$ rpki-client -vvf repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3131362e3231322e37352e302f32342d3234203d3e203436303330.roa File: 3131362e3231322e37352e302f32342d3234203d3e203436303330.roa (raw, json) Hash identifier: oLPMaCk0wffTRZJSCI1Y6pdrOvuzphht858rBhxiNc4= Subject key identifier: F2:28:DA:C8:7C:32:F6:BB:16:A9:51:78:0F:E1:E6:72:39:6C:EB:D9 Certificate issuer: /CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Certificate serial: 753A882E8C27B9C4DCB4A693733A27851AB2198C Authority key identifier: 56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3131362e3231322e37352e302f32342d3234203d3e203436303330.roa Signing time: Tue 30 Sep 2025 15:00:01 +0000 ROA not before: Tue 30 Sep 2025 14:55:01 +0000 ROA not after: Tue 29 Sep 2026 15:00:01 +0000 asID: 46030 IP address blocks: 116.212.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 08:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:3a:88:2e:8c:27:b9:c4:dc:b4:a6:93:73:3a:27:85:1a:b2:19:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Validity Not Before: Sep 30 14:55:01 2025 GMT Not After : Sep 29 15:00:01 2026 GMT Subject: CN=F228DAC87C32F6BB16A951780FE1E672396CEBD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:15:3d:14:5c:11:98:c7:91:0d:d7:aa:8e:bd: 3a:dc:07:a5:4a:b6:4a:3d:d5:3f:81:96:a5:7f:90: fc:e9:10:09:fc:8d:3f:d8:08:01:c1:07:d6:a9:9b: 9a:9d:d1:99:68:b5:1d:f6:ea:66:4a:88:ea:c1:1c: 6f:e8:f3:39:5d:34:91:42:c5:2a:92:3f:3c:75:c2: f1:47:fb:2d:2f:5c:67:63:e1:72:69:e9:8f:af:11: db:15:ff:9b:61:60:e9:11:b6:96:e8:9b:0b:3f:f0: b6:bb:34:5e:e6:d3:14:b0:b4:03:f4:b8:71:31:ce: 74:6e:51:9c:56:bf:88:08:6b:b4:2d:83:45:41:f6: d2:98:4d:74:23:a1:cf:48:af:3e:9c:64:62:f7:e3: fb:cc:19:80:11:13:89:82:aa:ad:50:a4:1c:8d:4b: a9:a5:d1:b0:a6:6f:e8:7b:51:10:b6:60:42:33:e5: ed:6c:45:57:98:5e:6f:63:b6:87:09:e4:cf:6e:e9: 92:f8:05:0c:0a:e6:1f:73:07:78:92:d9:c4:ae:f5: b4:07:ec:64:8f:ec:e4:ef:2f:b6:83:d0:32:33:17: 9e:87:9d:9a:68:61:d6:b9:f5:71:bb:ea:94:ba:f0: f1:3b:45:be:34:96:cf:fd:3b:24:04:d4:a2:2b:43: 28:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:28:DA:C8:7C:32:F6:BB:16:A9:51:78:0F:E1:E6:72:39:6C:EB:D9 X509v3 Authority Key Identifier: keyid:56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3131362e3231322e37352e302f32342d3234203d3e203436303330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.212.75.