$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232322e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3232322e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: LtP1kQmMGBD8rNYEzlai6KwmPf3m3u3XHD/epMWL5xk= Subject key identifier: 6D:95:F3:B0:29:78:88:A2:BC:94:9F:02:2A:A1:FE:FE:F1:AD:4A:70 Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 5652C206CC53C1F9CF09BF9AF0A60D18B8C89376 Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232322e302f32342d3234203d3e203338313432.roa Signing time: Mon 22 Sep 2025 14:00:01 +0000 ROA not before: Mon 22 Sep 2025 13:55:01 +0000 ROA not after: Mon 21 Sep 2026 14:00:01 +0000 asID: 38142 IP address blocks: 210.57.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 20:37:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:52:c2:06:cc:53:c1:f9:cf:09:bf:9a:f0:a6:0d:18:b8:c8:93:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Sep 22 13:55:01 2025 GMT Not After : Sep 21 14:00:01 2026 GMT Subject: CN=6D95F3B0297888A2BC949F022AA1FEFEF1AD4A70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8d:4c:ef:a9:11:96:06:6d:24:9a:6b:76:15: e0:d7:8b:3c:eb:cc:ae:d1:16:8c:6d:ba:e9:0d:12: 5d:75:2b:04:95:95:e5:ab:81:53:5a:24:40:e4:3c: f4:47:b3:55:9c:88:15:49:d4:38:31:cc:4e:8e:b1: b2:f2:e1:19:9d:d5:74:91:43:ec:15:91:1b:70:48: d5:41:f4:3f:b6:1b:54:8c:2d:18:08:e4:48:dc:73: 6c:8c:cf:67:c8:72:19:fa:ed:5d:8e:7a:a9:ae:56: 5e:cf:81:ec:5a:ee:97:b7:c7:28:7c:e5:eb:26:da: 21:f3:46:87:a4:78:6d:cc:26:44:11:c0:42:52:69: d8:2b:43:97:8f:ea:ed:87:33:b8:45:ed:e3:87:3d: 82:d4:f2:97:10:53:9a:64:18:10:ac:c0:c7:5a:af: 16:d3:0b:87:71:6b:c6:70:71:e9:b0:06:4b:04:5f: 58:49:fd:95:8c:6a:0d:52:bf:ce:8e:b1:a6:3e:9a: b2:da:c2:c6:30:b0:6e:4b:57:5b:43:e4:e7:fa:e2: 61:2d:54:14:4c:db:ab:ae:e1:aa:8c:9e:b0:98:eb: 43:65:ae:8c:e7:f8:9c:50:23:71:44:2c:46:0b:9e: f8:fe:d2:9a:39:8e:cf:d7:4f:30:26:7d:5e:25:34: 3c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:95:F3:B0:29:78:88:A2:BC:94:9F:02:2A:A1:FE:FE:F1:AD:4A:70 X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232322e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.222.0/24 Signature Algorithm: sha256WithRSAEncryption b6:d8:18:ee:72:9d:69:ff:ce:65:42:1f:a1:64:ff:e9:97:5c: ea:88:f2:6f:bd:8c:d7:45:f3:4a:c9:2c:18:7d:1b:04:d2:c4: 19:d9:7e:5e:a9:9d:81:24:23:04:bd:32:19:93:d1:ad:32:d3: be:c4:ea:60:d9:ef:9a:95:ae:35:b6:b6:6b:2b:40:52:28:0c: 83:06:f2:03:63:1f:21:b3:79:42:a0:1f:c1:97:59:09:d5:3b: 40:32:fd:49:73:b9:a0:0d:c1:50:13:2e:19:1d:1e:7e:99:b1: 1f:3f:04:8a:70:4a:0b:37:27:ec:5d:d5:61:52:6f:f7:be:cc: c3:b7:94:32:08:af:2e:bf:3e:f8:fb:4c:e7:6e:00:4c:2d:4a: 9d:7a:ae:7d:25:d1:7b:42:03:4a:b9:6b:3c:fb:8a:d9:b9:9a: c1:22:31:d7:a7:d9:b5:46:87:ee:6d:1f:41:03:b1:8c:2a:07: 8e:fc:2c:3c:b7:f7:8f:3a:20:bc:b4:53:92:13:45:ae:80:d4: d0:a7:4b:48:c3:5d:3a:be:6b:46:85:df:40:da:99:97:32:1d: 13:f0:d7:e1:74:39:07:95:d3:13:8e:0b:1d:c7:11:ed:e7:60: 0d:cb:df:92:78:55:21:16:f8:88:e2:01:14:a3:ce:3c:e1:ac: 5d:5d:f8:f7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVlLCBsxTwfnPCb+a8KYNGLjIk3YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNTA5MjIxMzU1MDFaFw0yNjA5MjExNDAwMDFaMDMxMTAvBgNV BAMTKDZEOTVGM0IwMjk3ODg4QTJCQzk0OUYwMjJBQTFGRUZFRjFBRDRBNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/jUzvqRGWBm0kmmt2FeDXizzr zK7RFoxtuukNEl11KwSVleWrgVNaJEDkPPRHs1WciBVJ1DgxzE6OsbLy4Rmd1XSR Q+wVkRtwSNVB9D+2G1SMLRgI5Ejcc2yMz2fIchn67V2OeqmuVl7Pgexa7pe3xyh8 5esm2iHzRoekeG3MJkQRwEJSadgrQ5eP6u2HM7hF7eOHPYLU8pcQU5pkGBCswMda rxbTC4dxa8ZwcemwBksEX1hJ/ZWMag1Sv86OsaY+mrLawsYwsG5LV1tD5Of64mEt VBRM26uu4aqMnrCY60Nlrozn+JxQI3FELEYLnvj+0po5js/XTzAmfV4lNDwzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbZXzsCl4iKK8lJ8CKqH+/vGtSnAwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI53jANBgkqhkiG 9w0BAQsFAAOCAQEAttgY7nKdaf/OZUIfoWT/6Zdc6ojyb72M10XzSsksGH0bBNLE Gdl+XqmdgSQjBL0yGZPRrTLTvsTqYNnvmpWuNba2aytAUigMgwbyA2MfIbN5QqAf wZdZCdU7QDL9SXO5oA3BUBMuGR0efpmxHz8EinBKCzcn7F3VYVJv977Mw7eUMgiv Lr8++PtM524ATC1KnXqufSXRe0IDSrlrPPuK2bmawSIx16fZtUaH7m0fQQOxjCoH jvwsPLf3jzogvLRTkhNFroDU0KdLSMNdOr5rRoXfQNqZlzIdE/DX4XQ5B5XTE44L HccR7edgDcvfknhVIRb4iOIBFKPOPOGsXV349w== -----END CERTIFICATE-----Generated at Mon Oct 20 19:03:28 2025 by rpki-client