$ rpki-client -vvf repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3230322e36322e31322e302f32322d3234203d3e203234353233.roa File: 3230322e36322e31322e302f32322d3234203d3e203234353233.roa (raw, json) Hash identifier: rkvfltc1XeXNlZR/3yH5i2rDhAOYYmSdXeT/IyFdjyk= Subject key identifier: 5D:62:E0:4D:9A:EB:64:F4:05:A8:4C:2D:BB:4B:AF:DF:92:BF:34:C9 Certificate issuer: /CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38 Certificate serial: 2A6673C7F5571CDE326906F6D4207EBEA0DAEA2E Authority key identifier: 11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3230322e36322e31322e302f32322d3234203d3e203234353233.roa Signing time: Wed 23 Jul 2025 10:00:01 +0000 ROA not before: Wed 23 Jul 2025 09:55:01 +0000 ROA not after: Wed 22 Jul 2026 10:00:01 +0000 asID: 24523 IP address blocks: 202.62.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 15 Aug 2025 12:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:66:73:c7:f5:57:1c:de:32:69:06:f6:d4:20:7e:be:a0:da:ea:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38 Validity Not Before: Jul 23 09:55:01 2025 GMT Not After : Jul 22 10:00:01 2026 GMT Subject: CN=5D62E04D9AEB64F405A84C2DBB4BAFDF92BF34C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b3:ae:c6:1b:69:38:2b:1e:20:db:63:c8:e4: c2:91:b2:9f:8b:29:b7:f2:36:cc:03:8e:c1:d0:3d: 51:a7:eb:8f:a2:aa:65:18:6b:c2:d0:24:2f:b4:b7: d5:b2:07:3b:25:47:af:85:49:81:3b:9d:de:bf:54: 37:96:57:ad:71:77:7d:71:58:3f:67:64:11:ab:3b: 0c:c5:96:4b:b3:03:a0:17:48:65:82:2b:c9:83:df: d8:bb:3d:3e:ec:3f:e0:d9:77:7d:be:33:b6:fc:f4: af:e7:3e:6d:1f:40:c2:9d:be:b2:68:cb:b4:48:e4: 9f:21:e3:9c:f4:77:3c:75:47:b9:64:c5:85:97:2b: c5:f8:6a:af:99:94:50:e0:2d:26:db:28:aa:19:37: d7:8b:e8:e3:6b:64:56:fc:e8:06:e8:6c:a5:d7:ea: 95:a8:a7:aa:92:dd:28:87:71:c9:f9:a7:f6:ae:bd: ae:fc:ba:43:d3:6b:cb:ad:11:8b:51:e3:b2:3f:48: 07:7a:54:36:e5:d9:d2:7e:90:54:1e:0a:98:cf:5c: af:e0:ff:3b:ec:f6:3b:69:78:be:be:23:57:af:cf: 11:36:7b:e9:73:ad:cc:6d:f2:c3:e8:1b:3c:ca:cf: b6:22:bd:b1:b3:7a:2e:30:32:11:0b:45:45:ba:55: d8:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:62:E0:4D:9A:EB:64:F4:05:A8:4C:2D:BB:4B:AF:DF:92:BF:34:C9 X509v3 Authority Key Identifier: keyid:11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3230322e36322e31322e302f32322d3234203d3e203234353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.62.12.0/22 Signature Algorithm: sha256WithRSAEncryption 