$ rpki-client -vvf repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/3230332e37372e3231362e302f32342d3234203d3e203138333933.roa File: 3230332e37372e3231362e302f32342d3234203d3e203138333933.roa (raw, json) Hash identifier: 1x5BDs/Hd42tytuoj0eaAhNiq0H+PcR0fKy7n2rzIvk= Subject key identifier: 32:43:05:C2:BE:68:1A:44:2D:FD:9E:99:5A:56:82:4E:33:41:2E:5C Certificate issuer: /CN=E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8 Certificate serial: 7881505C954E407B48C67B60AB0176E2289EC730 Authority key identifier: E6:FE:A7:CE:7F:6F:A5:EA:E0:5E:BB:DF:D8:6F:D5:3E:84:FA:75:A8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/3230332e37372e3231362e302f32342d3234203d3e203138333933.roa Signing time: Wed 15 Oct 2025 12:13:02 +0000 ROA not before: Wed 15 Oct 2025 12:08:02 +0000 ROA not after: Wed 14 Oct 2026 12:13:02 +0000 asID: 18393 IP address blocks: 203.77.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.crl rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:81:50:5c:95:4e:40:7b:48:c6:7b:60:ab:01:76:e2:28:9e:c7:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8 Validity Not Before: Oct 15 12:08:02 2025 GMT Not After : Oct 14 12:13:02 2026 GMT Subject: CN=324305C2BE681A442DFD9E995A56824E33412E5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:67:8e:65:bd:4e:b7:95:24:20:38:28:5b:ce: ba:36:2d:35:8b:d6:d1:76:78:90:eb:34:94:91:ac: 56:93:65:ad:9b:02:3a:e7:b1:7d:d1:83:1d:7d:1c: 50:f0:33:71:39:ef:af:1e:57:7d:89:1f:c3:7d:b4: ed:95:9d:af:53:73:91:eb:76:aa:e8:66:d0:f1:dc: ab:40:29:fa:86:0d:3f:0d:40:c1:94:8b:9c:fc:7b: e1:cd:f2:f5:19:48:c3:05:31:32:47:a7:67:fa:2f: c2:f7:85:08:2c:de:72:0a:06:35:1e:e3:b2:7f:01: 57:23:12:a9:d7:14:82:85:03:4e:d1:70:6a:ba:49: 5d:0d:e1:51:68:16:4f:62:b8:97:8a:3e:a5:b3:57: cc:a3:d4:3f:1c:7e:aa:ae:5e:b6:5a:29:68:b8:2a: bf:d9:d5:23:19:b3:3f:07:0b:a1:bd:58:ce:07:e8: 50:83:fc:6f:b8:e7:00:ce:07:8a:9a:44:ef:ae:e2: d9:09:4a:16:91:e9:8c:14:fc:d7:49:66:b4:5f:7c: c2:93:6f:c0:fd:4b:47:10:86:45:62:55:4a:a8:00: f1:b1:db:58:e8:fe:a2:99:0b:42:9b:2d:c0:68:9a: 98:0a:70:b2:c3:e7:e7:56:89:84:4e:87:c6:80:79: 1e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:43:05:C2:BE:68:1A:44:2D:FD:9E:99:5A:56:82:4E:33:41:2E:5C X509v3 Authority Key Identifier: keyid:E6:FE:A7:CE:7F:6F:A5:EA:E0:5E:BB:DF:D8:6F:D5:3E:84:FA:75:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E6FEA7CE7F6FA5EAE05EBBDFD86FD53E84FA75A8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e3159f2-0cf0-43c6-b282-c69fba13a14a/0/3230332e37372e3231362e302f32342d3234203d3e203138333933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.77.216.