$ rpki-client -vvf repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/3230332e37372e3231332e302f32342d3234203d3e203138333933.roa File: 3230332e37372e3231332e302f32342d3234203d3e203138333933.roa (raw, json) Hash identifier: SNItP+o1mCV3SKpmpi/InsKYLB5gdOg5tF9GMKwDZ3Y= Subject key identifier: 89:EA:4C:8C:AC:20:34:8C:5B:67:07:B1:63:E8:7B:FA:5C:79:27:0F Certificate issuer: /CN=E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8 Certificate serial: 3F8CBDB3ECFFD734F370A7530ACFD4620843BF98 Authority key identifier: E6:FE:A7:CE:7F:6F:A5:EA:E0:5E:BB:DF:D8:6F:D5:3E:84:FA:75:A8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/3230332e37372e3231332e302f32342d3234203d3e203138333933.roa Signing time: Wed 15 Oct 2025 12:43:11 +0000 ROA not before: Wed 15 Oct 2025 12:38:11 +0000 ROA not after: Wed 14 Oct 2026 12:43:11 +0000 asID: 18393 IP address blocks: 203.77.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.crl rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:8c:bd:b3:ec:ff:d7:34:f3:70:a7:53:0a:cf:d4:62:08:43:bf:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8 Validity Not Before: Oct 15 12:38:11 2025 GMT Not After : Oct 14 12:43:11 2026 GMT Subject: CN=89EA4C8CAC20348C5B6707B163E87BFA5C79270F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b3:18:9f:13:92:f5:26:80:fa:f1:43:da:da: ce:9d:d5:28:cb:88:3f:f7:b5:80:4a:c5:0a:be:e0: 45:3c:12:0a:44:2a:fd:0b:64:a6:cb:2f:76:54:38: 01:41:6a:c0:ac:6b:8d:63:08:41:b4:14:5b:08:fd: 1a:48:b3:4b:60:19:02:40:43:03:76:a2:55:75:82: 2a:4c:4e:b3:39:2a:a3:f4:57:7e:9d:d9:64:ef:34: ea:c9:cd:4e:61:07:b7:ab:d1:fe:6d:2d:4d:c9:aa: 32:92:97:bd:86:11:31:fb:76:a1:7a:7c:f3:2f:0b: 9e:31:1e:22:53:ff:45:82:80:36:ec:79:20:09:e0: 47:08:23:de:4b:9d:7b:c5:13:a8:35:9e:21:d6:84: 7c:da:ef:51:93:a1:98:74:32:f6:50:be:ef:ce:d9: 12:42:9a:c9:a1:c2:7c:04:50:0b:fb:50:11:07:34: 89:8c:4a:d7:a8:55:a8:d1:c3:ae:7b:1f:a9:8c:46: c6:6a:12:94:b1:35:12:bc:48:ed:0d:cb:9e:88:98: 00:a7:40:79:4d:38:0d:e8:b8:7b:3a:3b:41:31:76: f4:72:1e:1b:b8:fd:99:35:22:e7:23:7e:f1:bf:22: 66:36:93:e5:da:a4:d3:6d:d3:23:80:08:29:55:df: fe:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:EA:4C:8C:AC:20:34:8C:5B:67:07:B1:63:E8:7B:FA:5C:79:27:0F X509v3 Authority Key Identifier: keyid:E6:FE:A7:CE:7F:6F:A5:EA:E0:5E:BB:DF:D8:6F:D5:3E:84:FA:75:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/3230332e37372e3231332e302f32342d3234203d3e203138333933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.77.213.0/24 Signature Algorithm: sha256WithRSAEncryption 93:e4:70:cb:30:d3:df:9c:6a:b7:ca:3e:08:5e:66:fe:fd:23: 