$ rpki-client -vvf repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/3230322e3132372e39372e302f32342d3234203d3e203137393130.roa File: 3230322e3132372e39372e302f32342d3234203d3e203137393130.roa (raw, json) Hash identifier: dVPU6JD2A84NVYrSKQ9v6ag+q7nJt0d3GPOdYg/vAzs= Subject key identifier: 87:39:56:27:45:48:07:D5:B1:27:B1:6E:6C:10:B7:C9:82:25:15:E3 Certificate issuer: /CN=1635F5E419798341BDC615D4E1C6AE340C34BEED Certificate serial: 21F8B6F315AE852A218EE499DFFC424335ECCB5E Authority key identifier: 16:35:F5:E4:19:79:83:41:BD:C6:15:D4:E1:C6:AE:34:0C:34:BE:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1635F5E419798341BDC615D4E1C6AE340C34BEED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/3230322e3132372e39372e302f32342d3234203d3e203137393130.roa Signing time: Thu 25 Sep 2025 01:02:24 +0000 ROA not before: Thu 25 Sep 2025 00:57:24 +0000 ROA not after: Thu 24 Sep 2026 01:02:24 +0000 asID: 17910 IP address blocks: 202.127.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/1635F5E419798341BDC615D4E1C6AE340C34BEED.crl rsync://repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/1635F5E419798341BDC615D4E1C6AE340C34BEED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1635F5E419798341BDC615D4E1C6AE340C34BEED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 11:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:f8:b6:f3:15:ae:85:2a:21:8e:e4:99:df:fc:42:43:35:ec:cb:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1635F5E419798341BDC615D4E1C6AE340C34BEED Validity Not Before: Sep 25 00:57:24 2025 GMT Not After : Sep 24 01:02:24 2026 GMT Subject: CN=87395627454807D5B127B16E6C10B7C9822515E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c4:ac:02:a7:37:09:bd:4a:db:9e:74:3c:aa: 35:50:20:2c:e6:5c:68:b5:9d:28:ca:6a:a1:93:d1: 23:ad:85:e0:e9:07:8c:9c:8f:cb:40:b1:ec:b2:69: 81:4d:cd:b1:e7:5c:6c:0f:d5:54:2a:23:5b:16:1f: f4:6b:43:78:b9:0b:f3:47:48:1d:3f:4b:a4:aa:7b: d9:26:fd:1e:91:b7:87:10:79:29:5c:45:c6:29:62: f2:75:a7:47:b4:88:98:33:32:a5:a7:a4:a4:20:b0: 50:d6:c3:51:f2:2c:88:ae:b9:b0:50:1e:32:69:0e: 9d:cf:a2:94:be:b8:7b:18:d4:67:84:31:27:97:cd: 77:07:0e:b9:29:cd:db:d8:bf:4b:cd:bd:ee:eb:a8: 1a:cd:8b:73:12:a0:e5:ab:bd:03:31:b2:a9:6f:f0: c8:6d:70:a7:7b:20:11:a7:98:87:62:01:f1:55:94: b2:1b:6f:10:06:e8:fb:cf:fd:01:96:60:33:0b:69: 4c:81:93:eb:19:30:8f:d5:c9:3b:2b:5d:1b:b1:c5: 7a:23:b7:74:6f:f8:21:c3:5c:ca:69:7d:36:24:b8: 74:03:09:fa:19:0b:ab:b9:ec:01:97:46:10:2d:be: d6:5c:10:79:d0:41:b3:28:cd:77:5e:d1:b8:6d:c3: bb:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:39:56:27:45:48:07:D5:B1:27:B1:6E:6C:10:B7:C9:82:25:15:E3 X509v3 Authority Key Identifier: