$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa File: 3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa (raw, json) Hash identifier: ZeQ/G35c/J7hJXCvQZ6ieAUy4NBWFOv66XK2TZxgUwU= Subject key identifier: 9A:62:2D:50:B4:41:B5:2B:6C:87:C0:57:3E:48:AE:DE:5A:75:CA:34 Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 4D2A9F78AA299F281E07186F931F60826D78C91E Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa Signing time: Mon 06 Oct 2025 08:00:01 +0000 ROA not before: Mon 06 Oct 2025 07:55:01 +0000 ROA not after: Mon 05 Oct 2026 08:00:01 +0000 asID: 142327 IP address blocks: 124.40.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 09:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:2a:9f:78:aa:29:9f:28:1e:07:18:6f:93:1f:60:82:6d:78:c9:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Oct 6 07:55:01 2025 GMT Not After : Oct 5 08:00:01 2026 GMT Subject: CN=9A622D50B441B52B6C87C0573E48AEDE5A75CA34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c0:0a:63:89:52:f0:90:21:87:35:d0:7b:f6: 83:83:44:30:e6:83:a5:9b:c9:90:a2:94:b7:be:27: 84:1c:98:85:5b:92:b0:5b:25:d6:0a:33:4a:65:68: 1c:7b:2a:6a:63:7a:1f:fa:6d:13:bd:34:5c:95:cd: 01:0f:78:30:77:b2:82:d7:6d:88:ba:3c:90:72:a3: c9:6e:e2:af:61:3a:82:46:18:b7:4a:de:1c:f1:73: 12:6a:4e:7e:d5:bf:1d:18:9c:32:fc:d1:bd:58:30: 0c:62:83:8c:ac:5b:70:f2:5d:e1:be:d0:d1:05:f6: c6:a4:7a:45:6d:da:07:08:a2:ab:63:bb:0f:85:1f: 2e:a3:c5:45:d3:9b:30:bb:18:ec:1b:1e:e3:a7:93: ca:13:2b:0a:7b:d3:90:1d:76:4b:e0:2a:23:bb:81: f8:9a:69:e5:af:72:67:2c:67:dc:0a:83:cc:33:db: 52:28:6b:de:75:ff:85:d8:53:61:95:00:04:61:0e: 82:af:a9:63:31:f9:57:d3:e2:fc:d8:eb:fa:dc:d0: 71:77:10:12:2b:4b:82:95:4b:2c:68:56:7c:c1:93: 55:00:bc:16:f8:5e:87:81:f7:9e:28:a3:d1:37:cd: 4b:8a:c0:ff:87:cc:b4:48:0e:69:79:53:a0:6d:53: 26:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:62:2D:50:B4:41:B5:2B:6C:87:C0:57:3E:48:AE:DE:5A:75:CA:34 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.40.253.0/24 Signature Algorithm: sha256WithRSAEncryption 45:0e:5c:a7:94:fb:87:70:6e:d9:5f:b8:69:ee:c4:12:10:d0: 2e:0f:3e:5b:17:6e:73:45:7f:44:fc:65:60:ac:1e:10:be:5d: 5d:38:5b:b9:55:69:09:90:bb:02:cc:18:85:45:50:e7:40:02: 12:82:10:e3:5c:5e:4f:e2:85:49:64:e8:8d:9b:5d:b3:b1:b1: 69:17:7e:5c:5c:79:e7:0c:39:ba:e7:d7:48:8c:47:40:90:c3: 42:c3:c7:4e:19:a2:86:03:e3:69:cb:c3:c5:34:78:e5:6d:ea: 69:4f:85:6a:7b:31:3a:d6:1b:5e:63:a4:14:14:32:fd:b5:b4: 32:a0:b1:4b:d4:be:2b:92:32:d2:c3:41:d5:d0:59:b6:26:53: f4:fe:0b:4d:e3:4e:ce:3b:18:27:85:35:a9:c2:9b:b1:ac:9f: 98:13:4b:99:4c:68:5a:5d:da:01:7e:e7:76:11:b9:87:d9:40: 36:05:20:6f:e3:30:27:56:13:85:3d:26:e1:be:5c:ee:62:63: bb:7c:4b:3a:4c:07:75:93:cb:08:db:d5:de:eb:fd:5b:c1:05: 5e:f7:c9:39:c9:5c:e2:84:a0:2c:16:00:8a:52:3d:01:4b:b5: 8f:0c:53:9e:ca:db:65:fa:a1:ed:4c:66:9a:84:7f:9a:45:19: 46:be:18:8e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTSqfeKopnygeBxhvkx9ggm14yR4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNTEwMDYwNzU1MDFaFw0yNjEwMDUwODAwMDFaMDMxMTAvBgNV BAMTKDlBNjIyRDUwQjQ0MUI1MkI2Qzg3QzA1NzNFNDhBRURFNUE3NUNBMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVwApjiVLwkCGHNdB79oODRDDm g6WbyZCilLe+J4QcmIVbkrBbJdYKM0plaBx7Kmpjeh/6bRO9NFyVzQEPeDB3soLX bYi6PJByo8lu4q9hOoJGGLdK3hzxcxJqTn7Vvx0YnDL80b1YMAxig4ysW3DyXeG+ 0NEF9sakekVt2gcIoqtjuw+FHy6jxUXTmzC7GOwbHuOnk8oTKwp705AddkvgKiO7 gfiaaeWvcmcsZ9wKg8wz21Ioa951/4XYU2GVAARhDoKvqWMx+VfT4vzY6/rc0HF3 EBIrS4KVSyxoVnzBk1UAvBb4XoeB954oo9E3zUuKwP+HzLRIDml5U6BtUyaFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmmItULRBtStsh8BXPkiu3lp1yjQwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOTVjMTljLTMyNjItNDhjNy1h ZjAyLTM3YTgzNWQwYTc3OS8wLzMxMzIzNDJlMzQzMDJlMzIzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAfCj9MA0GCSqG SIb3DQEBCwUAA4IBAQBFDlynlPuHcG7ZX7hp7sQSENAuDz5bF25zRX9E/GVgrB4Q vl1dOFu5VWkJkLsCzBiFRVDnQAISghDjXF5P4oVJZOiNm12zsbFpF35cXHnnDDm6 59dIjEdAkMNCw8dOGaKGA+Npy8PFNHjlbeppT4VqezE61hteY6QUFDL9tbQyoLFL 1L4rkjLSw0HV0Fm2JlP0/gtN407OOxgnhTWpwpuxrJ+YE0uZTGhaXdoBfud2EbmH 2UA2BSBv4zAnVhOFPSbhvlzuYmO7fEs6TAd1k8sI29Xe6/1bwQVe98k5yVzihKAs FgCKUj0BS7WPDFOeyttl+qHtTGaahH+aRRlGvhiO -----END CERTIFICATE-----Generated at Mon Oct 20 23:49:42 2025 by rpki-client