$ rpki-client -vvf repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/3230332e37372e3230382e302f32342d3234203d3e203138333933.roa File: 3230332e37372e3230382e302f32342d3234203d3e203138333933.roa (raw, json) Hash identifier: dxNySDas4tRRRPBFWfK7118vL0i6sIfqhHAi9ml0Gp0= Subject key identifier: 8D:FF:EA:08:D6:0B:14:55:A1:0E:89:7B:6C:EB:2E:E4:36:3A:C9:0A Certificate issuer: /CN=E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8 Certificate serial: 68958503E3498CA2CC964BFADE16399B0DB8C7BC Authority key identifier: E6:FE:A7:CE:7F:6F:A5:EA:E0:5E:BB:DF:D8:6F:D5:3E:84:FA:75:A8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/3230332e37372e3230382e302f32342d3234203d3e203138333933.roa Signing time: Wed 15 Oct 2025 12:11:20 +0000 ROA not before: Wed 15 Oct 2025 12:06:20 +0000 ROA not after: Wed 14 Oct 2026 12:11:20 +0000 asID: 18393 IP address blocks: 203.77.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.crl rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:95:85:03:e3:49:8c:a2:cc:96:4b:fa:de:16:39:9b:0d:b8:c7:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8 Validity Not Before: Oct 15 12:06:20 2025 GMT Not After : Oct 14 12:11:20 2026 GMT Subject: CN=8DFFEA08D60B1455A10E897B6CEB2EE4363AC90A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:27:e4:05:96:d6:d5:39:17:93:4f:a4:3b:d9: e1:6c:52:ec:dc:22:d6:e9:66:8a:2b:d2:e4:1b:a2: ad:07:8e:db:f4:8d:09:04:09:eb:2a:12:38:ad:a7: c9:98:34:31:b7:57:dd:6c:19:5e:ec:12:2d:29:ae: e0:1f:0b:74:42:d1:4a:4d:ff:b9:7b:0d:ba:51:b5: 81:f1:ed:38:c3:fa:08:2b:e7:fd:b7:db:da:22:d6: 9e:62:f5:13:9b:55:1e:c1:e8:0f:95:a1:01:b3:71: c5:7c:77:76:40:7d:69:8a:25:3c:c8:f3:c3:95:1d: 32:d5:8c:35:9b:33:82:5e:4a:62:8f:bf:52:8a:7f: 4a:a8:df:8f:32:22:f7:01:38:b1:48:57:53:fa:9c: e6:67:ac:f6:5b:f8:b2:70:9e:ed:11:54:b1:26:89: fb:be:61:7b:e1:c5:8f:9f:ff:68:4a:12:03:69:1a: 2d:03:e8:fd:0c:a7:cc:8c:35:3e:7b:21:e1:f6:a0: ef:b0:72:f3:d9:6b:6a:36:e8:73:0d:67:5d:8e:e7: 3c:67:3f:67:0e:99:20:7d:7a:2a:bc:8d:85:70:7e: 64:d5:d4:03:3c:2e:fe:5b:c5:80:ff:c1:11:c4:7d: d8:45:0e:9c:83:33:4b:16:9f:bd:51:40:61:08:f5: 5f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:FF:EA:08:D6:0B:14:55:A1:0E:89:7B:6C:EB:2E:E4:36:3A:C9:0A X509v3 Authority Key Identifier: keyid:E6:FE:A7:CE:7F:6F:A5:EA:E0:5E:BB:DF:D8:6F:D5:3E:84:FA:75:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/3230332e37372e3230382e302f32342d3234203d3e203138333933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.77.208.0/24 Signature Algorithm: sha256WithRSAEncryption 60:51:2b:87:82:de:84:56:8b:47:8c:1b:ca:b1:88:4b:c5:20: 