$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132332e302f32342d3234203d3e203233393531.roa File: 3230322e36352e3132332e302f32342d3234203d3e203233393531.roa (raw, json) Hash identifier: uYljhWPFI38b1Nx1UtlQJyqp8X7WWWNXDKkB58nW4HI= Subject key identifier: 4F:D2:38:30:29:35:89:CD:A5:BB:77:6E:40:F2:15:A6:1E:3C:68:A8 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 4E3AEA36AB36630FE11474CD233204E5F5345EE3 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132332e302f32342d3234203d3e203233393531.roa Signing time: Fri 25 Jul 2025 03:00:00 +0000 ROA not before: Fri 25 Jul 2025 02:55:00 +0000 ROA not after: Fri 24 Jul 2026 03:00:00 +0000 asID: 23951 IP address blocks: 202.65.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 02:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:3a:ea:36:ab:36:63:0f:e1:14:74:cd:23:32:04:e5:f5:34:5e:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Jul 25 02:55:00 2025 GMT Not After : Jul 24 03:00:00 2026 GMT Subject: CN=4FD23830293589CDA5BB776E40F215A61E3C68A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8f:c6:56:4d:c3:7a:1d:4c:e2:ed:9d:a6:ef: 8b:17:b5:27:67:7c:61:9e:43:be:02:77:55:99:cb: 17:25:2e:f6:a3:0f:18:73:e7:3c:9d:f8:8d:94:93: c4:e5:e9:cf:61:59:a7:d7:40:1c:d3:0f:f9:3c:1f: 25:ad:8f:a6:d4:d7:ea:86:32:cf:0b:dc:90:ff:0f: 6d:d5:ed:c0:52:60:06:d1:87:51:40:3d:fc:8a:e7: f2:97:8e:78:41:50:31:3a:2d:9f:c0:86:9a:61:0c: 14:d7:d9:e6:96:a1:3a:25:03:d8:1e:14:98:aa:b6: af:41:60:d0:f7:f2:32:d5:18:70:d1:3f:b5:79:fa: d3:c5:a6:07:2e:5d:aa:2e:27:be:9f:ba:ab:2b:1b: c8:ba:cb:b0:8c:df:17:38:67:c3:63:b4:28:5e:ac: 8c:54:a7:d0:a7:40:8f:54:11:21:19:f8:77:12:00: e0:96:e5:4d:59:38:33:cb:ab:21:be:06:bf:9a:c7: 06:20:8e:94:5b:1d:5e:55:ff:34:3b:95:c5:ba:87: 61:c0:11:8b:48:b9:76:ac:64:dc:35:2a:71:e9:19: f6:73:ed:9b:1c:8a:04:cc:b4:36:4b:22:b5:a6:fa: 33:e9:dc:8c:3d:30:05:f3:55:ab:a3:08:25:d8:6e: 0f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D2:38:30:29:35:89:CD:A5:BB:77:6E:40:F2:15:A6:1E:3C:68:A8 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132332e302f32342d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.123.0/24 Signature Algorithm: sha256WithRSAEncryption 20:03:1a:4f:90:17:fb:4c:5b:0e:98:78:9a:8a:9e:0d:40:2f: bd:f6:1b:3d:a1:8f:a2:f3:30:42:9e:bd:c6:5f:88:2e:a5:2e: 69:ac:92:eb:e4:e6:a6:5c:5f:43:7e:99:3e:a1:80:53:4f:9d: 64:38:27:23:7f:cd:c9:c7:76:02:96:21:35:7d:55:28:58:08: 79:ad:29:c0:ff:ae:50:2e:1a:e3:19:0a:29:9c:f0:49:ae:fd: 09:56:b8:24:2c:03:da:93:c3:f7:70:b4:2a:11:c5:0c:42:5b: 0b:66:de:8e:ad:2f:46:c0:70:93:ec:d1:96:18:b5:c4:e6:98: b5:e2:38:08:c7:c4:9a:d5:2a:c9:41:27:69:93:14:d4:42:60: 54:1a:79:eb:13:6c:c9:f2:dd:19:4d:22:7d:6b:86:db:3d:56: e7:6d:ec:b0:bc:0d:05:78:6c:f3:71:6e:51:29:20:87:f9:25: 16:64:70:f8:bf:ce:9f:fe:8a:0b:f2:82:bb:23:e6:b3:c7:0f: 3b:07:1f:16:9b:81:a2:7e:ba:93:e9:1a:bb:58:50:87:bb:bb: 2c:97:8c:e5:bc:36:42:77:c9:5c:23:2f:98:40:2d:61:e2:cf: 41:ee:bb:3e:bc:1b:12:a2:16:b9:92:70:dd:78:51:b2:d1:e9: 24:83:0d:45 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTjrqNqs2Yw/hFHTNIzIE5fU0XuMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNTA3MjUwMjU1MDBaFw0yNjA3MjQwMzAwMDBaMDMxMTAvBgNV BAMTKDRGRDIzODMwMjkzNTg5Q0RBNUJCNzc2RTQwRjIxNUE2MUUzQzY4QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZj8ZWTcN6HUzi7Z2m74sXtSdn fGGeQ74Cd1WZyxclLvajDxhz5zyd+I2Uk8Tl6c9hWafXQBzTD/k8HyWtj6bU1+qG Ms8L3JD/D23V7cBSYAbRh1FAPfyK5/KXjnhBUDE6LZ/AhpphDBTX2eaWoTolA9ge FJiqtq9BYND38jLVGHDRP7V5+tPFpgcuXaouJ76fuqsrG8i6y7CM3xc4Z8NjtChe rIxUp9CnQI9UESEZ+HcSAOCW5U1ZODPLqyG+Br+axwYgjpRbHV5V/zQ7lcW6h2HA EYtIuXasZNw1KnHpGfZz7ZscigTMtDZLIrWm+jPp3Iw9MAXzVaujCCXYbg/fAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUT9I4MCk1ic2lu3duQPIVph48aKgwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpBezANBgkqhkiG 9w0BAQsFAAOCAQEAIAMaT5AX+0xbDph4moqeDUAvvfYbPaGPovMwQp69xl+ILqUu aayS6+TmplxfQ36ZPqGAU0+dZDgnI3/Nycd2ApYhNX1VKFgIea0pwP+uUC4a4xkK KZzwSa79CVa4JCwD2pPD93C0KhHFDEJbC2bejq0vRsBwk+zRlhi1xOaYteI4CMfE mtUqyUEnaZMU1EJgVBp56xNsyfLdGU0ifWuG2z1W523ssLwNBXhs83FuUSkgh/kl FmRw+L/On/6KC/KCuyPms8cPOwcfFpuBon66k+kau1hQh7u7LJeM5bw2QnfJXCMv mEAtYeLPQe67PrwbEqIWuZJw3XhRstHpJIMNRQ== -----END CERTIFICATE-----Generated at Thu Aug 7 20:09:52 2025 by rpki-client