$ rpki-client -vvf repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/3230322e34372e3138362e302f32342d3234203d3e20313532303234.roa File: 3230322e34372e3138362e302f32342d3234203d3e20313532303234.roa (raw, json) Hash identifier: dATjFz2GgCuZI7do22WaaBEM9mGMyqKI+2l7xnlR/rA= Subject key identifier: 86:00:1F:6C:5F:A9:D3:E9:E8:E7:07:23:32:C7:A9:0D:50:3F:23:00 Certificate issuer: /CN=C2E929DFB05F81B91880BC808154365AECAC27D2 Certificate serial: 21282A9E3AF0305C7CDFEA50E237FB45DB241DB0 Authority key identifier: C2:E9:29:DF:B0:5F:81:B9:18:80:BC:80:81:54:36:5A:EC:AC:27:D2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2E929DFB05F81B91880BC808154365AECAC27D2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/3230322e34372e3138362e302f32342d3234203d3e20313532303234.roa Signing time: Sun 06 Jul 2025 16:00:43 +0000 ROA not before: Sun 06 Jul 2025 15:55:43 +0000 ROA not after: Sun 05 Jul 2026 16:00:43 +0000 asID: 152024 IP address blocks: 202.47.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/C2E929DFB05F81B91880BC808154365AECAC27D2.crl rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/C2E929DFB05F81B91880BC808154365AECAC27D2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2E929DFB05F81B91880BC808154365AECAC27D2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 15:15:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:28:2a:9e:3a:f0:30:5c:7c:df:ea:50:e2:37:fb:45:db:24:1d:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2E929DFB05F81B91880BC808154365AECAC27D2 Validity Not Before: Jul 6 15:55:43 2025 GMT Not After : Jul 5 16:00:43 2026 GMT Subject: CN=86001F6C5FA9D3E9E8E7072332C7A90D503F2300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7c:88:2e:6d:7d:21:17:bc:21:8d:e3:c9:33: 6f:ca:0f:d6:ce:75:bd:6c:e0:17:c1:2f:ea:80:cf: f4:df:68:f0:7e:1e:78:8a:e2:3c:7f:ec:5f:cc:dc: af:d2:4e:14:77:80:4d:69:92:ac:b3:32:29:5c:c6: 5d:ef:36:11:87:2f:cc:0a:19:1d:4f:eb:46:b8:ac: b8:cf:af:e3:6c:dc:92:5c:e8:c3:48:cb:ac:50:0a: e7:57:67:ea:a0:96:31:7d:31:f4:c4:4b:94:04:cd: 38:93:dd:4c:bd:d0:c7:83:bc:3b:a6:3a:53:35:2c: 86:ef:a7:4d:c4:b5:e2:31:50:53:f1:cc:d2:ed:ff: 29:89:ab:f6:9d:50:db:4a:7d:48:c1:78:5b:e6:f9: 96:b2:45:fc:d1:9f:78:89:18:c6:fd:4c:c9:46:96: fb:98:99:5e:e2:43:db:6b:d3:4e:b6:b0:43:db:08: af:55:75:1a:ee:91:3d:88:65:a9:f1:2d:76:46:d0: 7e:f9:f1:e1:9d:78:bc:87:37:d5:21:8b:8a:a2:de: 06:8c:4a:1a:ec:b4:10:bd:e3:65:60:39:77:95:34: e0:6f:2a:ac:ba:28:00:7c:0b:05:a1:4a:e1:17:fb: 6f:ee:ba:3f:48:fa:d4:dc:81:e0:e3:84:61:81:1a: bb:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:00:1F:6C:5F:A9:D3:E9:E8:E7:07:23:32:C7:A9:0D:50:3F:23:00 X509v3 Authority Key Identifier: