$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137332e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137332e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: wXDHRnwaL+YPYkK4gBbEM89BHduF/srMcRmMU8CmCf0= Subject key identifier: 1E:71:A7:C0:61:9F:D4:8A:22:D5:39:5F:A0:25:19:D1:34:16:53:F2 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 05E42D2DD7B9FADF33466B14F5BA97995526A358 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137332e302f32342d3234203d3e203137373237.roa Signing time: Sun 31 Aug 2025 10:00:02 +0000 ROA not before: Sun 31 Aug 2025 09:55:02 +0000 ROA not after: Sun 30 Aug 2026 10:00:02 +0000 asID: 17727 IP address blocks: 202.59.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:e4:2d:2d:d7:b9:fa:df:33:46:6b:14:f5:ba:97:99:55:26:a3:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 09:55:02 2025 GMT Not After : Aug 30 10:00:02 2026 GMT Subject: CN=1E71A7C0619FD48A22D5395FA02519D1341653F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:27:b4:a1:43:95:3d:3e:69:ba:2c:41:16:2e: 0f:b4:69:c1:3c:a2:9c:24:d7:cb:00:d8:7e:ad:82: 76:1a:be:16:8f:79:a0:9e:2b:b0:fc:5d:3d:cd:0b: 48:1e:25:52:fa:cc:46:18:ec:ee:46:2f:1c:c0:4c: 77:8c:db:be:61:e2:b8:f6:df:89:9c:67:be:49:16: 08:96:2d:10:71:c3:6e:7c:f2:19:db:88:df:02:e1: d3:f5:59:15:38:47:39:74:ac:72:c1:cb:5e:c5:33: 24:7c:0b:37:f8:6d:4d:c3:26:a4:ca:2a:56:5d:be: a6:66:97:88:aa:be:88:74:07:d2:17:a1:8e:de:d6: 40:78:b5:4f:d4:b8:f6:72:40:88:61:c1:d2:d1:96: a3:e0:26:c8:a6:b1:c0:2c:26:75:09:1f:00:98:d7: 66:b0:ce:d1:ff:80:be:63:16:b5:2f:23:5e:21:37: 19:2c:e1:d2:56:ce:31:b3:1f:c0:c7:6d:7b:6f:ef: a0:e6:d5:cb:19:09:89:cb:60:58:62:37:f8:dc:c9: cb:98:be:79:47:66:e0:7f:eb:3a:3b:5b:98:8f:a2: f5:93:fc:fd:70:1f:f2:f1:16:07:24:5b:25:f3:d5: 45:89:25:59:7b:5c:9b:ca:24:16:7f:58:d3:89:23: e5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:71:A7:C0:61:9F:D4:8A:22:D5:39:5F:A0:25:19:D1:34:16:53:F2 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137332e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.173.0/24 Signature Algorithm: sha256WithRSAEncryption 09:6e:96:e4:1e:b5:47:57:77:c4:17:09:60:6a:87:aa:ae:7f: 52:88:f0:e3:d3:42:e8:6e:6d:46:6d:e5:bb:ea:3e:b9:00:91: aa:bc:f4:0b:d5:17:63:0f:61:d8:c3:a8:fe:13:5e:a2:8c:79: 72:85:b3:2e:b9:c4:51:d9:a2:9c:7b:5c:f3:d7:0d:ce:5d:2f: b4:3e:45:5e:f3:2a:11:7e:56:72:1d:c2:ba:8e:b7:d4:1f:b2: 8c:5f:e3:0c:c2:95:45:24:99:c4:54:8d:5e:e5:25:f1:9e:ed: 77:e6:e9:bd:ae:fb:a5:b0:8d:71:55:9d:50:50:a3:42:ca:e7: 5d:10:a2:48:eb:76:2e:4b:ff:d4:b8:0d:43:4f:aa:ac:f1:bf: 34:ca:50:b2:8b:93:d9:f9:ca:e3:b0:29:e2:34:d2:47:ac:fc: a2:4a:5c:18:60:a6:b8:01:8c:4a:28:be:ca:37:23:97:6a:27: b2:b6:c8:9d:bf:f2:21:6b:03:d1:fc:ea:11:08:66:8b:da:c2: 3d:a4:8b:c6:02:54:fa:39:ed:3a:33:e1:46:51:9e:45:76:27: c3:eb:75:00:4a:fb:38:1f:e9:a9:9a:00:06:17:70:2b:6a:3e: 69:6c:e7:c0:03:64:ef:21:82:74:85:22:67:f3:6c:7a:54:1e: 4e:db:a1:7a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBeQtLde5+t8zRmsU9bqXmVUmo1gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwOTU1MDJaFw0yNjA4MzAxMDAwMDJaMDMxMTAvBgNV BAMTKDFFNzFBN0MwNjE5RkQ0OEEyMkQ1Mzk1RkEwMjUxOUQxMzQxNjUzRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiJ7ShQ5U9Pmm6LEEWLg+0acE8 opwk18sA2H6tgnYavhaPeaCeK7D8XT3NC0geJVL6zEYY7O5GLxzATHeM275h4rj2 34mcZ75JFgiWLRBxw2588hnbiN8C4dP1WRU4Rzl0rHLBy17FMyR8Czf4bU3DJqTK KlZdvqZml4iqvoh0B9IXoY7e1kB4tU/UuPZyQIhhwdLRlqPgJsimscAsJnUJHwCY 12awztH/gL5jFrUvI14hNxks4dJWzjGzH8DHbXtv76Dm1csZCYnLYFhiN/jcycuY vnlHZuB/6zo7W5iPovWT/P1wH/LxFgckWyXz1UWJJVl7XJvKJBZ/WNOJI+VxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHnGnwGGf1Ioi1TlfoCUZ0TQWU/IwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7rTANBgkqhkiG 9w0BAQsFAAOCAQEACW6W5B61R1d3xBcJYGqHqq5/Uojw49NC6G5tRm3lu+o+uQCR qrz0C9UXYw9h2MOo/hNeoox5coWzLrnEUdminHtc89cNzl0vtD5FXvMqEX5Wch3C uo631B+yjF/jDMKVRSSZxFSNXuUl8Z7td+bpva77pbCNcVWdUFCjQsrnXRCiSOt2 Lkv/1LgNQ0+qrPG/NMpQsouT2fnK47Ap4jTSR6z8okpcGGCmuAGMSii+yjcjl2on srbInb/yIWsD0fzqEQhmi9rCPaSLxgJU+jntOjPhRlGeRXYnw+t1AEr7OB/pqZoA BhdwK2o+aWznwANk7yGCdIUiZ/NselQeTtuheg== -----END CERTIFICATE-----Generated at Mon Sep 8 09:35:44 2025 by rpki-client