$ rpki-client -vvf repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3132322e3134342e342e302f32322d3234203d3e203338333230.roa File: 3132322e3134342e342e302f32322d3234203d3e203338333230.roa (raw, json) Hash identifier: V3630RXZfBbv0izTqUqFayseBZlNQ8xYG082iWZg+6Q= Subject key identifier: 06:43:7B:84:05:E1:9A:27:33:AE:3F:B2:B4:19:B0:2A:C3:51:80:D6 Certificate issuer: /CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Certificate serial: 1C17C50EEAAD7A2336BF658C9344D52762F491A5 Authority key identifier: C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3132322e3134342e342e302f32322d3234203d3e203338333230.roa Signing time: Sun 05 Oct 2025 07:00:00 +0000 ROA not before: Sun 05 Oct 2025 06:55:00 +0000 ROA not after: Sun 04 Oct 2026 07:00:00 +0000 asID: 38320 IP address blocks: 122.144.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 22:19:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:17:c5:0e:ea:ad:7a:23:36:bf:65:8c:93:44:d5:27:62:f4:91:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Validity Not Before: Oct 5 06:55:00 2025 GMT Not After : Oct 4 07:00:00 2026 GMT Subject: CN=06437B8405E19A2733AE3FB2B419B02AC35180D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:b9:69:6c:82:16:0d:d7:82:71:21:7d:64:c4: 44:18:22:2d:c0:bf:a2:dc:95:ea:78:a1:c9:ce:02: 65:01:9e:d6:f9:ac:e5:47:02:fe:98:53:90:51:56: 71:47:24:be:53:de:14:a0:e8:9a:de:eb:0d:1f:20: 57:64:48:59:6f:f9:81:ef:22:64:14:bf:69:a8:5b: 0d:ef:df:b3:33:7b:58:fe:25:87:7c:d0:e5:7e:d9: 4d:32:da:11:d7:6e:ff:1b:44:22:3c:31:29:2c:5e: 8d:98:80:1e:f0:d8:a5:fb:11:d2:f1:f1:39:2d:7f: e5:20:b1:c8:5b:87:5d:96:5e:14:be:ec:ba:f6:3c: f8:a5:77:0b:2e:89:a5:82:9f:6c:4d:4c:4d:7d:62: 8a:8b:e7:55:b7:8d:8f:5d:e2:f3:6b:b2:53:a6:7c: 79:15:fb:91:f1:42:8c:99:77:00:bb:61:52:26:94: 36:05:6e:8f:cf:8c:3c:21:e9:f5:a0:b7:3b:4a:e8: a1:45:10:68:25:72:60:23:86:0b:89:48:90:6f:e1: e6:b1:2a:ad:a5:02:bd:09:7a:c9:d5:a3:c6:72:22: 6a:ba:6b:21:b0:27:5b:36:98:8f:c0:f0:6b:06:af: cc:f5:bb:23:5e:2e:44:cb:eb:1f:62:1b:21:bc:ee: 2d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:43:7B:84:05:E1:9A:27:33:AE:3F:B2:B4:19:B0:2A:C3:51:80:D6 X509v3 Authority Key Identifier: keyid:C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3132322e3134342e342e302f32322d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.144.4.0/22 Signature Algorithm: sha256WithRSAEncryption 55:3a:51:9f:55:77:e8:f6:d5:37:87:f7:91:54:b9:36:62:94: 