$ rpki-client -vvf repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138372e302f32342d3234203d3e203436303330.roa File: 3138322e34382e3138372e302f32342d3234203d3e203436303330.roa (raw, json) Hash identifier: tp1aK+KhG3pbGeU2AX3Ci0Hk4uk7eNqdakN3D6YW0JI= Subject key identifier: 50:56:AF:68:65:78:39:BF:14:20:9D:81:2B:AD:AC:EC:C5:E4:1C:CB Certificate issuer: /CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Certificate serial: 20690EFDD3CD1E91D449B752AB474B4963CB25A1 Authority key identifier: 56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138372e302f32342d3234203d3e203436303330.roa Signing time: Fri 19 Sep 2025 13:01:17 +0000 ROA not before: Fri 19 Sep 2025 12:56:17 +0000 ROA not after: Fri 18 Sep 2026 13:01:17 +0000 asID: 46030 IP address blocks: 182.48.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 08:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:69:0e:fd:d3:cd:1e:91:d4:49:b7:52:ab:47:4b:49:63:cb:25:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Validity Not Before: Sep 19 12:56:17 2025 GMT Not After : Sep 18 13:01:17 2026 GMT Subject: CN=5056AF68657839BF14209D812BADACECC5E41CCB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:1b:61:0f:46:9c:5b:da:75:1e:e6:48:aa:26: 10:3f:48:dd:4b:0b:af:23:75:b5:15:01:ad:21:1c: f0:7e:a9:1d:25:71:de:91:fd:cf:99:cf:38:d5:36: 75:d9:33:6d:7c:64:1f:e2:89:13:89:ed:d7:8e:38: 77:a2:1c:3c:a1:42:29:f3:43:88:47:cb:ca:36:5d: 1b:67:c6:c6:9a:ad:d2:e0:d0:aa:c1:3e:1d:59:48: 4b:05:99:cf:4b:78:c3:ed:c6:2b:29:82:18:56:93: 08:cd:c3:5a:8e:94:f6:af:7b:aa:4f:48:17:fb:b7: b0:5a:e2:3e:63:29:6c:b1:d0:d5:50:ad:73:3e:1d: a1:03:c1:4d:4d:67:c7:5b:59:51:75:93:ac:52:12: 00:a1:45:6c:fa:14:81:15:d1:03:98:59:5c:35:9a: 85:8a:c2:65:49:21:f4:e2:42:28:7d:bb:76:4a:4f: 79:95:33:2c:c7:28:d0:90:40:f1:12:3b:e8:e5:7b: a1:41:b0:6f:b6:82:fd:29:56:48:47:af:70:1f:35: 98:f2:e8:14:cf:99:d1:b3:8b:a6:cc:8d:a8:cc:ee: 8a:42:0e:03:81:1d:a4:6b:9d:92:cf:c6:40:50:6e: 15:9c:ac:d0:6a:a7:c8:14:09:b8:ad:c1:54:68:ac: c3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:56:AF:68:65:78:39:BF:14:20:9D:81:2B:AD:AC:EC:C5:E4:1C:CB X509v3 Authority Key Identifier: keyid:56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138372e302f32342d3234203d3e203436303330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.48.187.0/24 Signature Algorithm: sha256WithRSAEncryption 14:0e:10:c0:a5:59:4c:77:af:c1:a8:21:52:cb:46:6f:f6:e9: