$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232312e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3232312e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: WS/P4TpGYsCeXm+bcL5xnvrovJjYUoIR2jeGTVeT3mU= Subject key identifier: 4E:08:35:E2:8B:C3:D5:9A:ED:6E:AC:E6:A8:54:F7:C2:C0:04:12:DF Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 772E14142AEB64E7F6E545C8451F0E8FA253770D Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232312e302f32342d3234203d3e203338313432.roa Signing time: Mon 22 Sep 2025 14:00:01 +0000 ROA not before: Mon 22 Sep 2025 13:55:01 +0000 ROA not after: Mon 21 Sep 2026 14:00:01 +0000 asID: 38142 IP address blocks: 210.57.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 20:37:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:2e:14:14:2a:eb:64:e7:f6:e5:45:c8:45:1f:0e:8f:a2:53:77:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Sep 22 13:55:01 2025 GMT Not After : Sep 21 14:00:01 2026 GMT Subject: CN=4E0835E28BC3D59AED6EACE6A854F7C2C00412DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:65:0f:25:e3:5a:a1:96:cb:db:48:5d:91:06: 9d:f3:8b:98:5f:66:12:ab:cc:16:b2:6e:17:42:b9: 18:02:f0:83:4d:40:71:a1:e8:6b:cc:98:80:50:21: 48:da:f0:f6:99:05:b5:0b:cc:58:d3:9d:ed:b5:21: 40:6d:6e:0c:49:b4:06:f0:68:5e:00:0b:03:7d:65: 2a:34:f3:45:37:66:af:8a:ca:45:3b:d2:a8:10:d7: 1f:22:9c:65:66:c0:bf:9e:da:ee:f9:f9:48:02:31: 9d:3c:f9:62:a4:2a:46:ed:42:b0:84:41:4c:8c:74: 8f:0e:46:1d:49:15:8c:e7:99:d0:77:08:a3:b7:44: 55:b8:a5:bb:ba:d1:f9:f9:3b:4f:6d:69:35:8c:ce: 54:03:cd:fc:b1:4e:16:af:6b:05:d2:0f:1e:7a:81: 3c:13:1a:33:28:7b:28:de:1b:e0:61:64:bc:dd:99: 02:44:dc:b7:5b:24:ce:91:04:46:0a:0e:db:89:52: 42:c2:20:15:1f:84:e1:48:d7:28:76:01:9d:cb:42: 16:8d:46:92:58:4a:23:d2:50:1a:52:dc:13:a6:fb: 2f:de:3b:68:95:13:c3:ad:78:d1:50:b6:f5:f4:c7: 34:8f:d9:a8:a3:2e:a4:d8:b4:ea:eb:11:98:41:f0: 31:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:08:35:E2:8B:C3:D5:9A:ED:6E:AC:E6:A8:54:F7:C2:C0:04:12:DF X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232312e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.221.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:36:32:31:8e:89:c5:3e:e5:a1:6f:0a:87:d8:b8:74:a2:cc: f0:49:a7:11:0b:ae:22:42:cf:42:12:47:df:08:40:e7:b1:44: 85:b9:44:22:f0:d8:56:d4:28:e6:e0:76:07:4c:9f:3e:99:03: 8e:b5:43:68:36:45:9f:54:fa:a3:a6:ca:7d:99:05:f9:fc:6f: d6:ef:a2:c8:a4:b3:27:31:ea:39:da:94:49:16:1a:d0:1e:94: 90:bf:8a:db:64:2a:0f:69:23:9b:d2:e5:f9:a4:b1:07:b6:0f: 54:07:bc:b9:a6:d9:c4:fb:64:1a:c8:ce:8d:53:f0:30:dc:e6: 84:62:7d:59:50:de:f8:cb:dd:87:4f:63:ef:48:78:0a:05:7a: c9:47:eb:0a:70:ea:c7:2e:09:00:44:ae:65:6c:ce:b0:e6:ea: 43:b1:d6:8b:63:d5:08:09:0b:c3:35:06:14:df:7b:e8:07:bf: 2a:bb:a9:8b:fd:aa:4d:be:39:89:ae:ed:b1:df:63:1d:5b:db: 42:2d:33:15:ce:ff:47:c8:5d:73:8b:35:eb:33:89:7f:a0:af: 19:df:ee:b1:a6:fe:f4:32:f2:e0:98:16:fb:01:b7:68:eb:a6: 3a:29:30:de:b9:22:60:b7:f2:55:47:77:a0:d9:da:b1:7b:50: 94:11:3e:b2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdy4UFCrrZOf25UXIRR8Oj6JTdw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNTA5MjIxMzU1MDFaFw0yNjA5MjExNDAwMDFaMDMxMTAvBgNV BAMTKDRFMDgzNUUyOEJDM0Q1OUFFRDZFQUNFNkE4NTRGN0MyQzAwNDEyREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIZQ8l41qhlsvbSF2RBp3zi5hf ZhKrzBaybhdCuRgC8INNQHGh6GvMmIBQIUja8PaZBbULzFjTne21IUBtbgxJtAbw aF4ACwN9ZSo080U3Zq+KykU70qgQ1x8inGVmwL+e2u75+UgCMZ08+WKkKkbtQrCE QUyMdI8ORh1JFYznmdB3CKO3RFW4pbu60fn5O09taTWMzlQDzfyxThavawXSDx56 gTwTGjMoeyjeG+BhZLzdmQJE3LdbJM6RBEYKDtuJUkLCIBUfhOFI1yh2AZ3LQhaN RpJYSiPSUBpS3BOm+y/eO2iVE8OteNFQtvX0xzSP2aijLqTYtOrrEZhB8DFjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTgg14ovD1ZrtbqzmqFT3wsAEEt8wHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI53TANBgkqhkiG 9w0BAQsFAAOCAQEAPTYyMY6JxT7loW8Kh9i4dKLM8EmnEQuuIkLPQhJH3whA57FE hblEIvDYVtQo5uB2B0yfPpkDjrVDaDZFn1T6o6bKfZkF+fxv1u+iyKSzJzHqOdqU SRYa0B6UkL+K22QqD2kjm9Ll+aSxB7YPVAe8uabZxPtkGsjOjVPwMNzmhGJ9WVDe +Mvdh09j70h4CgV6yUfrCnDqxy4JAESuZWzOsObqQ7HWi2PVCAkLwzUGFN976Ae/ Krupi/2qTb45ia7tsd9jHVvbQi0zFc7/R8hdc4s16zOJf6CvGd/usab+9DLy4JgW +wG3aOumOikw3rkiYLfyVUd3oNnasXtQlBE+sg== -----END CERTIFICATE-----Generated at Mon Oct 20 21:24:38 2025 by rpki-client