$ rpki-client -vvf repo-rpki.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0/32372e3132342e37362e302f32332d3234203d3e20313532303336.roa File: 32372e3132342e37362e302f32332d3234203d3e20313532303336.roa (raw, json) Hash identifier: dEzIqEvBQoLb4jDZxATrGmBvt2RxQTfgU7Js5Mbni88= Subject key identifier: 0B:13:89:5A:A5:62:F6:EF:F8:A7:4C:98:5D:AF:F5:A2:93:EE:27:FB Certificate issuer: /CN=B32E9EABD055A12FD3AA7A307C1DF6832A481AF8 Certificate serial: 202852B664FAF907800600E1BD388FF9A2784DE4 Authority key identifier: B3:2E:9E:AB:D0:55:A1:2F:D3:AA:7A:30:7C:1D:F6:83:2A:48:1A:F8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B32E9EABD055A12FD3AA7A307C1DF6832A481AF8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0/32372e3132342e37362e302f32332d3234203d3e20313532303336.roa Signing time: Mon 29 Sep 2025 08:01:18 +0000 ROA not before: Mon 29 Sep 2025 07:56:18 +0000 ROA not after: Mon 28 Sep 2026 08:01:18 +0000 asID: 152036 IP address blocks: 27.124.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0/B32E9EABD055A12FD3AA7A307C1DF6832A481AF8.crl rsync://repo-rpki.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0/B32E9EABD055A12FD3AA7A307C1DF6832A481AF8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B32E9EABD055A12FD3AA7A307C1DF6832A481AF8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 05:22:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:28:52:b6:64:fa:f9:07:80:06:00:e1:bd:38:8f:f9:a2:78:4d:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B32E9EABD055A12FD3AA7A307C1DF6832A481AF8 Validity Not Before: Sep 29 07:56:18 2025 GMT Not After : Sep 28 08:01:18 2026 GMT Subject: CN=0B13895AA562F6EFF8A74C985DAFF5A293EE27FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:1e:ae:1b:d4:21:94:a6:03:ca:b2:a1:47:df: 91:71:27:0e:68:e2:0a:c3:e7:55:c7:7b:3c:87:81: 37:a9:a7:ba:71:c7:14:99:be:8c:45:b1:83:40:47: c8:b9:54:79:01:ec:d2:1d:08:4b:24:59:9d:19:5e: 96:db:73:e8:af:b3:b1:e9:ba:9f:2e:27:95:13:e6: b7:43:fa:86:11:21:7e:5b:48:86:4a:0b:c3:b2:81: 31:ab:b2:17:34:cf:4d:d8:75:7e:fc:0e:68:4a:db: aa:90:0b:75:62:a4:8f:7b:4c:26:23:79:79:2e:d5: 1d:22:ed:dc:08:28:11:3f:8a:e4:66:e8:67:1b:9f: 25:50:2b:14:41:08:c4:be:c1:85:85:01:db:17:bc: 21:48:d8:de:bc:00:c3:f8:d4:da:01:24:f9:d2:19: 7a:91:15:a5:d4:75:68:3e:a4:15:de:c8:ab:27:17: 73:0b:af:23:4b:b9:0f:16:27:96:f3:55:e3:38:11: 66:2e:4c:eb:fd:4d:91:ad:a9:d0:a8:c3:b1:3c:f8: 0c:f5:67:b3:80:53:66:c1:e0:b9:26:58:a5:f6:9e: eb:4c:9b:44:e8:40:26:b6:50:ad:aa:88:f2:06:f0: 97:ea:c5:ef:f3:24:49:e7:13:3b:34:1c:ea:72:bb: 2f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:13:89:5A:A5:62:F6:EF:F8:A7:4C:98:5D:AF:F5:A2:93:EE:27:FB X509v3 Authority Key Identifier: