$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3134302e302f32342d3234203d3e2034333832.roa File: 3230322e39332e3134302e302f32342d3234203d3e2034333832.roa (raw, json) Hash identifier: AxG3Av6Lr1ooWeZ52jFBXjksOOp131HOnOlkyHCdSIY= Subject key identifier: 7D:CB:DA:48:A4:AC:E7:BD:13:28:94:52:D3:AB:5D:D0:05:39:CA:20 Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 24C024C9C7AA4B7F8D64BF0B8F3668457023BA57 Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3134302e302f32342d3234203d3e2034333832.roa Signing time: Wed 23 Jul 2025 13:00:00 +0000 ROA not before: Wed 23 Jul 2025 12:55:00 +0000 ROA not after: Wed 22 Jul 2026 13:00:00 +0000 asID: 4382 IP address blocks: 202.93.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 09:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:c0:24:c9:c7:aa:4b:7f:8d:64:bf:0b:8f:36:68:45:70:23:ba:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Jul 23 12:55:00 2025 GMT Not After : Jul 22 13:00:00 2026 GMT Subject: CN=7DCBDA48A4ACE7BD13289452D3AB5DD00539CA20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:31:28:75:60:ba:67:59:25:0b:a9:86:82:b7: 58:61:6f:09:65:ce:41:e6:ed:4f:95:9f:15:a9:f2: 1d:39:d2:50:2a:29:d6:3a:62:1b:10:82:8b:90:fa: 6d:27:44:eb:09:8b:03:eb:b6:1b:af:c8:06:22:d0: 80:20:36:24:db:f4:85:13:fd:e8:6b:53:94:d6:56: 18:02:42:d8:d8:69:44:26:59:20:98:23:75:38:56: 73:78:90:45:59:2a:d0:98:87:e7:fb:d5:ba:cb:c3: 2b:d1:cc:55:ab:8b:16:5a:a1:96:29:8b:61:17:62: c7:8c:66:8e:da:81:8b:ff:2c:16:ec:c5:06:3d:c4: 04:92:df:42:6a:19:19:c2:6a:5e:bd:5f:9d:6c:73: b8:99:65:58:62:5a:d0:61:50:4f:75:45:59:1a:ee: e6:be:31:24:84:09:da:6a:0f:8f:19:8a:94:83:ca: cc:bb:2d:7e:5f:74:62:f8:6d:9c:74:b5:cf:51:8c: 51:2a:48:c9:55:80:86:05:84:2c:0d:21:74:24:3e: e3:88:62:69:61:86:e9:f5:fc:6a:b5:c6:91:37:75: 35:ea:81:81:e0:e8:d0:39:8a:e7:ba:5d:fb:2d:40: 89:79:d9:ee:3f:9d:7c:22:34:ef:b2:1e:8f:86:48: 9c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:CB:DA:48:A4:AC:E7:BD:13:28:94:52:D3:AB:5D:D0:05:39:CA:20 X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3134302e302f32342d3234203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.140.0/24 Signature Algorithm: sha256WithRSAEncryption b4:4b:50:b2:12:ec:a3:cd:75:4f:c0:c7:31:84:81:c0:bc:bd: 08:a8:a3:94:fd:17:dc:df:a0:9f:83:89:24:13:2e:f0:be:59: b2:12:dc:37:c7:e0:00:f6:a6:34:53:42:74:87:32:ab:77:59: 38:0c:3c:56:99:d4:2b:c4:07:68:80:14:96:fb:8b:ff:0c:38: ad:5e:03:29:94:b3:9e:86:24:bb:6d:01:bc:fa:48:23:c2:f2: 67:73:92:48:a2:7f:a9:bb:ce:86:2c:14:ff:8b:be:1e:ca:f5: bf:67:48:e1:65:75:14:b9:20:5d:78:4a:18:ef:81:3d:b8:e2: 71:8c:34:4c:93:a4:75:1b:96:5d:cf:a7:22:30:6f:67:03:25: 3e:70:9d:40:f2:69:54:b8:22:1a:10:7d:48:1d:d5:62:ff:76: 31:90:f9:ea:1b:d8:35:86:0c:1d:42:9c:13:2a:4b:e6:d5:38: f0:48:70:21:33:9c:79:fb:35:22:1e:2e:7f:d9:a8:68:3b:86: 86:cf:c5:75:54:e9:18:b1:c2:25:02:ed:6d:b8:13:23:ec:25: c0:76:06:8a:9d:cf:fb:57:9a:62:6c:39:42:ea:85:b6:b9:d3: 54:58:c0:fd:13:f0:06:02:57:61:53:46:6b:43:64:16:1d:fd: dd:bf:da:7a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJMAkyceqS3+NZL8LjzZoRXAjulcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yNTA3MjMxMjU1MDBaFw0yNjA3MjIxMzAwMDBaMDMxMTAvBgNV BAMTKDdEQ0JEQTQ4QTRBQ0U3QkQxMzI4OTQ1MkQzQUI1REQwMDUzOUNBMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9MSh1YLpnWSULqYaCt1hhbwll zkHm7U+VnxWp8h050lAqKdY6YhsQgouQ+m0nROsJiwPrthuvyAYi0IAgNiTb9IUT /ehrU5TWVhgCQtjYaUQmWSCYI3U4VnN4kEVZKtCYh+f71brLwyvRzFWrixZaoZYp i2EXYseMZo7agYv/LBbsxQY9xASS30JqGRnCal69X51sc7iZZVhiWtBhUE91RVka 7ua+MSSECdpqD48ZipSDysy7LX5fdGL4bZx0tc9RjFEqSMlVgIYFhCwNIXQkPuOI Ymlhhun1/Gq1xpE3dTXqgYHg6NA5iue6XfstQIl52e4/nXwiNO+yHo+GSJwtAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUfcvaSKSs570TKJRS06td0AU5yiAwHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMyMzAzMjJlMzkzMzJlMzEzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXYwwDQYJKoZIhvcN AQELBQADggEBALRLULIS7KPNdU/AxzGEgcC8vQioo5T9F9zfoJ+DiSQTLvC+WbIS 3DfH4AD2pjRTQnSHMqt3WTgMPFaZ1CvEB2iAFJb7i/8MOK1eAymUs56GJLttAbz6 SCPC8mdzkkiif6m7zoYsFP+Lvh7K9b9nSOFldRS5IF14ShjvgT244nGMNEyTpHUb ll3PpyIwb2cDJT5wnUDyaVS4IhoQfUgd1WL/djGQ+eob2DWGDB1CnBMqS+bVOPBI cCEznHn7NSIeLn/ZqGg7hobPxXVU6RixwiUC7W24EyPsJcB2Boqdz/tXmmJsOULq hba501RYwP0T8AYCV2FTRmtDZBYd/d2/2no= -----END CERTIFICATE-----Generated at Sat Aug 9 22:48:04 2025 by rpki-client