$ rpki-client -vvf repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3137302e302f32342d3234203d3e203436303330.roa File: 3138322e34382e3137302e302f32342d3234203d3e203436303330.roa (raw, json) Hash identifier: TV+ThqRZxDALJHAT1R7Hg9oS1VcDGaUwDtqsDA/bYJ8= Subject key identifier: 11:32:09:21:33:24:B9:D6:E9:AB:06:A8:BB:21:6B:DF:C7:84:41:1A Certificate issuer: /CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Certificate serial: 18FCF330B228519884DAA3DC0D1E2AC217147F14 Authority key identifier: 56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3137302e302f32342d3234203d3e203436303330.roa Signing time: Fri 19 Sep 2025 13:01:16 +0000 ROA not before: Fri 19 Sep 2025 12:56:16 +0000 ROA not after: Fri 18 Sep 2026 13:01:16 +0000 asID: 46030 IP address blocks: 182.48.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 08:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:fc:f3:30:b2:28:51:98:84:da:a3:dc:0d:1e:2a:c2:17:14:7f:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Validity Not Before: Sep 19 12:56:16 2025 GMT Not After : Sep 18 13:01:16 2026 GMT Subject: CN=113209213324B9D6E9AB06A8BB216BDFC784411A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2a:30:45:2e:c9:73:d7:e7:bc:09:ad:9b:e8: 61:7f:ef:03:39:50:bd:2d:98:9c:5a:82:ca:2f:f1: 9b:92:94:04:16:1e:24:c5:3a:b3:ea:7b:17:55:be: 0b:bf:fe:d7:50:46:4b:d0:93:95:65:a5:02:9f:65: 6d:1a:ea:da:ad:23:bb:96:09:6c:9b:9c:84:47:75: 48:af:49:29:a0:8d:03:bc:ea:4f:2b:fb:54:ee:7e: be:17:b6:25:1c:9d:5a:f6:b9:7f:ad:f7:39:19:7d: a9:4d:d1:fc:3b:5f:dc:b3:d9:3a:e8:dd:8f:82:41: e8:71:e4:64:b7:f6:76:5a:67:3c:2c:d0:55:5d:a5: 20:4e:d8:45:cb:9d:6b:6d:f7:71:3e:0a:92:73:b4: 9c:02:33:06:76:06:9a:88:fc:14:52:01:d9:0f:90: 1f:3f:7c:ac:a5:f0:de:42:4c:e0:08:4f:5d:59:a4: 97:aa:65:25:3f:80:d9:39:ff:da:02:06:c9:b6:48: ba:06:6e:1e:ae:0b:09:df:00:fc:b9:c5:46:d0:28: b2:79:b7:5c:73:d0:ee:b9:f0:18:e4:df:c6:fe:4f: 96:04:99:31:fb:45:fa:d5:39:6b:8e:e4:a3:d0:88: e7:5e:c1:54:ad:60:59:66:05:55:92:00:f5:f5:c8: 9e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:32:09:21:33:24:B9:D6:E9:AB:06:A8:BB:21:6B:DF:C7:84:41:1A X509v3 Authority Key Identifier: keyid:56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3137302e302f32342d3234203d3e203436303330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.48.170.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:05:4c:b2:c5:3e:e5:a8:67:b2:e8:ac:ca:60:e2:d4:a3:29: cf:2e:ac:12:57:09:3d:7b:14:5f:a1:ed:48:c2:c0:a7:48:48: 14:ec:33:40:d3:6c:6a:37:3e:40:9d:41:20:46:c6:cf:dd:7d: 9e:83:28:f3:b2:d7:25:ce:7e:eb:12:af:46:d0:b7:53:48:09: c2:49:d8:43:5f:f7:86:37:63:66:28:63:7d:ce:b8:98:13:75: 62:04:3a:89:76:34:cb:09:f7:bd:f8:dd:10:9c:39:64:61:79: 26:37:84:2d:fc:41:44:75:24:a7:13:dc:e2:6d:1d:7e:2a:70: 03:dd:4b:c0:a4:6a:04:d2:eb:24:36:45:93:49:b0:dd:02:07: a4:a0:7f:48:96:15:bc:c0:bd:36:d1:48:df:cd:d1:c6:1a:c6: 5e:09:4d:b4:51:3a:37:e6:bf:2a:ba:57:19:0d:4c:de:dc:56: b3:5e:04:d4:14:45:c1:16:95:6e:ea:a9:0f:0d:8c:39:db:cb: 76:72:09:e0:a3:2b:4a:0e:a3:c0:25:d9:5a:a7:75:05:41:89: 77:08:d6:b1:2e:5d:01:b5:e6:8f:13:20:6d:d4:67:88:40:60: 80:84:bf:d7:44:2e:57:17:d7:e5:52:b6:7a:7b:9e:02:85:3b: c1:8e:0d:58 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGPzzMLIoUZiE2qPcDR4qwhcUfxQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0 MEZCMDU1NjAeFw0yNTA5MTkxMjU2MTZaFw0yNjA5MTgxMzAxMTZaMDMxMTAvBgNV BAMTKDExMzIwOTIxMzMyNEI5RDZFOUFCMDZBOEJCMjE2QkRGQzc4NDQxMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJKjBFLslz1+e8Ca2b6GF/7wM5 UL0tmJxagsov8ZuSlAQWHiTFOrPqexdVvgu//tdQRkvQk5VlpQKfZW0a6tqtI7uW CWybnIRHdUivSSmgjQO86k8r+1Tufr4XtiUcnVr2uX+t9zkZfalN0fw7X9yz2Tro 3Y+CQehx5GS39nZaZzws0FVdpSBO2EXLnWtt93E+CpJztJwCMwZ2BpqI/BRSAdkP kB8/fKyl8N5CTOAIT11ZpJeqZSU/gNk5/9oCBsm2SLoGbh6uCwnfAPy5xUbQKLJ5 t1xz0O658Bjk38b+T5YEmTH7RfrVOWuO5KPQiOdewVStYFlmBVWSAPX1yJ5NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUETIJITMkudbpqwaouyFr38eEQRowHwYDVR0j BBgwFoAUVmDbOBHBZGrB+Luplql1e0D7BVYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDFkNTk2Yy0wOWUzLTQ2MjEtYTYzYi0yMGE1MTNjZDQ4YjkvMC81NjYwREIzODEx QzE2NDZBQzFGOEJCQTk5NkE5NzU3QjQwRkIwNTU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0MEZC MDU1Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMWQ1OTZjLTA5ZTMtNDYyMS1h NjNiLTIwYTUxM2NkNDhiOS8wLzMxMzgzMjJlMzQzODJlMzEzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALYwqjANBgkqhkiG 9w0BAQsFAAOCAQEAjAVMssU+5ahnsuisymDi1KMpzy6sElcJPXsUX6HtSMLAp0hI FOwzQNNsajc+QJ1BIEbGz919noMo87LXJc5+6xKvRtC3U0gJwknYQ1/3hjdjZihj fc64mBN1YgQ6iXY0ywn3vfjdEJw5ZGF5JjeELfxBRHUkpxPc4m0dfipwA91LwKRq BNLrJDZFk0mw3QIHpKB/SJYVvMC9NtFI383RxhrGXglNtFE6N+a/KrpXGQ1M3txW s14E1BRFwRaVbuqpDw2MOdvLdnIJ4KMrSg6jwCXZWqd1BUGJdwjWsS5dAbXmjxMg bdRniEBggIS/10QuVxfX5VK2enueAoU7wY4NWA== -----END CERTIFICATE-----Generated at Tue Oct 21 11:31:17 2025 by rpki-client