keyid:B3:2E:9E:AB:D0:55:A1:2F:D3:AA:7A:30:7C:1D:F6:83:2A:48:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0/B32E9EABD055A12FD3AA7A307C1DF6832A481AF8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B32E9EABD055A12FD3AA7A307C1DF6832A481AF8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0/32372e3132342e37362e302f32332d3234203d3e20313532303336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.76.0/23 Signature Algorithm: sha256WithRSAEncryption a6:fc:41:e5:b4:6e:c0:34:a5:f4:df:a6:f9:df:e1:1b:be:d2: 3b:91:13:c2:8e:72:be:6c:96:47:dc:3c:04:96:08:4a:77:0a: e7:9d:db:c7:d8:68:93:1d:55:8d:d4:5d:ab:b3:53:06:4d:46: b9:f7:0f:d2:58:1b:3d:35:f5:33:50:9d:24:16:58:9d:0f:c9: 19:a5:19:bf:3b:6d:7e:b5:bb:aa:72:ed:9e:21:41:9b:47:07: e4:5e:86:71:3b:73:af:ee:8e:7c:98:54:fb:87:cb:f6:56:32: b9:92:ca:f1:07:e3:a0:be:0c:6d:b6:e0:af:a1:2a:ab:05:23: 04:d9:d1:56:68:73:86:37:05:d7:0e:e8:66:6b:2b:dd:0c:1b: 08:32:17:3e:c5:ae:1d:cc:75:5a:52:5b:ab:ed:be:55:b0:29: 5a:74:75:56:2c:c6:be:d3:18:48:61:f0:36:4a:99:00:37:b5: e3:e6:ee:42:9c:68:2d:90:b3:b4:46:4a:9c:55:27:20:d4:41: 3f:07:5b:da:ad:e3:e2:8b:d1:84:77:b6:a6:fd:57:64:59:09: af:73:d6:5a:d6:58:1c:f1:e5:fd:55:69:b0:fb:98:94:9a:d2: 49:76:05:e6:a9:e7:b9:70:6d:cb:36:6b:17:b0:ba:a3:23:0a: a4:f3:ae:f9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIChStmT6+QeABgDhvTiP+aJ4TeQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjMyRTlFQUJEMDU1QTEyRkQzQUE3QTMwN0MxREY2ODMy QTQ4MUFGODAeFw0yNTA5MjkwNzU2MThaFw0yNjA5MjgwODAxMThaMDMxMTAvBgNV BAMTKDBCMTM4OTVBQTU2MkY2RUZGOEE3NEM5ODVEQUZGNUEyOTNFRTI3RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuHq4b1CGUpgPKsqFH35FxJw5o 4grD51XHezyHgTepp7pxxxSZvoxFsYNAR8i5VHkB7NIdCEskWZ0ZXpbbc+ivs7Hp up8uJ5UT5rdD+oYRIX5bSIZKC8OygTGrshc0z03YdX78DmhK26qQC3VipI97TCYj eXku1R0i7dwIKBE/iuRm6GcbnyVQKxRBCMS+wYWFAdsXvCFI2N68AMP41NoBJPnS GXqRFaXUdWg+pBXeyKsnF3MLryNLuQ8WJ5bzVeM4EWYuTOv9TZGtqdCow7E8+Az1 Z7OAU2bB4LkmWKX2nutMm0ToQCa2UK2qiPIG8Jfqxe/zJEnnEzs0HOpyuy+JAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCxOJWqVi9u/4p0yYXa/1opPuJ/swHwYDVR0j BBgwFoAUsy6eq9BVoS/TqnowfB32gypIGvgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjJhODAxMS00YzY2LTQzZDEtYmJjNS1mYjExZTg5ZjkxZTAvMC9CMzJFOUVBQkQw NTVBMTJGRDNBQTdBMzA3QzFERjY4MzJBNDgxQUY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjMyRTlFQUJEMDU1QTEyRkQzQUE3QTMwN0MxREY2ODMyQTQ4 MUFGOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMmE4MDExLTRjNjYtNDNkMS1i YmM1LWZiMTFlODlmOTFlMC8wLzMyMzcyZTMxMzIzNDJlMzczNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzMzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEARt8TDANBgkqhkiG 9w0BAQsFAAOCAQEApvxB5bRuwDSl9N+m+d/hG77SO5ETwo5yvmyWR9w8BJYISncK 553bx9hokx1VjdRdq7NTBk1GufcP0lgbPTX1M1CdJBZYnQ/JGaUZvzttfrW7qnLt niFBm0cH5F6GcTtzr+6OfJhU+4fL9lYyuZLK8QfjoL4Mbbbgr6EqqwUjBNnRVmhz hjcF1w7oZmsr3QwbCDIXPsWuHcx1WlJbq+2+VbApWnR1VizGvtMYSGHwNkqZADe1 4+buQpxoLZCztEZKnFUnINRBPwdb2q3j4ovRhHe2pv1XZFkJr3PWWtZYHPHl/VVp sPuYlJrSSXYF5qnnuXBtyzZrF7C6oyMKpPOu+Q== -----END CERTIFICATE-----Generated at Mon Oct 20 14:21:11 2025 by rpki-client