$ rpki-client -vvf repo-rpki.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0/3138302e3133312e3132392e302f32342d3234203d3e20313532303238.roa File: 3138302e3133312e3132392e302f32342d3234203d3e20313532303238.roa (raw, json) Hash identifier: IK3NBrk/iQNskIBya+kx1CnPloRzYziR32FnB/WUNZ4= Subject key identifier: 82:B1:E1:0D:76:FA:28:48:98:B6:2D:2E:DE:32:FD:9E:E6:2A:80:85 Certificate issuer: /CN=B16C4772F3D77045BBA997F94CEACA9E0DCC2865 Certificate serial: 754EFACC0C438F7277A0E2B34EE3B5587AA11DD6 Authority key identifier: B1:6C:47:72:F3:D7:70:45:BB:A9:97:F9:4C:EA:CA:9E:0D:CC:28:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B16C4772F3D77045BBA997F94CEACA9E0DCC2865.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0/3138302e3133312e3132392e302f32342d3234203d3e20313532303238.roa Signing time: Wed 01 Oct 2025 06:02:25 +0000 ROA not before: Wed 01 Oct 2025 05:57:25 +0000 ROA not after: Wed 30 Sep 2026 06:02:25 +0000 asID: 152028 IP address blocks: 180.131.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0/B16C4772F3D77045BBA997F94CEACA9E0DCC2865.crl rsync://repo-rpki.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0/B16C4772F3D77045BBA997F94CEACA9E0DCC2865.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B16C4772F3D77045BBA997F94CEACA9E0DCC2865.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:4e:fa:cc:0c:43:8f:72:77:a0:e2:b3:4e:e3:b5:58:7a:a1:1d:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B16C4772F3D77045BBA997F94CEACA9E0DCC2865 Validity Not Before: Oct 1 05:57:25 2025 GMT Not After : Sep 30 06:02:25 2026 GMT Subject: CN=82B1E10D76FA284898B62D2EDE32FD9EE62A8085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5e:ef:36:49:08:ba:1f:05:7d:83:da:02:31: 4e:be:74:29:2a:0b:b5:a1:53:60:ee:f9:38:f2:a6: ab:ea:97:2d:2f:a4:34:dd:84:d0:27:39:04:0e:7a: 70:09:5b:0a:8c:68:60:62:3e:0b:aa:7c:f4:1f:68: c8:53:55:07:92:b0:fa:0e:02:49:de:ad:6f:92:e0: a5:1a:de:94:92:e5:2f:1e:67:aa:39:c9:69:0a:66: b4:63:20:1b:3c:49:51:d8:8f:16:69:45:f4:e3:3c: ef:92:ca:5a:94:4d:6a:33:3a:86:62:48:fc:db:05: 82:7a:62:a5:8e:eb:76:e8:b6:b0:6c:a4:39:21:1b: dc:ef:3c:62:76:48:b1:cc:60:4e:4f:b7:c4:f3:74: 31:48:af:97:c8:cb:e4:d1:6a:1b:7b:b5:b1:5b:ff: 9c:27:f8:76:98:2d:30:2d:90:64:64:9a:5c:4b:08: c8:e1:7d:d9:1c:30:71:fd:a5:6d:3c:e9:93:0c:70: 0d:4d:e7:da:0b:72:e2:ac:c9:08:91:cc:37:06:38: f0:4e:31:4d:43:af:2b:a3:1b:0b:b5:67:4a:62:9f: 82:e0:c5:06:fb:3a:01:d3:bc:b1:e8:04:bb:95:57: 9b:13:21:05:48:b0:75:4e:e5:2c:cd:7c:ce:47:a0: 82:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:B1:E1:0D:76:FA:28:48:98:B6:2D:2E:DE:32:FD:9E:E6:2A:80:85 X509v3 Authority Key Identifier: keyid:B1:6C:47:72:F3:D7:70:45:BB:A9:97:F9:4C:EA:CA:9E:0D:CC:28:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0/B16C4772F3D77045BBA997F94CEACA9E0DCC2865.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B16C4772F3D77045BBA997F94CEACA9E0DCC2865.