$ rpki-client -vvf repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138392e302f32342d3234203d3e203436303330.roa File: 3138322e34382e3138392e302f32342d3234203d3e203436303330.roa (raw, json) Hash identifier: +q6vcI34UmUxtYkFFFx+w393V6GWggPJixhm9cbZeSg= Subject key identifier: 77:41:4E:03:C6:70:0D:16:92:78:97:AF:BE:55:DA:C6:34:2F:FF:AE Certificate issuer: /CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Certificate serial: 5FDD720C327BC344A70082C464DFEC58E14257E1 Authority key identifier: 56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138392e302f32342d3234203d3e203436303330.roa Signing time: Fri 19 Sep 2025 13:01:14 +0000 ROA not before: Fri 19 Sep 2025 12:56:14 +0000 ROA not after: Fri 18 Sep 2026 13:01:14 +0000 asID: 46030 IP address blocks: 182.48.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 08:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:dd:72:0c:32:7b:c3:44:a7:00:82:c4:64:df:ec:58:e1:42:57:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Validity Not Before: Sep 19 12:56:14 2025 GMT Not After : Sep 18 13:01:14 2026 GMT Subject: CN=77414E03C6700D16927897AFBE55DAC6342FFFAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:a3:02:44:3a:17:d6:4c:70:11:03:3a:12:c3: 59:dd:15:14:7e:12:af:5d:66:c7:8d:bd:d8:44:82: 4a:ee:34:a3:a8:dc:1a:63:36:66:7a:d3:bb:a8:84: 15:7d:92:a1:cb:13:d8:1e:6f:81:c5:9e:df:cf:de: 5a:4d:5f:92:0b:ac:a6:14:10:60:e2:3f:59:1c:5e: a9:2b:9c:39:24:97:93:88:ac:d8:7e:78:6b:9a:e0: 07:17:3b:72:27:e1:1e:b6:02:31:00:94:aa:e0:0d: ae:69:7f:83:78:ba:a4:ff:93:38:d3:e9:3f:13:2d: 30:20:cc:4b:36:96:6d:a8:ce:b4:0d:85:69:f3:f6: 68:1c:28:00:94:54:d8:2e:84:62:03:77:94:55:c3: c0:06:f0:94:6c:2e:3f:37:7c:14:de:5a:bb:ef:43: 09:dc:24:84:02:59:9f:1e:cd:10:0a:af:98:e7:64: c2:81:2c:2b:84:c5:a9:f0:b8:f9:d8:c9:e3:ba:2e: 09:cd:47:51:52:f9:d9:24:aa:35:4d:e3:b8:73:28: 63:5f:f0:6d:98:a6:03:08:35:19:b8:2a:1a:b0:de: 2c:9b:c5:48:91:8c:3f:07:40:4e:af:1b:de:c2:58: 57:52:cb:c2:98:95:69:8e:0c:4f:28:c2:8c:23:e6: 01:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:41:4E:03:C6:70:0D:16:92:78:97:AF:BE:55:DA:C6:34:2F:FF:AE X509v3 Authority Key Identifier: keyid:56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138392e302f32342d3234203d3e203436303330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.48.189.0/24 Signature Algorithm: sha256WithRSAEncryption 71:97:a2:45:66:19:e7:da:94:e6:38:0a:52:3d:e6:2a:d8:8c: 