$ rpki-client -vvf repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/3230322e3132372e39362e302f32342d3234203d3e203137393130.roa File: 3230322e3132372e39362e302f32342d3234203d3e203137393130.roa (raw, json) Hash identifier: SoYj2/CQvnngSSgeQ/2h6CjbPD0PX7O3f0MfyUEw7yQ= Subject key identifier: B0:B6:5F:81:4B:1D:55:50:0C:F7:67:AE:9F:FF:94:45:7E:E0:33:36 Certificate issuer: /CN=1635F5E419798341BDC615D4E1C6AE340C34BEED Certificate serial: 73540EC30BE698B5447F43E0B5E7B6EC657B8AE4 Authority key identifier: 16:35:F5:E4:19:79:83:41:BD:C6:15:D4:E1:C6:AE:34:0C:34:BE:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1635F5E419798341BDC615D4E1C6AE340C34BEED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/3230322e3132372e39362e302f32342d3234203d3e203137393130.roa Signing time: Thu 25 Sep 2025 01:02:24 +0000 ROA not before: Thu 25 Sep 2025 00:57:24 +0000 ROA not after: Thu 24 Sep 2026 01:02:24 +0000 asID: 17910 IP address blocks: 202.127.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/1635F5E419798341BDC615D4E1C6AE340C34BEED.crl rsync://repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/1635F5E419798341BDC615D4E1C6AE340C34BEED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1635F5E419798341BDC615D4E1C6AE340C34BEED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 11:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:54:0e:c3:0b:e6:98:b5:44:7f:43:e0:b5:e7:b6:ec:65:7b:8a:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1635F5E419798341BDC615D4E1C6AE340C34BEED Validity Not Before: Sep 25 00:57:24 2025 GMT Not After : Sep 24 01:02:24 2026 GMT Subject: CN=B0B65F814B1D55500CF767AE9FFF94457EE03336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:11:ac:1a:1f:eb:0a:de:66:65:84:fd:f7:d8: cf:0f:94:fe:8b:fa:ee:b1:70:cd:f9:2b:30:4d:49: ff:05:19:99:e9:c5:53:ef:8e:dd:1a:3c:72:2b:25: 53:72:57:3a:ec:9b:9b:01:48:e6:11:03:51:1f:8d: 15:06:fd:d5:c8:a4:3b:ab:b2:f8:fb:97:6d:a3:b1: 60:1b:d0:83:87:1f:1e:a1:e7:4a:3f:62:96:92:b1: c7:77:4a:80:72:87:5a:9a:37:e9:8a:02:23:a3:c6: 0a:a8:66:71:bb:2d:8a:ab:62:fa:cc:b3:a4:af:72: 0c:b1:b2:9c:96:9f:0d:b1:95:a1:02:b2:6c:3a:88: 2b:10:9c:48:0c:ae:e6:83:95:01:d8:e2:83:39:ca: 20:a3:f0:d1:eb:4f:63:5a:ed:09:5a:c9:2c:b7:20: d3:87:09:f0:48:c8:1a:8b:f7:3a:cb:19:75:2b:ff: ce:ce:f3:e9:5d:e9:b2:9d:63:f3:70:37:40:4f:e3: df:be:ea:c9:99:53:77:21:7a:73:39:0f:3b:13:99: 03:3b:78:ad:22:ef:71:4c:4b:23:64:8c:9d:28:23: 69:52:66:4e:64:53:c6:36:2c:ca:71:2a:30:23:11: e0:42:34:5b:0b:94:4d:89:0d:79:d5:82:7e:31:ee: 65:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:B6:5F:81:4B:1D:55:50:0C:F7:67:AE:9F:FF:94:45:7E:E0:33:36 X509v3 Authority Key Identifier: keyid:16:35:F5:E4:19:79:83:41:BD:C6:15:D4:E1:C6:AE:34:0C:34:BE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/1635F5E419798341BDC615D4E1C6AE340C34BEED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1635F5E419798341BDC615D4E1C6AE340C34BEED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/3230322e3132372e39362e302f32342d3234203d3e203137393130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.127.96.