$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32342e302f32332d3233203d3e20313430343639.roa File: 3230322e35372e32342e302f32332d3233203d3e20313430343639.roa (raw, json) Hash identifier: 0bz9arJVEpW8niw69al2HqlLatQbtnCd6cPuE1FtiQQ= Subject key identifier: D1:1B:4A:50:53:D6:73:CE:BC:B4:78:B8:50:9E:77:08:84:4B:B2:CF Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Certificate serial: 74D7530E9147DD8DD3D76A9D52A76FD0AC186A0A Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32342e302f32332d3233203d3e20313430343639.roa Signing time: Mon 06 Oct 2025 15:00:01 +0000 ROA not before: Mon 06 Oct 2025 14:55:01 +0000 ROA not after: Mon 05 Oct 2026 15:00:01 +0000 asID: 140469 IP address blocks: 202.57.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 00:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:d7:53:0e:91:47:dd:8d:d3:d7:6a:9d:52:a7:6f:d0:ac:18:6a:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Validity Not Before: Oct 6 14:55:01 2025 GMT Not After : Oct 5 15:00:01 2026 GMT Subject: CN=D11B4A5053D673CEBCB478B8509E7708844BB2CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:a9:27:7d:e1:3b:5f:79:6f:a2:6f:e8:13:f2: 0e:4b:02:c0:ff:3e:cf:95:db:fc:aa:9f:ee:ce:9f: a1:4a:0c:2e:85:1f:fd:ca:b2:96:c2:11:27:a0:3c: 0a:87:1e:20:31:30:89:ba:42:e8:52:ee:c7:32:28: 4e:2e:e1:53:a9:fb:c4:70:4a:d4:6f:a7:30:1a:95: 10:1c:ef:91:df:1c:0b:f5:52:d4:31:88:a3:36:2f: 2e:68:df:16:5a:cc:6e:34:e3:71:7a:31:e1:b1:70: a0:cb:21:ea:72:b0:3f:b3:e9:59:f9:4b:ce:28:1a: 08:2a:40:19:27:79:1a:f2:e0:67:fa:52:72:87:00: 06:6b:ec:bf:3f:b9:72:54:1a:01:dc:f8:f7:0e:18: a0:1d:6c:de:f3:bb:43:57:58:3f:91:6f:42:cb:43: 97:9f:d3:56:66:a4:9b:7c:bd:c7:f9:e1:9d:18:58: a4:8f:08:86:1d:3f:5a:74:6e:bb:b6:5b:e2:a1:72: 64:45:34:33:e5:69:41:99:f9:75:da:68:2f:88:e4: 07:39:5b:b4:d4:69:f5:fa:7c:fe:af:d8:37:f0:d8: 87:41:60:0b:22:78:45:7e:91:f9:04:98:ca:b3:7f: a8:a8:4f:17:24:ed:0c:8d:d6:1d:12:f3:4f:a8:55: 7d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:1B:4A:50:53:D6:73:CE:BC:B4:78:B8:50:9E:77:08:84:4B:B2:CF X509v3 Authority Key Identifier: keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32342e302f32332d3233203d3e20313430343639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.24.0/23 Signature Algorithm: sha256WithRSAEncryption 48:8e:69:22:ae:81:37:5a:75:e5:b0:c9:36:4f:b8:8f:14:27: a4:a2:af:36:64:dc:d7:d1:10:83:d4:4d:af:06:a9:7c:c0:c1: 