$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e302e302f31372d3234203d3e2034373837.roa File: 3230322e3135382e302e302f31372d3234203d3e2034373837.roa (raw, json) Hash identifier: ikTUrluwHZTIHCOQ2d5+zlRq0v2Hm+t0sCMi6E63aCk= Subject key identifier: 77:8F:B5:D1:D2:35:79:DD:5B:73:D8:AA:57:40:D3:92:63:D6:02:0A Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 649BFA1596881EFBD99517DE46BD0AC4AF5A8AAD Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e302e302f31372d3234203d3e2034373837.roa Signing time: Mon 23 Jun 2025 17:00:01 +0000 ROA not before: Mon 23 Jun 2025 16:55:01 +0000 ROA not after: Mon 22 Jun 2026 17:00:01 +0000 asID: 4787 IP address blocks: 202.158.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 15:48:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:9b:fa:15:96:88:1e:fb:d9:95:17:de:46:bd:0a:c4:af:5a:8a:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jun 23 16:55:01 2025 GMT Not After : Jun 22 17:00:01 2026 GMT Subject: CN=778FB5D1D23579DD5B73D8AA5740D39263D6020A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5e:e8:6b:0d:51:c9:1d:61:b6:2e:1a:66:fa: 9b:40:f9:d1:5b:d6:bd:18:f0:90:8f:e4:90:7c:c9: 99:2d:91:0a:b9:60:22:a6:2a:66:4a:22:5a:b9:a7: 66:05:4e:34:b8:63:7f:ba:e6:d5:36:97:ec:28:7b: 79:67:88:8a:c0:cd:3c:95:14:e2:42:87:80:f5:ab: 21:06:3a:c1:7c:ef:64:67:13:2c:64:34:5e:b1:83: 32:13:7d:c4:53:70:a7:05:ed:fd:9a:a3:46:5d:fd: 79:0b:3b:ef:d2:fb:f3:71:86:ea:bd:79:e9:7d:66: 4b:30:ff:0b:1e:59:23:be:d5:53:43:5d:87:fc:b4: aa:cb:0a:27:b1:c8:17:fd:85:fc:d1:61:40:2c:a5: 89:2e:42:59:1b:07:1f:61:1e:76:31:54:65:43:24: f3:00:03:41:9d:40:53:f9:20:82:a7:09:1e:36:16: 10:3f:5b:ae:93:bf:e5:8f:cd:33:af:88:44:11:2b: 97:6d:55:c8:64:b4:02:da:fb:00:97:b2:65:12:5c: 1f:15:39:58:5a:d0:15:be:11:c0:6d:d8:9a:6d:d9: 3d:e3:c2:86:4e:5c:f4:18:aa:23:d2:a2:c2:1f:63: af:b9:05:f7:ab:a3:9d:bb:29:64:3d:ea:34:cd:a1: cb:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:8F:B5:D1:D2:35:79:DD:5B:73:D8:AA:57:40:D3:92:63:D6:02:0A X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e302e302f31372d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.158.0.0/17 Signature Algorithm: sha256WithRSAEncryption b2:e0:2f:d1:47:cc:fe:6b:40:b2:5f:85:39:e2:0a:b5:9e:6a: 02:f1:4e:56:0c:4d:a4:de:32:3e:b5:b6:4d:8a:52:7d:99:46: b4:fa:b4:20:2f:70:05:2b:ef:4a:ee:7b:09:16:83:d6:73:b9: 1d:d1:67:06:07:ea:51:67:e6:fb:51:2d:de:63:f9:41:7a:66: cc:ef:3b:5b:16:d8:82:0d:ec:fd:fa:7a:d6:51:59:77:9b:52: 80:d3:71:00:0a:9b:b2:f0:56:fb:07:26:a7:ff:53:f1:d6:29: 32:92:fd:1c:36:24:6f:a0:bc:1f:d0:0d:48:5a:81:35:eb:4b: 54:65:e1:e7:40:d6:d4:dd:75:66:1e:26:a3:0b:11:32:a5:0b: ce:e6:c6:b1:f5:ca:69:6b:9b:bb:ba:cf:28:dd:3a:83:3b:af: 4b:6a:bf:fd:5c:35:35:0c:22:87:80:d6:4a:7b:4e:b2:09:a1: ee:de:70:9d:16:56:78:18:66:85:65:19:57:f5:0c:b6:8c:b3: d4:62:aa:d9:9f:78:ff:31:4b:45:0a:9d:a0:e2:86:28:48:ea: 6b:db:bd:2a:c2:ab:27:2c:07:f9:2b:0f:25:66:e4:0e:c8:85: 70:b6:80:3c:fe:2a:6b:4c:a5:b1:54:bd:f3:f6:3d:7b:ac:36: 8c:2e:04:0f -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUZJv6FZaIHvvZlRfeRr0KxK9aiq0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNTA2MjMxNjU1MDFaFw0yNjA2MjIxNzAwMDFaMDMxMTAvBgNV BAMTKDc3OEZCNUQxRDIzNTc5REQ1QjczRDhBQTU3NDBEMzkyNjNENjAyMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmXuhrDVHJHWG2Lhpm+ptA+dFb 1r0Y8JCP5JB8yZktkQq5YCKmKmZKIlq5p2YFTjS4Y3+65tU2l+woe3lniIrAzTyV FOJCh4D1qyEGOsF872RnEyxkNF6xgzITfcRTcKcF7f2ao0Zd/XkLO+/S+/Nxhuq9 eel9Zksw/wseWSO+1VNDXYf8tKrLCiexyBf9hfzRYUAspYkuQlkbBx9hHnYxVGVD JPMAA0GdQFP5IIKnCR42FhA/W66Tv+WPzTOviEQRK5dtVchktALa+wCXsmUSXB8V OVha0BW+EcBt2Jpt2T3jwoZOXPQYqiPSosIfY6+5Bfero527KWQ96jTNocstAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUd4+10dI1ed1bc9iqV0DTkmPWAgowHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWE3MDI3MjYtYjJjNi00NmZjLTgy OTctMmRiZGVjNmQ2ZDVkLzAvMzIzMDMyMmUzMTM1MzgyZTMwMmUzMDJmMzEzNzJk MzIzNDIwM2QzZTIwMzQzNzM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfKngAwDQYJKoZIhvcNAQEL BQADggEBALLgL9FHzP5rQLJfhTniCrWeagLxTlYMTaTeMj61tk2KUn2ZRrT6tCAv cAUr70ruewkWg9ZzuR3RZwYH6lFn5vtRLd5j+UF6ZszvO1sW2IIN7P36etZRWXeb UoDTcQAKm7LwVvsHJqf/U/HWKTKS/Rw2JG+gvB/QDUhagTXrS1Rl4edA1tTddWYe JqMLETKlC87mxrH1ymlrm7u6zyjdOoM7r0tqv/1cNTUMIoeA1kp7TrIJoe7ecJ0W VngYZoVlGVf1DLaMs9RiqtmfeP8xS0UKnaDihihI6mvbvSrCqycsB/krDyVm5A7I hXC2gDz+KmtMpbFUvfP2PXusNowuBA8= -----END CERTIFICATE-----Generated at Mon Oct 27 09:32:11 2025 by rpki-client