$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3132382e302f32342d3234203d3e2034333832.roa File: 3230322e39332e3132382e302f32342d3234203d3e2034333832.roa (raw, json) Hash identifier: Kcq6RiACas78b8uWIYiFOtGS3r3yMXUnaWfx7z/cdEU= Subject key identifier: 06:4B:DE:5D:FD:2C:CB:56:AE:AC:6D:C3:80:61:D8:12:33:C6:5F:41 Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 56167BC5979F2FA38FD2D1AAFC067723C537FE08 Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3132382e302f32342d3234203d3e2034333832.roa Signing time: Wed 23 Jul 2025 15:00:42 +0000 ROA not before: Wed 23 Jul 2025 14:55:42 +0000 ROA not after: Wed 22 Jul 2026 15:00:42 +0000 asID: 4382 IP address blocks: 202.93.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 09:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:16:7b:c5:97:9f:2f:a3:8f:d2:d1:aa:fc:06:77:23:c5:37:fe:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Jul 23 14:55:42 2025 GMT Not After : Jul 22 15:00:42 2026 GMT Subject: CN=064BDE5DFD2CCB56AEAC6DC38061D81233C65F41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ec:02:cd:b3:5d:c7:d7:72:f1:68:77:b2:f0: 96:ec:01:fd:42:57:2c:26:bf:8a:64:bd:86:0b:0e: d3:7f:48:6d:2d:63:96:24:24:c9:9e:58:cf:41:b3: a1:62:10:df:2b:d4:85:fd:d6:42:06:cc:12:1b:1e: 35:63:c4:91:84:69:0c:b3:e3:87:f1:a0:ee:2b:11: 44:72:36:9e:f1:23:b5:9e:cb:de:24:30:ac:b6:e8: 47:fc:3c:83:89:b0:71:86:f4:ce:db:58:7f:4c:8a: 45:d5:4a:22:55:20:a2:d4:4b:94:7c:ad:dc:cf:e6: 8e:7f:35:a1:dd:26:e8:c4:fc:cb:37:37:f4:26:42: 1b:e2:92:ed:d5:31:9d:1a:75:f0:ad:8d:40:8b:6a: d5:30:55:ea:d5:54:a4:6b:80:ed:91:12:7b:5e:15: f0:0b:af:1f:1a:2f:6e:a4:b6:c3:9a:bb:b9:55:3b: a6:47:08:22:e5:94:72:de:12:70:88:2e:38:09:e9: c2:96:02:ea:1e:6c:3c:ec:e0:97:84:d1:0b:47:43: 5b:3c:86:59:66:18:db:31:83:87:d0:5c:3b:9e:55: dd:e5:41:78:9a:44:02:2d:d7:bb:d4:60:f1:09:45: d4:04:29:6e:db:88:a3:a4:98:88:3b:62:02:cb:29: a2:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:4B:DE:5D:FD:2C:CB:56:AE:AC:6D:C3:80:61:D8:12:33:C6:5F:41 X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3132382e302f32342d3234203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.128.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:3e:8b:da:c1:a7:02:4b:f1:0b:bf:7f:ef:c8:92:aa:0d:1c: 13:eb:05:76:e7:0c:c8:ac:3a:5c:c0:d5:d0:23:92:66:0c:e6: df:03:d8:7a:dd:b6:7c:a3:1e:66:be:4b:42:ac:89:09:cc:e0: b9:ff:47:99:c0:00:e3:5b:79:28:2f:4b:ab:3f:55:20:26:1d: df:f1:57:2f:9a:07:77:0d:bf:48:5c:79:b1:2f:1c:cc:84:b8: d0:4d:af:8b:ee:73:08:d2:d9:22:80:fe:3a:dd:18:c9:e1:d8: c0:e4:22:be:73:67:7e:d9:d0:dc:fd:ad:97:d2:88:c6:0a:a8: 66:03:fa:e6:cc:bf:22:8b:26:18:fb:47:a9:b2:e9:e7:95:df: e6:c6:3f:6e:04:c4:70:d0:c4:52:31:12:1f:d2:fd:55:62:47: 98:ef:9d:07:04:57:ae:17:96:0b:af:c7:e6:19:2a:1a:55:e0: 37:3a:26:a0:47:8c:66:35:09:7e:13:0d:b5:07:68:d0:1a:9f: 19:fd:92:f2:4c:a2:9f:98:f6:c4:85:ff:99:83:62:0f:ab:1e: 69:07:43:dc:5d:c8:43:09:9b:32:bd:18:64:bb:84:98:b2:d8: f2:f2:92:f3:36:dc:98:a4:07:b6:4f:96:93:98:4f:a8:91:0a: c1:a1:00:f4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUVhZ7xZefL6OP0tGq/AZ3I8U3/ggwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yNTA3MjMxNDU1NDJaFw0yNjA3MjIxNTAwNDJaMDMxMTAvBgNV BAMTKDA2NEJERTVERkQyQ0NCNTZBRUFDNkRDMzgwNjFEODEyMzNDNjVGNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv7ALNs13H13LxaHey8JbsAf1C Vywmv4pkvYYLDtN/SG0tY5YkJMmeWM9Bs6FiEN8r1IX91kIGzBIbHjVjxJGEaQyz 44fxoO4rEURyNp7xI7Wey94kMKy26Ef8PIOJsHGG9M7bWH9MikXVSiJVIKLUS5R8 rdzP5o5/NaHdJujE/Ms3N/QmQhviku3VMZ0adfCtjUCLatUwVerVVKRrgO2REnte FfALrx8aL26ktsOau7lVO6ZHCCLllHLeEnCILjgJ6cKWAuoebDzs4JeE0QtHQ1s8 hllmGNsxg4fQXDueVd3lQXiaRAIt17vUYPEJRdQEKW7biKOkmIg7YgLLKaLrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUBkveXf0sy1aurG3DgGHYEjPGX0EwHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMyMzAzMjJlMzkzMzJlMzEzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXYAwDQYJKoZIhvcN AQELBQADggEBAG0+i9rBpwJL8Qu/f+/IkqoNHBPrBXbnDMisOlzA1dAjkmYM5t8D 2HrdtnyjHma+S0KsiQnM4Ln/R5nAAONbeSgvS6s/VSAmHd/xVy+aB3cNv0hcebEv HMyEuNBNr4vucwjS2SKA/jrdGMnh2MDkIr5zZ37Z0Nz9rZfSiMYKqGYD+ubMvyKL Jhj7R6my6eeV3+bGP24ExHDQxFIxEh/S/VViR5jvnQcEV64Xlguvx+YZKhpV4Dc6 JqBHjGY1CX4TDbUHaNAanxn9kvJMop+Y9sSF/5mDYg+rHmkHQ9xdyEMJmzK9GGS7 hJiy2PLykvM23JikB7ZPlpOYT6iRCsGhAPQ= -----END CERTIFICATE-----Generated at Sat Aug 9 20:42:31 2025 by rpki-client