d6:48:4d:34:0a:48:72:6d:ac:69:9a:4d:5b:4d:62:1a:10:17: 24:86:3e:6f:d0:98:09:e2:42:78:9c:d5:ea:d5:4f:d7:f9:ce: d2:7c:99:b9:d6:2c:24:06:a3:b3:52:ad:34:d5:54:57:79:39: 9d:6c:42:7e:73:81:a2:c8:7a:2a:17:96:a9:45:55:f6:d0:31: d1:cb:6c:73:db:27:c2:a3:fa:b8:f5:bf:51:54:dc:43:2d:63: 9c:c1:36:0f:38:8b:47:82:cd:0b:27:ed:ae:10:89:4b:0d:6d: 4b:4d:d2:0d:2a:ed:50:97:ed:56:15:07:6f:b6:bf:de:81:61: 81:69:c9:78:cd:99:7b:42:67:1e:00:45:d9:27:01:74:de:79: 43:d7:5c:22:b2:0b:28:e6:b1:fd:9f:08:69:61:95:22:4e:17: 80:3f:6a:37:6e:d5:87:89:b0:47:81:fd:8c:b7:7f:0b:b9:ad: 6f:1b:c5:bd:67:23:7f:eb:b0:56:63:17:91:d9:e3:33:0e:76: 31:b1:54:43:fc:04:04:24:87:4e:95:23:ab:00:60:7a:9b:65: 26:8e:5e:9e:55:22:de:0f:f8:23:2c:9b:26:88:c3:ee:0b:2a: ee:b2:e0:a2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIGkO/dPNHpHUSbdSq0dLSWPLJaEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0 MEZCMDU1NjAeFw0yNTA5MTkxMjU2MTdaFw0yNjA5MTgxMzAxMTdaMDMxMTAvBgNV BAMTKDUwNTZBRjY4NjU3ODM5QkYxNDIwOUQ4MTJCQURBQ0VDQzVFNDFDQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaG2EPRpxb2nUe5kiqJhA/SN1L C68jdbUVAa0hHPB+qR0lcd6R/c+ZzzjVNnXZM218ZB/iiROJ7deOOHeiHDyhQinz Q4hHy8o2XRtnxsaardLg0KrBPh1ZSEsFmc9LeMPtxispghhWkwjNw1qOlPave6pP SBf7t7Ba4j5jKWyx0NVQrXM+HaEDwU1NZ8dbWVF1k6xSEgChRWz6FIEV0QOYWVw1 moWKwmVJIfTiQih9u3ZKT3mVMyzHKNCQQPESO+jle6FBsG+2gv0pVkhHr3AfNZjy 6BTPmdGzi6bMjajM7opCDgOBHaRrnZLPxkBQbhWcrNBqp8gUCbitwVRorMNbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUUFavaGV4Ob8UIJ2BK62s7MXkHMswHwYDVR0j BBgwFoAUVmDbOBHBZGrB+Luplql1e0D7BVYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDFkNTk2Yy0wOWUzLTQ2MjEtYTYzYi0yMGE1MTNjZDQ4YjkvMC81NjYwREIzODEx QzE2NDZBQzFGOEJCQTk5NkE5NzU3QjQwRkIwNTU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0MEZC MDU1Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMWQ1OTZjLTA5ZTMtNDYyMS1h NjNiLTIwYTUxM2NkNDhiOS8wLzMxMzgzMjJlMzQzODJlMzEzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALYwuzANBgkqhkiG 9w0BAQsFAAOCAQEAFA4QwKVZTHevwaghUstGb/bp1khNNApIcm2saZpNW01iGhAX JIY+b9CYCeJCeJzV6tVP1/nO0nyZudYsJAajs1KtNNVUV3k5nWxCfnOBosh6KheW qUVV9tAx0ctsc9snwqP6uPW/UVTcQy1jnME2DziLR4LNCyftrhCJSw1tS03SDSrt UJftVhUHb7a/3oFhgWnJeM2Ze0JnHgBF2ScBdN55Q9dcIrILKOax/Z8IaWGVIk4X gD9qN27Vh4mwR4H9jLd/C7mtbxvFvWcjf+uwVmMXkdnjMw52MbFUQ/wEBCSHTpUj qwBgeptlJo5enlUi3g/4IyybJojD7gsq7rLgog== -----END CERTIFICATE-----Generated at Tue Oct 21 11:31:19 2025 by rpki-client