$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e33302e302f32342d3234203d3e20313532303639.roa File: 3230322e39312e33302e302f32342d3234203d3e20313532303639.roa (raw, json) Hash identifier: v4GScNp+JRLvaXyvj8xalK2YN2m8f7pYE4HXkH+LiDo= Subject key identifier: 05:AD:7F:BE:4C:DC:DA:07:68:B8:37:CE:95:83:0B:6A:3D:CD:E0:D3 Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 0A3009681F0AF1DEAC0F8E5AA50D58237E059455 Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e33302e302f32342d3234203d3e20313532303639.roa Signing time: Mon 20 Oct 2025 14:35:57 +0000 ROA not before: Mon 20 Oct 2025 14:30:57 +0000 ROA not after: Mon 19 Oct 2026 14:35:57 +0000 asID: 152069 IP address blocks: 202.91.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 20:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:30:09:68:1f:0a:f1:de:ac:0f:8e:5a:a5:0d:58:23:7e:05:94:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: Oct 20 14:30:57 2025 GMT Not After : Oct 19 14:35:57 2026 GMT Subject: CN=05AD7FBE4CDCDA0768B837CE95830B6A3DCDE0D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:81:51:96:1b:a6:2f:66:dd:1e:09:3b:43:f7: 15:99:50:16:a3:89:29:0b:6a:06:26:b2:da:9a:51: 1e:60:f5:35:58:89:94:a0:64:4a:a4:9a:59:16:d1: 6c:d5:da:b4:1e:e6:08:8a:d0:0c:44:02:94:3e:c5: 24:47:30:45:e1:4e:d8:ab:69:ef:bf:e7:8c:6f:76: 56:ff:19:87:15:8e:b1:21:c4:a0:28:b4:6b:43:02: 0f:80:77:2e:f0:a2:46:22:a3:21:ca:0e:c8:71:39: 06:fc:d2:ae:d3:2e:2c:d1:c4:a9:ed:ae:87:ac:7e: cd:6d:c5:ed:59:7e:b6:62:55:58:0f:54:59:29:ee: 64:60:f7:e9:fe:54:ec:25:7d:87:54:c7:1d:e4:3a: f1:5d:72:41:41:25:09:49:35:3d:55:27:76:b5:89: a9:72:2d:71:c7:ad:33:ca:ce:15:7d:0f:cf:78:0d: 14:08:df:c0:45:23:a4:62:a2:09:88:2d:15:ed:1c: d9:37:90:fb:ef:1d:ff:69:8f:1a:e0:d2:b8:a4:4d: d1:48:26:72:72:93:84:86:45:57:54:8e:f1:86:f4: c7:d6:d9:47:29:ba:f7:78:d8:72:a8:5e:ef:af:fc: 11:0b:d8:ac:e4:37:0c:6b:37:e1:8b:39:3d:72:39: 81:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:AD:7F:BE:4C:DC:DA:07:68:B8:37:CE:95:83:0B:6A:3D:CD:E0:D3 X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e33302e302f32342d3234203d3e20313532303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.30.0/24 Signature Algorithm: sha256WithRSAEncryption 91:7b:cb:ac:59:b5:2b:2b:ef:b5:54:10:ce:9b:63:10:5e:12: 37:9c:b7:17:d1:f3:c5:6b:99:55:0e:be:b4:1a:f2:dc:e2:c4: 97:27:87:8d:f6:39:aa:ab:17:ea:b9:5c:c9:3d:22:64:ad:58: 8a:b9:1c:d5:96:51:39:72:72:23:d6:d9:4f:18:13:87:01:66: 87:1e:9b:c7:02:a9:3d:2f:20:9f:8a:f2:f4:58:17:2c:c7:0e: 61:93:1f:57:69:c8:05:40:13:40:a6:ff:41:74:5b:13:c5:4b: 07:36:ae:2b:54:6a:92:72:af:ce:4c:2f:72:f1:88:b7:bf:93: 7a:0c:6d:6c:c9:e1:96:6b:22:96:93:7e:20:38:7f:6c:42:98: 42:c6:bc:f7:94:1d:a4:04:aa:c7:86:bc:a4:20:6b:e9:58:4f: 49:ab:f8:7b:d8:a7:2a:8d:01:69:dc:f1:bc:6f:66:98:08:77: 73:a9:45:fd:d2:37:04:8c:d3:7a:09:42:98:bc:1f:90:64:f4: 1e:08:cf:b4:5f:d6:ed:4b:24:7e:13:21:71:1e:e8:32:e9:5a: b0:18:2d:ce:92:9a:7e:84:34:68:c4:2e:9a:9d:0f:73:ce:77: 30:07:14:40:e6:66:38:4f:05:ce:af:c9:3c:e7:29:e9:81:89: 8a:01:bd:f4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCjAJaB8K8d6sD45apQ1YI34FlFUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNTEwMjAxNDMwNTdaFw0yNjEwMTkxNDM1NTdaMDMxMTAvBgNV BAMTKDA1QUQ3RkJFNENEQ0RBMDc2OEI4MzdDRTk1ODMwQjZBM0RDREUwRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYgVGWG6YvZt0eCTtD9xWZUBaj iSkLagYmstqaUR5g9TVYiZSgZEqkmlkW0WzV2rQe5giK0AxEApQ+xSRHMEXhTtir ae+/54xvdlb/GYcVjrEhxKAotGtDAg+Ady7wokYioyHKDshxOQb80q7TLizRxKnt roesfs1txe1ZfrZiVVgPVFkp7mRg9+n+VOwlfYdUxx3kOvFdckFBJQlJNT1VJ3a1 ialyLXHHrTPKzhV9D894DRQI38BFI6RiogmILRXtHNk3kPvvHf9pjxrg0rikTdFI JnJyk4SGRVdUjvGG9MfW2Ucpuvd42HKoXu+v/BEL2KzkNwxrN+GLOT1yOYHBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBa1/vkzc2gdouDfOlYMLaj3N4NMwHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMyMzAzMjJlMzkzMTJlMzMzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpbHjANBgkqhkiG 9w0BAQsFAAOCAQEAkXvLrFm1KyvvtVQQzptjEF4SN5y3F9HzxWuZVQ6+tBry3OLE lyeHjfY5qqsX6rlcyT0iZK1Yirkc1ZZROXJyI9bZTxgThwFmhx6bxwKpPS8gn4ry 9FgXLMcOYZMfV2nIBUATQKb/QXRbE8VLBzauK1RqknKvzkwvcvGIt7+TegxtbMnh lmsilpN+IDh/bEKYQsa895QdpASqx4a8pCBr6VhPSav4e9inKo0BadzxvG9mmAh3 c6lF/dI3BIzTeglCmLwfkGT0HgjPtF/W7UskfhMhcR7oMulasBgtzpKafoQ0aMQu mp0Pc853MAcUQOZmOE8Fzq/JPOcp6YGJigG99A== -----END CERTIFICATE-----Generated at Tue Oct 21 05:07:33 2025 by rpki-client