$ rpki-client -vvf repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36332e302f32342d3234203d3e203436303233.roa File: 3230332e3134352e36332e302f32342d3234203d3e203436303233.roa (raw, json) Hash identifier: ODR1nhecNf1PNEUsr6U6g2HSVbKZCJoeERdVZUfBxjU= Subject key identifier: C2:8A:C5:53:43:36:0A:4C:4D:B5:E4:59:F8:AF:3A:B2:86:C5:8C:CC Certificate issuer: /CN=21AB9EB0A860D2619CF210410608EB831A463442 Certificate serial: 116431C519540B3E7C23460EE63C6575BBD606CB Authority key identifier: 21:AB:9E:B0:A8:60:D2:61:9C:F2:10:41:06:08:EB:83:1A:46:34:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AB9EB0A860D2619CF210410608EB831A463442.cer Subject info access: rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36332e302f32342d3234203d3e203436303233.roa Signing time: Tue 07 Oct 2025 13:00:02 +0000 ROA not before: Tue 07 Oct 2025 12:55:02 +0000 ROA not after: Tue 06 Oct 2026 13:00:02 +0000 asID: 46023 IP address blocks: 203.145.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/21AB9EB0A860D2619CF210410608EB831A463442.crl rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/21AB9EB0A860D2619CF210410608EB831A463442.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AB9EB0A860D2619CF210410608EB831A463442.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 13:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:64:31:c5:19:54:0b:3e:7c:23:46:0e:e6:3c:65:75:bb:d6:06:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AB9EB0A860D2619CF210410608EB831A463442 Validity Not Before: Oct 7 12:55:02 2025 GMT Not After : Oct 6 13:00:02 2026 GMT Subject: CN=C28AC55343360A4C4DB5E459F8AF3AB286C58CCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3f:ac:0a:d4:eb:f3:21:80:ea:11:f3:e9:60: 94:8d:61:52:5e:0c:4e:bd:93:71:86:ac:77:80:15: f0:b4:c5:46:f2:99:92:f2:8b:36:f3:ec:65:38:7e: d6:2a:10:9a:f6:19:c7:a1:19:b0:a6:19:f3:f0:bd: d7:de:31:08:84:ba:a3:d8:7b:2f:a1:00:8a:99:93: 7b:45:9c:88:c9:68:95:f7:ff:84:6e:45:b5:50:3c: b8:36:4e:a1:0e:1f:d3:d9:b1:6e:37:6f:e1:2d:9e: bd:43:0a:61:8c:35:4e:8e:aa:4a:cc:87:2c:83:96: 94:9a:3f:49:9d:a7:76:76:fb:74:70:0f:91:86:70: fb:cd:12:53:74:c7:62:23:b1:fc:7c:a0:97:73:bb: 08:8e:18:97:4c:e5:23:33:dd:06:d5:12:90:33:58: d7:89:63:7b:85:7d:d0:2b:d1:fc:45:95:69:2b:2f: 68:aa:18:69:12:0b:35:39:02:38:47:1c:58:90:0f: 0c:ff:14:6a:96:78:f5:61:55:9f:3a:1c:e9:52:46: 0d:fb:12:3d:db:4c:2b:fa:b5:38:d9:eb:99:62:90: bc:f7:a3:86:92:ac:97:35:05:a7:72:00:1f:9b:5d: 87:25:65:fc:e8:04:14:b7:06:a6:e2:56:2d:c2:de: 13:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:8A:C5:53:43:36:0A:4C:4D:B5:E4:59:F8:AF:3A:B2:86:C5:8C:CC X509v3 Authority Key Identifier: keyid:21:AB:9E:B0:A8:60:D2:61:9C:F2:10:41:06:08:EB:83:1A:46:34:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/21AB9EB0A860D2619CF210410608EB831A463442.