$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32332d3234203d3e203233393531.roa File: 3230322e36352e3132302e302f32332d3234203d3e203233393531.roa (raw, json) Hash identifier: C1WvxvbH5IPUep7eQYoHGhXLqRMtWOqOKZMr05i/OjU= Subject key identifier: B7:CF:FA:8D:4A:F0:9A:BF:C5:74:4C:59:A8:0A:4A:49:42:0B:25:FE Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 234690BC88AC90C1742ADD7B5D2B4B67666FC1E4 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32332d3234203d3e203233393531.roa Signing time: Tue 22 Jul 2025 06:00:01 +0000 ROA not before: Tue 22 Jul 2025 05:55:01 +0000 ROA not after: Tue 21 Jul 2026 06:00:01 +0000 asID: 23951 IP address blocks: 202.65.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 02:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:46:90:bc:88:ac:90:c1:74:2a:dd:7b:5d:2b:4b:67:66:6f:c1:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Jul 22 05:55:01 2025 GMT Not After : Jul 21 06:00:01 2026 GMT Subject: CN=B7CFFA8D4AF09ABFC5744C59A80A4A49420B25FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5a:f1:0e:1a:a9:f0:72:ab:1d:34:a8:76:6b: 28:b7:77:83:d1:7d:32:bf:0a:02:b5:77:a8:ce:d3: cb:28:ec:25:7c:fb:d1:d9:a1:0c:46:0d:5a:02:ef: 82:00:31:a3:1b:7d:ce:12:75:07:14:62:73:3f:71: e6:17:f1:f6:be:4f:fd:0f:d5:c1:45:2b:96:af:cc: c7:9e:bf:4f:90:75:aa:07:8e:65:f0:3e:1b:fa:39: 13:d6:f5:8f:b0:ba:4b:21:50:51:99:70:d5:d5:17: 8f:36:f6:d9:8d:e4:db:3c:77:2f:05:9b:ef:2c:c2: ed:4c:d5:71:09:7c:c1:54:45:e3:f1:8d:b1:b0:c0: 52:7f:4d:12:14:fc:c7:66:41:ef:05:b4:2e:46:7e: a0:1d:2b:0e:dc:a7:63:2c:34:4b:93:a6:06:f2:92: ab:10:9d:d8:1c:d9:35:46:1e:d6:4e:9e:6a:aa:6d: e3:43:ec:60:bb:6e:48:ec:91:6e:f9:17:64:32:cd: f4:92:56:2a:23:7b:c4:4b:60:d2:07:46:3d:f0:c0: 3e:1d:30:8a:01:af:87:af:b0:98:7b:86:cf:0d:54: 2d:2f:8a:f8:c4:36:67:d1:e9:df:80:d1:13:02:47: 38:99:63:a9:32:0c:e2:bb:32:30:a8:25:af:71:51: 67:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:CF:FA:8D:4A:F0:9A:BF:C5:74:4C:59:A8:0A:4A:49:42:0B:25:FE X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32332d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.120.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:3f:9c:0f:91:3e:99:df:47:a4:ce:6b:45:cb:98:53:a5:ed: 26:32:7b:21:bb:a9:70:59:30:37:94:9c:4b:db:80:fe:4c:56: 01:f0:b0:29:fa:f2:31:5b:b5:bc:8c:ae:b2:0a:d5:95:ab:2d: 42:d8:ca:cd:fb:02:bf:30:1c:26:ae:2c:69:11:fe:2c:e4:5a: ce:d7:ac:96:44:7b:ee:2a:0d:a0:a7:b8:eb:df:bc:c6:2b:62: f6:89:4e:ab:5a:54:50:da:23:fd:08:36:32:27:87:09:21:40: a4:74:38:8d:d6:3f:79:82:18:5a:eb:c5:6b:0a:06:dd:7a:17: 95:42:aa:7f:39:46:47:e5:f8:3f:b9:07:d9:c2:bc:ce:be:dc: 8c:50:1f:48:58:d1:84:3f:7c:12:8c:d0:fd:37:ec:3e:c2:41: fa:5f:23:d0:8a:ed:d7:19:87:88:b3:32:00:ed:a7:a0:ca:de: 66:ed:40:66:34:62:31:e7:50:d5:01:a9:90:db:f0:fe:aa:7a: 46:61:ed:5d:b3:53:5b:f9:c7:84:a4:21:ad:1e:60:45:f3:be: ae:57:58:e1:79:17:80:2d:e9:ec:f8:da:51:92:87:a4:e4:aa: b3:a9:8c:98:3c:4f:b2:49:4b:1f:65:f2:04:5c:70:0e:6b:2d: 0e:c0:8e:38 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUI0aQvIiskMF0Kt17XStLZ2ZvweQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNTA3MjIwNTU1MDFaFw0yNjA3MjEwNjAwMDFaMDMxMTAvBgNV BAMTKEI3Q0ZGQThENEFGMDlBQkZDNTc0NEM1OUE4MEE0QTQ5NDIwQjI1RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/WvEOGqnwcqsdNKh2ayi3d4PR fTK/CgK1d6jO08so7CV8+9HZoQxGDVoC74IAMaMbfc4SdQcUYnM/ceYX8fa+T/0P 1cFFK5avzMeev0+QdaoHjmXwPhv6ORPW9Y+wukshUFGZcNXVF4829tmN5Ns8dy8F m+8swu1M1XEJfMFURePxjbGwwFJ/TRIU/MdmQe8FtC5GfqAdKw7cp2MsNEuTpgby kqsQndgc2TVGHtZOnmqqbeND7GC7bkjskW75F2QyzfSSVioje8RLYNIHRj3wwD4d MIoBr4evsJh7hs8NVC0vivjENmfR6d+A0RMCRziZY6kyDOK7MjCoJa9xUWfBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUt8/6jUrwmr/FdExZqApKSUILJf4wHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcpBeDANBgkqhkiG 9w0BAQsFAAOCAQEAXj+cD5E+md9HpM5rRcuYU6XtJjJ7IbupcFkwN5ScS9uA/kxW AfCwKfryMVu1vIyusgrVlastQtjKzfsCvzAcJq4saRH+LORazteslkR77ioNoKe4 69+8xiti9olOq1pUUNoj/Qg2MieHCSFApHQ4jdY/eYIYWuvFawoG3XoXlUKqfzlG R+X4P7kH2cK8zr7cjFAfSFjRhD98EozQ/TfsPsJB+l8j0Irt1xmHiLMyAO2noMre Zu1AZjRiMedQ1QGpkNvw/qp6RmHtXbNTW/nHhKQhrR5gRfO+rldY4XkXgC3p7Pja UZKHpOSqs6mMmDxPsklLH2XyBFxwDmstDsCOOA== -----END CERTIFICATE-----Generated at Thu Aug 7 23:55:42 2025 by rpki-client