$ rpki-client -vvf repo-rpki.idnic.net/repo/a371db9b-7c40-4966-991b-5138b3693246/0/3230322e34372e39322e302f32332d3234203d3e203137393935.roa File: 3230322e34372e39322e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: 80MS0ZuTW+5iQNzQYBDQPZfjWsQsANAR7yyCgQ7zGBU= Subject key identifier: 2A:2D:E1:4B:1F:2B:48:CD:EE:DD:9D:5D:E5:CA:79:A3:B7:8F:7A:86 Certificate issuer: /CN=EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454 Certificate serial: 45252910F5C3BC12C7F5C88A8512BF6452ABEEA0 Authority key identifier: EA:5E:33:0B:F8:DC:FF:6D:09:DF:49:07:4B:46:B2:2E:BD:FB:D4:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a371db9b-7c40-4966-991b-5138b3693246/0/3230322e34372e39322e302f32332d3234203d3e203137393935.roa Signing time: Thu 25 Sep 2025 16:00:01 +0000 ROA not before: Thu 25 Sep 2025 15:55:01 +0000 ROA not after: Thu 24 Sep 2026 16:00:01 +0000 asID: 17995 IP address blocks: 202.47.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a371db9b-7c40-4966-991b-5138b3693246/0/EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454.crl rsync://repo-rpki.idnic.net/repo/a371db9b-7c40-4966-991b-5138b3693246/0/EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:25:29:10:f5:c3:bc:12:c7:f5:c8:8a:85:12:bf:64:52:ab:ee:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454 Validity Not Before: Sep 25 15:55:01 2025 GMT Not After : Sep 24 16:00:01 2026 GMT Subject: CN=2A2DE14B1F2B48CDEEDD9D5DE5CA79A3B78F7A86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c3:ce:fe:8a:48:ec:5a:70:50:9d:bf:be:13: 5c:eb:bf:a4:70:74:13:0b:6d:57:0b:f9:0e:4d:3b: ff:4c:13:ec:88:48:4a:6e:93:24:54:b6:36:47:df: 2d:19:ac:57:f6:5c:44:e6:70:35:70:ce:77:38:a6: 53:14:8a:3f:88:32:6b:ef:b5:0d:3d:0c:99:ab:8b: 61:ca:64:8d:3f:ff:3e:09:ea:ee:7c:3d:8c:0b:09: 46:bd:0c:5a:8f:a6:28:dc:9d:a0:51:9e:84:ad:09: 9d:d8:b4:b1:a2:c8:8f:c0:e4:a0:0f:60:cb:50:82: a3:08:0b:1b:5a:0c:46:f8:ab:10:f7:98:88:4c:15: b4:02:85:76:3f:01:7f:56:ce:e2:c3:fa:8f:3f:59: a0:0e:81:6d:6d:cb:94:f2:24:0c:e0:bf:6b:5c:7e: 2f:4a:92:89:86:00:9e:ce:44:2b:71:00:87:53:39: 3b:36:39:3c:ee:6e:03:b8:2b:69:1e:42:18:74:66: 35:bf:34:de:56:0e:a0:ce:26:cf:68:d8:87:79:4b: b8:9e:1c:75:04:b9:f0:bb:56:5b:0f:f5:b4:84:1b: 06:2e:49:ec:e2:56:1c:07:7a:eb:dc:5a:d5:ef:95: 2d:a0:5c:1d:0d:e2:89:58:85:cc:5d:fc:ff:5f:74: 06:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:2D:E1:4B:1F:2B:48:CD:EE:DD:9D:5D:E5:CA:79:A3:B7:8F:7A:86 X509v3 Authority Key Identifier: keyid:EA:5E:33:0B:F8:DC:FF:6D:09:DF:49:07:4B:46:B2:2E:BD:FB:D4:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a371db9b-7c40-4966-991b-5138b3693246/0/EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a371db9b-7c40-4966-991b-5138b3693246/0/3230322e34372e39322e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.92.0/23 