$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e33312e302f32342d3234203d3e20313532303639.roa File: 3230322e39312e33312e302f32342d3234203d3e20313532303639.roa (raw, json) Hash identifier: S7MlEVaiyvjAdB83EWitfmwmyo4wzjPWQGuZFYtjp34= Subject key identifier: 81:C9:20:F3:89:18:6D:94:9A:88:52:0A:43:6E:32:FF:38:29:1F:5C Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 2877701D6E9879848B1A61290C5DA55CC7495B9B Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e33312e302f32342d3234203d3e20313532303639.roa Signing time: Mon 20 Oct 2025 14:36:28 +0000 ROA not before: Mon 20 Oct 2025 14:31:28 +0000 ROA not after: Mon 19 Oct 2026 14:36:28 +0000 asID: 152069 IP address blocks: 202.91.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 20:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:77:70:1d:6e:98:79:84:8b:1a:61:29:0c:5d:a5:5c:c7:49:5b:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: Oct 20 14:31:28 2025 GMT Not After : Oct 19 14:36:28 2026 GMT Subject: CN=81C920F389186D949A88520A436E32FF38291F5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:83:4c:2a:a5:bc:6d:39:48:71:1b:1b:ce:07: 26:38:2d:96:21:36:07:da:4d:d6:9f:15:29:17:e9: d6:37:91:b9:67:1f:cd:56:7c:f6:91:c9:79:97:5b: 27:8e:a4:1f:c0:fc:f4:65:38:80:75:00:6b:69:2a: 8e:50:66:e3:48:65:b2:fb:a2:45:53:7e:ed:7b:68: b3:64:de:85:f5:4d:f6:6c:1e:3d:11:cb:f8:72:67: 51:35:66:72:c8:c3:c5:a1:e0:8a:2d:4d:e9:99:73: 2f:49:2a:43:61:20:de:8c:e7:ad:e7:a6:62:1a:71: 8e:eb:8d:f3:e4:1b:d5:58:e9:c5:54:9a:65:ac:ec: b4:b0:47:e3:92:51:74:36:f2:7c:d4:3c:4d:5d:b7: fc:a7:cf:65:70:b9:8a:66:70:b4:12:59:47:53:db: 11:af:6b:cd:52:cf:1e:2f:4b:76:d4:1e:8e:3a:30: 4d:1a:9f:d9:18:3d:d8:e8:c5:97:e0:1b:99:97:52: 73:26:58:3b:67:0a:6c:12:85:54:f6:6b:9c:bd:29: 69:da:aa:ec:f8:36:77:28:fa:ef:ed:60:3a:d2:cd: 64:51:e9:83:d3:c9:c4:81:8b:79:7d:37:12:24:57: f1:86:10:a1:f9:9f:49:ac:89:af:4f:a7:b0:e3:0d: 57:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:C9:20:F3:89:18:6D:94:9A:88:52:0A:43:6E:32:FF:38:29:1F:5C X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e33312e302f32342d3234203d3e20313532303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.31.0/24 Signature Algorithm: sha256WithRSAEncryption eb:92:d8:5f:d8:fe:50:8d:48:a3:2b:cb:c5:e4:f4:76:b6:7b: 2d:cb:bf:f0:50:13:e1:e3:d4:5f:3c:e3:80:3e:5a:af:a7:67: f3:51:c7:40:e1:ab:e0:cb:76:54:fc:fc:ac:1e:b3:ce:86:5f: 67:a4:56:f5:77:a5:48:b4:de:f8:38:b6:7a:2b:85:58:ad:ca: 55:8a:bf:96:d6:27:bc:a3:d7:80:38:be:e9:2a:00:0b:8a:9d: bc:bd:ef:3f:7b:4a:93:26:5e:52:2b:0d:68:3a:25:90:5a:c1: 59:7c:1b:af:47:bc:9b:ad:f0:4b:9b:4b:de:e6:ca:12:cc:ed: f6:1a:e7:f2:86:64:97:66:c1:75:cb:cf:57:81:4b:ce:4e:9c: 63:b6:77:94:b7:59:ed:1b:5c:b0:cb:cb:49:18:59:ec:61:e7: a2:a0:ce:99:06:9d:df:15:42:d0:da:d3:38:e7:ad:5b:10:08: 5b:7c:f0:91:d1:ec:cc:87:6b:d2:9a:b9:26:bf:7a:2e:2b:29: e2:60:c3:92:a9:6d:84:3c:eb:42:35:10:6d:c4:be:d3:ed:39: 21:49:3b:57:42:8c:d5:e5:04:d4:55:05:7d:e2:77:64:4f:2c: de:3c:75:bf:08:49:b6:07:6f:89:bc:a3:54:e0:f0:d3:86:03: 20:fe:9f:e4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKHdwHW6YeYSLGmEpDF2lXMdJW5swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNTEwMjAxNDMxMjhaFw0yNjEwMTkxNDM2MjhaMDMxMTAvBgNV BAMTKDgxQzkyMEYzODkxODZEOTQ5QTg4NTIwQTQzNkUzMkZGMzgyOTFGNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWg0wqpbxtOUhxGxvOByY4LZYh NgfaTdafFSkX6dY3kblnH81WfPaRyXmXWyeOpB/A/PRlOIB1AGtpKo5QZuNIZbL7 okVTfu17aLNk3oX1TfZsHj0Ry/hyZ1E1ZnLIw8Wh4IotTemZcy9JKkNhIN6M563n pmIacY7rjfPkG9VY6cVUmmWs7LSwR+OSUXQ28nzUPE1dt/ynz2VwuYpmcLQSWUdT 2xGva81Szx4vS3bUHo46ME0an9kYPdjoxZfgG5mXUnMmWDtnCmwShVT2a5y9KWna quz4Nnco+u/tYDrSzWRR6YPTycSBi3l9NxIkV/GGEKH5n0msia9Pp7DjDVenAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgckg84kYbZSaiFIKQ24y/zgpH1wwHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMyMzAzMjJlMzkzMTJlMzMzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpbHzANBgkqhkiG 9w0BAQsFAAOCAQEA65LYX9j+UI1IoyvLxeT0drZ7Lcu/8FAT4ePUXzzjgD5ar6dn 81HHQOGr4Mt2VPz8rB6zzoZfZ6RW9XelSLTe+Di2eiuFWK3KVYq/ltYnvKPXgDi+ 6SoAC4qdvL3vP3tKkyZeUisNaDolkFrBWXwbr0e8m63wS5tL3ubKEszt9hrn8oZk l2bBdcvPV4FLzk6cY7Z3lLdZ7RtcsMvLSRhZ7GHnoqDOmQad3xVC0NrTOOetWxAI W3zwkdHszIdr0pq5Jr96Lisp4mDDkqlthDzrQjUQbcS+0+05IUk7V0KM1eUE1FUF feJ3ZE8s3jx1vwhJtgdvibyjVODw04YDIP6f5A== -----END CERTIFICATE-----Generated at Tue Oct 21 05:07:33 2025 by rpki-client