$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137342e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137342e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: 20ZMGEs8JYHv67fdXUDq0hGn81ZlGIrrlqY2jygA2lY= Subject key identifier: ED:59:B0:9B:6A:E4:C5:82:33:CC:73:CB:9F:AF:9F:6C:B2:13:E1:2A Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 4CEB530F3F6BAB45BC00B8269FFE8DFD55DF7862 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137342e302f32342d3234203d3e203137373237.roa Signing time: Sun 31 Aug 2025 09:00:01 +0000 ROA not before: Sun 31 Aug 2025 08:55:01 +0000 ROA not after: Sun 30 Aug 2026 09:00:01 +0000 asID: 17727 IP address blocks: 202.59.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 06:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:eb:53:0f:3f:6b:ab:45:bc:00:b8:26:9f:fe:8d:fd:55:df:78:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 08:55:01 2025 GMT Not After : Aug 30 09:00:01 2026 GMT Subject: CN=ED59B09B6AE4C58233CC73CB9FAF9F6CB213E12A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:53:7d:03:18:c4:dc:1a:68:21:47:5a:dd:7d: f3:15:72:2b:f3:3a:c9:8a:3b:f7:55:3b:8a:7c:99: e2:f1:df:18:0c:49:94:26:8f:c1:84:65:c0:ad:44: 4a:ed:4f:62:cf:b0:1e:18:e6:9a:9e:09:31:aa:60: 09:f7:d7:8c:8e:8f:dc:df:ee:9f:27:6d:02:4c:ef: f9:56:26:5b:e8:49:0f:51:c7:84:75:39:59:fe:e5: 22:60:f0:4e:5c:8a:94:2b:e3:c1:07:1f:7f:68:32: bf:e4:0d:19:63:b0:0c:2b:d3:3b:83:6a:e2:59:c4: b3:80:bb:e2:bd:6c:b3:27:d5:01:fb:43:8d:06:7b: ce:73:16:8c:bf:50:d6:4b:47:35:05:80:8b:5c:67: e3:7a:bc:df:91:61:8c:96:21:ce:8d:63:08:d4:ea: 25:d9:d9:08:0d:e0:66:17:4b:94:2e:65:87:78:16: ee:58:c7:a6:06:59:1a:17:1e:c2:95:ee:09:17:49: 87:10:50:b9:2d:45:1d:79:b0:16:5a:f4:e6:62:de: df:dc:02:11:24:a8:ac:72:18:e3:5a:e2:7b:0d:39: 9f:77:18:2d:ac:74:c3:4f:44:e1:cd:9b:74:96:3c: fb:ec:af:ac:7f:1b:a4:60:ab:4d:31:a7:32:9e:cc: 60:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:59:B0:9B:6A:E4:C5:82:33:CC:73:CB:9F:AF:9F:6C:B2:13:E1:2A X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137342e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.174.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:6c:0e:dd:3b:78:4d:9b:3e:fb:ca:c2:37:fc:85:b4:6c:41: d3:18:75:6a:6c:15:b2:56:7d:c6:97:09:87:38:1e:a5:15:9d: 0e:f5:74:5d:8c:27:ec:fd:d6:85:6d:67:96:1b:85:47:d5:2b: 3b:75:a8:7d:69:51:ee:4f:67:f1:bf:21:fc:cf:23:8b:5a:fe: 9e:53:eb:4f:a9:36:be:02:a2:d8:88:fd:02:46:05:3a:5a:a0: 5e:d1:dc:63:07:39:1d:9e:03:15:df:04:01:4c:d3:77:45:61: 8a:ed:a1:5b:1c:d1:6c:68:e9:9e:ef:46:23:9a:44:80:ae:8f: 72:64:4d:cf:1e:3a:c0:02:5e:d2:1d:62:72:b3:55:39:fc:3b: 88:70:31:11:99:60:1d:b2:7d:84:7d:c4:6a:c9:2a:fd:da:e5: 1e:84:b5:78:49:7c:43:5b:8a:fa:f1:7d:d0:b2:21:c9:47:75: 60:f0:73:c6:e8:78:3e:0d:b0:f7:82:02:be:f1:63:a2:f4:f7: 61:a7:7c:83:94:2a:b8:59:87:90:23:b0:7f:cb:b0:d6:59:23: 5a:ee:06:ea:f0:35:b7:06:28:8c:61:21:fb:03:ac:15:fa:21: d4:2e:42:c7:35:c8:16:f2:5f:3a:5f:7b:4b:7b:ce:2d:7d:3b: 88:95:cb:d0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTOtTDz9rq0W8ALgmn/6N/VXfeGIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwODU1MDFaFw0yNjA4MzAwOTAwMDFaMDMxMTAvBgNV BAMTKEVENTlCMDlCNkFFNEM1ODIzM0NDNzNDQjlGQUY5RjZDQjIxM0UxMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFU30DGMTcGmghR1rdffMVcivz OsmKO/dVO4p8meLx3xgMSZQmj8GEZcCtRErtT2LPsB4Y5pqeCTGqYAn314yOj9zf 7p8nbQJM7/lWJlvoSQ9Rx4R1OVn+5SJg8E5cipQr48EHH39oMr/kDRljsAwr0zuD auJZxLOAu+K9bLMn1QH7Q40Ge85zFoy/UNZLRzUFgItcZ+N6vN+RYYyWIc6NYwjU 6iXZ2QgN4GYXS5QuZYd4Fu5Yx6YGWRoXHsKV7gkXSYcQULktRR15sBZa9OZi3t/c AhEkqKxyGONa4nsNOZ93GC2sdMNPROHNm3SWPPvsr6x/G6Rgq00xpzKezGChAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7Vmwm2rkxYIzzHPLn6+fbLIT4SowHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7rjANBgkqhkiG 9w0BAQsFAAOCAQEAXmwO3Tt4TZs++8rCN/yFtGxB0xh1amwVslZ9xpcJhzgepRWd DvV0XYwn7P3WhW1nlhuFR9UrO3WofWlR7k9n8b8h/M8ji1r+nlPrT6k2vgKi2Ij9 AkYFOlqgXtHcYwc5HZ4DFd8EAUzTd0Vhiu2hWxzRbGjpnu9GI5pEgK6PcmRNzx46 wAJe0h1icrNVOfw7iHAxEZlgHbJ9hH3Easkq/drlHoS1eEl8Q1uK+vF90LIhyUd1 YPBzxuh4Pg2w94ICvvFjovT3Yad8g5QquFmHkCOwf8uw1lkjWu4G6vA1twYojGEh +wOsFfoh1C5CxzXIFvJfOl97S3vOLX07iJXL0A== -----END CERTIFICATE-----Generated at Sun Oct 26 08:06:36 2025 by rpki-client