keyid:16:35:F5:E4:19:79:83:41:BD:C6:15:D4:E1:C6:AE:34:0C:34:BE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/1635F5E419798341BDC615D4E1C6AE340C34BEED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1635F5E419798341BDC615D4E1C6AE340C34BEED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/3230322e3132372e39372e302f32342d3234203d3e203137393130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.127.97.0/24 Signature Algorithm: sha256WithRSAEncryption 87:59:d8:4d:3c:85:92:68:6a:c3:f4:0a:e3:83:34:4d:66:e3: 0c:26:26:b2:e7:e9:6c:13:29:1b:ca:a8:ed:1c:14:09:9f:e2: 37:f9:7f:fa:46:ed:6d:8b:d5:6d:59:4c:9b:e4:69:86:a6:ed: 59:6e:65:09:fb:89:81:4e:5d:72:07:6e:c1:e9:ae:ca:ad:55: fc:98:8e:cc:3b:ae:00:db:a9:9b:ef:d3:35:98:84:52:30:a2: c8:99:44:b1:e6:5e:60:db:3f:70:17:78:8c:da:1c:71:43:61: 2b:40:51:fc:df:ab:8b:eb:55:89:28:cb:6e:8a:5a:db:a1:a9: 75:18:c9:4e:3e:f7:5f:30:3e:c2:5e:41:81:a4:4c:44:35:38: 42:11:c5:a7:6d:d0:76:8c:3b:9c:fc:23:55:d1:50:3e:a9:6c: e0:a3:0d:6b:fb:ea:2b:6a:b4:33:2d:98:13:e7:b5:8c:61:8f: de:31:4e:e1:cf:cd:65:ee:db:99:3a:49:18:3c:e1:9d:1e:98: 89:b5:1f:f1:1d:44:68:a2:70:d8:e2:44:9c:82:61:b9:e1:13: f3:67:d0:76:7a:e4:1b:f0:31:46:58:7a:b2:b7:36:0d:85:d5: fe:1d:e9:32:4c:85:76:a8:4a:78:fc:4c:e4:d1:bf:b2:9c:82: 40:b9:48:e0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIfi28xWuhSohjuSZ3/xCQzXsy14wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTYzNUY1RTQxOTc5ODM0MUJEQzYxNUQ0RTFDNkFFMzQw QzM0QkVFRDAeFw0yNTA5MjUwMDU3MjRaFw0yNjA5MjQwMTAyMjRaMDMxMTAvBgNV BAMTKDg3Mzk1NjI3NDU0ODA3RDVCMTI3QjE2RTZDMTBCN0M5ODIyNTE1RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVxKwCpzcJvUrbnnQ8qjVQICzm XGi1nSjKaqGT0SOtheDpB4ycj8tAseyyaYFNzbHnXGwP1VQqI1sWH/RrQ3i5C/NH SB0/S6Sqe9km/R6Rt4cQeSlcRcYpYvJ1p0e0iJgzMqWnpKQgsFDWw1HyLIiuubBQ HjJpDp3PopS+uHsY1GeEMSeXzXcHDrkpzdvYv0vNve7rqBrNi3MSoOWrvQMxsqlv 8MhtcKd7IBGnmIdiAfFVlLIbbxAG6PvP/QGWYDMLaUyBk+sZMI/VyTsrXRuxxXoj t3Rv+CHDXMppfTYkuHQDCfoZC6u57AGXRhAtvtZcEHnQQbMozXde0bhtw7tbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhzlWJ0VIB9WxJ7FubBC3yYIlFeMwHwYDVR0j BBgwFoAUFjX15Bl5g0G9xhXU4cauNAw0vu0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NjQ1MDAzMi01NDkyLTRhNWEtOTQzZi1iZGI0NzMzNDEyMzMvMC8xNjM1RjVFNDE5 Nzk4MzQxQkRDNjE1RDRFMUM2QUUzNDBDMzRCRUVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTYzNUY1RTQxOTc5ODM0MUJEQzYxNUQ0RTFDNkFFMzQwQzM0 QkVFRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2NDUwMDMyLTU0OTItNGE1YS05 NDNmLWJkYjQ3MzM0MTIzMy8wLzMyMzAzMjJlMzEzMjM3MmUzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM5MzEzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMp/YTANBgkqhkiG 9w0BAQsFAAOCAQEAh1nYTTyFkmhqw/QK44M0TWbjDCYmsufpbBMpG8qo7RwUCZ/i N/l/+kbtbYvVbVlMm+RphqbtWW5lCfuJgU5dcgduwemuyq1V/JiOzDuuANupm+/T NZiEUjCiyJlEseZeYNs/cBd4jNoccUNhK0BR/N+ri+tViSjLbopa26GpdRjJTj73 XzA+wl5BgaRMRDU4QhHFp23Qdow7nPwjVdFQPqls4KMNa/vqK2q0My2YE+e1jGGP 3jFO4c/NZe7bmTpJGDzhnR6YibUf8R1EaKJw2OJEnIJhueET82fQdnrkG/AxRlh6 src2DYXV/h3pMkyFdqhKePxM5NG/spyCQLlI4A== -----END CERTIFICATE-----Generated at Mon Oct 20 19:03:22 2025 by rpki-client