$ rpki-client -vvf repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36322e302f32332d3234203d3e203436303233.roa File: 3230332e3134352e36322e302f32332d3234203d3e203436303233.roa (raw, json) Hash identifier: nYNGAgZ/KHJJA/3d3uL0ysMNm9weFEF7cJoGGKweKrc= Subject key identifier: B9:76:FA:5A:3F:5D:2A:07:27:6B:15:21:77:A7:65:FE:96:EC:E0:C7 Certificate issuer: /CN=21AB9EB0A860D2619CF210410608EB831A463442 Certificate serial: 01D667AD6EB1308696A55C52A97A5E9B243F63B4 Authority key identifier: 21:AB:9E:B0:A8:60:D2:61:9C:F2:10:41:06:08:EB:83:1A:46:34:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AB9EB0A860D2619CF210410608EB831A463442.cer Subject info access: rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36322e302f32332d3234203d3e203436303233.roa Signing time: Tue 07 Oct 2025 12:00:02 +0000 ROA not before: Tue 07 Oct 2025 11:55:02 +0000 ROA not after: Tue 06 Oct 2026 12:00:02 +0000 asID: 46023 IP address blocks: 203.145.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/21AB9EB0A860D2619CF210410608EB831A463442.crl rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/21AB9EB0A860D2619CF210410608EB831A463442.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AB9EB0A860D2619CF210410608EB831A463442.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 13:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:d6:67:ad:6e:b1:30:86:96:a5:5c:52:a9:7a:5e:9b:24:3f:63:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AB9EB0A860D2619CF210410608EB831A463442 Validity Not Before: Oct 7 11:55:02 2025 GMT Not After : Oct 6 12:00:02 2026 GMT Subject: CN=B976FA5A3F5D2A07276B152177A765FE96ECE0C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a3:8b:40:89:80:8d:54:a2:60:fc:0b:15:e8: df:c3:de:72:eb:fd:86:f6:20:3d:9f:b6:f9:1c:7e: b9:8f:dd:6f:49:8f:c5:fe:1e:a5:ee:2a:dc:01:2a: db:02:de:f3:72:53:ea:2d:1c:cf:ad:6f:42:92:01: 05:c4:0d:9b:1b:49:e1:d1:2f:0a:e4:bf:c5:1b:2a: f3:a6:ad:ab:6e:7b:fe:b2:6d:16:a3:62:22:93:c9: bc:2f:69:bd:ad:49:5d:50:0f:dc:60:70:73:a9:f2: 3b:af:31:04:02:bf:b7:1c:26:95:59:e8:35:58:be: af:d4:6c:08:f4:9f:7a:d8:e3:16:86:ee:57:ce:3b: 68:b8:55:de:9d:5d:1f:f7:c0:a7:3a:ef:85:bb:21: bb:2c:16:d9:a5:2c:a8:b6:6b:20:f4:4c:c5:7d:32: 2b:a4:0b:0e:f0:6c:d1:2f:6d:5c:2c:1f:e1:0b:91: 74:55:91:2f:ce:d5:0f:a1:93:be:8c:1e:d0:53:5f: a7:49:e9:a2:4a:6f:1e:03:b0:29:47:9d:11:b0:ae: f7:2a:7f:f3:c2:7b:03:41:eb:e3:ba:12:d8:36:bd: d7:97:d9:40:a9:f3:bb:b9:19:2e:91:5e:c7:97:bb: 71:59:f1:1e:96:88:2f:91:51:84:ea:9f:2b:02:11: 5a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:76:FA:5A:3F:5D:2A:07:27:6B:15:21:77:A7:65:FE:96:EC:E0:C7 X509v3 Authority Key Identifier: keyid:21:AB:9E:B0:A8:60:D2:61:9C:F2:10:41:06:08:EB:83:1A:46:34:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/21AB9EB0A860D2619CF210410608EB831A463442.