$ rpki-client -vvf repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/3230332e37372e3230392e302f32342d3234203d3e203138333933.roa File: 3230332e37372e3230392e302f32342d3234203d3e203138333933.roa (raw, json) Hash identifier: KUR9n4Zbr1Zb+02eEmjJT/AW53aBQ88o/bMZanP8qGw= Subject key identifier: 2B:6C:70:97:1C:07:22:06:0D:67:14:4A:09:92:CA:51:23:A5:1B:7F Certificate issuer: /CN=E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8 Certificate serial: 129B940F9E28175A1FD00314C22DC767428100AB Authority key identifier: E6:FE:A7:CE:7F:6F:A5:EA:E0:5E:BB:DF:D8:6F:D5:3E:84:FA:75:A8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/3230332e37372e3230392e302f32342d3234203d3e203138333933.roa Signing time: Wed 15 Oct 2025 12:12:13 +0000 ROA not before: Wed 15 Oct 2025 12:07:13 +0000 ROA not after: Wed 14 Oct 2026 12:12:13 +0000 asID: 18393 IP address blocks: 203.77.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.crl rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:9b:94:0f:9e:28:17:5a:1f:d0:03:14:c2:2d:c7:67:42:81:00:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8 Validity Not Before: Oct 15 12:07:13 2025 GMT Not After : Oct 14 12:12:13 2026 GMT Subject: CN=2B6C70971C0722060D67144A0992CA5123A51B7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b9:bd:23:00:a5:42:85:26:2e:ea:98:16:50: 64:8c:71:57:a8:7b:54:55:33:fd:c1:db:6e:f8:54: 7f:83:c5:22:08:32:37:16:7c:f2:dd:0a:1d:fd:ae: d8:37:f5:75:ce:e6:13:9b:95:64:f6:05:d0:f0:50: 90:23:74:ba:52:41:da:4f:c8:92:a3:e2:51:0e:80: b2:90:e0:9f:4c:c7:26:96:6c:4f:6c:69:62:66:7b: 85:3f:e2:11:6e:99:16:6e:7e:f6:54:12:17:46:ca: 4e:43:a5:ad:9f:4d:6d:e9:f8:6d:fa:4c:33:cc:47: 96:1c:e3:84:b9:74:62:ed:31:8b:a7:17:cc:f4:db: 74:a2:d3:2a:bf:f1:b3:35:8c:f5:6f:c9:88:82:57: 2a:ae:bf:82:23:70:c2:2e:7b:65:c2:30:cc:92:39: 5c:cc:41:35:32:e1:40:fa:12:ea:02:ba:be:82:07: 97:45:78:f5:40:3d:c3:b5:29:b3:2e:f7:99:d5:70: 83:bb:ae:7f:e5:70:ec:7e:f5:38:fa:36:38:ba:a4: 5b:f1:d8:fa:d2:04:e9:24:10:8f:1e:57:c2:2a:b5: ad:10:15:c7:04:97:7b:b7:24:2d:c9:f5:64:1e:86: 02:fa:ca:82:92:90:12:f5:6c:d0:fb:5d:d3:f4:f1: 12:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:6C:70:97:1C:07:22:06:0D:67:14:4A:09:92:CA:51:23:A5:1B:7F X509v3 Authority Key Identifier: keyid:E6:FE:A7:CE:7F:6F:A5:EA:E0:5E:BB:DF:D8:6F:D5:3E:84:FA:75:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/3230332e37372e3230392e302f32342d3234203d3e203138333933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.77.209.0/24 Signature Algorithm: sha256WithRSAEncryption 03:6f:7c:df:ad:ed:27:ac:b4:3e:0e:10:7e:25:bc:11:3e:06: 