97:81:93:ae:94:5b:87:dc:76:23:c6:1a:2b:c7:86:16:51:4a: af:48:d7:a1:38:a9:6c:e1:2c:22:6e:db:9a:b6:30:3b:a4:a8: ba:60:2b:10:68:7b:ea:8e:bb:76:63:01:9d:c1:80:5c:0b:f4: 64:7f:a1:2b:2a:16:01:ca:6f:c7:ff:a9:26:4f:70:e1:15:f7: fd:69:a2:a8:f7:a3:e0:03:0a:cf:4c:58:78:8d:8d:00:e2:b7: ca:51:31:6d:00:e2:6f:8b:56:55:0a:1f:da:21:7b:62:c7:3a: 4a:aa:5e:5f:23:93:bb:24:c2:f1:98:d1:be:af:fd:01:e5:17: 27:50:ca:9f:70:dc:ea:85:eb:4e:2e:29:df:c4:8a:90:d6:a1: e8:f7:0a:7f:e6:d2:c4:e3:97:14:00:57:f6:ac:bc:5b:ff:a1: 81:13:13:d7:5a:dc:db:10:d0:37:e8:2a:d2:a7:e5:ff:2c:c4: fb:ba:cf:07:42:0d:94:8d:78:be:b4:ee:ac:ce:7d:36:26:15: 54:8a:7d:df:4a:22:52:5f:63:85:fe:b2:7d:8f:05:37:2b:88: 06:ce:8c:36:52:ab:dc:25:da:29:98:1e:11:f7:a3:02:fa:15: 14:e0:18:4e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaJWFA+NJjKLMlkv63hY5mw24x7wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZGRUE3Q0U3RjZGQTVFQUUwNUVCQkRGRDg2RkQ1M0U4 NEZBNzVBODAeFw0yNTEwMTUxMjA2MjBaFw0yNjEwMTQxMjExMjBaMDMxMTAvBgNV BAMTKDhERkZFQTA4RDYwQjE0NTVBMTBFODk3QjZDRUIyRUU0MzYzQUM5MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9J+QFltbVOReTT6Q72eFsUuzc ItbpZoor0uQboq0Hjtv0jQkECesqEjitp8mYNDG3V91sGV7sEi0pruAfC3RC0UpN /7l7DbpRtYHx7TjD+ggr5/2329oi1p5i9RObVR7B6A+VoQGzccV8d3ZAfWmKJTzI 88OVHTLVjDWbM4JeSmKPv1KKf0qo348yIvcBOLFIV1P6nOZnrPZb+LJwnu0RVLEm ifu+YXvhxY+f/2hKEgNpGi0D6P0Mp8yMNT57IeH2oO+wcvPZa2o26HMNZ12O5zxn P2cOmSB9eiq8jYVwfmTV1AM8Lv5bxYD/wRHEfdhFDpyDM0sWn71RQGEI9V81AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjf/qCNYLFFWhDol7bOsu5DY6yQowHwYDVR0j BBgwFoAU5v6nzn9vpergXrvf2G/VPoT6dagwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTMxNTlmMi0wY2YwLTQzYzYtYjI4Mi1jNjlmYmExM2ExNGEvMC9FNkZFQTdDRTdG NkZBNUVBRTA1RUJCREZEODZGRDUzRTg0RkE3NUE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTZGRUE3Q0U3RjZGQTVFQUUwNUVCQkRGRDg2RkQ1M0U4NEZB NzVBOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlMzE1OWYyLTBjZjAtNDNjNi1i MjgyLWM2OWZiYTEzYTE0YS8wLzMyMzAzMzJlMzczNzJlMzIzMDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMzMzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtN0DANBgkqhkiG 9w0BAQsFAAOCAQEAYFErh4LehFaLR4wbyrGIS8Ugl4GTrpRbh9x2I8YaK8eGFlFK r0jXoTipbOEsIm7bmrYwO6SoumArEGh76o67dmMBncGAXAv0ZH+hKyoWAcpvx/+p Jk9w4RX3/WmiqPej4AMKz0xYeI2NAOK3ylExbQDib4tWVQof2iF7Ysc6SqpeXyOT uyTC8ZjRvq/9AeUXJ1DKn3Dc6oXrTi4p38SKkNah6PcKf+bSxOOXFABX9qy8W/+h gRMT11rc2xDQN+gq0qfl/yzE+7rPB0INlI14vrTurM59NiYVVIp930oiUl9jhf6y fY8FNyuIBs6MNlKr3CXaKZgeEfejAvoVFOAYTg== -----END CERTIFICATE-----Generated at Mon Oct 20 20:50:06 2025 by rpki-client