$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132322e302f32332d3233203d3e203233393531.roa File: 3230322e36352e3132322e302f32332d3233203d3e203233393531.roa (raw, json) Hash identifier: uySOy+S8Xsy4H4ygVfn9FFZSJNP2ZKNqDsizB5B+qv8= Subject key identifier: 2E:F2:CD:AD:A0:4E:A1:B5:14:F6:32:6F:08:6B:03:84:DA:5A:B2:81 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 19A1643A986B9769138B235B7F446AEF04CFA128 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132322e302f32332d3233203d3e203233393531.roa Signing time: Fri 25 Jul 2025 04:00:00 +0000 ROA not before: Fri 25 Jul 2025 03:55:00 +0000 ROA not after: Fri 24 Jul 2026 04:00:00 +0000 asID: 23951 IP address blocks: 202.65.122.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 02:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:a1:64:3a:98:6b:97:69:13:8b:23:5b:7f:44:6a:ef:04:cf:a1:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Jul 25 03:55:00 2025 GMT Not After : Jul 24 04:00:00 2026 GMT Subject: CN=2EF2CDADA04EA1B514F6326F086B0384DA5AB281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:6c:98:fc:66:62:af:25:67:e9:6f:a4:23:67: 85:83:97:8d:b7:a9:e0:bc:9a:8b:cf:43:db:37:35: a9:e4:5b:5d:b5:8b:26:26:3d:e1:ae:bf:75:95:c5: cc:ea:8d:c9:b6:83:35:6a:fa:12:bc:1b:13:65:06: f1:a2:de:75:27:81:75:97:63:3d:a2:88:e6:6f:49: c3:88:4a:2a:70:c8:49:03:65:0d:cf:8d:67:b7:48: 75:66:5c:2f:18:84:7e:a4:1f:a0:cf:00:06:12:b6: cf:92:72:d7:80:aa:b7:4d:47:6e:76:f2:53:58:ff: e8:ec:6d:a7:35:99:6f:4e:65:f6:c9:1b:c2:34:e2: a3:a5:dc:af:20:8a:9d:7e:07:9d:d0:18:10:03:a8: 1c:0e:94:bb:97:8b:43:1c:26:59:67:e5:6a:f7:aa: 30:48:fb:a4:c2:70:34:1c:8e:1d:98:87:9d:31:b2: bb:3c:68:c5:c2:23:37:af:4a:70:df:83:15:c7:f0: be:5f:fb:fc:09:80:21:e3:44:ce:e3:3b:75:68:f0: c4:d7:56:fc:04:f3:ee:cc:ef:02:9b:39:03:86:7f: 1c:db:96:15:79:a6:23:a6:3f:76:0f:4b:7e:90:70: 96:c5:dc:5e:6e:88:49:74:c4:eb:81:c3:2a:d5:3f: 54:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:F2:CD:AD:A0:4E:A1:B5:14:F6:32:6F:08:6B:03:84:DA:5A:B2:81 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132322e302f32332d3233203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.122.0/23 Signature Algorithm: sha256WithRSAEncryption a7:64:c5:33:1f:b6:b5:4e:0c:15:c2:c0:a1:08:8d:30:3b:49: fb:8c:93:6b:fd:63:19:50:62:7d:b1:23:7a:7c:f8:95:b9:e6: 08:ef:0a:bc:85:34:8a:86:d3:3b:71:1f:d5:62:97:6c:1d:b7: f6:8d:d2:65:5e:77:ae:1f:b2:2b:8d:c2:a2:32:68:bf:b8:ac: e6:d0:d1:e1:4f:c1:82:19:f9:78:99:7d:58:65:1f:a2:42:b4: 88:7f:e6:54:0d:ef:9e:86:b6:cc:79:ea:d0:b9:a5:e3:1d:fb: dc:42:d2:a2:96:6b:46:15:9d:5e:be:bf:9f:3c:16:6a:c0:e5: c8:5d:e6:17:9b:d4:b9:5c:c5:f9:12:50:db:81:bc:d9:9d:69: 73:ed:17:cc:19:f2:27:02:96:c4:d8:0d:9a:99:06:e7:f3:55: f0:68:03:bb:41:ff:87:bf:d4:f1:e0:e9:de:c8:8e:56:55:23: d9:f7:e4:c5:94:f6:79:38:1d:93:d4:48:cf:21:69:4b:ce:c0: 8f:f1:bc:b2:d2:bf:79:8c:af:84:5e:37:15:7c:c8:f4:6b:21: b2:29:5a:5d:b1:98:ab:48:6a:5f:55:d6:29:f3:02:2c:ae:cf: 65:f3:d9:be:3b:20:4e:1a:ea:65:df:4a:c7:18:2b:5e:40:8f: 45:72:ce:80 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGaFkOphrl2kTiyNbf0Rq7wTPoSgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNTA3MjUwMzU1MDBaFw0yNjA3MjQwNDAwMDBaMDMxMTAvBgNV BAMTKDJFRjJDREFEQTA0RUExQjUxNEY2MzI2RjA4NkIwMzg0REE1QUIyODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXbJj8ZmKvJWfpb6QjZ4WDl423 qeC8movPQ9s3NankW121iyYmPeGuv3WVxczqjcm2gzVq+hK8GxNlBvGi3nUngXWX Yz2iiOZvScOISipwyEkDZQ3PjWe3SHVmXC8YhH6kH6DPAAYSts+ScteAqrdNR252 8lNY/+jsbac1mW9OZfbJG8I04qOl3K8gip1+B53QGBADqBwOlLuXi0McJlln5Wr3 qjBI+6TCcDQcjh2Yh50xsrs8aMXCIzevSnDfgxXH8L5f+/wJgCHjRM7jO3Vo8MTX VvwE8+7M7wKbOQOGfxzblhV5piOmP3YPS36QcJbF3F5uiEl0xOuBwyrVP1Q7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULvLNraBOobUU9jJvCGsDhNpasoEwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcpBejANBgkqhkiG 9w0BAQsFAAOCAQEAp2TFMx+2tU4MFcLAoQiNMDtJ+4yTa/1jGVBifbEjenz4lbnm CO8KvIU0iobTO3Ef1WKXbB239o3SZV53rh+yK43CojJov7is5tDR4U/Bghn5eJl9 WGUfokK0iH/mVA3vnoa2zHnq0Lml4x373ELSopZrRhWdXr6/nzwWasDlyF3mF5vU uVzF+RJQ24G82Z1pc+0XzBnyJwKWxNgNmpkG5/NV8GgDu0H/h7/U8eDp3siOVlUj 2ffkxZT2eTgdk9RIzyFpS87Aj/G8stK/eYyvhF43FXzI9GshsilaXbGYq0hqX1XW KfMCLK7PZfPZvjsgThrqZd9KxxgrXkCPRXLOgA== -----END CERTIFICATE-----Generated at Thu Aug 7 20:10:52 2025 by rpki-client