$ rpki-client -vvf repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/3230322e3137332e31362e302f32312d3234203d3e203234323130.roa File: 3230322e3137332e31362e302f32312d3234203d3e203234323130.roa (raw, json) Hash identifier: 8ngGpaw5U41sV4BmmrJGa5VA7KiMpIyW6XxofkOK1bo= Subject key identifier: 44:25:BE:2B:E9:EC:77:4B:67:6D:05:A2:44:E2:49:56:A9:0D:4D:FF Certificate issuer: /CN=63003FFDD063104898793061BDB2DB8D0788745D Certificate serial: 75722F9935E5F61B538AECF03E1E24223EA163A4 Authority key identifier: 63:00:3F:FD:D0:63:10:48:98:79:30:61:BD:B2:DB:8D:07:88:74:5D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63003FFDD063104898793061BDB2DB8D0788745D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/3230322e3137332e31362e302f32312d3234203d3e203234323130.roa Signing time: Sat 12 Jul 2025 07:02:24 +0000 ROA not before: Sat 12 Jul 2025 06:57:24 +0000 ROA not after: Sat 11 Jul 2026 07:02:24 +0000 asID: 24210 IP address blocks: 202.173.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/63003FFDD063104898793061BDB2DB8D0788745D.crl rsync://repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/63003FFDD063104898793061BDB2DB8D0788745D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63003FFDD063104898793061BDB2DB8D0788745D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 16:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:72:2f:99:35:e5:f6:1b:53:8a:ec:f0:3e:1e:24:22:3e:a1:63:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63003FFDD063104898793061BDB2DB8D0788745D Validity Not Before: Jul 12 06:57:24 2025 GMT Not After : Jul 11 07:02:24 2026 GMT Subject: CN=4425BE2BE9EC774B676D05A244E24956A90D4DFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:18:30:e9:25:7e:d3:a1:7a:ce:2c:3c:5a:12: f1:54:ce:ac:b1:ff:45:28:f5:d3:bf:c1:63:ab:d4: 37:fd:b2:40:dd:bb:7e:75:a3:e9:23:fa:98:ea:ec: e1:7f:a2:55:20:e8:48:eb:2a:25:46:20:27:ac:ef: f9:73:73:d2:e4:45:0b:04:5a:7c:47:13:c0:48:60: aa:5c:bc:4d:53:bc:86:fd:09:53:72:db:6e:74:25: 03:4a:ac:3d:16:cd:52:f9:9d:d2:58:81:e7:ff:ba: a0:da:4c:60:d5:32:a4:c1:19:91:f8:2f:41:c1:4e: bb:78:ac:74:d6:a2:87:18:66:a4:08:1e:37:5d:59: 68:55:41:99:8f:9d:32:ff:49:08:a8:56:75:8a:ed: a6:3c:f4:fe:c6:63:6d:11:6d:b7:d2:f1:02:4b:6b: c4:c1:79:e2:85:bc:f8:8e:b3:89:12:c8:23:f0:10: 33:2e:33:ae:ed:51:a1:9c:ed:40:0c:d7:ed:58:03: 7f:c8:61:ca:69:17:42:4f:f3:cb:9a:f3:a0:6a:0c: ed:71:0e:85:b5:ea:b4:48:6a:35:93:39:b1:22:7a: dd:7f:eb:fd:5e:03:cf:76:63:07:71:5f:9b:1d:a4: 25:da:8a:ea:8b:35:65:51:9e:dc:8a:06:d6:2c:b8: 94:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:25:BE:2B:E9:EC:77:4B:67:6D:05:A2:44:E2:49:56:A9:0D:4D:FF X509v3 Authority Key Identifier: