$ rpki-client -vvf repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/3230322e37352e31362e302f32302d3234203d3e203233393438.roa File: 3230322e37352e31362e302f32302d3234203d3e203233393438.roa (raw, json) Hash identifier: 9Zia9o6pZwHOK52NvyDCb/uiHgQl9tsHUexz827si5o= Subject key identifier: 40:2E:55:CF:25:B7:D6:D3:26:6A:F0:82:28:FC:45:8E:9E:34:FF:DF Certificate issuer: /CN=20B00D67B048DAE581FE60A498995A27878149A7 Certificate serial: 1DAA3635302409AC67C3480D71F1240DFE7C48E9 Authority key identifier: 20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/3230322e37352e31362e302f32302d3234203d3e203233393438.roa Signing time: Wed 29 Oct 2025 10:00:34 +0000 ROA not before: Wed 29 Oct 2025 09:55:34 +0000 ROA not after: Wed 28 Oct 2026 10:00:34 +0000 asID: 23948 IP address blocks: 202.75.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 17:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:aa:36:35:30:24:09:ac:67:c3:48:0d:71:f1:24:0d:fe:7c:48:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B00D67B048DAE581FE60A498995A27878149A7 Validity Not Before: Oct 29 09:55:34 2025 GMT Not After : Oct 28 10:00:34 2026 GMT Subject: CN=402E55CF25B7D6D3266AF08228FC458E9E34FFDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cd:95:9d:9b:6d:6b:3f:b1:e7:95:ff:93:d8: 50:3d:75:d5:c7:f9:8e:84:86:2f:cc:37:d6:9c:4a: 5b:44:f2:15:75:b2:9f:f7:b0:e8:87:45:bc:3b:39: e7:cb:b3:22:1e:14:d9:bd:83:66:74:ad:1c:54:ff: 99:c7:05:2e:fe:ed:12:2b:4e:81:70:0c:c2:31:cb: 22:ac:65:00:ff:8e:d1:bd:1a:02:b8:87:89:69:60: 07:b3:78:fb:c4:46:9c:8f:7e:7c:67:d3:26:11:cf: d3:36:5b:3f:ed:8a:01:65:15:e3:f7:7b:29:cd:d3: 32:47:f2:aa:a8:55:7d:cb:39:e3:a3:46:80:1c:0f: 2e:6a:97:9f:eb:36:25:e1:e3:19:5e:a4:d4:c2:dd: 60:05:9f:bb:7e:8b:6e:2e:32:69:6c:1c:e2:c7:59: 13:b6:d0:96:6e:4c:ec:d8:bd:ba:93:57:2b:f9:0f: 82:98:99:56:2a:b3:e4:9c:26:1d:b9:e3:e4:dd:d8: 32:88:de:d6:67:84:da:17:a4:3a:b6:31:61:d1:3c: 3d:5e:1b:04:67:2c:5d:59:b9:76:26:85:b8:9d:e0: 49:22:25:40:26:1f:14:8b:2d:3a:da:95:67:13:e5: b7:b6:fe:40:20:13:a2:03:1d:f0:98:8f:c9:55:4e: 40:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:2E:55:CF:25:B7:D6:D3:26:6A:F0:82:28:FC:45:8E:9E:34:FF:DF X509v3 Authority Key Identifier: keyid:20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/3230322e37352e31362e302f32302d3234203d3e203233393438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.75.16.0/20 Signature Algorithm: sha256WithRSAEncryption c4:39:72:de:8f:85:02:c5:c5:d5:aa:b8:f8:3d:80:8a:34:0d: 