3e:fc:a0:fb:f2:02:81:81:84:8c:32: 3f:e7:db:46:20:d3:44:b4:38:60:f4:cf:be:b6:5b:42:64:bf: 56:7e:db:71:50:06:eb:8c:50:60:cc:06:75:2c:e5:56:0b:f5: 4f:bd:64:fc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWAMRwc6Mizx6v9xWLekKn9lrX8YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwOTU1MDFaFw0yNjA4MzAxMDAwMDFaMDMxMTAvBgNV BAMTKEJGMEY5MEZCQjRCQzcxMjA5NTQxOTlBMEVBMEJDOURDQkU0RjA5MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2nXcAnhgGO8JLP/OfIP76fQXZ n+ShAZM1JE4LCyXMwEcAMmEqILcXDRRoedB5N5lhAXNhjSlkHTRV2YhDQmPrpDhu 2vsva9NRy19zRzMBX+v2bC49XrVVIpR6ZfLwVTSxT4bJ51CFPZiEJWsETHhfi4rc NWX40iCs2iCh1vgYD6qVYIfLLlMMfyZamuuLupBYinVj5SjGDH6ZvFrIeg/UnxLS QfklPDhuVBFbwH2zvQzoIROW/WPbiVjpSuCY3TwOzQoAEoYkuFECoEa4KksQ98b+ cgr5y+F3bnLZMOlMFd8ViZaGOsNOQ0h9ctl/T/OEg1qjvUysAA4x5FwuMXzNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvw+Q+7S8cSCVQZmg6gvJ3L5PCRwwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7qzANBgkqhkiG 9w0BAQsFAAOCAQEAlzduTN5UEQ5ON7pKysBEJjCp5tpzhs7CmleffvQrc0+fJrJ+ l+QdeRgKk5tt5wq05W4GR8E5P7OEtEtqszKd86AnEcje5uJErCg1Xxos9y5PtFTz 7ubBmg89mQnFkRDvgAFjSWvebtn5Myqk1ZAqAUruE0v8AUTp7V2cbVb1bqg+Xrwt vBQsXsN/qYWIMDCjuhtlVoYVS35DcsL7AGrwY1/UNN6XMRo2fLp/AMVnBIT0KZBk Mdhk5++MVeyHVk1R+FOS4KvRHYmOlBroOD78oPvyAoGBhIwyP+fbRiDTRLQ4YPTP vrZbQmS/Vn7bcVAG64xQYMwGdSzlVgv1T71k/A== -----END CERTIFICATE-----Generated at Mon Sep 8 09:35:42 2025 by rpki-client