9a:bf:2c:d9:78:85:fb:cd:f2:ce:dc:65:2a:e9:0c:4c:18:a2: 3d:41:3a:45:90:81:39:7e:3d:1b:3c:e0:b7:6c:da:bc:c7:c4: 7f:cf:42:42:15:a4:53:43:ab:27:7c:22:29:62:0a:32:fd:00: 4f:7a:36:5f:c1:a0:20:39:62:a6:9b:3f:00:dc:44:af:01:07: 28:16:f1:c7:af:bf:23:a0:fc:40:1d:b3:f6:ac:34:42:83:ba: 65:54:29:ac:1c:d4:7f:c2:13:8f:c7:d4:ec:a8:83:a3:7d:4e: ee:e7:11:10:f9:90:12:fc:87:c7:5e:46:c8:c7:41:a8:f9:2a: 3a:ef:6e:65:a9:e8:ea:d5:47:6a:c5:01:fc:57:13:f1:0a:ac: 0d:69:cf:59:b8:b8:d2:c3:ba:33:8c:0c:36:71:47:34:61:4a: 2d:d1:45:2d:f6:86:31:36:44:fd:f0:a9:68:97:a1:e7:83:ec: 0b:14:41:fb:48:fd:e5:54:10:cb:de:2b:6c:10:15:e0:cd:f4: 70:c4:10:05:a2:f8:ba:63:b9:e1:84:9e:ab:19:c0:17:87:98: b1:51:ef:a9:ab:10:33:e6:f0:fd:a5:23:e9:cc:06:3c:b9:24: a1:11:8c:2b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUX91yDDJ7w0SnAILEZN/sWOFCV+EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0 MEZCMDU1NjAeFw0yNTA5MTkxMjU2MTRaFw0yNjA5MTgxMzAxMTRaMDMxMTAvBgNV BAMTKDc3NDE0RTAzQzY3MDBEMTY5Mjc4OTdBRkJFNTVEQUM2MzQyRkZGQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSowJEOhfWTHARAzoSw1ndFRR+ Eq9dZseNvdhEgkruNKOo3BpjNmZ607uohBV9kqHLE9geb4HFnt/P3lpNX5ILrKYU EGDiP1kcXqkrnDkkl5OIrNh+eGua4AcXO3In4R62AjEAlKrgDa5pf4N4uqT/kzjT 6T8TLTAgzEs2lm2ozrQNhWnz9mgcKACUVNguhGIDd5RVw8AG8JRsLj83fBTeWrvv QwncJIQCWZ8ezRAKr5jnZMKBLCuExanwuPnYyeO6LgnNR1FS+dkkqjVN47hzKGNf 8G2YpgMINRm4Khqw3iybxUiRjD8HQE6vG97CWFdSy8KYlWmODE8owowj5gHVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUd0FOA8ZwDRaSeJevvlXaxjQv/64wHwYDVR0j BBgwFoAUVmDbOBHBZGrB+Luplql1e0D7BVYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDFkNTk2Yy0wOWUzLTQ2MjEtYTYzYi0yMGE1MTNjZDQ4YjkvMC81NjYwREIzODEx QzE2NDZBQzFGOEJCQTk5NkE5NzU3QjQwRkIwNTU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0MEZC MDU1Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMWQ1OTZjLTA5ZTMtNDYyMS1h NjNiLTIwYTUxM2NkNDhiOS8wLzMxMzgzMjJlMzQzODJlMzEzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALYwvTANBgkqhkiG 9w0BAQsFAAOCAQEAcZeiRWYZ59qU5jgKUj3mKtiMmr8s2XiF+83yztxlKukMTBii PUE6RZCBOX49Gzzgt2zavMfEf89CQhWkU0OrJ3wiKWIKMv0AT3o2X8GgIDlipps/ ANxErwEHKBbxx6+/I6D8QB2z9qw0QoO6ZVQprBzUf8ITj8fU7KiDo31O7ucREPmQ EvyHx15GyMdBqPkqOu9uZano6tVHasUB/FcT8QqsDWnPWbi40sO6M4wMNnFHNGFK LdFFLfaGMTZE/fCpaJeh54PsCxRB+0j95VQQy94rbBAV4M30cMQQBaL4umO54YSe qxnAF4eYsVHvqasQM+bw/aUj6cwGPLkkoRGMKw== -----END CERTIFICATE-----Generated at Tue Oct 21 11:31:15 2025 by rpki-client