$ rpki-client -vvf repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3137312e302f32342d3234203d3e203436303330.roa File: 3138322e34382e3137312e302f32342d3234203d3e203436303330.roa (raw, json) Hash identifier: Z8X4hSn3NZr1IPXuRj1B4U/7RJanDBQuZ4tlglVXGqA= Subject key identifier: 67:93:5C:A7:06:E6:AB:EE:76:00:6F:54:2A:1F:27:F4:A2:5E:6C:60 Certificate issuer: /CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Certificate serial: 580A1636D1A3C783116FCDB9AE1B8F8C91265664 Authority key identifier: 56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3137312e302f32342d3234203d3e203436303330.roa Signing time: Fri 19 Sep 2025 13:01:17 +0000 ROA not before: Fri 19 Sep 2025 12:56:17 +0000 ROA not after: Fri 18 Sep 2026 13:01:17 +0000 asID: 46030 IP address blocks: 182.48.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 08:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:0a:16:36:d1:a3:c7:83:11:6f:cd:b9:ae:1b:8f:8c:91:26:56:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Validity Not Before: Sep 19 12:56:17 2025 GMT Not After : Sep 18 13:01:17 2026 GMT Subject: CN=67935CA706E6ABEE76006F542A1F27F4A25E6C60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a2:98:08:49:df:0e:3e:9c:fe:91:e8:73:ba: a0:59:59:4b:03:91:03:3a:a6:16:b4:e8:99:b7:6c: 74:18:c1:17:59:de:2f:48:30:c1:8f:be:4c:d9:88: f6:16:06:62:03:73:09:36:7c:e7:96:34:c7:ba:fa: b7:25:09:13:85:24:24:ba:f2:45:3e:ad:97:b9:a6: a0:5e:0b:28:39:0c:81:4f:58:54:ae:98:08:f4:99: 89:52:c9:ad:82:d8:8a:89:98:7c:8a:bf:41:7e:63: 28:2e:b8:cd:ab:a2:59:f7:4d:5f:bc:3c:9b:f1:b3: 6c:41:f2:e7:7a:aa:c7:a6:8d:b2:2f:7d:b3:c9:c9: 38:a5:e2:aa:fc:e2:86:e1:91:21:af:c4:00:b9:02: e4:2b:e9:27:25:83:97:fb:f3:5b:58:cf:99:81:b3: 1f:3d:07:e6:a9:d3:35:c9:05:29:5b:15:f4:e7:03: b1:8e:58:00:93:9b:ff:6c:f6:b3:23:43:4f:bb:6c: fd:b4:6d:fe:6d:b5:d0:e9:ba:07:81:4e:a5:79:2d: 65:72:ac:62:b6:fa:c7:db:20:75:e6:96:b8:37:88: c9:78:11:eb:f9:93:92:f4:e9:05:43:05:94:1b:cd: bb:1d:fe:6e:24:a6:50:74:69:a9:27:32:95:4e:e4: 6a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:93:5C:A7:06:E6:AB:EE:76:00:6F:54:2A:1F:27:F4:A2:5E:6C:60 X509v3 Authority Key Identifier: keyid:56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3137312e302f32342d3234203d3e203436303330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.48.171.0/24 Signature Algorithm: sha256WithRSAEncryption 48:16:1f:f3:1b:4a:4f:7d:66:2d:fb:d7:1f:8b:5d:06:8c:2c: 