$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137352e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137352e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: mS3nua5ld6nzvzVV2Usn0ogN7lLehSkNf5AQbKnIz+I= Subject key identifier: 8C:E7:B4:C2:18:2B:41:8A:00:B9:13:8D:69:17:A6:2E:54:AC:5F:64 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 784F4A582E09B1FD1E9DA489A7A2461A440243DE Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137352e302f32342d3234203d3e203137373237.roa Signing time: Sun 31 Aug 2025 10:00:01 +0000 ROA not before: Sun 31 Aug 2025 09:55:01 +0000 ROA not after: Sun 30 Aug 2026 10:00:01 +0000 asID: 17727 IP address blocks: 202.59.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:4f:4a:58:2e:09:b1:fd:1e:9d:a4:89:a7:a2:46:1a:44:02:43:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 09:55:01 2025 GMT Not After : Aug 30 10:00:01 2026 GMT Subject: CN=8CE7B4C2182B418A00B9138D6917A62E54AC5F64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:68:da:9d:0c:fb:42:1a:3a:52:1a:8b:3a:0f: 9e:43:52:04:b0:d5:f4:42:5f:a7:b5:bb:b1:e3:30: cc:82:c9:51:5c:c3:df:7c:07:0c:8b:94:80:b4:04: e3:74:43:6a:0a:54:d0:18:c1:33:84:da:9f:11:16: 8d:74:f1:cd:9c:a0:f6:f9:3f:a1:ba:01:94:bd:99: cf:64:f8:b7:b4:6b:2a:a2:3e:a4:56:58:6f:4b:ba: 39:08:cf:16:c4:ef:e1:82:7c:b5:ad:84:06:41:42: bc:2b:ed:50:c7:cc:e9:96:34:f9:c8:eb:44:0c:a5: 90:e0:87:7b:c4:28:0b:21:3e:88:51:e1:db:99:77: e0:eb:a6:17:5f:e1:67:84:5b:09:66:50:cc:cb:0c: d0:60:40:18:7b:dd:b0:1b:bd:b8:b6:21:63:67:0a: 6e:2d:01:4b:7f:b8:9d:81:56:cd:32:d6:47:92:f2: 9c:66:54:7e:f5:98:f9:7e:59:ec:d2:ce:15:45:b9: 06:df:b9:85:5d:89:c1:e8:19:6a:92:04:bb:1f:24: d9:5b:e4:4c:a4:03:b3:f1:41:cc:82:64:07:bb:e9: 25:64:45:26:4b:f4:ba:8f:a0:4b:fd:96:31:ae:82: 94:d0:00:9e:ce:f6:c8:9c:1e:bc:f7:a0:93:de:0b: 89:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:E7:B4:C2:18:2B:41:8A:00:B9:13:8D:69:17:A6:2E:54:AC:5F:64 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137352e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.175.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:86:11:50:0d:58:3a:8b:92:c2:8a:1f:b4:93:38:ad:e5:22: 1c:48:cb:f5:9c:4b:90:08:70:37:bc:c7:b9:62:0b:f5:a8:cd: bc:76:56:32:4e:4a:7a:3d:be:07:ae:fb:6c:91:81:fa:ae:6c: 94:6c:12:1a:c0:a7:12:01:19:28:77:ad:8a:7c:89:78:b6:bb: b7:5a:77:da:9f:7f:d8:ba:86:c1:88:f3:08:6c:f5:06:70:cf: 93:9b:11:ee:69:7a:e2:67:d9:b1:fb:fb:22:48:02:09:57:a5: bc:ef:3d:45:96:5a:88:17:f2:3a:22:19:76:9d:cc:25:c5:24: 27:ad:e3:88:a8:b6:1a:86:d3:2d:28:03:08:45:82:a8:76:3e: 8e:6e:3d:1a:81:b4:55:c5:22:2f:c6:96:c5:b4:bb:3b:f7:31: cf:a4:cd:56:04:79:cd:8c:ed:15:07:a3:bb:c6:16:6f:88:b7: 7a:98:e8:0b:5c:37:3f:da:9d:a4:0b:ba:c0:89:85:d1:cb:1c: b1:36:85:8a:f1:cf:2e:dc:0e:da:8e:15:f4:99:7a:59:85:f8: b4:76:4e:9f:98:0e:f9:34:0c:9e:c8:93:5c:09:0d:5b:45:7f: 9b:55:ac:d0:f3:32:25:c9:72:1d:f5:ca:37:5d:f6:6f:71:a0: 80:a6:05:07 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeE9KWC4Jsf0enaSJp6JGGkQCQ94wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwOTU1MDFaFw0yNjA4MzAxMDAwMDFaMDMxMTAvBgNV BAMTKDhDRTdCNEMyMTgyQjQxOEEwMEI5MTM4RDY5MTdBNjJFNTRBQzVGNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVaNqdDPtCGjpSGos6D55DUgSw 1fRCX6e1u7HjMMyCyVFcw998BwyLlIC0BON0Q2oKVNAYwTOE2p8RFo108c2coPb5 P6G6AZS9mc9k+Le0ayqiPqRWWG9LujkIzxbE7+GCfLWthAZBQrwr7VDHzOmWNPnI 60QMpZDgh3vEKAshPohR4duZd+Drphdf4WeEWwlmUMzLDNBgQBh73bAbvbi2IWNn Cm4tAUt/uJ2BVs0y1keS8pxmVH71mPl+WezSzhVFuQbfuYVdicHoGWqSBLsfJNlb 5EykA7PxQcyCZAe76SVkRSZL9LqPoEv9ljGugpTQAJ7O9sicHrz3oJPeC4l5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjOe0whgrQYoAuRONaRemLlSsX2QwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7rzANBgkqhkiG 9w0BAQsFAAOCAQEAnIYRUA1YOouSwooftJM4reUiHEjL9ZxLkAhwN7zHuWIL9ajN vHZWMk5Kej2+B677bJGB+q5slGwSGsCnEgEZKHetinyJeLa7t1p32p9/2LqGwYjz CGz1BnDPk5sR7ml64mfZsfv7IkgCCVelvO89RZZaiBfyOiIZdp3MJcUkJ63jiKi2 GobTLSgDCEWCqHY+jm49GoG0VcUiL8aWxbS7O/cxz6TNVgR5zYztFQeju8YWb4i3 epjoC1w3P9qdpAu6wImF0cscsTaFivHPLtwO2o4V9Jl6WYX4tHZOn5gO+TQMnsiT XAkNW0V/m1Ws0PMyJclyHfXKN132b3GggKYFBw== -----END CERTIFICATE-----Generated at Mon Sep 8 12:40:14 2025 by rpki-client