13:ae:c9:08:e5:63:9c:35:7a:af:22:46:55:d1:5d:f9:c9:65: 94:ee:b4:a8:0a:b9:43:9a:8f:22:ad:fe:25:37:78:f8:b4:b0: fb:f1:78:63:47:dd:ce:eb:17:78:26:ed:71:01:e7:d8:52:33: 41:58:d4:7e:45:9f:da:d5:ad:e6:a2:99:60:95:26:ab:3e:de: 38:b4:1d:fa:8f:d3:9b:17:5b:c6:1d:71:2c:4a:8e:96:f1:74: 17:2b:7a:a1:b0:e2:8f:21:11:d9:df:b0:dd:e1:45:6f:a7:1e: f0:bf:86:56:d9:27:6a:a7:72:0c:10:50:14:14:6a:90:d8:1d: 72:7c:d9:af:6e:92:c0:b1:62:40:d8:cf:41:b6:79:ef:4c:65: 40:74:e8:2b:f2:18:7b:d3:ee:86:78:6b:9a:da:71:c0:a7:be: 79:c8:e7:37:46:e8:9f:b9:62:40:39:61:4c:25:93:9b:68:68: 87:d4:c0:e2:1c:15:06:78:1e:19:ca:21:a1:98:6d:25:06:28: bf:2d:0a:7a:ff:44:4e:cc:cb:f9:02:89:0f:35:76:c0:0a:93: 47:33:b5:55:4c:f5:44:f0:4b:1d:2f:e3:03:03:c9:d1:bc:fe: ce:a6:6a:2b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUHao2NTAkCaxnw0gNcfEkDf58SOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4 NzgxNDlBNzAeFw0yNTEwMjkwOTU1MzRaFw0yNjEwMjgxMDAwMzRaMDMxMTAvBgNV BAMTKDQwMkU1NUNGMjVCN0Q2RDMyNjZBRjA4MjI4RkM0NThFOUUzNEZGREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGzZWdm21rP7Hnlf+T2FA9ddXH +Y6Ehi/MN9acSltE8hV1sp/3sOiHRbw7OefLsyIeFNm9g2Z0rRxU/5nHBS7+7RIr ToFwDMIxyyKsZQD/jtG9GgK4h4lpYAezePvERpyPfnxn0yYRz9M2Wz/tigFlFeP3 eynN0zJH8qqoVX3LOeOjRoAcDy5ql5/rNiXh4xlepNTC3WAFn7t+i24uMmlsHOLH WRO20JZuTOzYvbqTVyv5D4KYmVYqs+ScJh254+Td2DKI3tZnhNoXpDq2MWHRPD1e GwRnLF1ZuXYmhbid4EkiJUAmHxSLLTralWcT5be2/kAgE6IDHfCYj8lVTkCrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUQC5VzyW31tMmavCCKPxFjp40/98wHwYDVR0j BBgwFoAUILANZ7BI2uWB/mCkmJlaJ4eBSacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NDU0NzEwNC05MzllLTQwZTMtOGZjOC00MjUyMjY0MjA0NGIvMC8yMEIwMEQ2N0Iw NDhEQUU1ODFGRTYwQTQ5ODk5NUEyNzg3ODE0OUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4Nzgx NDlBNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M0NTQ3MTA0LTkzOWUtNDBlMy04 ZmM4LTQyNTIyNjQyMDQ0Yi8wLzMyMzAzMjJlMzczNTJlMzEzNjJlMzAyZjMyMzAy ZDMyMzQyMDNkM2UyMDMyMzMzOTM0Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKSxAwDQYJKoZIhvcN AQELBQADggEBAMQ5ct6PhQLFxdWquPg9gIo0DROuyQjlY5w1eq8iRlXRXfnJZZTu tKgKuUOajyKt/iU3ePi0sPvxeGNH3c7rF3gm7XEB59hSM0FY1H5Fn9rVreaimWCV Jqs+3ji0HfqP05sXW8YdcSxKjpbxdBcreqGw4o8hEdnfsN3hRW+nHvC/hlbZJ2qn cgwQUBQUapDYHXJ82a9uksCxYkDYz0G2ee9MZUB06CvyGHvT7oZ4a5raccCnvnnI 5zdG6J+5YkA5YUwlk5toaIfUwOIcFQZ4HhnKIaGYbSUGKL8tCnr/RE7My/kCiQ81 dsAKk0cztVVM9UTwSx0v4wMDydG8/s6mais= -----END CERTIFICATE-----Generated at Wed Nov 5 07:33:02 2025 by rpki-client