$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231322e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231322e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: duc90GFuNbL5017UYKgzCGWcF8U4EsnoqNIvTSG815o= Subject key identifier: 93:E2:E3:AE:87:2E:D8:21:91:E2:7A:88:C6:DE:4E:5D:2B:74:14:2B Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 3584C85A6E70B4287FC3B98AFD1E345CB9D26E62 Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231322e302f32342d3234203d3e203338313432.roa Signing time: Mon 22 Sep 2025 14:00:01 +0000 ROA not before: Mon 22 Sep 2025 13:55:01 +0000 ROA not after: Mon 21 Sep 2026 14:00:01 +0000 asID: 38142 IP address blocks: 210.57.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 20:37:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:84:c8:5a:6e:70:b4:28:7f:c3:b9:8a:fd:1e:34:5c:b9:d2:6e:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Sep 22 13:55:01 2025 GMT Not After : Sep 21 14:00:01 2026 GMT Subject: CN=93E2E3AE872ED82191E27A88C6DE4E5D2B74142B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a1:99:97:cf:a6:e8:7a:62:00:ba:df:92:9e: da:bc:df:75:cb:23:4d:70:b8:86:59:2b:0b:75:7a: 82:03:0e:83:da:be:6b:22:ee:03:d2:7d:5f:3e:2b: 02:fb:b1:8b:c7:83:8b:b0:3c:b6:c3:a1:c5:66:dd: 60:aa:35:0b:ff:0c:d2:59:08:f8:a9:7e:ed:f8:e2: cd:0d:a0:dd:cb:16:18:a2:b6:65:de:6e:71:2a:5e: ee:9a:39:46:a0:e8:8d:96:4e:bb:f3:b3:74:d2:05: 0a:b3:8a:cf:74:c1:c2:b5:82:ea:9e:de:e1:8a:5a: e3:c8:78:b0:21:47:71:82:6b:5d:18:79:f2:2e:fd: 21:0c:f8:b5:aa:09:a8:39:69:7f:7c:17:c1:74:0b: 8f:c2:27:6f:f1:2b:d4:7d:23:ae:1e:c6:58:6b:86: 74:66:7b:f8:56:53:68:39:c2:5e:e9:2f:b1:d9:8e: 44:6a:6b:65:3f:bb:f5:46:1f:8d:b8:55:b2:29:87: 9d:a0:d0:b7:c6:ff:3d:7f:f2:e8:3e:79:04:ea:ba: 12:3a:04:3e:06:b7:bf:91:0c:a4:93:85:d7:0e:b6: 43:88:65:97:13:0e:8c:a7:7b:4f:94:cd:42:ef:5a: c7:bb:78:78:47:e2:95:2b:45:52:cd:e4:ed:d8:81: 94:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E2:E3:AE:87:2E:D8:21:91:E2:7A:88:C6:DE:4E:5D:2B:74:14:2B X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231322e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.212.0/24 Signature Algorithm: sha256WithRSAEncryption 55:8f:58:83:2c:fb:d6:52:bc:07:7a:ff:ca:14:a1:08:fa:2d: 29:86:12:51:63:6a:72:65:0a:5d:78:fe:38:9e:76:af:28:b9: 70:61:fe:fd:1a:da:ad:f6:a6:86:c5:8d:53:c9:fb:35:39:f9: 46:3d:09:3a:72:39:25:fc:74:b5:22:7f:4d:f8:c0:d2:20:4f: 25:1d:41:91:4f:f7:47:a4:f5:d4:b3:40:c5:3c:e7:2c:c6:e7: 13:4f:d2:ff:0c:0c:9c:32:97:94:2a:ef:e0:f6:41:66:73:86: 3c:7b:be:80:16:5c:36:20:83:9f:f0:3f:4e:90:82:93:c4:a7: 1c:4b:86:ea:a3:ea:a4:14:fe:de:9d:97:03:52:ff:7e:43:c0: b4:84:0b:9e:73:b4:3a:fa:cc:44:69:2d:84:1c:58:44:3e:58: be:1d:ae:ce:2d:12:11:2d:73:a3:ed:5a:7a:99:ae:67:a7:2e: ec:0d:1d:b0:6d:24:cc:89:0f:3c:ec:5c:3d:4e:26:ba:03:60: 00:22:90:df:75:63:7c:06:69:8c:f9:ab:fa:d3:32:f5:b0:12: bc:1d:3c:80:c3:eb:f3:1e:60:d2:f6:2f:00:66:94:ce:42:5b: 28:38:a3:a1:cc:b0:6d:1c:ed:dc:be:4a:3f:94:2d:21:a4:d2: 5e:6d:ac:85 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNYTIWm5wtCh/w7mK/R40XLnSbmIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNTA5MjIxMzU1MDFaFw0yNjA5MjExNDAwMDFaMDMxMTAvBgNV BAMTKDkzRTJFM0FFODcyRUQ4MjE5MUUyN0E4OEM2REU0RTVEMkI3NDE0MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJoZmXz6boemIAut+Sntq833XL I01wuIZZKwt1eoIDDoPavmsi7gPSfV8+KwL7sYvHg4uwPLbDocVm3WCqNQv/DNJZ CPipfu344s0NoN3LFhiitmXebnEqXu6aOUag6I2WTrvzs3TSBQqzis90wcK1guqe 3uGKWuPIeLAhR3GCa10YefIu/SEM+LWqCag5aX98F8F0C4/CJ2/xK9R9I64exlhr hnRme/hWU2g5wl7pL7HZjkRqa2U/u/VGH424VbIph52g0LfG/z1/8ug+eQTquhI6 BD4Gt7+RDKSThdcOtkOIZZcTDoyne0+UzULvWse7eHhH4pUrRVLN5O3YgZR9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUk+Ljrocu2CGR4nqIxt5OXSt0FCswHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI51DANBgkqhkiG 9w0BAQsFAAOCAQEAVY9Ygyz71lK8B3r/yhShCPotKYYSUWNqcmUKXXj+OJ52ryi5 cGH+/RrarfamhsWNU8n7NTn5Rj0JOnI5Jfx0tSJ/TfjA0iBPJR1BkU/3R6T11LNA xTznLMbnE0/S/wwMnDKXlCrv4PZBZnOGPHu+gBZcNiCDn/A/TpCCk8SnHEuG6qPq pBT+3p2XA1L/fkPAtIQLnnO0OvrMRGkthBxYRD5Yvh2uzi0SES1zo+1aepmuZ6cu 7A0dsG0kzIkPPOxcPU4mugNgACKQ33VjfAZpjPmr+tMy9bASvB08gMPr8x5g0vYv AGaUzkJbKDijocywbRzt3L5KP5QtIaTSXm2shQ== -----END CERTIFICATE-----Generated at Mon Oct 20 19:03:13 2025 by rpki-client