Signature Algorithm: sha256WithRSAEncryption 60:ed:55:b8:0b:80:d8:e1:62:81:10:03:e1:82:85:00:9b:3f: a5:0e:30:98:33:1e:c1:1d:da:ca:39:6b:ab:2d:c4:a6:15:af: ef:42:e2:8c:83:6f:99:2c:a7:6e:6c:96:db:c5:3f:c3:51:0f: 24:02:af:1c:3e:84:b9:28:08:89:91:28:bc:5f:19:9f:65:4a: 72:c3:6b:8d:9c:60:21:cd:c0:46:70:d9:c9:62:04:78:78:5e: db:16:14:a0:5d:2b:d1:d0:30:a6:10:17:f4:98:da:92:03:e6: 9b:04:3c:17:08:4d:0e:ca:90:67:b4:c4:d4:8d:12:d5:f6:f1: 7c:a6:02:27:3c:af:e2:8d:f1:07:ad:69:90:f1:1c:a2:71:0a: 6a:36:d6:17:ea:fd:d2:cb:f0:0b:a0:f8:ae:12:33:ce:e1:b8: 09:bd:1d:1a:d3:2e:f5:fb:ae:75:01:91:0f:74:e7:3e:8b:ba: ba:9f:93:05:6c:1a:6a:97:fb:04:59:31:ca:b6:d6:86:31:94: 9d:2d:77:9e:10:c5:bc:39:d8:16:f9:54:52:23:45:51:00:fe: b2:10:00:55:c5:17:fd:6f:63:bb:c1:7e:ce:74:bd:d4:d8:98: cc:5e:13:10:03:52:fc:8d:91:c6:14:0a:c9:75:96:96:03:57: c6:1b:d6:16 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIURSUpEPXDvBLH9ciKhRK/ZFKr7qAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUE1RTMzMEJGOERDRkY2RDA5REY0OTA3NEI0NkIyMkVC REZCRDQ1NDAeFw0yNTA5MjUxNTU1MDFaFw0yNjA5MjQxNjAwMDFaMDMxMTAvBgNV BAMTKDJBMkRFMTRCMUYyQjQ4Q0RFRUREOUQ1REU1Q0E3OUEzQjc4RjdBODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiw87+ikjsWnBQnb++E1zrv6Rw dBMLbVcL+Q5NO/9ME+yISEpukyRUtjZH3y0ZrFf2XETmcDVwznc4plMUij+IMmvv tQ09DJmri2HKZI0//z4J6u58PYwLCUa9DFqPpijcnaBRnoStCZ3YtLGiyI/A5KAP YMtQgqMICxtaDEb4qxD3mIhMFbQChXY/AX9WzuLD+o8/WaAOgW1ty5TyJAzgv2tc fi9KkomGAJ7ORCtxAIdTOTs2OTzubgO4K2keQhh0ZjW/NN5WDqDOJs9o2Id5S7ie HHUEufC7VlsP9bSEGwYuSeziVhwHeuvcWtXvlS2gXB0N4olYhcxd/P9fdAYbAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUKi3hSx8rSM3u3Z1d5cp5o7ePeoYwHwYDVR0j BBgwFoAU6l4zC/jc/20J30kHS0ayLr371FQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzcxZGI5Yi03YzQwLTQ5NjYtOTkxYi01MTM4YjM2OTMyNDYvMC9FQTVFMzMwQkY4 RENGRjZEMDlERjQ5MDc0QjQ2QjIyRUJERkJENDU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUE1RTMzMEJGOERDRkY2RDA5REY0OTA3NEI0NkIyMkVCREZC RDQ1NC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNzFkYjliLTdjNDAtNDk2Ni05 OTFiLTUxMzhiMzY5MzI0Ni8wLzMyMzAzMjJlMzQzNzJlMzkzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzczOTM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKL1wwDQYJKoZIhvcN AQELBQADggEBAGDtVbgLgNjhYoEQA+GChQCbP6UOMJgzHsEd2so5a6stxKYVr+9C 4oyDb5ksp25sltvFP8NRDyQCrxw+hLkoCImRKLxfGZ9lSnLDa42cYCHNwEZw2cli BHh4XtsWFKBdK9HQMKYQF/SY2pID5psEPBcITQ7KkGe0xNSNEtX28XymAic8r+KN 8QetaZDxHKJxCmo21hfq/dLL8Aug+K4SM87huAm9HRrTLvX7rnUBkQ905z6Lurqf kwVsGmqX+wRZMcq21oYxlJ0td54Qxbw52Bb5VFIjRVEA/rIQAFXFF/1vY7vBfs50 vdTYmMxeExADUvyNkcYUCsl1lpYDV8Yb1hY= -----END CERTIFICATE-----Generated at Mon Oct 20 15:43:44 2025 by rpki-client