$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3134322e302f32342d3234203d3e2034333832.roa File: 3230322e39332e3134322e302f32342d3234203d3e2034333832.roa (raw, json) Hash identifier: /rqrLGb+IkPW8rjy02EXXMaWAA6ibmhWcBGw6CAxGjc= Subject key identifier: 22:2E:FF:14:7C:A5:12:B1:2B:BE:89:DA:54:8A:F3:64:7A:61:24:96 Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 2BC163F82B452A4AECD2D79F9FF027F8BB7513DE Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3134322e302f32342d3234203d3e2034333832.roa Signing time: Wed 23 Jul 2025 12:00:00 +0000 ROA not before: Wed 23 Jul 2025 11:55:00 +0000 ROA not after: Wed 22 Jul 2026 12:00:00 +0000 asID: 4382 IP address blocks: 202.93.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 09:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:c1:63:f8:2b:45:2a:4a:ec:d2:d7:9f:9f:f0:27:f8:bb:75:13:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Jul 23 11:55:00 2025 GMT Not After : Jul 22 12:00:00 2026 GMT Subject: CN=222EFF147CA512B12BBE89DA548AF3647A612496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:af:1b:dd:ed:70:41:10:ed:3a:24:e2:5b:eb: 24:93:db:16:2e:8e:03:52:6a:cd:dd:0a:fa:0c:99: 25:49:7d:9f:9e:90:02:63:05:52:48:f5:e4:35:76: df:39:f4:cd:52:8d:fc:4b:51:10:44:c6:15:cb:a5: 4e:50:a8:ae:e0:61:5c:d0:f9:c1:4a:f9:fa:d2:81: 9d:f3:a1:c4:d4:f8:df:95:b3:d6:f7:39:d8:11:db: 0a:72:f8:96:d5:a4:2e:d1:09:bf:e3:4b:5b:c2:a0: e3:72:30:f6:69:bb:e9:b5:53:bf:f1:ae:61:80:35: 49:89:e4:dc:fc:8f:70:b8:3c:8a:55:d2:01:8f:1d: b1:65:86:d5:f3:10:73:df:da:89:7a:10:5b:07:80: 91:d4:90:5e:22:6d:00:87:e1:77:5b:cc:70:e0:b6: 2c:18:bb:a4:55:4b:c8:40:33:33:ac:82:21:49:44: aa:a5:82:ef:14:e0:0d:ba:a9:08:87:c5:e5:9a:b1: 6b:82:19:b1:b8:ed:84:65:e8:1c:d3:7f:75:c7:9d: 2d:83:78:d3:59:33:16:a7:1b:44:5b:cc:cb:4f:ce: 64:3a:da:e2:19:d6:a1:86:71:60:b2:84:4c:79:bc: 43:10:6f:80:32:44:3b:1f:be:03:c7:ec:43:79:5d: 26:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:2E:FF:14:7C:A5:12:B1:2B:BE:89:DA:54:8A:F3:64:7A:61:24:96 X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3134322e302f32342d3234203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.142.0/24 Signature Algorithm: sha256WithRSAEncryption 27:9c:37:ac:cd:1f:de:e9:a0:d2:cd:56:ae:cf:bd:5e:6d:5d: db:1c:0e:85:2d:a3:03:86:b9:4d:32:3d:04:e3:e4:2c:96:db: 1f:a6:4c:b6:c5:af:b3:c1:52:e3:ca:0b:82:5e:05:b0:a8:13: 79:f0:fe:0b:f7:34:a9:bd:97:0a:d0:f8:21:0d:a8:1f:0c:64: d9:5d:9e:93:39:bf:80:99:78:21:41:19:08:22:56:c1:9f:e4: f9:1d:a5:40:c0:1c:c0:5f:e5:bd:f9:59:3d:e0:97:56:5c:f7: a6:ef:de:6e:ba:a3:b3:6a:d6:e8:36:f6:41:3f:22:19:fd:51: 88:34:86:bd:23:78:6e:e4:e3:24:c9:9f:36:79:cb:d7:c0:f3: 05:1a:b4:77:05:d5:87:e1:05:29:93:21:ee:0d:c5:79:1a:f5: 7d:59:f5:66:5d:fe:b2:37:5d:ec:1b:b1:ca:94:cc:86:7a:72: 53:a6:85:5e:1f:bc:2f:8d:4e:69:98:b6:26:42:64:f0:ad:98: 20:d5:6b:83:56:e0:be:f3:c8:55:01:14:09:6d:ca:12:1a:0e: c3:55:04:d8:e3:41:4a:41:0a:e9:a5:22:63:2b:f4:a0:30:87: b4:16:dc:98:49:ac:76:1f:4e:fb:37:3e:8e:9c:e6:91:74:cb: 41:7d:8b:5c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUK8Fj+CtFKkrs0tefn/An+Lt1E94wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yNTA3MjMxMTU1MDBaFw0yNjA3MjIxMjAwMDBaMDMxMTAvBgNV BAMTKDIyMkVGRjE0N0NBNTEyQjEyQkJFODlEQTU0OEFGMzY0N0E2MTI0OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDErxvd7XBBEO06JOJb6yST2xYu jgNSas3dCvoMmSVJfZ+ekAJjBVJI9eQ1dt859M1SjfxLURBExhXLpU5QqK7gYVzQ +cFK+frSgZ3zocTU+N+Vs9b3OdgR2wpy+JbVpC7RCb/jS1vCoONyMPZpu+m1U7/x rmGANUmJ5Nz8j3C4PIpV0gGPHbFlhtXzEHPf2ol6EFsHgJHUkF4ibQCH4XdbzHDg tiwYu6RVS8hAMzOsgiFJRKqlgu8U4A26qQiHxeWasWuCGbG47YRl6BzTf3XHnS2D eNNZMxanG0RbzMtPzmQ62uIZ1qGGcWCyhEx5vEMQb4AyRDsfvgPH7EN5XSahAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUIi7/FHylErErvonaVIrzZHphJJYwHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMyMzAzMjJlMzkzMzJlMzEzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXY4wDQYJKoZIhvcN AQELBQADggEBACecN6zNH97poNLNVq7PvV5tXdscDoUtowOGuU0yPQTj5CyW2x+m TLbFr7PBUuPKC4JeBbCoE3nw/gv3NKm9lwrQ+CENqB8MZNldnpM5v4CZeCFBGQgi VsGf5PkdpUDAHMBf5b35WT3gl1Zc96bv3m66o7Nq1ug29kE/Ihn9UYg0hr0jeG7k 4yTJnzZ5y9fA8wUatHcF1YfhBSmTIe4NxXka9X1Z9WZd/rI3XewbscqUzIZ6clOm hV4fvC+NTmmYtiZCZPCtmCDVa4NW4L7zyFUBFAltyhIaDsNVBNjjQUpBCumlImMr 9KAwh7QW3JhJrHYfTvs3Po6c5pF0y0F9i1w= -----END CERTIFICATE-----Generated at Sat Aug 9 20:50:53 2025 by rpki-client