01:a4:a9:8f:1d:26:7c:d9:d5:a4:0f:69:e6:7c:b0:cf:82:d7: 81:c7:2c:b1:58:68:57:09:bd:c7:36:6c:df:97:cf:e1:16:25: 34:51:3f:1f:bf:5e:c5:04:2e:12:cb:ca:d8:3e:1b:47:31:fe: d2:1b:55:b8:02:3a:f7:53:c3:82:58:df:61:b6:d1:8b:6e:10: 59:09:0f:6d:3e:80:24:3a:d0:46:6a:eb:5b:ed:59:fc:2a:af: 34:ca:05:4b:ad:3c:df:53:1d:e0:0c:58:8a:8d:6f:ca:0a:b4: 7d:45:84:ea:64:8c:a6:ee:9c:38:f6:ec:20:0b:8a:ff:38:e7: c6:5c:2f:67:5c:2a:28:04:26:ce:03:f1:a0:88:61:d3:74:cd: fb:9c:89:23:3e:3a:42:21:6c:9b:2f:b3:42:50:6c:3e:fc:fe: 17:07:a4:e7:06:09:89:5e:83:59:40:ba:18:56:6d:71:8e:c0: 4a:f5:a9:32:2e:90:04:46:1c:24:57:9b:5f:11:00:e6:21:a5: 55:2b:cb:96:2d:6d:f7:15:f8:79:95:8f:f0:4e:ee:44:e7:b6: 10:84:b5:56:68:26:4f:d7:24:92:b1:a2:83:be:0f:53:bc:ef: d7:f6:73:47:92:ae:25:f8:0b:91:aa:3c:8b:b9:ae:c1:54:b3: 33:ca:69:4b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKmZzx/VXHN4yaQb21CB+vqDa6i4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFC MjUwM0EzODAeFw0yNTA3MjMwOTU1MDFaFw0yNjA3MjIxMDAwMDFaMDMxMTAvBgNV BAMTKDVENjJFMDREOUFFQjY0RjQwNUE4NEMyREJCNEJBRkRGOTJCRjM0QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCds67GG2k4Kx4g22PI5MKRsp+L KbfyNswDjsHQPVGn64+iqmUYa8LQJC+0t9WyBzslR6+FSYE7nd6/VDeWV61xd31x WD9nZBGrOwzFlkuzA6AXSGWCK8mD39i7PT7sP+DZd32+M7b89K/nPm0fQMKdvrJo y7RI5J8h45z0dzx1R7lkxYWXK8X4aq+ZlFDgLSbbKKoZN9eL6ONrZFb86AbobKXX 6pWop6qS3SiHccn5p/auva78ukPTa8utEYtR47I/SAd6VDbl2dJ+kFQeCpjPXK/g /zvs9jtpeL6+I1evzxE2e+lzrcxt8sPoGzzKz7YivbGzei4wMhELRUW6Vdh/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUXWLgTZrrZPQFqEwtu0uv35K/NMkwHwYDVR0j BBgwFoAUEWsbSTEU5vhyRNpUyrjY6rJQOjgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YzY2Nzc2OS04MGRjLTQwOTMtYjVmNy1kZmU3YzU3MjA0ODYvMC8xMTZCMUI0OTMx MTRFNkY4NzI0NERBNTRDQUI4RDhFQUIyNTAzQTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFCMjUw M0EzOC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNjY3NzY5LTgwZGMtNDA5My1i NWY3LWRmZTdjNTcyMDQ4Ni8wLzMyMzAzMjJlMzYzMjJlMzEzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKPgwwDQYJKoZIhvcN AQELBQADggEBAAGkqY8dJnzZ1aQPaeZ8sM+C14HHLLFYaFcJvcc2bN+Xz+EWJTRR Px+/XsUELhLLytg+G0cx/tIbVbgCOvdTw4JY32G20YtuEFkJD20+gCQ60EZq61vt WfwqrzTKBUutPN9THeAMWIqNb8oKtH1FhOpkjKbunDj27CALiv8458ZcL2dcKigE Js4D8aCIYdN0zfuciSM+OkIhbJsvs0JQbD78/hcHpOcGCYleg1lAuhhWbXGOwEr1 qTIukARGHCRXm18RAOYhpVUry5YtbfcV+HmVj/BO7kTnthCEtVZoJk/XJJKxooO+ D1O879f2c0eSriX4C5GqPIu5rsFUszPKaUs= -----END CERTIFICATE-----Generated at Wed Aug 13 08:46:20 2025 by rpki-client