$ rpki-client -vvf repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232382e302f32342d3234203d3e203139393035.roa File: 3132302e32392e3232382e302f32342d3234203d3e203139393035.roa (raw, json) Hash identifier: qnWaLPQKCclL3KbhPyWf5fv4NRd/K4sQGvE8/3c+X3Y= Subject key identifier: 67:AA:2E:E4:D0:E4:E9:B4:36:E7:90:48:59:34:65:B0:DC:2A:17:EF Certificate issuer: /CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Certificate serial: 4CFA9B094E4394D5A7858FBAF53DD07B03DEC60A Authority key identifier: 3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject info access: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232382e302f32342d3234203d3e203139393035.roa Signing time: Sat 06 Sep 2025 14:17:45 +0000 ROA not before: Sat 06 Sep 2025 14:12:45 +0000 ROA not after: Sat 05 Sep 2026 14:17:45 +0000 asID: 19905 IP address blocks: 120.29.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 08:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:fa:9b:09:4e:43:94:d5:a7:85:8f:ba:f5:3d:d0:7b:03:de:c6:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Validity Not Before: Sep 6 14:12:45 2025 GMT Not After : Sep 5 14:17:45 2026 GMT Subject: CN=67AA2EE4D0E4E9B436E79048593465B0DC2A17EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e4:f9:2c:92:5b:d1:6e:49:01:30:94:fa:e5: bd:b4:f1:10:f1:33:51:f2:60:04:52:4d:56:cd:85: 44:7a:4b:b4:da:27:39:81:db:88:08:e1:51:e2:f5: d5:59:c1:57:e1:09:d3:b4:2a:e4:be:a1:21:3a:f3: ba:a3:5f:80:5b:9c:27:a3:77:cf:03:e9:30:c8:9d: 0d:c4:d0:ab:36:36:72:1c:6f:77:d7:cb:31:a5:a8: c4:40:62:5b:22:ee:cf:54:7a:3b:d4:9c:70:c5:80: e2:e6:3f:a7:d2:ae:d1:30:be:94:f5:a6:15:16:79: 22:0a:96:5b:10:ee:19:45:45:b8:b4:9a:7e:f7:10: 42:16:06:8c:21:56:26:97:e1:63:be:51:ec:70:64: 46:35:90:57:2d:a8:24:b6:30:d5:22:43:d1:e7:33: 08:84:6b:2d:1c:62:e0:ab:5e:95:81:83:d5:40:67: 5e:1b:2a:9a:eb:76:47:93:e5:0a:37:37:81:92:34: 68:23:53:15:b4:bd:ab:7a:b0:0f:c4:48:a9:62:d3: c2:07:14:f9:77:9b:9a:83:49:f5:02:b5:fb:01:43: 86:3b:6c:f1:07:93:18:a3:ed:a3:ce:dd:78:0a:4f: c1:4b:a5:76:ba:9b:fa:d8:b4:98:68:89:41:7d:5b: c5:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:AA:2E:E4:D0:E4:E9:B4:36:E7:90:48:59:34:65:B0:DC:2A:17:EF X509v3 Authority Key Identifier: keyid:3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232382e302f32342d3234203d3e203139393035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.29.228.