$ rpki-client -vvf repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3136302e302f32342d3234203d3e203436303330.roa File: 3138322e34382e3136302e302f32342d3234203d3e203436303330.roa (raw, json) Hash identifier: HqotIK9Ss72o5whRKBIZz+igrmB6f8Xeda4nd9YQ3U8= Subject key identifier: 11:BD:94:26:8F:AD:11:FF:8A:5D:ED:C3:7B:2E:C8:FD:CB:BB:94:0C Certificate issuer: /CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Certificate serial: 68ECE6E52911E994F12A74BF93E2765792ACB2ED Authority key identifier: 56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3136302e302f32342d3234203d3e203436303330.roa Signing time: Wed 01 Oct 2025 08:03:24 +0000 ROA not before: Wed 01 Oct 2025 07:58:24 +0000 ROA not after: Wed 30 Sep 2026 08:03:24 +0000 asID: 46030 IP address blocks: 182.48.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 08:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ec:e6:e5:29:11:e9:94:f1:2a:74:bf:93:e2:76:57:92:ac:b2:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Validity Not Before: Oct 1 07:58:24 2025 GMT Not After : Sep 30 08:03:24 2026 GMT Subject: CN=11BD94268FAD11FF8A5DEDC37B2EC8FDCBBB940C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:27:e0:18:13:d8:40:ae:72:49:d7:6f:f5:7c: fd:a2:ab:28:1a:2b:35:31:a6:33:ba:d4:ba:0c:0a: f4:2d:d2:d2:95:7f:fc:4d:67:73:68:37:00:74:43: e2:09:ef:e6:cb:b0:6d:37:35:7d:ce:06:07:d0:bc: ad:4d:7f:67:ce:5e:6b:5f:80:ac:52:ff:61:bd:4e: 00:93:fc:fc:9c:b4:1f:8c:d6:9f:77:cb:22:7c:a1: c1:ae:69:c8:41:f3:1c:29:1e:85:cf:70:db:c3:cd: 8c:3a:99:d2:73:31:13:47:1c:d9:33:c8:57:52:f5: 94:85:68:57:c2:5b:41:51:4d:ef:b3:f6:8f:67:3c: 32:2d:c1:e5:5f:b4:c0:65:8b:6a:05:9e:07:c1:b5: a5:81:18:21:36:d4:b5:a5:db:55:b3:de:17:4c:2a: 41:e3:10:b4:5d:75:35:de:6b:0d:7c:21:96:0d:a8: 34:99:55:a4:93:12:88:12:06:a2:b5:b8:df:f2:d6: 07:ba:b4:6c:dc:89:e2:e0:12:5d:60:37:3b:b7:c6: 78:6d:ea:ee:0c:9c:90:4f:1f:2b:fb:cb:2f:8e:31: 21:a9:37:b9:2c:5e:8c:b8:86:da:e7:f9:ed:db:ef: 58:11:d3:f2:d1:88:f2:35:5a:80:df:d6:e6:98:5c: 79:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:BD:94:26:8F:AD:11:FF:8A:5D:ED:C3:7B:2E:C8:FD:CB:BB:94:0C X509v3 Authority Key Identifier: keyid:56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3136302e302f32342d3234203d3e203436303330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.48.160.0/24 Signature Algorithm: sha256WithRSAEncryption 36:14:ab:8d:ab:39:60:06:57:24:4d:de:8a:ea:86:6f:8d:45: 