$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa File: 3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa (raw, json) Hash identifier: C0CDuWEVU0SX0hds00E1HGuGHRio6g8DwzULftVgj6I= Subject key identifier: 01:48:C6:76:78:02:C2:45:98:20:90:80:4D:FB:F6:FF:76:06:3D:CD Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 54662F8C7AC9B3C2AD5917A7F866B7B9D9325270 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa Signing time: Mon 06 Oct 2025 08:00:01 +0000 ROA not before: Mon 06 Oct 2025 07:55:01 +0000 ROA not after: Mon 05 Oct 2026 08:00:01 +0000 asID: 142327 IP address blocks: 124.40.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 09:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:66:2f:8c:7a:c9:b3:c2:ad:59:17:a7:f8:66:b7:b9:d9:32:52:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Oct 6 07:55:01 2025 GMT Not After : Oct 5 08:00:01 2026 GMT Subject: CN=0148C6767802C245982090804DFBF6FF76063DCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:77:02:91:08:c8:f0:90:c9:05:0c:1a:9e:b8: 93:8a:21:ec:37:57:20:82:fa:0f:c8:33:4f:f5:1e: 4b:50:3d:c2:a8:03:b9:e5:4b:ad:df:ff:c0:58:81: b6:2a:35:a1:a8:7b:52:b0:f6:bc:a4:63:09:cf:81: e0:4b:6f:a6:e5:bc:ba:ed:85:b7:89:3c:70:33:c9: fb:1c:93:8f:f6:f4:d3:ae:60:df:c5:76:36:96:92: a7:9e:a3:36:1b:2a:17:60:a3:e0:fc:21:eb:e7:35: 7c:b6:66:f2:7e:4e:b9:ce:e5:34:56:49:d9:19:f1: fa:70:51:fb:c4:53:51:30:6d:e2:25:d2:ac:71:2c: 21:c7:96:d4:c4:43:3d:38:3a:37:71:ed:d5:f6:70: 36:32:73:b1:65:45:2d:25:41:33:fe:3f:44:46:61: 59:b2:ea:8b:42:41:46:de:e6:39:96:d9:bf:8c:a0: 22:00:a8:44:55:c9:67:32:14:a4:13:ac:c2:6d:10: 0a:3d:7e:dc:ce:12:b2:8d:df:31:40:9e:04:2c:45: e4:eb:16:2f:c1:42:df:81:39:4e:08:cf:9f:c5:e4: cd:60:c6:af:ba:e7:ca:8d:46:60:2a:69:46:d1:89: 32:e4:f6:a2:2b:61:e6:5f:52:04:2c:26:4f:65:09: b4:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:48:C6:76:78:02:C2:45:98:20:90:80:4D:FB:F6:FF:76:06:3D:CD X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.40.248.0/24 Signature Algorithm: sha256WithRSAEncryption 94:58:a5:09:8a:8d:5d:ae:97:6a:49:f6:03:f9:20:cf:b4:42: ee:da:d4:89:a8:24:3e:1d:65:17:05:f8:3b:46:ae:cb:93:8d: c4:29:f2:29:bb:4a:0c:c1:ce:0a:04:f2:a4:c7:db:8b:84:71: 6e:e4:c0:9b:29:33:06:c4:55:a9:99:2d:53:5e:fb:b0:16:b3: 5f:d6:c1:84:b7:e1:f0:8e:3a:20:9c:0d:7d:1f:e9:6d:61:27: 2c:ef:09:22:f5:94:26:cf:57:51:31:97:22:c4:20:be:82:33: a7:72:0c:97:78:f2:58:5e:0d:33:9e:c6:e4:a8:33:ae:16:2d: 9f:b6:81:08:80:fa:f2:f3:8d:a5:c0:09:0a:9c:a8:59:05:3c: b7:76:dd:a7:74:16:9d:b9:5d:9e:19:b9:dc:b6:c4:dd:ca:32: c6:2f:1b:d5:41:c0:f4:d1:4d:ad:23:c4:1d:4b:d6:05:64:e8: 20:6d:62:68:57:94:ec:ed:61:0a:37:99:48:99:04:24:8a:01: 90:97:8d:40:f5:16:c6:5d:4d:1d:64:58:43:4b:66:f7:ec:9b: 7a:d7:20:75:14:36:92:03:f4:86:9c:e1:0d:e5:c9:73:cf:7b: 1e:e7:8c:7e:68:b6:e1:9a:03:bc:94:a0:71:ee:d5:e1:25:2b: 9b:ae:81:d3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVGYvjHrJs8KtWRen+Ga3udkyUnAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNTEwMDYwNzU1MDFaFw0yNjEwMDUwODAwMDFaMDMxMTAvBgNV BAMTKDAxNDhDNjc2NzgwMkMyNDU5ODIwOTA4MDRERkJGNkZGNzYwNjNEQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWdwKRCMjwkMkFDBqeuJOKIew3 VyCC+g/IM0/1HktQPcKoA7nlS63f/8BYgbYqNaGoe1Kw9rykYwnPgeBLb6blvLrt hbeJPHAzyfsck4/29NOuYN/FdjaWkqeeozYbKhdgo+D8IevnNXy2ZvJ+TrnO5TRW SdkZ8fpwUfvEU1EwbeIl0qxxLCHHltTEQz04Ojdx7dX2cDYyc7FlRS0lQTP+P0RG YVmy6otCQUbe5jmW2b+MoCIAqERVyWcyFKQTrMJtEAo9ftzOErKN3zFAngQsReTr Fi/BQt+BOU4Iz5/F5M1gxq+658qNRmAqaUbRiTLk9qIrYeZfUgQsJk9lCbRVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUAUjGdngCwkWYIJCATfv2/3YGPc0wHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOTVjMTljLTMyNjItNDhjNy1h ZjAyLTM3YTgzNWQwYTc3OS8wLzMxMzIzNDJlMzQzMDJlMzIzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAfCj4MA0GCSqG SIb3DQEBCwUAA4IBAQCUWKUJio1drpdqSfYD+SDPtELu2tSJqCQ+HWUXBfg7Rq7L k43EKfIpu0oMwc4KBPKkx9uLhHFu5MCbKTMGxFWpmS1TXvuwFrNf1sGEt+Hwjjog nA19H+ltYScs7wki9ZQmz1dRMZcixCC+gjOncgyXePJYXg0znsbkqDOuFi2ftoEI gPry842lwAkKnKhZBTy3dt2ndBaduV2eGbnctsTdyjLGLxvVQcD00U2tI8QdS9YF ZOggbWJoV5Ts7WEKN5lImQQkigGQl41A9RbGXU0dZFhDS2b37Jt61yB1FDaSA/SG nOEN5clzz3se54x+aLbhmgO8lKBx7tXhJSubroHT -----END CERTIFICATE-----Generated at Mon Oct 20 23:49:42 2025 by rpki-client