3b:52:f4:73:f6:4a:b4:f8:19:ca:7f:83:ae:1d:80:26:3d:0e: a0:ae:e4:87:ae:38:ef:dd:80:5d:d3:18:08:9b:83:d1:b2:3e: e3:1c:b4:7e:aa:9d:1f:43:f0:60:67:6b:b4:83:8d:f5:8f:16: 20:42:fb:54:43:ff:4e:78:ca:20:20:9d:5b:1c:f7:53:d2:a3: da:72:4c:9b:90:65:ab:33:5e:24:90:b7:62:73:e6:c3:bd:3f: 6b:88:06:01:85:90:7b:26:70:21:b9:82:65:79:aa:d8:27:8a: 33:38:ac:bf:7e:5e:5d:a3:05:74:a9:fe:b1:c0:07:6c:be:1d: 34:93:c3:c5:86:c0:93:9b:85:ac:eb:6d:a6:f7:d2:e1:ef:47: ef:f9:d6:68:80:b1:b7:b7:13:88:08:fb:68:fd:61:4b:ac:57: a9:91:3a:af:44:11:75:6c:29:95:40:7d:de:41:c0:46:51:2d: 7c:2d:d0:17:7b:50:53:db:13:19:54:2c:b2:a5:ab:7f:29:ed: 69:2a:32:4c:0d:c2:ff:d2:c7:ce:69:f4:97:28:75:25:6c:7c: 57:4a:2a:52:4a:ba:bb:bf:61:4d:34:7e:52:43:ee:26:65:0d: 9e:d3:b2:0e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEpuUD54oF1of0AMUwi3HZ0KBAKswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZGRUE3Q0U3RjZGQTVFQUUwNUVCQkRGRDg2RkQ1M0U4 NEZBNzVBODAeFw0yNTEwMTUxMjA3MTNaFw0yNjEwMTQxMjEyMTNaMDMxMTAvBgNV BAMTKDJCNkM3MDk3MUMwNzIyMDYwRDY3MTQ0QTA5OTJDQTUxMjNBNTFCN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChub0jAKVChSYu6pgWUGSMcVeo e1RVM/3B2274VH+DxSIIMjcWfPLdCh39rtg39XXO5hOblWT2BdDwUJAjdLpSQdpP yJKj4lEOgLKQ4J9MxyaWbE9saWJme4U/4hFumRZufvZUEhdGyk5Dpa2fTW3p+G36 TDPMR5Yc44S5dGLtMYunF8z023Si0yq/8bM1jPVvyYiCVyquv4IjcMIue2XCMMyS OVzMQTUy4UD6EuoCur6CB5dFePVAPcO1KbMu95nVcIO7rn/lcOx+9Tj6Nji6pFvx 2PrSBOkkEI8eV8Iqta0QFccEl3u3JC3J9WQehgL6yoKSkBL1bND7XdP08RK/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUK2xwlxwHIgYNZxRKCZLKUSOlG38wHwYDVR0j BBgwFoAU5v6nzn9vpergXrvf2G/VPoT6dagwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTMxNTlmMi0wY2YwLTQzYzYtYjI4Mi1jNjlmYmExM2ExNGEvMC9FNkZFQTdDRTdG NkZBNUVBRTA1RUJCREZEODZGRDUzRTg0RkE3NUE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTZGRUE3Q0U3RjZGQTVFQUUwNUVCQkRGRDg2RkQ1M0U4NEZB NzVBOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlMzE1OWYyLTBjZjAtNDNjNi1i MjgyLWM2OWZiYTEzYTE0YS8wLzMyMzAzMzJlMzczNzJlMzIzMDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMzMzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtN0TANBgkqhkiG 9w0BAQsFAAOCAQEAA298363tJ6y0Pg4QfiW8ET4GO1L0c/ZKtPgZyn+Drh2AJj0O oK7kh644792AXdMYCJuD0bI+4xy0fqqdH0PwYGdrtION9Y8WIEL7VEP/TnjKICCd Wxz3U9Kj2nJMm5BlqzNeJJC3YnPmw70/a4gGAYWQeyZwIbmCZXmq2CeKMzisv35e XaMFdKn+scAHbL4dNJPDxYbAk5uFrOttpvfS4e9H7/nWaICxt7cTiAj7aP1hS6xX qZE6r0QRdWwplUB93kHARlEtfC3QF3tQU9sTGVQssqWrfyntaSoyTA3C/9LHzmn0 lyh1JWx8V0oqUkq6u79hTTR+UkPuJmUNntOyDg== -----END CERTIFICATE-----Generated at Mon Oct 20 23:03:55 2025 by rpki-client