$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133392e302f32342d3234203d3e2034333832.roa File: 3230322e39332e3133392e302f32342d3234203d3e2034333832.roa (raw, json) Hash identifier: 2xWfiK5wGmMcUrPcXTeK+FMi4oIrH3FKfxMpAgGIdSQ= Subject key identifier: 1F:D6:2B:E0:A6:13:F3:74:68:0A:32:08:58:C9:90:13:C9:AD:FE:F2 Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 441D1A236EE40C712EA2D3DC97C005EE78A9C649 Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133392e302f32342d3234203d3e2034333832.roa Signing time: Wed 23 Jul 2025 13:00:00 +0000 ROA not before: Wed 23 Jul 2025 12:55:00 +0000 ROA not after: Wed 22 Jul 2026 13:00:00 +0000 asID: 4382 IP address blocks: 202.93.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 09:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:1d:1a:23:6e:e4:0c:71:2e:a2:d3:dc:97:c0:05:ee:78:a9:c6:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Jul 23 12:55:00 2025 GMT Not After : Jul 22 13:00:00 2026 GMT Subject: CN=1FD62BE0A613F374680A320858C99013C9ADFEF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:ee:d2:db:81:5f:21:44:35:68:47:c3:8d:b3: 54:c8:3b:24:8c:da:2d:15:f2:31:0b:34:dd:19:6d: 50:73:0a:92:bb:5e:48:c2:40:4c:89:23:82:db:09: 03:91:aa:f0:39:a7:29:29:d3:c5:a4:15:85:fa:f2: 29:6d:3b:4e:35:4f:95:52:7b:1c:64:0c:7f:0a:4c: 5b:bf:01:33:4f:c0:e2:31:80:67:6c:57:7e:ae:17: ab:71:1d:2b:9f:fa:72:ee:ba:b6:2e:8c:56:77:ae: 17:64:c1:7d:a7:3d:8f:9a:59:de:94:29:84:aa:78: ba:74:da:10:25:f0:a5:92:68:75:53:aa:88:65:69: 00:e1:9a:33:8b:12:d3:31:48:5b:5d:32:c4:ef:08: 8e:3e:1d:c3:04:f9:93:85:a2:8d:7a:ba:32:92:20: b3:b8:d3:6e:d2:ac:45:af:98:b3:60:ef:93:04:fb: 74:a1:a4:45:9a:45:f9:91:ef:4f:35:5a:59:36:1a: cf:a2:48:c5:29:1c:b6:7b:ac:ba:75:b0:51:43:5c: 6e:52:37:cf:8b:b6:31:5a:e1:81:0c:36:84:f2:c2: 2b:09:79:21:1a:f7:d8:7b:b4:86:72:94:54:94:6c: 09:06:16:b0:66:2c:43:cb:2a:ec:bd:68:2e:1e:ca: 26:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:D6:2B:E0:A6:13:F3:74:68:0A:32:08:58:C9:90:13:C9:AD:FE:F2 X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133392e302f32342d3234203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.139.0/24 Signature Algorithm: sha256WithRSAEncryption 50:c4:d1:04:ac:e6:65:0a:4b:dc:2a:e0:ff:c9:21:c0:a1:d7: 16:9d:05:87:67:2e:8b:8e:73:47:48:69:cf:42:c9:24:0e:79: aa:85:f5:dd:ea:63:0e:14:44:c7:84:d7:4b:60:51:b0:32:42: b9:12:9a:81:55:bb:6b:95:06:ad:d5:54:76:ac:d0:f2:39:2b: 2c:17:b6:41:0f:d3:8f:4f:e1:ab:a8:f2:c1:8c:5a:84:87:fc: 5d:02:11:8c:19:ae:d2:7a:59:95:f9:b5:a7:60:fb:37:31:e1: 59:ed:ba:64:03:92:29:31:3a:14:d3:cb:f3:a7:40:1e:f6:56: 38:4b:0f:a7:40:f6:e4:af:36:92:d0:fb:03:eb:ba:ef:cd:33: 17:11:27:e1:02:2e:7e:e6:d8:14:ca:bb:3b:75:87:8f:cf:6b: 1f:ec:17:29:dc:28:2e:f2:a4:34:5e:eb:33:f2:b7:59:c8:94: 20:bb:6b:0b:14:e0:ef:ed:e1:1b:b2:75:8a:a5:da:6c:02:0a: 08:37:ca:ec:50:cf:af:81:48:fb:5c:fd:a3:5d:d0:e5:fc:33: 83:e7:dd:39:ab:42:89:91:ae:dc:e9:eb:d1:6f:e7:da:e3:43: e9:02:42:2d:05:fb:97:b6:8d:ce:a8:4e:ee:9e:d1:89:5a:ea: 16:15:d6:8a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIURB0aI27kDHEuotPcl8AF7nipxkkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yNTA3MjMxMjU1MDBaFw0yNjA3MjIxMzAwMDBaMDMxMTAvBgNV BAMTKDFGRDYyQkUwQTYxM0YzNzQ2ODBBMzIwODU4Qzk5MDEzQzlBREZFRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDu7tLbgV8hRDVoR8ONs1TIOySM 2i0V8jELNN0ZbVBzCpK7XkjCQEyJI4LbCQORqvA5pykp08WkFYX68iltO041T5VS exxkDH8KTFu/ATNPwOIxgGdsV36uF6txHSuf+nLuurYujFZ3rhdkwX2nPY+aWd6U KYSqeLp02hAl8KWSaHVTqohlaQDhmjOLEtMxSFtdMsTvCI4+HcME+ZOFoo16ujKS ILO4027SrEWvmLNg75ME+3ShpEWaRfmR7081Wlk2Gs+iSMUpHLZ7rLp1sFFDXG5S N8+LtjFa4YEMNoTywisJeSEa99h7tIZylFSUbAkGFrBmLEPLKuy9aC4eyiaFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUH9Yr4KYT83RoCjIIWMmQE8mt/vIwHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMyMzAzMjJlMzkzMzJlMzEzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXYswDQYJKoZIhvcN AQELBQADggEBAFDE0QSs5mUKS9wq4P/JIcCh1xadBYdnLouOc0dIac9CySQOeaqF 9d3qYw4URMeE10tgUbAyQrkSmoFVu2uVBq3VVHas0PI5KywXtkEP049P4auo8sGM WoSH/F0CEYwZrtJ6WZX5tadg+zcx4VntumQDkikxOhTTy/OnQB72VjhLD6dA9uSv NpLQ+wPruu/NMxcRJ+ECLn7m2BTKuzt1h4/Pax/sFyncKC7ypDRe6zPyt1nIlCC7 awsU4O/t4RuydYql2mwCCgg3yuxQz6+BSPtc/aNd0OX8M4Pn3TmrQomRrtzp69Fv 59rjQ+kCQi0F+5e2jc6oTu6e0Yla6hYV1oo= -----END CERTIFICATE-----Generated at Sun Aug 10 05:32:58 2025 by rpki-client