5e:e6:d6:a7:09:a8:c9:50:de:48:39:b0:23:54:04:f9:90:6a: 26:a9:a6:55:54:a4:b6:7a:59:f6:af:9b:55:3f:9b:2b:f7:02: 65:61:7c:40:2d:9b:b4:a2:b8:3b:e6:b6:52:33:d4:74:c7:d9: 6b:1e:f7:16:c2:5d:56:51:e1:c8:25:51:ec:0c:9d:40:9e:e3: ac:9c:f2:c1:ff:83:13:a1:2e:bb:bb:0e:91:38:b9:f6:c7:97: 2e:e9:94:d0:7e:6e:4d:9b:59:5c:b7:a1:a4:bb:3e:48:db:43: b8:1d:ca:f8:c9:e9:ce:3e:d5:ea:b6:78:2b:e3:5c:1a:49:f8: af:22:f6:18:0d:87:34:4a:b8:5a:7e:03:d4:88:1c:8d:1f:e0: b7:bf:4c:1e:5c:10:04:56:b3:2e:27:56:12:b0:50:2d:22:97: 4f:fc:01:68:0b:27:5b:17:58:21:26:50:73:1e:db:c7:54:99: 21:cc:64:d3:c9:8a:df:e0:54:a4:89:43:44:0f:26:2a:eb:91: 0e:68:aa:f5:06:fe:df:27:55:cb:8c:f6:25:ad:e1:75:fa:4a: 44:13:45:86:00:c7:37:85:e6:5f:4e:c4:8c:24:30:ff:72:6b: 64:5a:95:6f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaOzm5SkR6ZTxKnS/k+J2V5Kssu0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0 MEZCMDU1NjAeFw0yNTEwMDEwNzU4MjRaFw0yNjA5MzAwODAzMjRaMDMxMTAvBgNV BAMTKDExQkQ5NDI2OEZBRDExRkY4QTVERURDMzdCMkVDOEZEQ0JCQjk0MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEJ+AYE9hArnJJ12/1fP2iqyga KzUxpjO61LoMCvQt0tKVf/xNZ3NoNwB0Q+IJ7+bLsG03NX3OBgfQvK1Nf2fOXmtf gKxS/2G9TgCT/PyctB+M1p93yyJ8ocGuachB8xwpHoXPcNvDzYw6mdJzMRNHHNkz yFdS9ZSFaFfCW0FRTe+z9o9nPDItweVftMBli2oFngfBtaWBGCE21LWl21Wz3hdM KkHjELRddTXeaw18IZYNqDSZVaSTEogSBqK1uN/y1ge6tGzcieLgEl1gNzu3xnht 6u4MnJBPHyv7yy+OMSGpN7ksXoy4htrn+e3b71gR0/LRiPI1WoDf1uaYXHkDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEb2UJo+tEf+KXe3Dey7I/cu7lAwwHwYDVR0j BBgwFoAUVmDbOBHBZGrB+Luplql1e0D7BVYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDFkNTk2Yy0wOWUzLTQ2MjEtYTYzYi0yMGE1MTNjZDQ4YjkvMC81NjYwREIzODEx QzE2NDZBQzFGOEJCQTk5NkE5NzU3QjQwRkIwNTU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0MEZC MDU1Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMWQ1OTZjLTA5ZTMtNDYyMS1h NjNiLTIwYTUxM2NkNDhiOS8wLzMxMzgzMjJlMzQzODJlMzEzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALYwoDANBgkqhkiG 9w0BAQsFAAOCAQEANhSrjas5YAZXJE3eiuqGb41FXubWpwmoyVDeSDmwI1QE+ZBq JqmmVVSktnpZ9q+bVT+bK/cCZWF8QC2btKK4O+a2UjPUdMfZax73FsJdVlHhyCVR 7AydQJ7jrJzywf+DE6Euu7sOkTi59seXLumU0H5uTZtZXLehpLs+SNtDuB3K+Mnp zj7V6rZ4K+NcGkn4ryL2GA2HNEq4Wn4D1IgcjR/gt79MHlwQBFazLidWErBQLSKX T/wBaAsnWxdYISZQcx7bx1SZIcxk08mK3+BUpIlDRA8mKuuRDmiq9Qb+3ydVy4z2 Ja3hdfpKRBNFhgDHN4XmX07EjCQw/3JrZFqVbw== -----END CERTIFICATE-----Generated at Tue Oct 21 11:28:08 2025 by rpki-client