keyid:63:00:3F:FD:D0:63:10:48:98:79:30:61:BD:B2:DB:8D:07:88:74:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/63003FFDD063104898793061BDB2DB8D0788745D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63003FFDD063104898793061BDB2DB8D0788745D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/3230322e3137332e31362e302f32312d3234203d3e203234323130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.16.0/21 Signature Algorithm: sha256WithRSAEncryption a7:61:1f:b5:79:84:cb:40:b3:64:ef:22:14:9c:7b:b6:a2:d7: b0:e2:19:6f:91:79:0b:71:44:69:44:11:52:18:27:66:18:a1: f8:fb:09:9e:d0:2a:a3:c6:8a:d1:bf:7e:0a:2f:9e:44:7f:ed: a5:b7:22:d6:ad:76:85:f2:ff:05:99:0a:04:f7:e3:70:be:36: 2e:55:a9:0d:f5:c4:67:d3:b1:1d:e2:9f:5c:15:0b:ef:02:64: 1e:cc:a5:f3:ea:03:1d:c3:e5:10:e9:07:b7:4c:2a:6f:cd:d2: a0:95:84:3a:39:7f:d6:ea:3c:3e:67:1b:f2:b8:b1:67:a5:32: 94:d3:6a:99:a6:66:a4:1c:63:e1:d4:f5:0f:26:cb:73:a4:b5: 4b:b3:32:7b:e3:99:7c:04:1f:84:1a:5c:3f:b3:11:c4:d3:82: 84:d4:5b:e4:84:6f:7c:1a:00:59:58:eb:8e:5c:92:8a:72:0e: be:0e:a4:68:ad:86:8d:34:2c:37:d9:55:5f:06:67:aa:ea:8d: 93:5e:83:fa:53:9d:25:cb:83:de:39:59:a4:c7:f1:f4:22:70: d9:be:88:b9:d3:bc:d8:05:1c:06:c4:cf:d7:c3:cd:2b:8d:e3: 81:f3:77:9c:12:b0:1f:7d:cc:4b:fd:61:d9:7c:af:43:9e:e1: 91:51:b2:70 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdXIvmTXl9htTiuzwPh4kIj6hY6QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjMwMDNGRkREMDYzMTA0ODk4NzkzMDYxQkRCMkRCOEQw Nzg4NzQ1RDAeFw0yNTA3MTIwNjU3MjRaFw0yNjA3MTEwNzAyMjRaMDMxMTAvBgNV BAMTKDQ0MjVCRTJCRTlFQzc3NEI2NzZEMDVBMjQ0RTI0OTU2QTkwRDRERkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUGDDpJX7ToXrOLDxaEvFUzqyx /0Uo9dO/wWOr1Df9skDdu351o+kj+pjq7OF/olUg6EjrKiVGICes7/lzc9LkRQsE WnxHE8BIYKpcvE1TvIb9CVNy2250JQNKrD0WzVL5ndJYgef/uqDaTGDVMqTBGZH4 L0HBTrt4rHTWoocYZqQIHjddWWhVQZmPnTL/SQioVnWK7aY89P7GY20RbbfS8QJL a8TBeeKFvPiOs4kSyCPwEDMuM67tUaGc7UAM1+1YA3/IYcppF0JP88ua86BqDO1x DoW16rRIajWTObEiet1/6/1eA892YwdxX5sdpCXaiuqLNWVRntyKBtYsuJRzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURCW+K+nsd0tnbQWiROJJVqkNTf8wHwYDVR0j BBgwFoAUYwA//dBjEEiYeTBhvbLbjQeIdF0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDE3YjgyOC0xN2ZhLTQ4YTItYTExMy0xNDlmOTQ2N2EzMjgvMC82MzAwM0ZGREQw NjMxMDQ4OTg3OTMwNjFCREIyREI4RDA3ODg3NDVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjMwMDNGRkREMDYzMTA0ODk4NzkzMDYxQkRCMkRCOEQwNzg4 NzQ1RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwMTdiODI4LTE3ZmEtNDhhMi1h MTEzLTE0OWY5NDY3YTMyOC8wLzMyMzAzMjJlMzEzNzMzMmUzMTM2MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzNDMyMzEzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8qtEDANBgkqhkiG 9w0BAQsFAAOCAQEAp2EftXmEy0CzZO8iFJx7tqLXsOIZb5F5C3FEaUQRUhgnZhih +PsJntAqo8aK0b9+Ci+eRH/tpbci1q12hfL/BZkKBPfjcL42LlWpDfXEZ9OxHeKf XBUL7wJkHsyl8+oDHcPlEOkHt0wqb83SoJWEOjl/1uo8Pmcb8rixZ6UylNNqmaZm pBxj4dT1DybLc6S1S7Mye+OZfAQfhBpcP7MRxNOChNRb5IRvfBoAWVjrjlySinIO vg6kaK2GjTQsN9lVXwZnquqNk16D+lOdJcuD3jlZpMfx9CJw2b6IudO82AUcBsTP 18PNK43jgfN3nBKwH33MS/1h2XyvQ57hkVGycA== -----END CERTIFICATE-----Generated at Thu Aug 7 23:56:59 2025 by rpki-client