$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231362e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231362e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: FYQ4GgoWT79qHp4XxDTgktT9zjmOHOsSmJwwOMQ1oFw= Subject key identifier: 96:ED:ED:83:21:22:B8:72:0B:FE:10:67:41:55:97:8F:E9:BA:CC:DC Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 3898DB5623626622674AF825A936DDD7F6F980B1 Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231362e302f32342d3234203d3e203338313432.roa Signing time: Mon 22 Sep 2025 14:00:02 +0000 ROA not before: Mon 22 Sep 2025 13:55:02 +0000 ROA not after: Mon 21 Sep 2026 14:00:02 +0000 asID: 38142 IP address blocks: 210.57.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 20:37:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:98:db:56:23:62:66:22:67:4a:f8:25:a9:36:dd:d7:f6:f9:80:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Sep 22 13:55:02 2025 GMT Not After : Sep 21 14:00:02 2026 GMT Subject: CN=96EDED832122B8720BFE10674155978FE9BACCDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:eb:47:ae:45:4b:b8:c5:05:71:0b:9e:e5:01: 0e:06:e6:d3:4d:27:93:9b:95:66:36:c9:5f:4b:46: 0a:f0:08:c6:ee:10:11:d7:74:e6:9e:dd:35:39:07: cb:7e:b7:fb:bc:08:ff:0c:66:e1:b9:a1:d0:62:c1: 17:7a:05:ab:3b:02:34:85:2d:e3:01:33:36:47:5e: 0c:0f:0e:1d:74:c4:7d:82:82:34:51:60:e5:8d:78: c3:3b:d4:5e:83:62:74:19:e9:d3:c9:40:76:cc:b4: e5:c8:bf:52:ca:af:73:18:8c:c9:ce:32:15:59:70: e0:dd:be:cd:03:73:03:cf:0c:ea:b6:cc:6e:0e:ad: af:e4:5b:ce:a6:ce:61:45:e9:14:3a:4f:a2:41:a7: ee:8f:f6:09:15:cd:18:73:19:5b:2f:0d:70:b0:c0: 39:15:6c:2a:cd:19:33:3d:48:cb:25:66:e6:b2:ba: e8:29:de:10:e3:c1:af:cb:1a:f7:92:29:eb:12:2c: 4d:18:86:3a:e1:a2:50:14:2c:56:99:32:aa:b6:c5: 21:ff:7a:25:a8:6f:dc:69:6e:75:87:e6:6a:2b:0b: d3:0d:39:0b:c0:a9:16:b4:c7:82:a6:9f:71:6c:4e: 31:71:cb:7f:90:ea:94:1c:e6:81:18:c7:28:6d:ff: ab:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:ED:ED:83:21:22:B8:72:0B:FE:10:67:41:55:97:8F:E9:BA:CC:DC X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231362e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.216.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:9a:fb:28:82:01:cc:de:22:f8:dd:1e:e4:2c:ce:88:0e:bf: 5e:cf:03:37:f4:41:09:14:f5:86:9f:ae:59:06:d7:61:f8:18: 5d:df:cc:39:32:43:2d:d5:5d:54:05:37:2e:96:58:e7:45:d4: 08:87:b8:c2:08:c5:42:08:b8:b3:ab:09:f7:03:1a:fc:9f:1c: 12:23:3b:70:8a:36:c3:2e:b9:c2:33:cb:66:4b:23:ad:bf:de: 3f:21:cf:49:a0:e1:50:f5:47:4d:f6:4e:3f:54:69:e2:a3:43: 5a:f5:d8:29:84:d5:06:d8:f1:29:3d:a8:7c:09:ed:f8:15:ca: 94:56:35:cf:0f:a3:7d:2a:6a:22:c5:9c:c3:1d:a3:00:a8:17: 7a:41:76:94:a7:d0:14:f7:08:41:b0:1f:58:5c:c8:de:e6:6c: cb:6c:e7:1e:31:b1:d0:6c:b7:d1:1e:f7:f1:ec:fa:6f:7a:9d: ad:26:fc:9a:99:19:a9:7c:2f:90:c2:a7:50:fd:ae:59:db:1b: 89:26:f3:e9:b7:36:c3:b4:8a:2b:d7:0a:ac:50:ff:07:a0:88: 63:3e:e0:5b:4f:24:d1:ea:0e:f4:cc:b6:2b:5c:b4:5a:0a:f0: 67:30:12:04:d5:f6:8a:45:76:9c:ec:b8:43:1a:0b:0b:24:7f: b3:40:98:6d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOJjbViNiZiJnSvglqTbd1/b5gLEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNTA5MjIxMzU1MDJaFw0yNjA5MjExNDAwMDJaMDMxMTAvBgNV BAMTKDk2RURFRDgzMjEyMkI4NzIwQkZFMTA2NzQxNTU5NzhGRTlCQUNDREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz60euRUu4xQVxC57lAQ4G5tNN J5OblWY2yV9LRgrwCMbuEBHXdOae3TU5B8t+t/u8CP8MZuG5odBiwRd6Bas7AjSF LeMBMzZHXgwPDh10xH2CgjRRYOWNeMM71F6DYnQZ6dPJQHbMtOXIv1LKr3MYjMnO MhVZcODdvs0DcwPPDOq2zG4Ora/kW86mzmFF6RQ6T6JBp+6P9gkVzRhzGVsvDXCw wDkVbCrNGTM9SMslZuayuugp3hDjwa/LGveSKesSLE0YhjrholAULFaZMqq2xSH/ eiWob9xpbnWH5morC9MNOQvAqRa0x4Kmn3FsTjFxy3+Q6pQc5oEYxyht/6v1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlu3tgyEiuHIL/hBnQVWXj+m6zNwwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI52DANBgkqhkiG 9w0BAQsFAAOCAQEAnZr7KIIBzN4i+N0e5CzOiA6/Xs8DN/RBCRT1hp+uWQbXYfgY Xd/MOTJDLdVdVAU3LpZY50XUCIe4wgjFQgi4s6sJ9wMa/J8cEiM7cIo2wy65wjPL Zksjrb/ePyHPSaDhUPVHTfZOP1Rp4qNDWvXYKYTVBtjxKT2ofAnt+BXKlFY1zw+j fSpqIsWcwx2jAKgXekF2lKfQFPcIQbAfWFzI3uZsy2znHjGx0Gy30R738ez6b3qd rSb8mpkZqXwvkMKnUP2uWdsbiSbz6bc2w7SKK9cKrFD/B6CIYz7gW08k0eoO9My2 K1y0WgrwZzASBNX2ikV2nOy4QxoLCyR/s0CYbQ== -----END CERTIFICATE-----Generated at Mon Oct 20 21:24:44 2025 by rpki-client