$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38392e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e38392e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: MoFSi1IdrKnDxvbOT8+bwDmrwlZs7D30PErF64rXmY4= Subject key identifier: 2D:3A:3E:19:0C:79:39:1F:05:33:AD:D9:09:AF:F6:F6:39:23:CB:2A Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 37D9C98BEBC1A97DAC0732B1DF22CFEB3295D787 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38392e302f32342d3234203d3e203233363935.roa Signing time: Tue 12 Aug 2025 04:02:26 +0000 ROA not before: Tue 12 Aug 2025 03:57:26 +0000 ROA not after: Tue 11 Aug 2026 04:02:26 +0000 asID: 23695 IP address blocks: 202.173.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 07:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:d9:c9:8b:eb:c1:a9:7d:ac:07:32:b1:df:22:cf:eb:32:95:d7:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Aug 12 03:57:26 2025 GMT Not After : Aug 11 04:02:26 2026 GMT Subject: CN=2D3A3E190C79391F0533ADD909AFF6F63923CB2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:bf:22:9e:6e:e2:0e:70:ba:0c:bc:85:de:0b: f4:d1:95:2b:4e:fa:45:e0:5e:d8:24:46:4c:ea:37: d0:ab:62:57:e5:06:46:9e:ff:02:ff:d5:9b:77:85: da:8a:51:30:58:4f:a5:88:89:e7:d3:a4:fa:5a:62: 82:75:96:3b:e8:85:ad:11:5b:f4:c8:da:25:02:ce: 90:97:56:cd:de:7a:d4:1b:60:dc:9d:5a:f6:25:f2: df:eb:75:cf:44:64:65:ec:8a:29:6f:b6:5c:22:a0: 5f:44:7e:e4:8b:57:3c:d2:72:79:40:df:39:46:ac: a9:1a:56:16:03:c9:68:3d:4e:c9:59:73:51:94:a4: 6b:0d:f4:f6:ca:43:e2:74:74:9d:9c:0d:e7:d8:72: 88:e6:9f:a9:e0:db:f3:d8:0f:50:86:bb:ef:42:89: 05:f2:15:c5:c0:39:3c:af:1b:2e:2a:63:6f:96:5e: d8:8e:f0:27:fb:34:f6:fc:28:a6:9b:ee:ac:d5:33: 4b:ff:b2:90:c6:1f:e3:35:b0:ca:11:cf:5b:25:a8: 7f:25:6a:53:8b:30:9c:8e:20:af:f3:d4:58:e7:ae: 64:20:da:e7:79:6f:df:98:de:2a:31:02:55:b1:63: 86:bb:a2:e4:0e:49:e7:23:00:e6:76:2a:f1:81:78: a2:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:3A:3E:19:0C:79:39:1F:05:33:AD:D9:09:AF:F6:F6:39:23:CB:2A X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38392e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.89.0/24 Signature Algorithm: sha256WithRSAEncryption 06:4e:10:94:56:47:91:a6:3b:7f:19:63:24:6b:1b:b9:bb:62: 82:cb:62:0b:e3:f4:0f:95:c6:42:40:4c:b1:36:1d:71:02:cd: 57:ad:fb:82:98:27:1f:69:f0:64:c8:09:e9:05:b2:5b:73:80: bc:7c:0a:0c:90:cb:c5:ee:16:e0:69:9d:b2:79:8c:99:62:ca: 7f:0b:33:39:e9:43:68:a4:d9:f2:2c:ca:e7:cb:79:27:76:cd: 69:49:b1:69:35:cd:0b:5c:7e:26:bf:c8:94:18:7f:57:06:58: df:f8:09:1e:e8:9c:28:5e:32:2c:5d:07:8f:53:bb:95:1c:47: de:f7:82:07:10:9b:99:a4:ff:e8:ba:e7:03:33:79:56:b5:17: 2c:05:f6:d3:82:16:7a:95:09:d4:56:db:e1:c7:85:e1:57:e0: a1:07:5e:05:f6:7e:27:a7:e5:1f:df:f5:08:88:fe:b9:40:ed: 2e:ee:ad:36:9e:78:9d:07:fd:ce:9a:57:79:17:45:0f:15:e3: fa:24:6e:87:26:f7:e9:3f:8e:0e:cf:c4:a8:34:5e:40:4d:05: 6f:fa:11:54:dd:bf:8f:62:1f:9a:8c:8b:7d:16:66:9e:bb:00: bd:6b:08:03:bb:b4:7c:1a:1b:d8:34:8e:5d:ae:c6:0d:4a:5c: eb:ba:c2:2b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUN9nJi+vBqX2sBzKx3yLP6zKV14cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNTA4MTIwMzU3MjZaFw0yNjA4MTEwNDAyMjZaMDMxMTAvBgNV BAMTKDJEM0EzRTE5MEM3OTM5MUYwNTMzQUREOTA5QUZGNkY2MzkyM0NCMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrvyKebuIOcLoMvIXeC/TRlStO +kXgXtgkRkzqN9CrYlflBkae/wL/1Zt3hdqKUTBYT6WIiefTpPpaYoJ1ljvoha0R W/TI2iUCzpCXVs3eetQbYNydWvYl8t/rdc9EZGXsiilvtlwioF9EfuSLVzzScnlA 3zlGrKkaVhYDyWg9TslZc1GUpGsN9PbKQ+J0dJ2cDefYcojmn6ng2/PYD1CGu+9C iQXyFcXAOTyvGy4qY2+WXtiO8Cf7NPb8KKab7qzVM0v/spDGH+M1sMoRz1slqH8l alOLMJyOIK/z1FjnrmQg2ud5b9+Y3ioxAlWxY4a7ouQOSecjAOZ2KvGBeKJXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULTo+GQx5OR8FM63ZCa/29jkjyyowHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtWTANBgkqhkiG 9w0BAQsFAAOCAQEABk4QlFZHkaY7fxljJGsbubtigstiC+P0D5XGQkBMsTYdcQLN V637gpgnH2nwZMgJ6QWyW3OAvHwKDJDLxe4W4GmdsnmMmWLKfwszOelDaKTZ8izK 58t5J3bNaUmxaTXNC1x+Jr/IlBh/VwZY3/gJHuicKF4yLF0Hj1O7lRxH3veCBxCb maT/6LrnAzN5VrUXLAX204IWepUJ1Fbb4ceF4VfgoQdeBfZ+J6flH9/1CIj+uUDt Lu6tNp54nQf9zppXeRdFDxXj+iRuhyb36T+ODs/EqDReQE0Fb/oRVN2/j2IfmoyL fRZmnrsAvWsIA7u0fBob2DSOXa7GDUpc67rCKw== -----END CERTIFICATE-----Generated at Tue Nov 4 18:59:20 2025 by rpki-client