$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32372e302f32342d3234203d3e20313430343639.roa File: 3230322e35372e32372e302f32342d3234203d3e20313430343639.roa (raw, json) Hash identifier: jfT+fFK9MuHkEFZ88hcVlJwwMYmz7o5P6pVJldda2zA= Subject key identifier: 48:F3:EC:5E:6C:1E:DF:20:C3:EA:73:6E:11:C3:AC:4E:D0:BC:96:6A Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Certificate serial: 6F0054DCD78A7E07D2900A6732F043B2E3AFBF3C Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32372e302f32342d3234203d3e20313430343639.roa Signing time: Thu 18 Sep 2025 11:00:01 +0000 ROA not before: Thu 18 Sep 2025 10:55:01 +0000 ROA not after: Thu 17 Sep 2026 11:00:01 +0000 asID: 140469 IP address blocks: 202.57.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 00:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:00:54:dc:d7:8a:7e:07:d2:90:0a:67:32:f0:43:b2:e3:af:bf:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Validity Not Before: Sep 18 10:55:01 2025 GMT Not After : Sep 17 11:00:01 2026 GMT Subject: CN=48F3EC5E6C1EDF20C3EA736E11C3AC4ED0BC966A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:70:ea:51:f3:37:03:9f:a5:6f:bf:04:8e:c1: 8f:13:4c:9a:ad:ba:3b:a7:05:26:8d:64:a2:78:05: 18:07:89:f7:9b:e8:e8:df:b1:d7:80:27:73:e6:6c: d9:05:08:11:a3:a2:c5:93:a4:d8:54:b7:42:8f:5d: 93:15:ea:82:08:ad:7b:ff:b4:f9:f5:b3:fe:33:25: b2:7e:7a:0e:41:19:e3:8c:e2:dc:68:c6:da:bb:26: e1:e2:dc:20:60:fb:3c:4e:0c:7f:5f:e3:cb:62:35: 6a:cc:2e:13:ef:92:de:03:3d:86:09:28:e1:fb:0c: 50:f2:ea:28:58:2f:1a:ec:13:1a:4d:89:d6:36:d1: a7:14:8f:8e:74:85:15:41:d9:6e:b9:a7:ab:c8:ec: e4:6e:a1:bb:e4:67:9d:15:a7:df:28:fc:ae:86:a3: 78:15:5d:f8:78:9a:4f:69:77:50:e6:81:99:37:fa: 60:b5:e7:30:5f:cc:6f:47:b9:0d:49:08:45:83:c1: 46:73:e1:16:0b:37:6f:95:01:45:63:6d:3b:00:38: f1:1a:36:6a:9e:fa:46:b0:75:e4:67:b3:e2:ea:ae: 92:01:e9:c9:6a:c2:ac:39:d9:01:82:c8:4a:6e:37: 89:32:d2:28:aa:71:f5:52:b1:ca:19:e8:44:68:61: 98:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:F3:EC:5E:6C:1E:DF:20:C3:EA:73:6E:11:C3:AC:4E:D0:BC:96:6A X509v3 Authority Key Identifier: keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32372e302f32342d3234203d3e20313430343639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.27.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:60:1a:db:f5:aa:b3:08:ef:12:c5:bc:40:83:a1:ac:17:3e: c1:e1:bb:a6:e7:32:6d:9c:dc:c1:31:80:3c:54:14:c0:51:ec: 52:81:1e:45:7b:a1:32:ec:f7:8f:c6:7f:f5:33:df:1b:c0:d1: eb:25:3b:11:42:d8:87:61:fd:0a:9d:3c:6d:04:1e:18:6a:6a: c5:b8:b3:62:c8:d1:6a:bd:4b:75:15:c8:bd:00:b1:c3:fd:2e: cf:61:3e:9f:ac:4c:e7:fe:1e:fe:dd:30:f8:9d:c5:97:87:21: 28:17:8a:f0:c9:d4:95:5b:f6:70:50:7b:a8:4c:31:fb:58:d0: 5d:9d:b0:ae:8d:b4:03:df:3b:a1:67:0b:17:60:00:1f:23:87: a3:d0:23:9e:d5:57:5f:58:a7:19:3c:75:b6:e0:78:62:b9:39: a1:44:d9:41:99:42:15:31:18:91:fd:32:f2:09:8a:03:49:20: 8f:2d:31:75:6e:18:cd:c2:1c:f3:6c:62:70:a5:91:9c:fd:5b: e0:c0:d6:bc:d6:e6:f6:20:42:ba:eb:ff:54:b3:ad:0f:40:93: 1b:34:de:99:44:62:0d:3b:11:cf:cc:ef:7f:f2:b4:70:04:df: 68:86:f8:a6:28:aa:6f:71:29:28:de:11:07:d9:8d:bc:cd:80: 29:70:20:a6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbwBU3NeKfgfSkApnMvBDsuOvvzwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3 Qjg1OUJENTAeFw0yNTA5MTgxMDU1MDFaFw0yNjA5MTcxMTAwMDFaMDMxMTAvBgNV BAMTKDQ4RjNFQzVFNkMxRURGMjBDM0VBNzM2RTExQzNBQzRFRDBCQzk2NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/cOpR8zcDn6VvvwSOwY8TTJqt ujunBSaNZKJ4BRgHifeb6OjfsdeAJ3PmbNkFCBGjosWTpNhUt0KPXZMV6oIIrXv/ tPn1s/4zJbJ+eg5BGeOM4txoxtq7JuHi3CBg+zxODH9f48tiNWrMLhPvkt4DPYYJ KOH7DFDy6ihYLxrsExpNidY20acUj450hRVB2W65p6vI7ORuobvkZ50Vp98o/K6G o3gVXfh4mk9pd1DmgZk3+mC15zBfzG9HuQ1JCEWDwUZz4RYLN2+VAUVjbTsAOPEa Nmqe+kawdeRns+LqrpIB6clqwqw52QGCyEpuN4ky0iiqcfVSscoZ6ERoYZhXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSPPsXmwe3yDD6nNuEcOsTtC8lmowHwYDVR0j BBgwFoAUH5ae6bCDjSIVYRioiLgb8nuFm9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZDNmMDk1Yi03MTMwLTQxMjItYWYyNS03ZDJlN2ExMWIxYjEvMC8xRjk2OUVFOUIw ODM4RDIyMTU2MTE4QTg4OEI4MUJGMjdCODU5QkQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3Qjg1 OUJENS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkM2YwOTViLTcxMzAtNDEyMi1h ZjI1LTdkMmU3YTExYjFiMS8wLzMyMzAzMjJlMzUzNzJlMzIzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo5GzANBgkqhkiG 9w0BAQsFAAOCAQEAD2Aa2/WqswjvEsW8QIOhrBc+weG7pucybZzcwTGAPFQUwFHs UoEeRXuhMuz3j8Z/9TPfG8DR6yU7EULYh2H9Cp08bQQeGGpqxbizYsjRar1LdRXI vQCxw/0uz2E+n6xM5/4e/t0w+J3Fl4chKBeK8MnUlVv2cFB7qEwx+1jQXZ2wro20 A987oWcLF2AAHyOHo9AjntVXX1inGTx1tuB4Yrk5oUTZQZlCFTEYkf0y8gmKA0kg jy0xdW4YzcIc82xicKWRnP1b4MDWvNbm9iBCuuv/VLOtD0CTGzTemURiDTsRz8zv f/K0cATfaIb4piiqb3EpKN4RB9mNvM2AKXAgpg== -----END CERTIFICATE-----Generated at Mon Oct 20 22:21:59 2025 by rpki-client