5a:3b:b7:46:8c:45:41:ac:bf:85:28:81:52:c0:0a:62:bb:dc: 7d:97:18:96:0c:e9:68:2f:f4:a2:ef:41:46:89:33:de:a9:56: 43:a8:93:04:fb:ca:28:3d:28:ac:68:cc:3f:f2:90:d7:22:ec: 8b:ec:e2:e8:b4:a4:d9:f7:d4:be:08:68:4b:ad:f0:2a:49:77: db:84:16:22:6c:a7:d0:2c:62:ad:62:50:fd:5f:f2:ef:c3:5c: 96:67:58:73:b1:3e:2f:60:84:c4:9a:08:ed:e7:fc:2a:01:0b: 0c:ee:95:e9:99:6e:fe:bf:f7:88:27:53:b5:6c:1d:1d:f3:74: 55:6c:0f:10:e5:f2:4d:a6:cb:b7:e8:e0:0b:a5:59:03:af:a6: 4b:b6:15:4a:6f:6b:1d:bc:40:0c:4c:58:65:d9:fe:63:3b:d5: 43:09:d5:d8:9a:bc:ea:4a:57:b6:91:be:89:02:e5:90:11:57: 75:9b:56:dd:9f:7a:1d:8e:f5:68:03:0a:85:57:d7:bd:52:70: 35:38:0b:0b:c5:b7:49:e1:ed:2b:9f:a5:e9:7a:11:40:83:1e: 37:f4:30:a2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdNdTDpFH3Y3T12qdUqdv0KwYagowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3 Qjg1OUJENTAeFw0yNTEwMDYxNDU1MDFaFw0yNjEwMDUxNTAwMDFaMDMxMTAvBgNV BAMTKEQxMUI0QTUwNTNENjczQ0VCQ0I0NzhCODUwOUU3NzA4ODQ0QkIyQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuqSd94TtfeW+ib+gT8g5LAsD/ Ps+V2/yqn+7On6FKDC6FH/3KspbCESegPAqHHiAxMIm6QuhS7scyKE4u4VOp+8Rw StRvpzAalRAc75HfHAv1UtQxiKM2Ly5o3xZazG4043F6MeGxcKDLIepysD+z6Vn5 S84oGggqQBkneRry4Gf6UnKHAAZr7L8/uXJUGgHc+PcOGKAdbN7zu0NXWD+Rb0LL Q5ef01ZmpJt8vcf54Z0YWKSPCIYdP1p0bru2W+KhcmRFNDPlaUGZ+XXaaC+I5Ac5 W7TUafX6fP6v2Dfw2IdBYAsieEV+kfkEmMqzf6ioTxck7QyN1h0S80+oVX2HAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0RtKUFPWc868tHi4UJ53CIRLss8wHwYDVR0j BBgwFoAUH5ae6bCDjSIVYRioiLgb8nuFm9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZDNmMDk1Yi03MTMwLTQxMjItYWYyNS03ZDJlN2ExMWIxYjEvMC8xRjk2OUVFOUIw ODM4RDIyMTU2MTE4QTg4OEI4MUJGMjdCODU5QkQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3Qjg1 OUJENS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkM2YwOTViLTcxMzAtNDEyMi1h ZjI1LTdkMmU3YTExYjFiMS8wLzMyMzAzMjJlMzUzNzJlMzIzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzQzMDM0MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAco5GDANBgkqhkiG 9w0BAQsFAAOCAQEASI5pIq6BN1p15bDJNk+4jxQnpKKvNmTc19EQg9RNrwapfMDB Wju3RoxFQay/hSiBUsAKYrvcfZcYlgzpaC/0ou9BRokz3qlWQ6iTBPvKKD0orGjM P/KQ1yLsi+zi6LSk2ffUvghoS63wKkl324QWImyn0CxirWJQ/V/y78NclmdYc7E+ L2CExJoI7ef8KgELDO6V6Zlu/r/3iCdTtWwdHfN0VWwPEOXyTabLt+jgC6VZA6+m S7YVSm9rHbxADExYZdn+YzvVQwnV2Jq86kpXtpG+iQLlkBFXdZtW3Z96HY71aAMK hVfXvVJwNTgLC8W3SeHtK5+l6XoRQIMeN/Qwog== -----END CERTIFICATE-----Generated at Mon Oct 20 22:22:07 2025 by rpki-client