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:0d:39:39:94:e6:b9:12:67:3b:b6:31:c5:6f:1d:3e:6b:0e: eb:2d:3a:9a:65:47:2f:c6:1e:a8:dc:96:f9:bc:0a:73:01:a3: d7:65:6d:e7:a8:48:a5:02:78:23:dd:fe:c1:ad:55:f1:79:75: d6:22:84:82:0f:b6:de:1b:57:be:a5:03:28:16:0a:70:ab:80: dd:af:bb:bd:40:c1:1f:41:a6:61:47:f8:58:67:52:be:53:22: a7:f0:70:fd:f8:50:ce:bf:2c:fd:d2:12:99:5b:ef:7d:5b:91: 56:8a:81:87:07:20:d8:6f:7f:e9:2a:f9:0b:34:41:bc:c7:bb: 33:d3:b9:f6:e1:59:8a:11:0b:21:bf:0b:c9:c4:d4:39:bd:29: 75:14:36:de:e7:9d:38:71:3f:c9:d2:62:26:2f:82:4a:4e:77: 31:07:6e:d1:03:1e:3a:06:02:6f:33:b7:cb:97:a3:cd:4d:cc: d8:9d:61:31:d1:08:18:55:31:03:c0:f3:b0:3f:f9:af:ba:30: 9e:fc:af:be:a5:8d:74:df:f0:38:59:c3:e2:c4:a0:29:bc:0c: b1:ad:39:fe:cd:3b:5d:04:b9:e5:3f:6d:e4:82:9a:32:ed:12: 20:bb:e9:d7:bf:8e:c8:d2:a5:92:43:6d:ae:5d:d6:da:20:aa: f8:18:c2:cb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeIFQXJVOQHtIxntgqwF24iiexzAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZGRUE3Q0U3RjZGQTVFQUUwNUVCQkRGRDg2RkQ1M0U4 NEZBNzVBODAeFw0yNTEwMTUxMjA4MDJaFw0yNjEwMTQxMjEzMDJaMDMxMTAvBgNV BAMTKDMyNDMwNUMyQkU2ODFBNDQyREZEOUU5OTVBNTY4MjRFMzM0MTJFNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKZ45lvU63lSQgOChbzro2LTWL 1tF2eJDrNJSRrFaTZa2bAjrnsX3Rgx19HFDwM3E5768eV32JH8N9tO2Vna9Tc5Hr dqroZtDx3KtAKfqGDT8NQMGUi5z8e+HN8vUZSMMFMTJHp2f6L8L3hQgs3nIKBjUe 47J/AVcjEqnXFIKFA07RcGq6SV0N4VFoFk9iuJeKPqWzV8yj1D8cfqquXrZaKWi4 Kr/Z1SMZsz8HC6G9WM4H6FCD/G+45wDOB4qaRO+u4tkJShaR6YwU/NdJZrRffMKT b8D9S0cQhkViVUqoAPGx21jo/qKZC0KbLcBompgKcLLD5+dWiYROh8aAeR4nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMkMFwr5oGkQt/Z6ZWlaCTjNBLlwwHwYDVR0j BBgwFoAU5v6nzn9vpergXrvf2G/VPoT6dagwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTMxNTlmMi0wY2YwLTQzYzYtYjI4Mi1jNjlmYmExM2ExNGEvMC9FNkZFQTdDRTdG NkZBNUVBRTA1RUJCREZEODZGRDUzRTg0RkE3NUE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTZGRUE3Q0U3RjZGQTVFQUUwNUVCQkRGRDg2RkQ1M0U4NEZB NzVBOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlMzE1OWYyLTBjZjAtNDNjNi1i MjgyLWM2OWZiYTEzYTE0YS8wLzMyMzAzMzJlMzczNzJlMzIzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMzMzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtN2DANBgkqhkiG 9w0BAQsFAAOCAQEALw05OZTmuRJnO7YxxW8dPmsO6y06mmVHL8YeqNyW+bwKcwGj 12Vt56hIpQJ4I93+wa1V8Xl11iKEgg+23htXvqUDKBYKcKuA3a+7vUDBH0GmYUf4 WGdSvlMip/Bw/fhQzr8s/dISmVvvfVuRVoqBhwcg2G9/6Sr5CzRBvMe7M9O59uFZ ihELIb8LycTUOb0pdRQ23uedOHE/ydJiJi+CSk53MQdu0QMeOgYCbzO3y5ejzU3M 2J1hMdEIGFUxA8DzsD/5r7ownvyvvqWNdN/wOFnD4sSgKbwMsa05/s07XQS55T9t 5IKaMu0SILvp17+OyNKlkkNtrl3W2iCq+BjCyw== -----END CERTIFICATE-----Generated at Tue Oct 21 01:29:21 2025 by rpki-client