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:c2:46:2d:64:67:17:e5:08:a2:8d:3f:af:9d:93:b1:c9:7a: 2e:b7:76:75:fb:9d:91:a9:ba:23:70:56:0a:67:97:5d:29:38: 07:e7:e8:b1:76:03:e9:16:60:99:e9:21:e1:82:76:a8:b0:07: cf:77:36:31:b6:d9:4e:a5:8c:5f:aa:11:23:00:b8:ca:1a:8a: a2:fe:b9:c9:29:f1:f0:b3:a3:ea:6a:1a:c9:45:55:80:76:0a: c0:a2:1f:5d:b8:87:75:6d:9f:b8:f2:7e:f2:cd:5e:6c:8b:cc: c2:4d:73:1d:3a:8e:0d:b4:8e:1f:a6:9c:de:cf:91:d8:1f:b6: ed:93:25:06:36:b9:95:69:06:4d:55:a4:52:47:53:17:1e:b6: e4:e3:40:f8:eb:79:7f:db:76:cf:fa:72:03:40:66:ae:09:ba: b0:b3:d0:55:75:eb:a5:05:af:e5:3a:e3:df:61:77:30:56:2c: fa:76:be:03:3e:09:e6:08:6e:db:67:36:b9:dc:a4:95:a5:fe: ff:cb:78:bb:0a:2a:68:7f:b4:08:b0:78:62:41:af:a4:ea:5b: 87:9c:11:1c:24:ae:3f:42:49:91:be:c1:4d:a3:92:ea:70:49: de:ab:29:34:9e:c2:c0:c5:23:98:79:d9:d2:09:58:ac:6d:86: 8f:ce:67:db -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUc1QOwwvmmLVEf0Pgtee27GV7iuQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTYzNUY1RTQxOTc5ODM0MUJEQzYxNUQ0RTFDNkFFMzQw QzM0QkVFRDAeFw0yNTA5MjUwMDU3MjRaFw0yNjA5MjQwMTAyMjRaMDMxMTAvBgNV BAMTKEIwQjY1RjgxNEIxRDU1NTAwQ0Y3NjdBRTlGRkY5NDQ1N0VFMDMzMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrEawaH+sK3mZlhP332M8PlP6L +u6xcM35KzBNSf8FGZnpxVPvjt0aPHIrJVNyVzrsm5sBSOYRA1EfjRUG/dXIpDur svj7l22jsWAb0IOHHx6h50o/YpaSscd3SoByh1qaN+mKAiOjxgqoZnG7LYqrYvrM s6SvcgyxspyWnw2xlaECsmw6iCsQnEgMruaDlQHY4oM5yiCj8NHrT2Na7QlaySy3 INOHCfBIyBqL9zrLGXUr/87O8+ld6bKdY/NwN0BP49++6smZU3chenM5DzsTmQM7 eK0i73FMSyNkjJ0oI2lSZk5kU8Y2LMpxKjAjEeBCNFsLlE2JDXnVgn4x7mUTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsLZfgUsdVVAM92eun/+URX7gMzYwHwYDVR0j BBgwFoAUFjX15Bl5g0G9xhXU4cauNAw0vu0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NjQ1MDAzMi01NDkyLTRhNWEtOTQzZi1iZGI0NzMzNDEyMzMvMC8xNjM1RjVFNDE5 Nzk4MzQxQkRDNjE1RDRFMUM2QUUzNDBDMzRCRUVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTYzNUY1RTQxOTc5ODM0MUJEQzYxNUQ0RTFDNkFFMzQwQzM0 QkVFRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2NDUwMDMyLTU0OTItNGE1YS05 NDNmLWJkYjQ3MzM0MTIzMy8wLzMyMzAzMjJlMzEzMjM3MmUzOTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM5MzEzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMp/YDANBgkqhkiG 9w0BAQsFAAOCAQEAS8JGLWRnF+UIoo0/r52Tscl6Lrd2dfudkam6I3BWCmeXXSk4 B+fosXYD6RZgmekh4YJ2qLAHz3c2MbbZTqWMX6oRIwC4yhqKov65ySnx8LOj6moa yUVVgHYKwKIfXbiHdW2fuPJ+8s1ebIvMwk1zHTqODbSOH6ac3s+R2B+27ZMlBja5 lWkGTVWkUkdTFx625ONA+Ot5f9t2z/pyA0Bmrgm6sLPQVXXrpQWv5Trj32F3MFYs +na+Az4J5ghu22c2udyklaX+/8t4uwoqaH+0CLB4YkGvpOpbh5wRHCSuP0JJkb7B TaOS6nBJ3qspNJ7CwMUjmHnZ0glYrG2Gj85n2w== -----END CERTIFICATE-----Generated at Tue Oct 21 02:57:18 2025 by rpki-client