$ rpki-client -vvf repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3137362e302f32342d3234203d3e203436303330.roa File: 3138322e34382e3137362e302f32342d3234203d3e203436303330.roa (raw, json) Hash identifier: jj9A1E2ZNhCrLJBxJSiilvsdJrryiaE6t1mEPRll+Sg= Subject key identifier: 1E:2C:CA:B7:11:69:D8:10:45:7B:99:96:FF:F1:B0:4D:2D:E2:B8:48 Certificate issuer: /CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Certificate serial: 026E84EBE9471EEB195D901A18E083777EF6E07D Authority key identifier: 56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3137362e302f32342d3234203d3e203436303330.roa Signing time: Fri 19 Sep 2025 13:01:18 +0000 ROA not before: Fri 19 Sep 2025 12:56:18 +0000 ROA not after: Fri 18 Sep 2026 13:01:18 +0000 asID: 46030 IP address blocks: 182.48.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 08:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:6e:84:eb:e9:47:1e:eb:19:5d:90:1a:18:e0:83:77:7e:f6:e0:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Validity Not Before: Sep 19 12:56:18 2025 GMT Not After : Sep 18 13:01:18 2026 GMT Subject: CN=1E2CCAB71169D810457B9996FFF1B04D2DE2B848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8e:cc:26:bd:e2:bd:25:c5:4a:28:cd:35:1c: 54:32:44:6c:2a:58:1f:0a:41:28:96:2b:68:89:3e: fe:50:c2:63:ce:76:20:bc:8b:94:06:3d:44:db:0c: 09:8a:10:40:c2:df:05:04:c4:df:df:12:95:23:57: 7a:08:cc:c9:34:73:89:e2:88:60:b3:d9:87:c4:bf: 92:98:94:24:64:d1:5e:5c:f3:64:bf:e0:9b:d7:62: ab:ae:0d:de:7b:44:fb:d9:50:57:32:00:a2:27:57: e7:4c:d4:c3:c5:ba:79:37:33:f4:4c:27:42:20:ee: 8c:1d:13:d7:8d:dd:56:00:c3:1f:cf:24:de:ba:1a: b5:b8:10:fb:20:f3:05:ef:05:d4:87:16:59:04:8d: d5:09:4d:9a:8a:61:7b:ff:51:c5:90:8b:d8:c6:8c: e3:1b:c9:d4:43:ec:8f:d5:84:97:c6:d6:a7:f1:dc: 6d:ad:a7:a3:cb:9a:33:dd:c4:c5:d2:82:08:c0:67: 04:4f:15:45:09:a1:5f:01:ab:e7:13:8f:d7:49:7a: 47:46:ce:79:0b:8e:eb:ff:1d:ee:80:20:d0:97:e7: 75:97:c9:b5:c5:d7:bd:4c:13:fa:b1:19:79:13:2f: 99:2a:f9:13:d9:87:37:b6:8d:c8:8f:d7:52:f4:60: 24:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:2C:CA:B7:11:69:D8:10:45:7B:99:96:FF:F1:B0:4D:2D:E2:B8:48 X509v3 Authority Key Identifier: keyid:56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3137362e302f32342d3234203d3e203436303330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.48.176.