$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3230322e392e38352e302f32342d3234203d3e203436303532.roa File: 3230322e392e38352e302f32342d3234203d3e203436303532.roa (raw, json) Hash identifier: rkHE7dCGWjwiXKSo5AmkFhmGB4j/W88po8KuTJD9fS0= Subject key identifier: 72:B1:30:BE:7D:3B:24:D9:FD:FB:ED:10:11:54:FB:11:C7:6F:DA:4F Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 0F70FA827133B08DB641E34C79433098E6890A7C Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3230322e392e38352e302f32342d3234203d3e203436303532.roa Signing time: Thu 28 Aug 2025 06:00:00 +0000 ROA not before: Thu 28 Aug 2025 05:55:00 +0000 ROA not after: Thu 27 Aug 2026 06:00:00 +0000 asID: 46052 IP address blocks: 202.9.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 17:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:70:fa:82:71:33:b0:8d:b6:41:e3:4c:79:43:30:98:e6:89:0a:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: Aug 28 05:55:00 2025 GMT Not After : Aug 27 06:00:00 2026 GMT Subject: CN=72B130BE7D3B24D9FDFBED101154FB11C76FDA4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7e:d3:1a:bd:d9:9e:d6:40:18:14:c1:08:13: c6:9d:ea:56:d4:76:4b:74:e3:d7:2c:5c:9a:e6:0c: be:19:6e:e1:c4:25:4c:5c:b2:66:eb:8d:b5:a7:b4: 43:29:d0:88:c5:f6:5e:1f:7b:d7:4d:45:09:94:c1: cb:5b:26:26:2a:00:5b:a1:37:16:1c:68:2d:6d:9b: 79:7e:72:4f:71:4f:6f:b5:41:93:ae:89:c3:af:ad: a3:71:c0:48:f6:62:a8:7d:a6:cf:a1:bb:a9:22:2a: 3c:b7:49:78:db:77:6f:d2:fd:f3:a9:31:89:28:9a: a5:0f:7c:18:17:18:ad:11:2b:30:91:07:ed:06:96: fb:a5:d9:5d:38:9b:ac:65:7b:f6:a4:1a:1c:cf:06: 0a:02:f9:ac:58:59:51:6b:31:9f:ed:03:a7:76:90: 3f:17:4f:42:bd:a2:b5:0e:d0:bf:4c:50:77:8d:ef: 01:0d:ea:4a:31:99:88:cc:a6:56:78:b9:f0:a6:02: 50:24:ab:ac:81:7b:40:31:c2:e8:09:45:6d:0c:49: 39:3d:aa:74:c9:7b:a2:a5:f0:e0:76:29:ba:72:87: dc:25:73:c1:a0:a2:20:22:39:f3:ec:c8:f6:c8:4d: 34:aa:fb:55:47:b5:92:d0:cc:61:77:e1:31:93:15: bc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:B1:30:BE:7D:3B:24:D9:FD:FB:ED:10:11:54:FB:11:C7:6F:DA:4F X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3230322e392e38352e302f32342d3234203d3e203436303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.9.85.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:a5:f7:92:c0:1f:3f:f3:85:7a:10:74:5f:c0:4a:65:61:a0: ae:f2:06:a0:f6:12:5e:43:8b:4d:3b:9b:d8:cf:cd:f4:79:3b: 31:23:ee:1c:e2:62:62:3d:23:1b:d2:a1:86:97:da:49:2e:52: 14:63:5f:e2:df:b2:71:36:7b:7d:49:5f:96:67:2d:0e:bd:88: e4:03:cf:2c:a3:60:ab:54:33:ee:4b:f1:ad:ab:5b:f9:94:18: 5f:d0:de:d8:6d:75:9e:0b:17:d3:52:8f:dd:3f:64:ee:59:05: 0c:0a:49:4f:89:69:be:26:4e:5a:6b:fc:55:88:75:47:58:4a: 7f:1b:4f:36:5f:bd:70:45:39:52:a3:6f:8f:8e:1b:3d:5e:4e: f8:27:be:d2:e7:14:70:50:9d:7a:ae:51:0e:05:da:f7:6b:7c: dc:f4:a1:41:a9:68:f0:d6:82:e0:4f:fe:1a:e3:de:ef:14:76: af:60:b8:86:7c:45:bc:5e:15:d5:bc:da:89:8c:43:a3:18:cb: 8e:70:ce:b7:98:1b:d5:2b:ee:8d:76:85:30:a5:15:fc:fa:7f: 98:71:9b:39:cc:81:4f:37:2b:6b:dd:4e:89:cf:39:04:ff:96: 7d:1e:4a:e7:08:44:69:7d:a4:53:50:6c:cb:45:54:1e:28:ba: 0d:12:7d:b0 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUD3D6gnEzsI22QeNMeUMwmOaJCnwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNTA4MjgwNTU1MDBaFw0yNjA4MjcwNjAwMDBaMDMxMTAvBgNV BAMTKDcyQjEzMEJFN0QzQjI0RDlGREZCRUQxMDExNTRGQjExQzc2RkRBNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyftMavdme1kAYFMEIE8ad6lbU dkt049csXJrmDL4ZbuHEJUxcsmbrjbWntEMp0IjF9l4fe9dNRQmUwctbJiYqAFuh NxYcaC1tm3l+ck9xT2+1QZOuicOvraNxwEj2Yqh9ps+hu6kiKjy3SXjbd2/S/fOp MYkomqUPfBgXGK0RKzCRB+0Glvul2V04m6xle/akGhzPBgoC+axYWVFrMZ/tA6d2 kD8XT0K9orUO0L9MUHeN7wEN6koxmYjMplZ4ufCmAlAkq6yBe0AxwugJRW0MSTk9 qnTJe6Kl8OB2Kbpyh9wlc8GgoiAiOfPsyPbITTSq+1VHtZLQzGF34TGTFbw1AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUcrEwvn07JNn9++0QEVT7Ecdv2k8wHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmQxZWU1ZTItMzM4Yy00ZDIwLTgw N2UtZTUwYjc1NTgzZGI4LzAvMzIzMDMyMmUzOTJlMzgzNTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM0MzYzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCVUwDQYJKoZIhvcNAQEL BQADggEBAG+l95LAHz/zhXoQdF/ASmVhoK7yBqD2El5Di007m9jPzfR5OzEj7hzi YmI9IxvSoYaX2kkuUhRjX+LfsnE2e31JX5ZnLQ69iOQDzyyjYKtUM+5L8a2rW/mU GF/Q3thtdZ4LF9NSj90/ZO5ZBQwKSU+Jab4mTlpr/FWIdUdYSn8bTzZfvXBFOVKj b4+OGz1eTvgnvtLnFHBQnXquUQ4F2vdrfNz0oUGpaPDWguBP/hrj3u8Udq9guIZ8 RbxeFdW82omMQ6MYy45wzreYG9Ur7o12hTClFfz6f5hxmznMgU83K2vdTonPOQT/ ln0eSucIRGl9pFNQbMtFVB4oug0SfbA= -----END CERTIFICATE-----Generated at Sun Sep 7 15:37:47 2025 by rpki-client