16:c7:c0:e3:c0:8e:05:50:29:df:fd:7c:0f:96:c0:1d:0f:f8: c7:c9:1c:c3:b3:62:5f:c9:15:4f:18:34:56:96:ce:3a:b8:a0: 66:ce:b8:7a:0f:1c:e4:95:4e:fa:fa:78:6f:15:92:f9:ce:77: b9:45:bf:7e:d0:ed:1c:77:e5:ad:32:42:16:0f:93:c7:07:d6: 0f:84:6c:98:a6:4a:ad:a5:79:35:a8:f9:7e:63:02:46:b5:52: 0d:25:b1:fe:f0:86:24:dd:47:34:91:d9:3d:ac:e5:82:3f:62: 28:38:5f:5c:e3:5b:3f:93:43:62:08:36:d2:84:a5:80:b8:b9: be:65:36:aa:ef:5f:11:8a:59:67:90:95:36:f0:97:2a:0e:3c: ef:01:14:2a:98:cc:2e:b3:4c:35:b4:63:32:83:86:99:07:01: ff:92:11:3a:d6:dd:32:80:d9:02:e9:8c:c8:4a:5c:be:6a:ed: 37:20:c4:2f:f6:6d:1b:07:34:e3:67:d2:7f:dd:4d:bd:b9:2c: 36:28:01:42:39:7c:78:37:b2:77:d8:e8:cc:20:39:ef:fc:83: 14:eb:c7:d4:9f:6a:df:1c:61:87:49:f2:bb:4a:dc:20:22:49: 10:55:94:f6 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUHBfFDuqteiM2v2WMk0TVJ2L0kaUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMz MUY4MDJFMTAeFw0yNTEwMDUwNjU1MDBaFw0yNjEwMDQwNzAwMDBaMDMxMTAvBgNV BAMTKDA2NDM3Qjg0MDVFMTlBMjczM0FFM0ZCMkI0MTlCMDJBQzM1MTgwRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbuWlsghYN14JxIX1kxEQYIi3A v6Lclep4ocnOAmUBntb5rOVHAv6YU5BRVnFHJL5T3hSg6Jre6w0fIFdkSFlv+YHv ImQUv2moWw3v37Mze1j+JYd80OV+2U0y2hHXbv8bRCI8MSksXo2YgB7w2KX7EdLx 8Tktf+Ugschbh12WXhS+7Lr2PPildwsuiaWCn2xNTE19YoqL51W3jY9d4vNrslOm fHkV+5HxQoyZdwC7YVImlDYFbo/PjDwh6fWgtztK6KFFEGglcmAjhguJSJBv4eax Kq2lAr0JesnVo8ZyImq6ayGwJ1s2mI/A8GsGr8z1uyNeLkTL6x9iGyG87i2JAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUBkN7hAXhmiczrj+ytBmwKsNRgNYwHwYDVR0j BBgwFoAUyN1dhPr6v36vYrOw9ORaIzH4AuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTQ1Yjg2ZS0wODk1LTQ3NTktYTc3Yy1hMDZjZTE0ZTI0M2MvMC9DOERENUQ4NEZB RkFCRjdFQUY2MkIzQjBGNEU0NUEyMzMxRjgwMkUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMzMUY4 MDJFMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5NDViODZlLTA4OTUtNDc1OS1h NzdjLWEwNmNlMTRlMjQzYy8wLzMxMzIzMjJlMzEzNDM0MmUzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMzMzgzMzMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ6kAQwDQYJKoZIhvcN AQELBQADggEBAFU6UZ9Vd+j21TeH95FUuTZilBbHwOPAjgVQKd/9fA+WwB0P+MfJ HMOzYl/JFU8YNFaWzjq4oGbOuHoPHOSVTvr6eG8VkvnOd7lFv37Q7Rx35a0yQhYP k8cH1g+EbJimSq2leTWo+X5jAka1Ug0lsf7whiTdRzSR2T2s5YI/Yig4X1zjWz+T Q2IINtKEpYC4ub5lNqrvXxGKWWeQlTbwlyoOPO8BFCqYzC6zTDW0YzKDhpkHAf+S ETrW3TKA2QLpjMhKXL5q7TcgxC/2bRsHNONn0n/dTb25LDYoAUI5fHg3snfY6Mwg Oe/8gxTrx9Sfat8cYYdJ8rtK3CAiSRBVlPY= -----END CERTIFICATE-----Generated at Mon Oct 20 20:53:30 2025 by rpki-client