keyid:C2:E9:29:DF:B0:5F:81:B9:18:80:BC:80:81:54:36:5A:EC:AC:27:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/C2E929DFB05F81B91880BC808154365AECAC27D2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2E929DFB05F81B91880BC808154365AECAC27D2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/3230322e34372e3138362e302f32342d3234203d3e20313532303234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.186.0/24 Signature Algorithm: sha256WithRSAEncryption 29:1d:19:52:b0:98:02:81:cb:97:8c:1e:89:6d:55:cb:40:1c: d9:80:e9:07:ff:6d:0b:d5:3b:3b:85:54:70:58:8d:0c:e7:94: d1:32:32:f6:66:41:38:9e:dd:d6:d0:50:76:fd:e9:b4:c6:01: 5f:ad:0b:a5:4a:bc:32:7b:62:20:e5:f2:85:eb:b6:d2:cf:52: e7:53:ff:1f:ac:95:ea:da:3a:81:45:93:e2:a0:4b:e2:44:b1: 6f:ed:c7:5d:86:3e:76:e0:1f:ea:7f:a3:e3:3f:a8:fa:ef:5f: 4f:c7:4c:f5:5d:01:c5:c1:36:59:7a:da:69:25:61:5a:a8:1b: ce:fc:b4:99:0b:1f:dc:4d:56:06:72:b4:ab:07:42:fe:8e:e2: c4:4a:3b:e1:85:b9:eb:9f:e6:85:b3:55:d8:91:16:a9:44:56: f7:d6:fa:6d:c5:de:62:cd:52:a2:95:8a:a9:26:a6:01:4d:ac: 34:3c:2a:a6:c4:d5:c4:da:4d:a0:07:eb:77:cd:9a:30:ac:22: c1:60:57:e5:17:ae:27:29:96:a5:eb:c4:60:6d:dc:07:a7:df: b3:9f:ad:28:65:ac:a9:a6:c7:65:b8:40:00:d2:fa:13:7e:49: b6:0e:cc:08:7d:5d:cd:65:49:58:88:6f:be:88:f2:43:5c:20: 81:54:23:d8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUISgqnjrwMFx83+pQ4jf7RdskHbAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJFOTI5REZCMDVGODFCOTE4ODBCQzgwODE1NDM2NUFF Q0FDMjdEMjAeFw0yNTA3MDYxNTU1NDNaFw0yNjA3MDUxNjAwNDNaMDMxMTAvBgNV BAMTKDg2MDAxRjZDNUZBOUQzRTlFOEU3MDcyMzMyQzdBOTBENTAzRjIzMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2fIgubX0hF7whjePJM2/KD9bO db1s4BfBL+qAz/TfaPB+HniK4jx/7F/M3K/SThR3gE1pkqyzMilcxl3vNhGHL8wK GR1P60a4rLjPr+Ns3JJc6MNIy6xQCudXZ+qgljF9MfTES5QEzTiT3Uy90MeDvDum OlM1LIbvp03EteIxUFPxzNLt/ymJq/adUNtKfUjBeFvm+ZayRfzRn3iJGMb9TMlG lvuYmV7iQ9tr0062sEPbCK9VdRrukT2IZanxLXZG0H758eGdeLyHN9Uhi4qi3gaM ShrstBC942VgOXeVNOBvKqy6KAB8CwWhSuEX+2/uuj9I+tTcgeDjhGGBGrvtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhgAfbF+p0+no5wcjMsepDVA/IwAwHwYDVR0j BBgwFoAUwukp37BfgbkYgLyAgVQ2WuysJ9IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDZmZmFkMi0yMGJjLTQyNDYtODI5My00NDY2NmNlMWNmZTAvMC9DMkU5MjlERkIw NUY4MUI5MTg4MEJDODA4MTU0MzY1QUVDQUMyN0QyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzJFOTI5REZCMDVGODFCOTE4ODBCQzgwODE1NDM2NUFFQ0FD MjdEMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNmZmYWQyLTIwYmMtNDI0Ni04 MjkzLTQ0NjY2Y2UxY2ZlMC8wLzMyMzAzMjJlMzQzNzJlMzEzODM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyi+6MA0GCSqG SIb3DQEBCwUAA4IBAQApHRlSsJgCgcuXjB6JbVXLQBzZgOkH/20L1Ts7hVRwWI0M 55TRMjL2ZkE4nt3W0FB2/em0xgFfrQulSrwye2Ig5fKF67bSz1LnU/8frJXq2jqB RZPioEviRLFv7cddhj524B/qf6PjP6j6719Px0z1XQHFwTZZetppJWFaqBvO/LSZ Cx/cTVYGcrSrB0L+juLESjvhhbnrn+aFs1XYkRapRFb31vptxd5izVKilYqpJqYB Taw0PCqmxNXE2k2gB+t3zZowrCLBYFflF64nKZal68RgbdwHp9+zn60oZayppsdl uEAA0voTfkm2DswIfV3NZUlYiG++iPJDXCCBVCPY -----END CERTIFICATE-----Generated at Fri Aug 8 00:34:11 2025 by rpki-client