$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3132392e302f32342d3234203d3e2034333832.roa File: 3230322e39332e3132392e302f32342d3234203d3e2034333832.roa (raw, json) Hash identifier: 0aNy0ETuqhbORaoBLuDRgIvkLNekuqgE5MuIzbIuHu4= Subject key identifier: A8:59:31:F3:3A:D5:5E:28:6E:BA:B2:F7:55:5D:D8:00:1D:77:E8:24 Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 64C5B8162A9934935ACAEBE157A455072D523B10 Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3132392e302f32342d3234203d3e2034333832.roa Signing time: Wed 23 Jul 2025 15:00:42 +0000 ROA not before: Wed 23 Jul 2025 14:55:42 +0000 ROA not after: Wed 22 Jul 2026 15:00:42 +0000 asID: 4382 IP address blocks: 202.93.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:c5:b8:16:2a:99:34:93:5a:ca:eb:e1:57:a4:55:07:2d:52:3b:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Jul 23 14:55:42 2025 GMT Not After : Jul 22 15:00:42 2026 GMT Subject: CN=A85931F33AD55E286EBAB2F7555DD8001D77E824 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:22:57:90:82:26:56:65:34:bc:08:6e:83:32: 69:a5:af:0b:a0:a3:55:12:a3:85:8a:2f:90:6b:7d: 42:44:b7:b3:80:61:63:96:91:1e:d1:8b:b3:26:16: 0d:1d:fe:f4:d4:58:9e:53:6d:6e:82:b6:28:c9:5e: c0:0d:c7:38:c6:10:4c:3b:54:83:3d:e7:6c:15:55: 85:0a:ec:eb:ee:84:7d:ed:bd:cb:5e:cd:bb:aa:1b: 80:ab:f6:a3:3e:8d:3f:23:4a:86:a5:23:28:c7:6c: 57:57:c4:35:c5:82:74:cb:98:69:b3:7c:f3:ba:02: f5:68:b1:b7:62:f9:54:0b:91:54:20:5f:1a:7d:47: 4c:2d:63:23:5e:72:bd:a2:2f:00:2a:f3:0f:f5:13: eb:15:5b:57:d3:38:bc:b2:d6:13:65:c6:9d:02:98: a6:0c:55:40:13:8e:40:94:07:6f:5d:d0:98:dd:e7: b4:7e:ac:2c:77:f4:99:7b:c3:16:67:38:e9:9e:63: 19:75:9d:be:82:74:f6:a3:41:2d:8b:c4:77:62:fc: b8:ad:03:18:11:59:d9:a5:2d:8b:c0:42:c0:60:69: ef:f2:a0:bd:51:4b:ec:5d:0b:83:2c:5a:d0:ab:48: 61:57:ee:13:d8:37:63:2f:4f:86:26:e8:9e:f4:39: 49:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:59:31:F3:3A:D5:5E:28:6E:BA:B2:F7:55:5D:D8:00:1D:77:E8:24 X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3132392e302f32342d3234203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.129.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:ab:17:88:10:3a:00:8f:ba:17:08:10:9e:f5:61:0b:6b:59: df:b0:5b:fd:a1:ba:a7:db:02:02:d5:a4:76:d3:38:fb:80:01: b3:f4:ec:06:7f:2e:2e:84:75:2e:74:b5:89:eb:02:5d:aa:ce: 16:8c:d6:03:3e:d8:37:29:3d:f2:0b:ea:78:5e:9b:27:0c:f9: cd:32:13:54:4d:74:2c:10:72:ff:89:7a:26:20:e8:b9:e5:05: 9b:b3:cd:72:dc:db:55:04:9f:3e:c9:3f:0e:7f:1e:34:1a:64: cf:e6:7b:b0:47:2a:a7:04:14:6b:92:a7:22:83:13:e2:97:d5: 93:e5:97:7e:dc:12:90:bb:65:50:26:c3:66:bf:3b:c8:e0:fc: 5f:e3:90:a7:60:7a:06:84:fc:02:79:9d:c2:07:10:e4:1e:04: 82:58:00:2d:06:69:4e:7f:38:fe:c4:02:fd:a5:99:96:48:9e: 10:22:ab:c1:eb:c1:6d:c5:f5:01:d0:9b:8d:20:36:0d:48:a8: a4:dd:6a:0a:df:bf:98:dd:65:cf:b0:68:fc:39:54:67:42:3c: 23:11:58:d3:b8:68:57:37:ef:9c:df:33:2e:cc:9e:8e:40:0b: c9:9b:6a:34:74:7f:a3:94:e0:7a:9a:e8:d2:a7:54:79:62:46: 44:d5:a2:5c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUZMW4FiqZNJNayuvhV6RVBy1SOxAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yNTA3MjMxNDU1NDJaFw0yNjA3MjIxNTAwNDJaMDMxMTAvBgNV BAMTKEE4NTkzMUYzM0FENTVFMjg2RUJBQjJGNzU1NUREODAwMUQ3N0U4MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2IleQgiZWZTS8CG6DMmmlrwug o1USo4WKL5BrfUJEt7OAYWOWkR7Ri7MmFg0d/vTUWJ5TbW6CtijJXsANxzjGEEw7 VIM952wVVYUK7OvuhH3tvctezbuqG4Cr9qM+jT8jSoalIyjHbFdXxDXFgnTLmGmz fPO6AvVosbdi+VQLkVQgXxp9R0wtYyNecr2iLwAq8w/1E+sVW1fTOLyy1hNlxp0C mKYMVUATjkCUB29d0Jjd57R+rCx39Jl7wxZnOOmeYxl1nb6CdPajQS2LxHdi/Lit AxgRWdmlLYvAQsBgae/yoL1RS+xdC4MsWtCrSGFX7hPYN2MvT4Ym6J70OUnRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUqFkx8zrVXihuurL3VV3YAB136CQwHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMyMzAzMjJlMzkzMzJlMzEzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXYEwDQYJKoZIhvcN AQELBQADggEBAF6rF4gQOgCPuhcIEJ71YQtrWd+wW/2huqfbAgLVpHbTOPuAAbP0 7AZ/Li6EdS50tYnrAl2qzhaM1gM+2DcpPfIL6nhemycM+c0yE1RNdCwQcv+JeiYg 6LnlBZuzzXLc21UEnz7JPw5/HjQaZM/me7BHKqcEFGuSpyKDE+KX1ZPll37cEpC7 ZVAmw2a/O8jg/F/jkKdgegaE/AJ5ncIHEOQeBIJYAC0GaU5/OP7EAv2lmZZInhAi q8HrwW3F9QHQm40gNg1IqKTdagrfv5jdZc+waPw5VGdCPCMRWNO4aFc375zfMy7M no5AC8mbajR0f6OU4Hqa6NKnVHliRkTVolw= -----END CERTIFICATE-----Generated at Tue Nov 4 19:28:26 2025 by rpki-client