90:0b:b8:b8:ac:19:e8:5b:8f:b4:2f:9c:e3:4f:88:d9:4a:a7: 89:7d:02:90:1a:91:86:ae:a9:fa:c7:ad:4d:4a:58:70:11:c2: 6c:be:19:66:ac:47:da:5f:69:f9:bb:c7:ad:79:3a:f0:f0:9b: ee:81:fe:7f:7d:3b:a6:7a:ab:6b:75:0a:1a:01:1e:3b:f1:89: 6a:52:d2:4e:7e:26:88:d9:ab:84:a5:ec:ab:03:b0:2c:b2:e4: 3e:f1:c4:fa:59:33:0a:bb:06:25:71:d4:59:6f:30:f2:90:0f: 7f:a7:2f:c6:64:0e:51:74:6c:b5:a9:bc:05:a0:4d:e1:75:7f: be:86:ed:2a:a9:53:b4:60:4e:14:d9:8b:8e:b3:af:e7:c2:47: 65:15:f7:14:41:26:99:05:b3:c9:24:2b:d3:0b:61:8e:dd:86: 93:5c:f7:84:88:46:c2:d2:37:0a:33:c9:25:03:63:ef:4f:b9: f0:ac:e5:2a:95:6b:65:fe:c3:03:b4:14:ca:24:fb:4d:5e:94: 93:e6:46:a2:d9:12:1f:04:3a:4f:91:23:46:f6:97:55:b7:27: 90:f7:69:00:e5:cc:71:19:03:19:eb:b6:61:2f:bd:ca:f2:52: 99:71:68:0b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWAoWNtGjx4MRb825rhuPjJEmVmQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0 MEZCMDU1NjAeFw0yNTA5MTkxMjU2MTdaFw0yNjA5MTgxMzAxMTdaMDMxMTAvBgNV BAMTKDY3OTM1Q0E3MDZFNkFCRUU3NjAwNkY1NDJBMUYyN0Y0QTI1RTZDNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnopgISd8OPpz+kehzuqBZWUsD kQM6pha06Jm3bHQYwRdZ3i9IMMGPvkzZiPYWBmIDcwk2fOeWNMe6+rclCROFJCS6 8kU+rZe5pqBeCyg5DIFPWFSumAj0mYlSya2C2IqJmHyKv0F+YyguuM2roln3TV+8 PJvxs2xB8ud6qsemjbIvfbPJyTil4qr84obhkSGvxAC5AuQr6Sclg5f781tYz5mB sx89B+ap0zXJBSlbFfTnA7GOWACTm/9s9rMjQ0+7bP20bf5ttdDpugeBTqV5LWVy rGK2+sfbIHXmlrg3iMl4Eev5k5L06QVDBZQbzbsd/m4kplB0aaknMpVO5GolAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZ5Ncpwbmq+52AG9UKh8n9KJebGAwHwYDVR0j BBgwFoAUVmDbOBHBZGrB+Luplql1e0D7BVYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDFkNTk2Yy0wOWUzLTQ2MjEtYTYzYi0yMGE1MTNjZDQ4YjkvMC81NjYwREIzODEx QzE2NDZBQzFGOEJCQTk5NkE5NzU3QjQwRkIwNTU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0MEZC MDU1Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMWQ1OTZjLTA5ZTMtNDYyMS1h NjNiLTIwYTUxM2NkNDhiOS8wLzMxMzgzMjJlMzQzODJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALYwqzANBgkqhkiG 9w0BAQsFAAOCAQEASBYf8xtKT31mLfvXH4tdBowskAu4uKwZ6FuPtC+c40+I2Uqn iX0CkBqRhq6p+setTUpYcBHCbL4ZZqxH2l9p+bvHrXk68PCb7oH+f307pnqra3UK GgEeO/GJalLSTn4miNmrhKXsqwOwLLLkPvHE+lkzCrsGJXHUWW8w8pAPf6cvxmQO UXRstam8BaBN4XV/vobtKqlTtGBOFNmLjrOv58JHZRX3FEEmmQWzySQr0wthjt2G k1z3hIhGwtI3CjPJJQNj70+58KzlKpVrZf7DA7QUyiT7TV6Uk+ZGotkSHwQ6T5Ej RvaXVbcnkPdpAOXMcRkDGeu2YS+9yvJSmXFoCw== -----END CERTIFICATE-----Generated at Tue Oct 21 11:28:04 2025 by rpki-client