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:43:c0:d9:8e:e6:47:3d:ee:78:96:8c:4b:7d:14:d0:d6:0e: fc:f2:d5:f5:99:9c:f2:1f:e1:eb:f2:0f:16:5f:0f:aa:48:a5: 74:86:3a:41:46:b9:4d:b3:9c:b8:b4:fa:ad:d6:c8:0a:c4:42: 70:29:c5:d3:36:3c:a3:c3:60:b5:74:5d:da:42:18:63:a4:dc: 96:fe:fd:ac:0c:88:2d:00:dd:e4:d8:c2:2e:d3:10:da:98:f3: e6:11:fb:f1:18:24:74:95:93:be:f6:29:b6:b8:d6:4a:c1:1b: e0:c0:fa:b1:c1:88:fb:d5:1a:15:e2:4a:82:e3:1c:6d:d9:25: 9e:17:f2:ca:c2:55:b2:fa:27:c1:e1:da:cc:03:aa:3b:e4:99: 17:26:b7:f2:67:3c:b3:1a:0c:ca:6d:74:6c:ad:16:07:6a:f0: ff:4b:f0:aa:25:7c:83:a4:19:cc:21:6f:2b:80:24:10:8b:23: fa:bc:f1:63:b4:b6:f2:10:b5:ad:85:dc:9c:0b:85:88:c0:05: c9:56:77:2e:d9:d5:da:f7:aa:0c:d4:c3:64:bd:3e:50:69:ec: 82:fe:0a:7f:d9:43:36:f1:1f:e2:b3:0c:eb:be:5c:88:22:5b: dc:68:6e:e6:9d:74:ef:92:f7:38:d2:6b:fc:56:c1:45:cc:37: d2:49:a9:db -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTPqbCU5DlNWnhY+69T3QewPexgowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdB MzVCMDI1MTAeFw0yNTA5MDYxNDEyNDVaFw0yNjA5MDUxNDE3NDVaMDMxMTAvBgNV BAMTKDY3QUEyRUU0RDBFNEU5QjQzNkU3OTA0ODU5MzQ2NUIwREMyQTE3RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC65PksklvRbkkBMJT65b208RDx M1HyYARSTVbNhUR6S7TaJzmB24gI4VHi9dVZwVfhCdO0KuS+oSE687qjX4BbnCej d88D6TDInQ3E0Ks2NnIcb3fXyzGlqMRAYlsi7s9UejvUnHDFgOLmP6fSrtEwvpT1 phUWeSIKllsQ7hlFRbi0mn73EEIWBowhViaX4WO+UexwZEY1kFctqCS2MNUiQ9Hn MwiEay0cYuCrXpWBg9VAZ14bKprrdkeT5Qo3N4GSNGgjUxW0vat6sA/ESKli08IH FPl3m5qDSfUCtfsBQ4Y7bPEHkxij7aPO3XgKT8FLpXa6m/rYtJhoiUF9W8WFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZ6ou5NDk6bQ255BIWTRlsNwqF+8wHwYDVR0j BBgwFoAUPmZijAPKuMbW/N7b4HAFV6NbAlEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjFjOWNhZC1jM2I5LTQ1YTAtYmViNi1iY2U0OGUyYjIyNzIvMC8zRTY2NjI4QzAz Q0FCOEM2RDZGQ0RFREJFMDcwMDU1N0EzNUIwMjUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdBMzVC MDI1MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyMWM5Y2FkLWMzYjktNDVhMC1i ZWI2LWJjZTQ4ZTJiMjI3Mi8wLzMxMzIzMDJlMzIzOTJlMzIzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzOTM5MzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHgd5DANBgkqhkiG 9w0BAQsFAAOCAQEALUPA2Y7mRz3ueJaMS30U0NYO/PLV9Zmc8h/h6/IPFl8Pqkil dIY6QUa5TbOcuLT6rdbICsRCcCnF0zY8o8NgtXRd2kIYY6Tclv79rAyILQDd5NjC LtMQ2pjz5hH78RgkdJWTvvYptrjWSsEb4MD6scGI+9UaFeJKguMcbdklnhfyysJV svonweHazAOqO+SZFya38mc8sxoMym10bK0WB2rw/0vwqiV8g6QZzCFvK4AkEIsj +rzxY7S28hC1rYXcnAuFiMAFyVZ3LtnV2veqDNTDZL0+UGnsgv4Kf9lDNvEf4rMM 675ciCJb3Ghu5p1075L3ONJr/FbBRcw30kmp2w== -----END CERTIFICATE-----Generated at Sun Oct 19 20:55:22 2025 by rpki-client