$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3134332e302f32342d3234203d3e2034333832.roa File: 3230322e39332e3134332e302f32342d3234203d3e2034333832.roa (raw, json) Hash identifier: HxTVM3BaA8ke4XmmAmeOxfSVVSVRh0EkdWqpyqwPT1U= Subject key identifier: EF:08:A7:00:2E:FC:53:4E:29:89:22:6A:A8:D1:20:11:08:57:BD:C9 Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 0B78236C644F8BBBA920C94DD16F5FC5E47BFF55 Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3134332e302f32342d3234203d3e2034333832.roa Signing time: Wed 23 Jul 2025 15:00:43 +0000 ROA not before: Wed 23 Jul 2025 14:55:43 +0000 ROA not after: Wed 22 Jul 2026 15:00:43 +0000 asID: 4382 IP address blocks: 202.93.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 09:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:78:23:6c:64:4f:8b:bb:a9:20:c9:4d:d1:6f:5f:c5:e4:7b:ff:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Jul 23 14:55:43 2025 GMT Not After : Jul 22 15:00:43 2026 GMT Subject: CN=EF08A7002EFC534E2989226AA8D120110857BDC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:86:05:12:11:f2:1e:ce:f4:f7:e8:ec:74:97: 99:32:e4:1e:7f:43:2f:39:67:7c:57:ef:69:15:c0: 23:cb:37:63:cd:a9:73:ca:e5:31:e9:f5:27:71:d8: 59:44:63:e3:4a:e7:9a:32:2d:9d:e2:dc:0d:c8:12: a8:11:93:75:83:c5:3b:cd:f8:9e:be:13:98:6b:43: 25:a0:41:b8:e5:42:6c:45:fa:ed:42:e9:fa:7e:f4: 77:f6:04:ec:e1:61:41:23:26:45:93:fd:c7:45:5e: 17:5c:fc:57:89:2e:18:5f:fd:40:36:6f:80:65:93: 07:36:54:24:10:9a:92:10:f6:c5:04:b7:22:73:9a: b4:71:4d:bf:eb:c9:1c:09:b0:8c:a9:52:37:7a:ab: 6b:3a:94:b3:39:58:37:f8:f4:0e:3d:2a:97:3a:ce: d2:a1:89:09:fb:fa:ac:77:45:6d:e1:cb:fd:38:3f: 56:e0:dc:4b:79:a0:4b:19:53:2f:f2:55:87:fa:be: f5:ec:62:0f:c2:23:7a:ce:b6:b7:3b:25:85:0c:75: fd:d1:19:e2:cb:27:a8:b9:fc:5c:b6:05:8a:58:cb: a2:6f:4f:bc:a9:3b:72:e7:15:e5:3e:12:84:09:84: ac:45:3a:2a:65:83:e3:51:b8:60:57:4e:19:04:1e: 28:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:08:A7:00:2E:FC:53:4E:29:89:22:6A:A8:D1:20:11:08:57:BD:C9 X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3134332e302f32342d3234203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.143.0/24 Signature Algorithm: sha256WithRSAEncryption bf:98:90:70:35:9c:e7:b3:b8:a4:f1:ab:da:d6:3e:ab:7a:f3: 97:15:33:b3:a5:b7:a4:97:62:d0:a9:72:aa:2d:41:c2:de:90: af:b6:a9:fd:7c:9a:4f:0c:07:14:45:1b:3b:03:fb:6e:96:25: 2d:6c:7b:43:d0:6c:75:21:4a:5b:4e:b9:9c:c0:47:1a:88:13: 56:a3:49:8c:8d:2c:a1:4f:53:b6:89:be:5c:b5:9c:36:db:3e: f6:b9:f7:c8:a2:49:8a:3c:e4:1f:7b:41:ff:9d:dd:73:64:ea: 30:ed:ea:0d:11:ce:36:70:29:0c:46:85:3c:d5:36:6b:36:4a: 4a:02:8e:fa:50:46:9a:f2:77:f8:96:79:90:da:7e:a4:43:b8: c4:12:e7:62:da:d0:8b:db:91:c6:2d:80:52:ec:92:ea:2e:8b: 10:df:24:22:30:f4:24:65:08:e6:83:f6:f5:c0:37:5d:28:47: 23:5c:c9:db:af:b7:70:9a:e2:97:0b:81:fa:39:aa:15:c1:30: 29:1a:8c:d9:8c:bf:98:f9:83:52:08:de:b8:18:c3:b7:6f:09: e6:6a:79:53:06:8f:ee:f3:f4:26:77:8c:a1:71:11:d8:d3:5c: d0:bb:10:06:23:1d:bd:ec:07:86:40:31:27:52:c6:dd:fb:57: 18:42:d8:b1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUC3gjbGRPi7upIMlN0W9fxeR7/1UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yNTA3MjMxNDU1NDNaFw0yNjA3MjIxNTAwNDNaMDMxMTAvBgNV BAMTKEVGMDhBNzAwMkVGQzUzNEUyOTg5MjI2QUE4RDEyMDExMDg1N0JEQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzhgUSEfIezvT36Ox0l5ky5B5/ Qy85Z3xX72kVwCPLN2PNqXPK5THp9Sdx2FlEY+NK55oyLZ3i3A3IEqgRk3WDxTvN +J6+E5hrQyWgQbjlQmxF+u1C6fp+9Hf2BOzhYUEjJkWT/cdFXhdc/FeJLhhf/UA2 b4Blkwc2VCQQmpIQ9sUEtyJzmrRxTb/ryRwJsIypUjd6q2s6lLM5WDf49A49Kpc6 ztKhiQn7+qx3RW3hy/04P1bg3Et5oEsZUy/yVYf6vvXsYg/CI3rOtrc7JYUMdf3R GeLLJ6i5/Fy2BYpYy6JvT7ypO3LnFeU+EoQJhKxFOiplg+NRuGBXThkEHig9AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU7winAC78U04piSJqqNEgEQhXvckwHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMyMzAzMjJlMzkzMzJlMzEzNDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXY8wDQYJKoZIhvcN AQELBQADggEBAL+YkHA1nOezuKTxq9rWPqt685cVM7Olt6SXYtCpcqotQcLekK+2 qf18mk8MBxRFGzsD+26WJS1se0PQbHUhSltOuZzARxqIE1ajSYyNLKFPU7aJvly1 nDbbPva598iiSYo85B97Qf+d3XNk6jDt6g0RzjZwKQxGhTzVNms2SkoCjvpQRpry d/iWeZDafqRDuMQS52La0IvbkcYtgFLskuouixDfJCIw9CRlCOaD9vXAN10oRyNc yduvt3Ca4pcLgfo5qhXBMCkajNmMv5j5g1II3rgYw7dvCeZqeVMGj+7z9CZ3jKFx EdjTXNC7EAYjHb3sB4ZAMSdSxt37VxhC2LE= -----END CERTIFICATE-----Generated at Sun Aug 10 05:35:32 2025 by rpki-client