$ rpki-client -vvf repo-rpki.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/3230332e3131312e3235342e302f32332d3234203d3e20313531393931.roa File: 3230332e3131312e3235342e302f32332d3234203d3e20313531393931.roa (raw, json) Hash identifier: MEhGPscx6amoC7Mn8dW/gvKnqLk8DzF4TrmhnXKZhHA= Subject key identifier: 2D:5A:59:8E:ED:76:02:3B:88:C8:DE:58:DF:D3:38:8C:87:79:66:A6 Certificate issuer: /CN=0F1BD9D55C812158AF58CE47053AC6A16F5716F5 Certificate serial: 24B7D31C3F71DA44E1555B9833AA009D2D580679 Authority key identifier: 0F:1B:D9:D5:5C:81:21:58:AF:58:CE:47:05:3A:C6:A1:6F:57:16:F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0F1BD9D55C812158AF58CE47053AC6A16F5716F5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/3230332e3131312e3235342e302f32332d3234203d3e20313531393931.roa Signing time: Mon 15 Sep 2025 02:01:13 +0000 ROA not before: Mon 15 Sep 2025 01:56:13 +0000 ROA not after: Mon 14 Sep 2026 02:01:13 +0000 asID: 151991 IP address blocks: 203.111.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/0F1BD9D55C812158AF58CE47053AC6A16F5716F5.crl rsync://repo-rpki.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/0F1BD9D55C812158AF58CE47053AC6A16F5716F5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0F1BD9D55C812158AF58CE47053AC6A16F5716F5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 15:43:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:b7:d3:1c:3f:71:da:44:e1:55:5b:98:33:aa:00:9d:2d:58:06:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F1BD9D55C812158AF58CE47053AC6A16F5716F5 Validity Not Before: Sep 15 01:56:13 2025 GMT Not After : Sep 14 02:01:13 2026 GMT Subject: CN=2D5A598EED76023B88C8DE58DFD3388C877966A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a7:71:51:85:63:02:28:27:5b:28:2d:12:91: 2b:1c:15:20:bd:fb:a0:33:72:2a:a3:01:ef:9e:5d: 08:98:21:e3:fb:a0:cd:44:1d:e7:eb:a4:6c:69:9a: a0:cc:3f:0c:8d:4e:59:4f:c9:4f:50:9f:dd:58:29: 93:35:93:2d:af:8f:1e:55:61:03:31:9f:99:7b:3e: 0f:67:bf:b1:ac:0b:5c:d3:5e:e5:0a:08:ba:3e:ca: 49:aa:a2:20:47:c8:3d:83:cd:98:d9:38:1b:1a:eb: 59:40:52:56:69:22:13:e1:2e:a0:69:b6:c4:62:ef: d3:7d:87:09:f5:75:67:a3:e1:8c:76:ed:62:c9:7b: 4b:92:20:46:fe:77:53:14:e9:45:e9:49:b7:f0:32: 4e:7e:b4:8a:55:00:f3:1a:19:e5:7d:eb:11:8a:48: 92:57:34:63:12:b5:40:c2:f4:82:39:3f:18:ee:f9: a3:cc:28:2b:ff:2c:d6:e8:db:6c:de:16:3f:53:ad: 86:a3:2e:73:15:03:02:ea:65:d5:db:e0:e9:84:5b: af:4a:39:1c:34:80:95:e8:22:88:f7:63:ad:65:34: de:b4:51:71:e6:c5:06:11:44:bf:01:24:94:03:de: ec:4b:0f:07:42:fe:ec:14:be:2e:4e:98:c9:e6:3b: 63:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:5A:59:8E:ED:76:02:3B:88:C8:DE:58:DF:D3:38:8C:87:79:66:A6 X509v3 Authority Key Identifier: