$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3230382e302f32302d3234203d3e203338313432.roa File: 3231302e35372e3230382e302f32302d3234203d3e203338313432.roa (raw, json) Hash identifier: kYJzUEQcWnyFZnM0+lqlLEcfPB6UOEcJYBSDjGHXeZQ= Subject key identifier: 01:60:0F:3D:05:C7:AB:4F:F9:D6:9A:03:C8:D2:85:2F:29:76:04:4F Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 324A7C276B1F3A55C2AD7CA71AE7991712D95683 Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3230382e302f32302d3234203d3e203338313432.roa Signing time: Mon 22 Sep 2025 14:00:00 +0000 ROA not before: Mon 22 Sep 2025 13:55:00 +0000 ROA not after: Mon 21 Sep 2026 14:00:00 +0000 asID: 38142 IP address blocks: 210.57.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 20:37:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:4a:7c:27:6b:1f:3a:55:c2:ad:7c:a7:1a:e7:99:17:12:d9:56:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Sep 22 13:55:00 2025 GMT Not After : Sep 21 14:00:00 2026 GMT Subject: CN=01600F3D05C7AB4FF9D69A03C8D2852F2976044F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b3:35:7b:50:cc:ec:b0:4f:54:3f:6f:05:4e: 9b:c5:8b:98:87:1d:e9:99:3c:8a:72:87:6e:d4:5d: f9:a2:50:b3:59:86:db:e7:98:e6:74:6d:53:8c:91: 71:63:26:be:e2:08:7c:d6:91:b2:24:d9:1d:22:77: 17:d5:c4:3c:cb:86:2e:e1:35:bd:2d:03:40:1c:5b: eb:41:31:ac:59:09:35:85:f3:bf:4e:37:bf:ef:22: 6b:de:95:fd:5d:fb:fc:02:8f:c6:1c:85:bd:17:c8: 99:a9:ee:88:57:76:a8:5b:61:21:14:89:e7:7c:dc: 81:7f:48:21:7d:0f:c7:3e:b7:b2:8b:b4:2d:5a:4e: 5d:43:10:72:07:76:63:6d:f4:b0:a5:52:85:c0:7f: 86:10:99:b9:6c:58:10:09:a4:d3:c7:97:23:d6:9f: 79:95:8d:d5:fc:b6:68:8a:a7:86:54:b1:27:e5:24: de:84:16:d9:5c:dd:69:41:04:3e:95:ba:ed:b9:8f: f8:fc:34:44:b3:b6:86:de:51:ec:cb:e0:32:5f:0a: 5b:45:15:6a:e0:0a:ca:c8:6e:57:61:2a:4d:ed:b5: dd:8d:9a:7a:0b:25:56:38:ca:95:f3:79:80:94:42: 74:d3:9d:4e:8f:69:f2:42:02:79:2d:b3:ec:b7:03: a1:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:60:0F:3D:05:C7:AB:4F:F9:D6:9A:03:C8:D2:85:2F:29:76:04:4F X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3230382e302f32302d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.208.0/20 Signature Algorithm: sha256WithRSAEncryption 74:6e:37:6f:fb:1b:df:cf:7e:dd:26:b5:aa:ea:aa:50:08:ea: c1:4e:86:17:df:74:06:d8:5b:b6:d9:3e:d6:80:4e:c5:58:c8: 58:1b:1c:8d:0f:ed:c1:cc:b0:05:f0:bd:8f:4a:6f:53:42:56: ae:80:06:95:cd:2b:20:20:99:7a:8d:c6:cd:00:b8:ca:09:61: f6:1c:39:b1:2a:ae:94:1e:9e:ab:5d:32:88:64:e6:65:6d:fe: 6b:97:71:fa:ac:be:a3:b3:60:56:25:b7:b7:10:3b:c0:a3:5a: 75:5e:57:01:47:9c:93:4c:1f:d6:a7:25:cd:2b:46:6d:3a:ab: c6:b0:8b:61:76:78:a1:f3:98:d1:3e:e1:94:a7:53:b3:0f:2e: 3d:3c:b6:5a:4f:3b:8d:0b:56:47:54:b1:cc:87:36:ed:ad:2a: bd:59:e3:b9:00:b7:ec:9a:26:06:10:86:c6:04:f7:61:90:fc: 6b:de:c8:4c:e7:c0:9b:01:3a:79:de:f1:e9:43:a0:2e:5b:98: 6c:a0:6d:23:c0:09:b7:91:61:c0:50:71:e6:d4:53:6e:48:0d: 45:53:3f:81:21:07:2f:56:17:3c:c5:33:b7:e9:ee:fc:b7:26: f1:76:96:2e:2e:fc:79:1f:38:1f:e6:80:23:c6:5a:bb:4c:b7: b9:84:ad:1c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMkp8J2sfOlXCrXynGueZFxLZVoMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNTA5MjIxMzU1MDBaFw0yNjA5MjExNDAwMDBaMDMxMTAvBgNV BAMTKDAxNjAwRjNEMDVDN0FCNEZGOUQ2OUEwM0M4RDI4NTJGMjk3NjA0NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoszV7UMzssE9UP28FTpvFi5iH HemZPIpyh27UXfmiULNZhtvnmOZ0bVOMkXFjJr7iCHzWkbIk2R0idxfVxDzLhi7h Nb0tA0AcW+tBMaxZCTWF879ON7/vImvelf1d+/wCj8Ychb0XyJmp7ohXdqhbYSEU ied83IF/SCF9D8c+t7KLtC1aTl1DEHIHdmNt9LClUoXAf4YQmblsWBAJpNPHlyPW n3mVjdX8tmiKp4ZUsSflJN6EFtlc3WlBBD6Vuu25j/j8NESztobeUezL4DJfCltF FWrgCsrIbldhKk3ttd2NmnoLJVY4ypXzeYCUQnTTnU6PafJCAnkts+y3A6FvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAWAPPQXHq0/51poDyNKFLyl2BE8wHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMDM4MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNI50DANBgkqhkiG 9w0BAQsFAAOCAQEAdG43b/sb389+3Sa1quqqUAjqwU6GF990Bthbttk+1oBOxVjI WBscjQ/twcywBfC9j0pvU0JWroAGlc0rICCZeo3GzQC4yglh9hw5sSqulB6eq10y iGTmZW3+a5dx+qy+o7NgViW3txA7wKNadV5XAUeck0wf1qclzStGbTqrxrCLYXZ4 ofOY0T7hlKdTsw8uPTy2Wk87jQtWR1SxzIc27a0qvVnjuQC37JomBhCGxgT3YZD8 a97ITOfAmwE6ed7x6UOgLluYbKBtI8AJt5FhwFBx5tRTbkgNRVM/gSEHL1YXPMUz t+nu/Lcm8XaWLi78eR84H+aAI8Zau0y3uYStHA== -----END CERTIFICATE-----Generated at Mon Oct 20 21:23:36 2025 by rpki-client