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AB9EB0A860D2619CF210410608EB831A463442.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36322e302f32332d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.145.62.0/23 Signature Algorithm: sha256WithRSAEncryption ca:1b:8a:08:26:f0:81:ec:c9:8c:c5:17:59:c8:2e:3d:79:90: 67:c7:90:f4:48:2a:0d:7e:55:d6:72:ed:d5:eb:9c:5c:c0:bf: 2b:c3:c1:3d:1c:62:69:14:9f:c8:f2:40:10:4e:ea:a3:2c:13: a3:0c:7d:ed:fb:42:be:e9:52:3e:10:a1:dc:fe:c0:ec:b7:5f: 79:be:5d:8f:95:c2:78:ce:92:00:09:aa:0c:08:69:37:04:3a: 44:e3:5e:6d:12:bb:0b:fc:3c:cd:37:d2:a3:21:5f:af:d7:a6: 1e:57:2b:9d:7a:76:15:58:49:4f:00:d9:0f:01:99:36:4f:ca: 66:55:a1:df:61:33:f1:9a:f3:a0:10:c5:c7:67:6d:5a:0d:e2: 05:9f:96:91:d4:3c:b4:5c:f1:d9:06:fd:17:85:b1:cc:01:d7: cd:b0:ec:84:44:3e:34:69:65:25:10:b5:e8:12:bd:86:fd:f2: fc:8c:14:a5:a4:c4:b6:a9:90:59:ef:ce:fe:77:8b:50:54:4a: 98:34:46:0e:37:99:03:85:66:de:75:b3:b2:48:ec:ee:05:2d: 19:53:ba:f7:85:0b:da:58:2a:d6:2a:a8:ba:14:62:58:fa:cf: bc:bc:f9:51:00:c0:0c:0c:10:0f:82:12:48:08:3f:fe:04:5e: 99:04:e0:72 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAdZnrW6xMIaWpVxSqXpemyQ/Y7QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQjlFQjBBODYwRDI2MTlDRjIxMDQxMDYwOEVCODMx QTQ2MzQ0MjAeFw0yNTEwMDcxMTU1MDJaFw0yNjEwMDYxMjAwMDJaMDMxMTAvBgNV BAMTKEI5NzZGQTVBM0Y1RDJBMDcyNzZCMTUyMTc3QTc2NUZFOTZFQ0UwQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRo4tAiYCNVKJg/AsV6N/D3nLr /Yb2ID2ftvkcfrmP3W9Jj8X+HqXuKtwBKtsC3vNyU+otHM+tb0KSAQXEDZsbSeHR Lwrkv8UbKvOmratue/6ybRajYiKTybwvab2tSV1QD9xgcHOp8juvMQQCv7ccJpVZ 6DVYvq/UbAj0n3rY4xaG7lfOO2i4Vd6dXR/3wKc674W7IbssFtmlLKi2ayD0TMV9 MiukCw7wbNEvbVwsH+ELkXRVkS/O1Q+hk76MHtBTX6dJ6aJKbx4DsClHnRGwrvcq f/PCewNB6+O6Etg2vdeX2UCp87u5GS6RXseXu3FZ8R6WiC+RUYTqnysCEVpNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuXb6Wj9dKgcnaxUhd6dl/pbs4McwHwYDVR0j BBgwFoAUIauesKhg0mGc8hBBBgjrgxpGNEIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z M2RkYTkyMy1lYTM2LTQ1NmItYmFmZS00MGU2YjYyZjUwYzUvMC8yMUFCOUVCMEE4 NjBEMjYxOUNGMjEwNDEwNjA4RUI4MzFBNDYzNDQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQjlFQjBBODYwRDI2MTlDRjIxMDQxMDYwOEVCODMxQTQ2 MzQ0Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzZGRhOTIzLWVhMzYtNDU2Yi1i YWZlLTQwZTZiNjJmNTBjNS8wLzMyMzAzMzJlMzEzNDM1MmUzNjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcuRPjANBgkqhkiG 9w0BAQsFAAOCAQEAyhuKCCbwgezJjMUXWcguPXmQZ8eQ9EgqDX5V1nLt1eucXMC/ K8PBPRxiaRSfyPJAEE7qoywTowx97ftCvulSPhCh3P7A7Ldfeb5dj5XCeM6SAAmq DAhpNwQ6RONebRK7C/w8zTfSoyFfr9emHlcrnXp2FVhJTwDZDwGZNk/KZlWh32Ez 8ZrzoBDFx2dtWg3iBZ+WkdQ8tFzx2Qb9F4WxzAHXzbDshEQ+NGllJRC16BK9hv3y /IwUpaTEtqmQWe/O/neLUFRKmDRGDjeZA4Vm3nWzskjs7gUtGVO694UL2lgq1iqo uhRiWPrPvLz5UQDADAwQD4ISSAg//gRemQTgcg== -----END CERTIFICATE-----Generated at Mon Oct 20 17:01:33 2025 by rpki-client