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:d3:a0:47:3c:27:b2:a9:79:e1:a0:4e:56:27:1e:85:c8:35: 08:62:f6:94:81:ca:37:5a:ce:9d:89:64:63:8c:91:9d:75:3b: bf:1a:9c:66:f5:7e:dd:95:b9:92:d2:6a:be:af:3c:bd:ca:35: af:b5:a3:d0:b7:73:ed:06:8e:45:e0:b5:5a:65:8f:61:3a:64: 5c:bb:e7:6b:ae:e9:e1:61:58:52:b4:17:ea:06:0b:35:7a:48: 73:8d:cd:39:a1:81:d9:4c:3b:d2:cc:69:09:f0:b2:6e:f4:5e: 40:e3:d5:53:8f:f4:37:b5:fe:d0:68:58:b6:5d:87:1d:9d:06: 99:fd:36:d1:2a:f2:75:16:d0:6b:f4:b0:a1:4e:69:71:aa:b8: 76:aa:8d:90:51:c3:90:4f:d4:c8:16:18:49:1d:2e:6c:ac:63: 35:fc:9c:b8:44:ef:18:62:71:24:59:bb:4e:f2:75:cb:5e:0f: d1:5a:10:e2:1a:d8:43:50:4a:b6:a5:b1:57:61:d1:aa:d7:f4: 6d:68:1c:45:29:ee:e1:e7:fd:36:40:32:da:0a:1c:0a:d9:a3: 5e:8b:cd:86:05:48:ed:71:83:7f:a8:3d:c3:a5:69:74:cd:8c: 5c:a1:b6:4d:1a:60:a7:4e:13:1f:d7:35:7c:a4:25:fa:02:ea: 0e:c8:98:73 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAm6E6+lHHusZXZAaGOCDd3724H0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0 MEZCMDU1NjAeFw0yNTA5MTkxMjU2MThaFw0yNjA5MTgxMzAxMThaMDMxMTAvBgNV BAMTKDFFMkNDQUI3MTE2OUQ4MTA0NTdCOTk5NkZGRjFCMDREMkRFMkI4NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3jswmveK9JcVKKM01HFQyRGwq WB8KQSiWK2iJPv5QwmPOdiC8i5QGPUTbDAmKEEDC3wUExN/fEpUjV3oIzMk0c4ni iGCz2YfEv5KYlCRk0V5c82S/4JvXYquuDd57RPvZUFcyAKInV+dM1MPFunk3M/RM J0Ig7owdE9eN3VYAwx/PJN66GrW4EPsg8wXvBdSHFlkEjdUJTZqKYXv/UcWQi9jG jOMbydRD7I/VhJfG1qfx3G2tp6PLmjPdxMXSggjAZwRPFUUJoV8Bq+cTj9dJekdG znkLjuv/He6AINCX53WXybXF171ME/qxGXkTL5kq+RPZhze2jciP11L0YCRxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHizKtxFp2BBFe5mW//GwTS3iuEgwHwYDVR0j BBgwFoAUVmDbOBHBZGrB+Luplql1e0D7BVYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDFkNTk2Yy0wOWUzLTQ2MjEtYTYzYi0yMGE1MTNjZDQ4YjkvMC81NjYwREIzODEx QzE2NDZBQzFGOEJCQTk5NkE5NzU3QjQwRkIwNTU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0MEZC MDU1Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMWQ1OTZjLTA5ZTMtNDYyMS1h NjNiLTIwYTUxM2NkNDhiOS8wLzMxMzgzMjJlMzQzODJlMzEzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALYwsDANBgkqhkiG 9w0BAQsFAAOCAQEAa9OgRzwnsql54aBOVicehcg1CGL2lIHKN1rOnYlkY4yRnXU7 vxqcZvV+3ZW5ktJqvq88vco1r7Wj0Ldz7QaOReC1WmWPYTpkXLvna67p4WFYUrQX 6gYLNXpIc43NOaGB2Uw70sxpCfCybvReQOPVU4/0N7X+0GhYtl2HHZ0Gmf020Sry dRbQa/SwoU5pcaq4dqqNkFHDkE/UyBYYSR0ubKxjNfycuETvGGJxJFm7TvJ1y14P 0VoQ4hrYQ1BKtqWxV2HRqtf0bWgcRSnu4ef9NkAy2gocCtmjXovNhgVI7XGDf6g9 w6VpdM2MXKG2TRpgp04TH9c1fKQl+gLqDsiYcw== -----END CERTIFICATE-----Generated at Tue Oct 21 11:31:18 2025 by rpki-client