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AB9EB0A860D2619CF210410608EB831A463442.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36332e302f32342d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.145.63.0/24 Signature Algorithm: sha256WithRSAEncryption 50:3a:a0:10:12:c0:f8:1e:a6:1a:f9:5b:ca:d0:dc:e8:85:f1: bb:cf:35:0a:95:b6:c7:44:44:57:4d:1b:8b:3c:ea:c9:90:8c: f1:89:30:c1:b5:fc:c9:58:41:be:ef:66:98:ff:58:1e:5c:12: c0:1d:fa:0b:d5:d0:88:01:74:17:2f:f1:6f:a8:3b:48:1e:ae: 04:ae:52:0c:67:e1:d7:fd:a6:09:0b:0f:3e:79:3c:4c:1d:c7: 70:fe:38:29:a2:1d:d9:34:b0:89:16:26:e5:1a:32:d5:98:94: ed:26:2c:f9:1b:d3:53:81:1c:eb:35:03:6f:3c:1e:0b:a9:4a: ed:90:62:88:05:eb:f6:b6:e5:7d:47:dc:e7:11:81:8a:b0:e8: 10:bc:ba:36:ee:b1:9a:4d:05:24:75:90:13:30:33:42:fb:60: 70:f1:e0:ee:92:41:a8:aa:80:b5:74:95:5b:f2:2c:9c:b2:5b: cb:21:04:b7:44:51:02:fe:20:1b:2e:b0:27:14:f2:a0:ac:e9: 4f:25:3b:25:5a:f8:f6:c5:76:75:3d:f6:50:e7:2a:81:77:2b: 7f:a5:f3:47:e6:01:50:d1:19:0a:9c:11:3a:0d:dc:87:8a:bb: a8:79:0a:6f:2a:da:bd:0e:9a:4a:f8:e1:40:18:65:7b:bc:31: 78:9b:fa:f8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEWQxxRlUCz58I0YO5jxldbvWBsswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQjlFQjBBODYwRDI2MTlDRjIxMDQxMDYwOEVCODMx QTQ2MzQ0MjAeFw0yNTEwMDcxMjU1MDJaFw0yNjEwMDYxMzAwMDJaMDMxMTAvBgNV BAMTKEMyOEFDNTUzNDMzNjBBNEM0REI1RTQ1OUY4QUYzQUIyODZDNThDQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAP6wK1OvzIYDqEfPpYJSNYVJe DE69k3GGrHeAFfC0xUbymZLyizbz7GU4ftYqEJr2GcehGbCmGfPwvdfeMQiEuqPY ey+hAIqZk3tFnIjJaJX3/4RuRbVQPLg2TqEOH9PZsW43b+Etnr1DCmGMNU6OqkrM hyyDlpSaP0mdp3Z2+3RwD5GGcPvNElN0x2Ijsfx8oJdzuwiOGJdM5SMz3QbVEpAz WNeJY3uFfdAr0fxFlWkrL2iqGGkSCzU5AjhHHFiQDwz/FGqWePVhVZ86HOlSRg37 Ej3bTCv6tTjZ65likLz3o4aSrJc1BadyAB+bXYclZfzoBBS3BqbiVi3C3hMvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUworFU0M2CkxNteRZ+K86sobFjMwwHwYDVR0j BBgwFoAUIauesKhg0mGc8hBBBgjrgxpGNEIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z M2RkYTkyMy1lYTM2LTQ1NmItYmFmZS00MGU2YjYyZjUwYzUvMC8yMUFCOUVCMEE4 NjBEMjYxOUNGMjEwNDEwNjA4RUI4MzFBNDYzNDQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQjlFQjBBODYwRDI2MTlDRjIxMDQxMDYwOEVCODMxQTQ2 MzQ0Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzZGRhOTIzLWVhMzYtNDU2Yi1i YWZlLTQwZTZiNjJmNTBjNS8wLzMyMzAzMzJlMzEzNDM1MmUzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuRPzANBgkqhkiG 9w0BAQsFAAOCAQEAUDqgEBLA+B6mGvlbytDc6IXxu881CpW2x0REV00bizzqyZCM 8YkwwbX8yVhBvu9mmP9YHlwSwB36C9XQiAF0Fy/xb6g7SB6uBK5SDGfh1/2mCQsP Pnk8TB3HcP44KaId2TSwiRYm5Roy1ZiU7SYs+RvTU4Ec6zUDbzweC6lK7ZBiiAXr 9rblfUfc5xGBirDoELy6Nu6xmk0FJHWQEzAzQvtgcPHg7pJBqKqAtXSVW/IsnLJb yyEEt0RRAv4gGy6wJxTyoKzpTyU7JVr49sV2dT32UOcqgXcrf6XzR+YBUNEZCpwR Og3ch4q7qHkKbyravQ6aSvjhQBhle7wxeJv6+A== -----END CERTIFICATE-----Generated at Mon Oct 20 16:54:40 2025 by rpki-client