9e:bb:34:af:1b:5e:61:8d:f4:3d:21:64:7d:9f:f9:64:63:52: fe:57:1c:b8:7c:a8:4c:22:9c:64:75:4b:6c:78:7e:5e:7c:e3: 78:75:5e:73:7d:04:f8:19:22:40:d8:8c:8e:86:0a:d5:48:68: 81:d3:4a:fe:99:89:06:df:58:c4:6b:7b:d6:75:0f:bc:7e:9b: 57:cc:01:f1:28:ee:2b:59:5f:07:cd:f7:86:f0:d1:df:a1:19: 5b:78:b5:d8:02:6f:73:d6:75:d9:64:aa:a9:9e:af:dd:fd:71: e9:3c:f4:0b:5c:73:66:9a:c2:16:74:23:da:03:80:0f:ee:55: eb:2b:2b:4f:a0:70:e5:c3:f6:75:ef:e2:17:2b:c4:62:b7:eb: 8a:10:f0:79:ba:eb:4a:04:e2:5c:3f:03:c2:a2:70:81:03:7c: f7:32:db:d3:e2:2a:b9:7d:a8:1c:5b:6d:fa:5d:9a:5a:17:e7: 36:7b:be:39:7a:7e:24:fb:57:83:45:3f:81:17:6b:80:5d:fc: 3b:16:62:ab:fb:9b:b9:21:f5:1a:b5:e2:5f:68:71:b5:04:4c: 33:c4:2a:53:71:fb:aa:39:58:ff:0b:59:18:11:d5:13:c2:55: 73:dc:43:99 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP4y9s+z/1zTzcKdTCs/UYghDv5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZGRUE3Q0U3RjZGQTVFQUUwNUVCQkRGRDg2RkQ1M0U4 NEZBNzVBODAeFw0yNTEwMTUxMjM4MTFaFw0yNjEwMTQxMjQzMTFaMDMxMTAvBgNV BAMTKDg5RUE0QzhDQUMyMDM0OEM1QjY3MDdCMTYzRTg3QkZBNUM3OTI3MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxsxifE5L1JoD68UPa2s6d1SjL iD/3tYBKxQq+4EU8EgpEKv0LZKbLL3ZUOAFBasCsa41jCEG0FFsI/RpIs0tgGQJA QwN2olV1gipMTrM5KqP0V36d2WTvNOrJzU5hB7er0f5tLU3JqjKSl72GETH7dqF6 fPMvC54xHiJT/0WCgDbseSAJ4EcII95LnXvFE6g1niHWhHza71GToZh0MvZQvu/O 2RJCmsmhwnwEUAv7UBEHNImMSteoVajRw657H6mMRsZqEpSxNRK8SO0Ny56ImACn QHlNOA3ouHs6O0ExdvRyHhu4/Zk1IucjfvG/ImY2k+XapNNt0yOACClV3/63AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUiepMjKwgNIxbZwexY+h7+lx5Jw8wHwYDVR0j BBgwFoAU5v6nzn9vpergXrvf2G/VPoT6dagwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTMxNTlmMi0wY2YwLTQzYzYtYjI4Mi1jNjlmYmExM2ExNGEvMC9FNkZFQTdDRTdG NkZBNUVBRTA1RUJCREZEODZGRDUzRTg0RkE3NUE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTZGRUE3Q0U3RjZGQTVFQUUwNUVCQkRGRDg2RkQ1M0U4NEZB NzVBOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlMzE1OWYyLTBjZjAtNDNjNi1i MjgyLWM2OWZiYTEzYTE0YS8wLzMyMzAzMzJlMzczNzJlMzIzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMzMzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtN1TANBgkqhkiG 9w0BAQsFAAOCAQEAk+RwyzDT35xqt8o+CF5m/v0jnrs0rxteYY30PSFkfZ/5ZGNS /lccuHyoTCKcZHVLbHh+XnzjeHVec30E+BkiQNiMjoYK1UhogdNK/pmJBt9YxGt7 1nUPvH6bV8wB8SjuK1lfB833hvDR36EZW3i12AJvc9Z12WSqqZ6v3f1x6Tz0C1xz ZprCFnQj2gOAD+5V6ysrT6Bw5cP2de/iFyvEYrfrihDwebrrSgTiXD8DwqJwgQN8 9zLb0+IquX2oHFtt+l2aWhfnNnu+OXp+JPtXg0U/gRdrgF38OxZiq/ubuSH1GrXi X2hxtQRMM8QqU3H7qjlY/wtZGBHVE8JVc9xDmQ== -----END CERTIFICATE-----Generated at Tue Oct 21 01:29:37 2025 by rpki-client