keyid:0F:1B:D9:D5:5C:81:21:58:AF:58:CE:47:05:3A:C6:A1:6F:57:16:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/0F1BD9D55C812158AF58CE47053AC6A16F5716F5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0F1BD9D55C812158AF58CE47053AC6A16F5716F5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/3230332e3131312e3235342e302f32332d3234203d3e20313531393931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.111.254.0/23 Signature Algorithm: sha256WithRSAEncryption 10:25:cb:93:4e:f1:2b:9f:0a:e8:30:55:b5:11:92:41:67:14: 58:cc:6c:b6:9b:0e:ad:73:ad:86:6a:59:66:c3:8e:cd:a0:13: 68:c2:70:24:fd:e7:b0:a7:ae:5d:27:c3:7a:8a:a6:b3:e1:1c: 91:a2:1b:df:1c:b8:65:b5:78:bd:34:5e:77:dd:7a:47:db:44: 26:ff:00:b6:c7:6f:e3:8d:78:11:23:53:df:80:1f:19:a8:45: 95:e5:85:73:82:1e:08:4f:90:30:fe:8e:f6:4c:ff:d4:f7:47: 20:8b:21:d2:b4:e0:e6:44:7e:b8:d4:bf:b0:fc:41:cc:ba:e4: b2:1c:cf:37:3d:55:74:22:98:37:20:0e:b9:46:7d:e1:5a:e9: 9e:96:7a:d3:e7:4d:4a:d8:b2:da:a3:8e:17:cb:0d:d2:0a:b4: 69:7b:bb:45:b3:d6:0c:bb:6f:b4:ea:e0:e5:31:e6:d6:b9:45: fe:07:c4:b1:94:a3:6a:ff:4a:8e:b8:13:2b:fb:64:82:f6:77: 96:2c:8e:18:1b:ab:5b:50:8e:9c:74:0d:79:d3:08:74:6c:df: bf:f9:57:f0:f7:c5:34:cc:31:b8:86:6b:3f:30:0a:f6:4a:60: f7:13:f8:46:55:b6:61:7b:67:c7:fb:61:8b:f7:c6:7f:ba:95: c5:24:ca:f0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJLfTHD9x2kThVVuYM6oAnS1YBnkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEYxQkQ5RDU1QzgxMjE1OEFGNThDRTQ3MDUzQUM2QTE2 RjU3MTZGNTAeFw0yNTA5MTUwMTU2MTNaFw0yNjA5MTQwMjAxMTNaMDMxMTAvBgNV BAMTKDJENUE1OThFRUQ3NjAyM0I4OEM4REU1OERGRDMzODhDODc3OTY2QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCap3FRhWMCKCdbKC0SkSscFSC9 +6AzciqjAe+eXQiYIeP7oM1EHefrpGxpmqDMPwyNTllPyU9Qn91YKZM1ky2vjx5V YQMxn5l7Pg9nv7GsC1zTXuUKCLo+ykmqoiBHyD2DzZjZOBsa61lAUlZpIhPhLqBp tsRi79N9hwn1dWej4Yx27WLJe0uSIEb+d1MU6UXpSbfwMk5+tIpVAPMaGeV96xGK SJJXNGMStUDC9II5Pxju+aPMKCv/LNbo22zeFj9TrYajLnMVAwLqZdXb4OmEW69K ORw0gJXoIoj3Y61lNN60UXHmxQYRRL8BJJQD3uxLDwdC/uwUvi5OmMnmO2O9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULVpZju12AjuIyN5Y39M4jId5ZqYwHwYDVR0j BBgwFoAUDxvZ1VyBIVivWM5HBTrGoW9XFvUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NGUzNzdiOS01ODg5LTRjYjMtYTRjOS0wODcxMmI0ZjY2ZmMvMC8wRjFCRDlENTVD ODEyMTU4QUY1OENFNDcwNTNBQzZBMTZGNTcxNkY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEYxQkQ5RDU1QzgxMjE1OEFGNThDRTQ3MDUzQUM2QTE2RjU3 MTZGNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0ZTM3N2I5LTU4ODktNGNiMy1h NGM5LTA4NzEyYjRmNjZmYy8wLzMyMzAzMzJlMzEzMTMxMmUzMjM1MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzEzOTM5MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHLb/4wDQYJ KoZIhvcNAQELBQADggEBABAly5NO8SufCugwVbURkkFnFFjMbLabDq1zrYZqWWbD js2gE2jCcCT957Cnrl0nw3qKprPhHJGiG98cuGW1eL00XnfdekfbRCb/ALbHb+ON eBEjU9+AHxmoRZXlhXOCHghPkDD+jvZM/9T3RyCLIdK04OZEfrjUv7D8Qcy65LIc zzc9VXQimDcgDrlGfeFa6Z6WetPnTUrYstqjjhfLDdIKtGl7u0Wz1gy7b7Tq4OUx 5ta5Rf4HxLGUo2r/So64Eyv7ZIL2d5Ysjhgbq1tQjpx0DXnTCHRs37/5V/D3xTTM MbiGaz8wCvZKYPcT+EZVtmF7Z8f7YYv3xn+6lcUkyvA= -----END CERTIFICATE-----Generated at Tue Oct 21 09:56:22 2025 by rpki-client