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0/3138302e3133312e3132392e302f32342d3234203d3e20313532303238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.131.129.0/24 Signature Algorithm: sha256WithRSAEncryption b6:09:99:cf:3c:17:78:c7:7c:9b:eb:22:10:6a:0a:0a:bf:a0: 2d:fa:3c:de:22:73:a3:3e:06:35:37:79:01:b7:e3:6f:8f:64: bd:d8:09:10:a6:92:99:b3:d8:f3:1c:e5:81:89:89:30:e1:0c: ce:9a:a6:11:10:53:e8:f1:c6:79:1e:2f:41:69:92:73:83:e1: 4d:a7:13:62:e6:59:73:c5:ec:83:5d:d9:e0:05:92:d7:06:ab: 92:61:a6:5a:dd:06:2b:5c:d8:74:20:5d:9b:88:5d:aa:54:41: 51:73:19:20:ac:23:97:34:02:7b:4c:fb:58:52:6c:23:8b:71: 37:49:a6:fb:8f:6e:18:a1:c4:61:3f:bd:f7:47:84:d2:b1:f2: 16:fb:a1:1b:c0:74:fd:aa:23:de:cb:0f:6c:e4:a8:46:45:04: 0d:26:35:cc:7a:d6:d4:04:7f:34:23:1d:00:55:2c:4c:e9:91: 43:07:23:ec:71:17:f1:c4:4e:5c:4a:3d:56:ef:2b:a6:69:b2: 2e:dd:fa:f7:1b:72:80:79:52:2a:a9:ce:d4:43:d5:b9:ef:f8: bc:17:d4:4c:02:1a:cd:58:d6:b6:1a:7c:d6:d2:c1:4c:20:d2: 58:19:ef:a2:37:dc:d6:d0:bd:fd:26:2b:4f:92:1e:a7:f1:ed: b4:51:ab:52 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdU76zAxDj3J3oOKzTuO1WHqhHdYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE2QzQ3NzJGM0Q3NzA0NUJCQTk5N0Y5NENFQUNBOUUw RENDMjg2NTAeFw0yNTEwMDEwNTU3MjVaFw0yNjA5MzAwNjAyMjVaMDMxMTAvBgNV BAMTKDgyQjFFMTBENzZGQTI4NDg5OEI2MkQyRURFMzJGRDlFRTYyQTgwODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8Xu82SQi6HwV9g9oCMU6+dCkq C7WhU2Du+Tjypqvqly0vpDTdhNAnOQQOenAJWwqMaGBiPguqfPQfaMhTVQeSsPoO AknerW+S4KUa3pSS5S8eZ6o5yWkKZrRjIBs8SVHYjxZpRfTjPO+SylqUTWozOoZi SPzbBYJ6YqWO63botrBspDkhG9zvPGJ2SLHMYE5Pt8TzdDFIr5fIy+TRaht7tbFb /5wn+HaYLTAtkGRkmlxLCMjhfdkcMHH9pW086ZMMcA1N59oLcuKsyQiRzDcGOPBO MU1DryujGwu1Z0pin4LgxQb7OgHTvLHoBLuVV5sTIQVIsHVO5SzNfM5HoIIlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUgrHhDXb6KEiYti0u3jL9nuYqgIUwHwYDVR0j BBgwFoAUsWxHcvPXcEW7qZf5TOrKng3MKGUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Yzk5NDFhNC0yOGQyLTQ3ZDEtOTFlNy1hY2FiNTkwODQ0NjIvMC9CMTZDNDc3MkYz RDc3MDQ1QkJBOTk3Rjk0Q0VBQ0E5RTBEQ0MyODY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE2QzQ3NzJGM0Q3NzA0NUJCQTk5N0Y5NENFQUNBOUUwREND Mjg2NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjOTk0MWE0LTI4ZDItNDdkMS05 MWU3LWFjYWI1OTA4NDQ2Mi8wLzMxMzgzMDJlMzEzMzMxMmUzMTMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzIzMDMyMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0g4EwDQYJ KoZIhvcNAQELBQADggEBALYJmc88F3jHfJvrIhBqCgq/oC36PN4ic6M+BjU3eQG3 42+PZL3YCRCmkpmz2PMc5YGJiTDhDM6aphEQU+jxxnkeL0FpknOD4U2nE2LmWXPF 7INd2eAFktcGq5JhplrdBitc2HQgXZuIXapUQVFzGSCsI5c0AntM+1hSbCOLcTdJ pvuPbhihxGE/vfdHhNKx8hb7oRvAdP2qI97LD2zkqEZFBA0mNcx61tQEfzQjHQBV LEzpkUMHI+xxF/HETlxKPVbvK6Zpsi7d+vcbcoB5UiqpztRD1bnv+LwX1EwCGs1Y 1rYafNbSwUwg0lgZ76I33NbQvf0mK0+SHqfx7bRRq1I= -----END CERTIFICATE-----Generated at Mon Oct 20 19:06:54 2025 by rpki-client