$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231302e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231302e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: s4sdV2zqNMH3fGcBnDuis8aX3mvXYgrOkNmd2MBCpEo= Subject key identifier: 75:CB:55:AD:43:46:A7:8E:D5:57:85:BD:1A:8E:E8:0F:9D:8A:04:F2 Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 523612A14080B5693BEFC09F5679A13BE4EF754F Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231302e302f32342d3234203d3e203338313432.roa Signing time: Mon 22 Sep 2025 14:00:02 +0000 ROA not before: Mon 22 Sep 2025 13:55:02 +0000 ROA not after: Mon 21 Sep 2026 14:00:02 +0000 asID: 38142 IP address blocks: 210.57.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 20:37:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:36:12:a1:40:80:b5:69:3b:ef:c0:9f:56:79:a1:3b:e4:ef:75:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Sep 22 13:55:02 2025 GMT Not After : Sep 21 14:00:02 2026 GMT Subject: CN=75CB55AD4346A78ED55785BD1A8EE80F9D8A04F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:03:9b:83:56:e4:85:10:08:36:09:5e:1d:b4: 2e:96:d0:2d:7d:b7:dd:8b:b0:bf:a9:1f:6c:8d:64: 8d:df:0e:e3:e1:63:15:34:2a:33:0f:e8:88:c3:23: ff:a3:0e:69:2e:a1:6d:b5:cc:72:c0:54:f8:c0:c4: 1a:6d:84:0a:27:9d:dd:94:65:f6:e3:46:a6:78:93: 94:8c:4c:00:f1:47:7d:af:5b:43:b7:c0:da:90:bc: 56:9f:65:69:81:35:e7:17:af:fd:ba:a3:e5:4b:53: f3:17:62:7c:91:72:59:7b:6b:a9:2d:ab:e9:ca:a0: 71:b9:33:18:21:87:93:49:34:40:74:05:03:5c:b7: 9d:5f:9e:64:10:2b:97:50:cc:f4:24:b4:42:86:b1: e2:9c:3e:84:43:01:97:c0:60:01:e6:9e:24:92:7e: 09:4f:0a:15:1f:59:eb:3b:da:67:f1:36:23:d5:6d: 84:38:f3:d8:66:58:45:53:86:de:44:5a:6a:d3:25: 95:62:6e:40:ab:7f:1c:46:10:cf:9f:72:f5:56:24: 60:8f:8b:5b:bd:1d:32:68:ae:0e:bc:0d:67:17:6d: 55:48:69:fe:b1:f7:c9:7a:da:80:7c:01:c3:0b:2d: 45:31:28:f4:29:91:1e:dc:09:86:de:f7:61:ba:cd: 75:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:CB:55:AD:43:46:A7:8E:D5:57:85:BD:1A:8E:E8:0F:9D:8A:04:F2 X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231302e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.210.0/24 Signature Algorithm: sha256WithRSAEncryption 27:f2:22:c9:5c:2a:95:4d:1c:59:34:1b:3b:1c:f3:1e:26:45: e7:2d:f4:39:c4:3d:d1:07:c9:8f:67:b3:ca:c8:c1:5d:85:34: 3d:b3:7d:e9:82:dd:05:c4:57:f7:aa:0b:10:fb:fd:d7:ee:57: e7:6e:d1:3e:0e:06:2d:5b:7c:44:e7:4a:a7:a3:c6:04:82:2d: f1:88:56:e2:41:7b:d2:93:db:87:67:3b:f5:12:a4:c5:a3:a6: 7b:2f:73:d2:dc:9e:9a:73:21:ea:ed:82:d3:1c:ef:08:7a:19: fc:61:bd:f2:41:41:ac:de:20:f0:c2:c5:36:00:8b:5b:72:56: 21:4a:c7:fe:13:56:70:2e:9e:50:05:02:b7:ff:f1:19:4f:ae: 36:88:f1:4b:b1:4c:93:ba:e2:97:8b:9c:98:16:55:93:93:89: 56:a5:13:36:84:0b:6c:a0:83:b8:30:16:e6:67:9f:f6:ca:82: 77:b2:65:3d:7a:5c:8a:60:57:de:ba:9e:15:cc:04:6e:72:82: 9b:0d:ac:e3:73:2e:92:c8:a9:45:f4:f5:4a:ae:02:47:dc:17: 2a:4f:52:2d:9f:a6:71:3b:71:5a:3d:cf:3c:b3:d6:a8:4b:53: a4:da:4b:a6:b0:28:61:34:b1:a2:64:09:19:2e:12:92:e1:fe: d0:3a:58:cf -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUjYSoUCAtWk778CfVnmhO+TvdU8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNTA5MjIxMzU1MDJaFw0yNjA5MjExNDAwMDJaMDMxMTAvBgNV BAMTKDc1Q0I1NUFENDM0NkE3OEVENTU3ODVCRDFBOEVFODBGOUQ4QTA0RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrA5uDVuSFEAg2CV4dtC6W0C19 t92LsL+pH2yNZI3fDuPhYxU0KjMP6IjDI/+jDmkuoW21zHLAVPjAxBpthAonnd2U ZfbjRqZ4k5SMTADxR32vW0O3wNqQvFafZWmBNecXr/26o+VLU/MXYnyRcll7a6kt q+nKoHG5Mxghh5NJNEB0BQNct51fnmQQK5dQzPQktEKGseKcPoRDAZfAYAHmniSS fglPChUfWes72mfxNiPVbYQ489hmWEVTht5EWmrTJZVibkCrfxxGEM+fcvVWJGCP i1u9HTJorg68DWcXbVVIaf6x98l62oB8AcMLLUUxKPQpkR7cCYbe92G6zXV5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdctVrUNGp47VV4W9Go7oD52KBPIwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI50jANBgkqhkiG 9w0BAQsFAAOCAQEAJ/IiyVwqlU0cWTQbOxzzHiZF5y30OcQ90QfJj2ezysjBXYU0 PbN96YLdBcRX96oLEPv91+5X527RPg4GLVt8ROdKp6PGBIIt8YhW4kF70pPbh2c7 9RKkxaOmey9z0tyemnMh6u2C0xzvCHoZ/GG98kFBrN4g8MLFNgCLW3JWIUrH/hNW cC6eUAUCt//xGU+uNojxS7FMk7ril4ucmBZVk5OJVqUTNoQLbKCDuDAW5mef9sqC d7JlPXpcimBX3rqeFcwEbnKCmw2s43MuksipRfT1Sq4CR9wXKk9SLZ+mcTtxWj3P PLPWqEtTpNpLprAoYTSxomQJGS4SkuH+0DpYzw== -----END CERTIFICATE-----Generated at Mon Oct 20 21:22:11 2025 by rpki-client