$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137322e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137322e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: Hw9zb0koocVFzmcQMnQu4fjDvgcemBja7o7W/dCmWzM= Subject key identifier: 0E:60:21:D8:63:6A:0E:49:C3:24:8E:A4:48:87:BE:A4:16:CD:41:43 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 52B438C2EF6669AFF8E9899237026A33C468C0C8 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137322e302f32342d3234203d3e203137373237.roa Signing time: Sun 31 Aug 2025 10:00:01 +0000 ROA not before: Sun 31 Aug 2025 09:55:01 +0000 ROA not after: Sun 30 Aug 2026 10:00:01 +0000 asID: 17727 IP address blocks: 202.59.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:b4:38:c2:ef:66:69:af:f8:e9:89:92:37:02:6a:33:c4:68:c0:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 09:55:01 2025 GMT Not After : Aug 30 10:00:01 2026 GMT Subject: CN=0E6021D8636A0E49C3248EA44887BEA416CD4143 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a2:e0:52:74:3c:3b:7a:b0:7c:ff:ad:a4:a8: f8:ef:18:6f:75:17:d1:13:e4:85:a1:25:ec:fb:b6: 0f:73:2c:cf:00:a8:c6:36:d6:6a:ba:f5:e5:94:19: 6c:92:58:23:ff:8f:76:73:5c:70:ab:1c:96:90:a7: 14:51:67:76:69:af:b0:5a:43:cd:4e:9d:3a:bb:8e: 15:2c:d4:c0:4c:9f:f9:ef:a6:ba:55:28:c0:02:57: 45:5d:29:65:97:b9:bb:f8:87:d8:f7:70:af:77:34: fb:36:9d:cb:d5:8c:1e:5a:48:b3:9a:17:77:4e:eb: c3:71:db:88:d9:c9:85:28:3f:fe:e6:11:e5:f9:77: ba:74:1e:4b:4b:70:03:79:79:f4:88:7d:b0:87:61: 72:f2:fc:0c:74:32:2f:cc:5d:f1:a3:f5:0a:0c:a1: 98:ec:95:ab:e8:09:88:94:f5:99:bd:0c:4b:9f:d1: d7:a9:d9:e6:de:ab:9b:b2:56:f6:60:0a:3e:17:12: e5:fc:35:40:19:f8:a8:76:d2:1e:c6:2a:3b:1d:96: 19:a8:a7:65:90:38:75:f2:68:95:2f:9f:08:e4:47: b0:1e:c9:15:d5:ca:f5:49:71:81:c8:30:74:d8:c1: d5:f6:66:d7:6e:49:23:cb:e5:9e:b8:42:3f:c7:e8: 81:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:60:21:D8:63:6A:0E:49:C3:24:8E:A4:48:87:BE:A4:16:CD:41:43 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137322e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.172.0/24 Signature Algorithm: sha256WithRSAEncryption 91:2b:68:4d:c9:d0:c0:af:33:ba:9b:3b:4b:1d:58:9b:01:9c: 9c:1d:ea:90:4b:1a:b1:fc:66:6d:e7:43:4b:c3:0b:01:07:d1: 41:17:e3:13:fb:d0:f4:02:c9:8f:31:9c:5c:f7:d3:3f:b2:c5: 1e:ff:06:b6:bc:d6:e7:9e:bb:30:6d:3b:c2:d0:48:58:b3:81: cd:20:3d:12:3f:42:fd:93:57:84:dc:2d:cd:39:e0:0d:ee:2c: cd:9e:59:04:7b:b8:3a:71:2d:ed:d2:dc:db:dd:85:8b:dc:8c: c3:f4:54:a2:ac:56:4d:46:be:af:fd:f0:18:86:be:56:1f:2a: 2b:be:7b:33:1e:81:f9:62:ec:db:e3:b3:22:a6:97:77:40:f3: 66:02:41:2e:e0:1a:7f:e8:6a:0f:04:f1:f1:19:28:38:e1:3e: 88:51:61:1b:ac:f4:28:49:50:8b:70:66:d8:79:8e:8d:60:1e: ab:73:38:75:79:3a:04:17:66:13:c9:05:a4:55:76:d7:1d:9d: e6:8b:9d:02:d0:95:92:19:b1:4b:9d:95:03:da:36:f3:8c:c4: ee:05:06:9f:b0:c2:14:f2:bd:80:f6:60:0a:7a:2d:47:13:24: d1:78:a1:fd:25:7a:73:93:b0:86:0a:b0:ab:56:8a:79:cc:13: 16:37:5f:83 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUrQ4wu9maa/46YmSNwJqM8RowMgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwOTU1MDFaFw0yNjA4MzAxMDAwMDFaMDMxMTAvBgNV BAMTKDBFNjAyMUQ4NjM2QTBFNDlDMzI0OEVBNDQ4ODdCRUE0MTZDRDQxNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzouBSdDw7erB8/62kqPjvGG91 F9ET5IWhJez7tg9zLM8AqMY21mq69eWUGWySWCP/j3ZzXHCrHJaQpxRRZ3Zpr7Ba Q81OnTq7jhUs1MBMn/nvprpVKMACV0VdKWWXubv4h9j3cK93NPs2ncvVjB5aSLOa F3dO68Nx24jZyYUoP/7mEeX5d7p0HktLcAN5efSIfbCHYXLy/Ax0Mi/MXfGj9QoM oZjslavoCYiU9Zm9DEuf0dep2ebeq5uyVvZgCj4XEuX8NUAZ+Kh20h7GKjsdlhmo p2WQOHXyaJUvnwjkR7AeyRXVyvVJcYHIMHTYwdX2ZtduSSPL5Z64Qj/H6IGVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDmAh2GNqDknDJI6kSIe+pBbNQUMwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7rDANBgkqhkiG 9w0BAQsFAAOCAQEAkStoTcnQwK8zups7Sx1YmwGcnB3qkEsasfxmbedDS8MLAQfR QRfjE/vQ9ALJjzGcXPfTP7LFHv8GtrzW5567MG07wtBIWLOBzSA9Ej9C/ZNXhNwt zTngDe4szZ5ZBHu4OnEt7dLc292Fi9yMw/RUoqxWTUa+r/3wGIa+Vh8qK757Mx6B +WLs2+OzIqaXd0DzZgJBLuAaf+hqDwTx8RkoOOE+iFFhG6z0KElQi3Bm2HmOjWAe q3M4dXk6BBdmE8kFpFV21x2d5oudAtCVkhmxS52VA9o284zE7gUGn7DCFPK9gPZg CnotRxMk0Xih/SV6c5Owhgqwq1aKecwTFjdfgw== -----END CERTIFICATE-----Generated at Mon Sep 8 09:38:16 2025 by rpki-client