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:64:a2:6f:bf:a3:17:1a:4c:8a:e5:ad:f6:e1:0d:24:f3:4a: 29:60:b7:06:a3:dd:8f:a5:6a:18:e6:ba:4d:5d:2f:59:a3:0c: 16:f8:96:7f:02:d7:12:dd:1e:9b:5c:e2:d4:ef:42:33:4e:da: 42:97:b3:bb:32:5a:ca:bd:d8:c3:4a:a4:3b:ec:18:ee:c8:55: 85:48:f1:7c:02:cd:81:aa:b8:15:89:b1:6a:3b:c8:e5:4d:63: 77:5d:8d:42:85:4f:17:8d:5f:1f:fe:a3:dc:96:7c:fe:94:6f: 9f:44:7c:fd:51:52:bb:60:ed:2f:2a:87:82:f6:4a:1d:81:6f: ff:c0:db:15:9d:be:38:b4:60:35:05:92:d5:00:88:28:54:73: 3a:d4:f6:a1:e5:3e:32:f6:54:13:69:0f:36:ec:bc:b9:7b:03: ec:10:c1:a0:40:76:83:0d:bd:26:f2:a0:f4:97:96:6b:78:48: db:d3:40:03:e5:33:93:79:27:21:4b:7b:69:41:7c:d5:15:db: 28:0a:60:64:08:ae:1c:80:d5:69:6d:9c:ff:1c:08:27:10:14: a4:2e:ac:8e:b8:9c:50:40:80:5b:97:cc:75:8c:f2:38:71:9f: ae:d4:74:69:c8:2e:6f:57:36:32:9c:dc:c1:a9:46:fa:af:5a: 8d:7a:ba:dc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdTqILownucTctKaTczonhRqyGYwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0 MEZCMDU1NjAeFw0yNTA5MzAxNDU1MDFaFw0yNjA5MjkxNTAwMDFaMDMxMTAvBgNV BAMTKEYyMjhEQUM4N0MzMkY2QkIxNkE5NTE3ODBGRTFFNjcyMzk2Q0VCRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRFT0UXBGYx5EN16qOvTrcB6VK tko91T+BlqV/kPzpEAn8jT/YCAHBB9apm5qd0ZlotR326mZKiOrBHG/o8zldNJFC xSqSPzx1wvFH+y0vXGdj4XJp6Y+vEdsV/5thYOkRtpbomws/8La7NF7m0xSwtAP0 uHExznRuUZxWv4gIa7Qtg0VB9tKYTXQjoc9Irz6cZGL34/vMGYARE4mCqq1QpByN S6ml0bCmb+h7URC2YEIz5e1sRVeYXm9jtocJ5M9u6ZL4BQwK5h9zB3iS2cSu9bQH 7GSP7OTvL7aD0DIzF56HnZpoYda59XG76pS68PE7Rb40ls/9OyQE1KIrQygdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8ijayHwy9rsWqVF4D+Hmcjls69kwHwYDVR0j BBgwFoAUVmDbOBHBZGrB+Luplql1e0D7BVYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDFkNTk2Yy0wOWUzLTQ2MjEtYTYzYi0yMGE1MTNjZDQ4YjkvMC81NjYwREIzODEx QzE2NDZBQzFGOEJCQTk5NkE5NzU3QjQwRkIwNTU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0MEZC MDU1Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMWQ1OTZjLTA5ZTMtNDYyMS1h NjNiLTIwYTUxM2NkNDhiOS8wLzMxMzEzNjJlMzIzMTMyMmUzNzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHTUSzANBgkqhkiG 9w0BAQsFAAOCAQEAi2Sib7+jFxpMiuWt9uENJPNKKWC3BqPdj6VqGOa6TV0vWaMM FviWfwLXEt0em1zi1O9CM07aQpezuzJayr3Yw0qkO+wY7shVhUjxfALNgaq4FYmx ajvI5U1jd12NQoVPF41fH/6j3JZ8/pRvn0R8/VFSu2DtLyqHgvZKHYFv/8DbFZ2+ OLRgNQWS1QCIKFRzOtT2oeU+MvZUE2kPNuy8uXsD7BDBoEB2gw29JvKg9JeWa3hI 29NAA+Uzk3knIUt7aUF81RXbKApgZAiuHIDVaW2c/xwIJxAUpC6sjricUECAW5fM dYzyOHGfrtR0acgub1c2MpzcwalG+q9ajXq63A== -----END CERTIFICATE-----Generated at Tue Oct 21 11:31:15 2025 by rpki-client