$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133332e302f32342d3234203d3e2034333832.roa File: 3230322e39332e3133332e302f32342d3234203d3e2034333832.roa (raw, json) Hash identifier: vkTDe9buXDOgB6kWHFGcwJdVcp2flSZI09Z4kQqjciU= Subject key identifier: 1E:7E:E1:DA:72:97:1D:65:B4:BA:A4:C6:0A:7F:E0:B7:64:6A:F4:DC Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 6A2505B2E6933172F26AB8355FE32436F7E19456 Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133332e302f32342d3234203d3e2034333832.roa Signing time: Wed 23 Jul 2025 15:00:43 +0000 ROA not before: Wed 23 Jul 2025 14:55:43 +0000 ROA not after: Wed 22 Jul 2026 15:00:43 +0000 asID: 4382 IP address blocks: 202.93.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 09:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:25:05:b2:e6:93:31:72:f2:6a:b8:35:5f:e3:24:36:f7:e1:94:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Jul 23 14:55:43 2025 GMT Not After : Jul 22 15:00:43 2026 GMT Subject: CN=1E7EE1DA72971D65B4BAA4C60A7FE0B7646AF4DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:99:bb:20:78:a6:15:ab:5a:b0:51:59:42:25: b2:d6:72:e9:39:cf:bd:0b:a2:c8:9e:0e:ed:1e:29: 56:1d:92:64:53:83:27:c8:cb:f2:71:09:cf:d7:14: f9:16:bc:65:4c:ea:bf:7b:86:b4:6c:5d:3a:f7:0a: e0:8f:fd:48:47:f2:a3:3c:8d:49:1a:90:ad:f3:61: 6a:3f:de:99:9b:f9:85:bc:c8:0d:65:23:a3:05:88: af:3a:c0:1a:ed:33:d4:c6:ee:c6:19:3f:2d:d7:20: 27:77:58:3c:50:32:d2:5e:93:5e:bc:a6:1a:b5:a9: 0f:b7:0e:56:63:8a:ce:cd:d8:57:30:c7:80:cc:eb: f2:93:69:cd:97:f0:7d:90:16:8f:de:3a:59:68:01: 9c:e9:cc:c0:2e:07:01:53:c1:48:9d:3f:b9:c0:f3: 8d:b8:1a:77:2f:cd:12:fc:ef:ff:30:b8:4e:09:00: e4:e2:d0:8b:5a:86:6e:ad:52:33:45:1d:91:a6:41: 9f:3e:c4:d9:85:3b:99:76:26:54:4e:00:b4:70:a0: 76:7f:8d:d1:c1:94:3e:d4:7a:3d:20:ee:65:a2:f4: 8a:e9:56:12:e4:b2:26:a6:bb:ac:b9:f1:da:62:17: b9:c0:08:24:4f:2a:ef:6f:ea:30:7a:8e:91:49:2f: fd:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:7E:E1:DA:72:97:1D:65:B4:BA:A4:C6:0A:7F:E0:B7:64:6A:F4:DC X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133332e302f32342d3234203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.133.0/24 Signature Algorithm: sha256WithRSAEncryption a0:fb:6d:09:c9:a8:9c:a6:e4:0c:82:60:21:67:87:ad:2f:8c: 78:0b:5e:be:5c:16:f8:4d:9a:91:f8:4a:84:71:b7:c2:28:80: 8f:4c:08:3c:b0:fc:d1:3c:e3:0a:44:dd:0c:8d:3d:6d:56:21: 33:4d:4e:e4:db:ee:89:bd:7b:78:44:da:63:cf:0f:bd:ab:53: 16:09:00:fe:7c:20:8c:06:40:5d:e7:90:aa:33:0e:da:5a:de: b8:91:e0:34:2c:9a:b6:9c:02:01:59:97:5e:45:0d:17:d7:a4: cb:ff:3c:2f:19:8e:cd:cd:ce:b2:bd:8b:68:96:a8:66:b9:47: 87:4f:b4:b9:32:0e:7f:a8:73:a8:21:01:15:a1:dc:74:84:ce: 0e:8f:38:99:9c:b9:d6:df:cb:53:79:62:67:28:df:b3:02:9b: 83:14:38:21:6d:41:0e:c2:70:8e:3c:19:3c:ef:43:22:45:1f: 9a:40:71:89:57:7d:8d:68:d9:0b:fa:fd:5f:5e:75:1c:0c:4e: c3:3b:61:9a:da:68:60:bd:11:44:37:23:21:a0:00:97:6d:ce: f1:ea:8e:21:0f:fa:80:10:bc:a7:c3:41:f4:f4:56:4f:ef:f0: a6:fd:25:1d:b5:6d:da:00:19:5c:98:68:93:59:f2:12:a0:64: 4e:d6:8b:91 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUaiUFsuaTMXLyarg1X+MkNvfhlFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yNTA3MjMxNDU1NDNaFw0yNjA3MjIxNTAwNDNaMDMxMTAvBgNV BAMTKDFFN0VFMURBNzI5NzFENjVCNEJBQTRDNjBBN0ZFMEI3NjQ2QUY0REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDambsgeKYVq1qwUVlCJbLWcuk5 z70LosieDu0eKVYdkmRTgyfIy/JxCc/XFPkWvGVM6r97hrRsXTr3CuCP/UhH8qM8 jUkakK3zYWo/3pmb+YW8yA1lI6MFiK86wBrtM9TG7sYZPy3XICd3WDxQMtJek168 phq1qQ+3DlZjis7N2Fcwx4DM6/KTac2X8H2QFo/eOlloAZzpzMAuBwFTwUidP7nA 8424GncvzRL87/8wuE4JAOTi0Itahm6tUjNFHZGmQZ8+xNmFO5l2JlROALRwoHZ/ jdHBlD7Uej0g7mWi9IrpVhLksiamu6y58dpiF7nACCRPKu9v6jB6jpFJL/1rAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUHn7h2nKXHWW0uqTGCn/gt2Rq9NwwHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMyMzAzMjJlMzkzMzJlMzEzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXYUwDQYJKoZIhvcN AQELBQADggEBAKD7bQnJqJym5AyCYCFnh60vjHgLXr5cFvhNmpH4SoRxt8IogI9M CDyw/NE84wpE3QyNPW1WITNNTuTb7om9e3hE2mPPD72rUxYJAP58IIwGQF3nkKoz Dtpa3riR4DQsmracAgFZl15FDRfXpMv/PC8Zjs3NzrK9i2iWqGa5R4dPtLkyDn+o c6ghARWh3HSEzg6POJmcudbfy1N5Ymco37MCm4MUOCFtQQ7CcI48GTzvQyJFH5pA cYlXfY1o2Qv6/V9edRwMTsM7YZraaGC9EUQ3IyGgAJdtzvHqjiEP+oAQvKfDQfT0 Vk/v8Kb9JR21bdoAGVyYaJNZ8hKgZE7Wi5E= -----END CERTIFICATE-----Generated at Sat Aug 9 20:51:33 2025 by rpki-client