$ rpki-client -vvf repo-rpki.idnic.net/repo/b260f03c-8968-470f-b618-d3eb2c928a4d/0/3231302e37392e3139302e302f32332d3234203d3e20313336303532.roa File: 3231302e37392e3139302e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: ZPskTSVgdsAMYWlITNkyiUwul3HqotLFwwIKqMKt6lE= Subject key identifier: A2:F7:40:B3:C8:4F:E3:A3:CC:A4:91:6C:0F:9C:4A:44:9A:A6:C0:DF Certificate issuer: /CN=7A82C5E5CFF68F5008CC068EC7CA6DA383C33D56 Certificate serial: 6BE9FAFB893EA248EDCB11C4ACB4BF5E5D825CFE Authority key identifier: 7A:82:C5:E5:CF:F6:8F:50:08:CC:06:8E:C7:CA:6D:A3:83:C3:3D:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A82C5E5CFF68F5008CC068EC7CA6DA383C33D56.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b260f03c-8968-470f-b618-d3eb2c928a4d/0/3231302e37392e3139302e302f32332d3234203d3e20313336303532.roa Signing time: Sun 05 Oct 2025 03:00:00 +0000 ROA not before: Sun 05 Oct 2025 02:55:00 +0000 ROA not after: Sun 04 Oct 2026 03:00:00 +0000 asID: 136052 IP address blocks: 210.79.190.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b260f03c-8968-470f-b618-d3eb2c928a4d/0/7A82C5E5CFF68F5008CC068EC7CA6DA383C33D56.crl rsync://repo-rpki.idnic.net/repo/b260f03c-8968-470f-b618-d3eb2c928a4d/0/7A82C5E5CFF68F5008CC068EC7CA6DA383C33D56.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A82C5E5CFF68F5008CC068EC7CA6DA383C33D56.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 20:09:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:e9:fa:fb:89:3e:a2:48:ed:cb:11:c4:ac:b4:bf:5e:5d:82:5c:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A82C5E5CFF68F5008CC068EC7CA6DA383C33D56 Validity Not Before: Oct 5 02:55:00 2025 GMT Not After : Oct 4 03:00:00 2026 GMT Subject: CN=A2F740B3C84FE3A3CCA4916C0F9C4A449AA6C0DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9f:d0:2a:c1:0f:8b:e5:eb:75:f7:78:8f:77: 2f:55:0c:93:07:4e:43:ee:19:96:e3:e5:ef:e4:87: 51:20:9d:df:f3:0c:b7:95:e1:ab:b4:2f:0c:f9:ee: 78:f3:d7:9f:e1:c5:0c:86:c5:4a:9b:91:12:6d:7b: 28:c5:c2:a2:fa:59:98:8c:86:eb:62:ce:03:51:71: 8f:88:cd:10:a6:7e:c9:42:f8:69:c3:db:91:3c:90: 45:cd:8c:4b:ee:1e:bc:28:14:ce:0c:f6:d2:41:ba: e7:fc:82:8f:11:2c:46:a2:1c:85:5b:a2:f2:51:5f: 9f:04:32:7e:50:8a:b9:5b:ab:f2:61:3e:c6:ef:b7: 5e:09:5b:28:cd:96:f6:d1:97:03:c5:8a:69:75:6d: ed:80:42:b0:48:4d:64:8d:62:5c:37:5a:60:fd:4e: f2:11:e8:09:5f:ba:21:3b:eb:a9:99:65:c5:55:96: 24:aa:4d:ff:0d:f6:1e:8e:07:17:32:e1:a7:71:bd: 09:56:51:62:60:60:56:01:54:58:70:c0:c1:86:bf: 13:c4:56:77:b6:33:d2:8e:3f:d5:6c:e5:bc:12:c6: 31:de:ea:ec:01:c5:40:4e:a2:40:56:e9:df:89:d4: e8:98:cf:2c:81:51:e9:4f:e0:4f:1b:dc:12:33:fd: 37:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:F7:40:B3:C8:4F:E3:A3:CC:A4:91:6C:0F:9C:4A:44:9A:A6:C0:DF X509v3 Authority Key Identifier: keyid:7A:82:C5:E5:CF:F6:8F:50:08:CC:06:8E:C7:CA:6D:A3:83:C3:3D:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b260f03c-8968-470f-b618-d3eb2c928a4d/0/7A82C5E5CFF68F5008CC068EC7CA6DA383C33D56.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A82C5E5CFF68F5008CC068EC7CA6DA383C33D56.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b260f03c-8968-470f-b618-d3eb2c928a4d/0/3231302e37392e3139302e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.79.190.0/23 Signature Algorithm: sha256WithRSAEncryption a5:15:5e:60:b3:91:3f:3a:27:c8:ee:2e:2e:d2:ba:2b:56:e1: a2:8f:a5:a2:c2:4c:f0:df:4e:71:d9:d9:79:ca:63:f4:6e:7f: 0c:b8:29:77:f9:20:9f:64:90:10:96:b5:fe:93:1e:d5:9e:a5: e8:05:93:14:8a:86:47:bb:a6:1a:1e:f9:46:b0:ed:db:cb:7c: c6:4a:d3:c7:38:8d:a6:9e:6a:f3:0f:24:02:d2:2b:a1:2b:0f: 31:68:1f:e1:b4:57:c1:08:e6:aa:ad:11:4b:0d:43:07:46:40: 6c:d7:e3:97:e4:53:ae:28:0d:55:ce:10:cd:84:74:41:f2:f0: 3d:7f:7b:a3:c5:08:bb:f0:95:e3:86:27:e7:c4:4a:cd:34:06: a5:46:49:69:50:60:df:96:e1:0f:52:09:fd:be:59:89:10:39: f8:e5:cb:71:5e:29:64:79:cc:0e:48:a5:99:31:84:3d:3f:56: 3f:6e:fb:bd:77:9f:64:65:a2:50:ad:a2:77:96:5e:e3:33:69: a9:40:65:31:db:9b:9c:b1:3c:8b:78:2c:dc:19:f8:82:f3:0e: de:3d:00:d7:ad:5c:6e:14:ba:7e:3d:f7:cb:63:3d:93:fa:50: f1:00:87:a4:f1:eb:78:d8:a7:03:e0:c0:de:a0:7d:18:42:3c: a5:73:96:fd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUa+n6+4k+okjtyxHErLS/Xl2CXP4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0E4MkM1RTVDRkY2OEY1MDA4Q0MwNjhFQzdDQTZEQTM4 M0MzM0Q1NjAeFw0yNTEwMDUwMjU1MDBaFw0yNjEwMDQwMzAwMDBaMDMxMTAvBgNV BAMTKEEyRjc0MEIzQzg0RkUzQTNDQ0E0OTE2QzBGOUM0QTQ0OUFBNkMwREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMn9AqwQ+L5et193iPdy9VDJMH TkPuGZbj5e/kh1Egnd/zDLeV4au0Lwz57njz15/hxQyGxUqbkRJteyjFwqL6WZiM hutizgNRcY+IzRCmfslC+GnD25E8kEXNjEvuHrwoFM4M9tJBuuf8go8RLEaiHIVb ovJRX58EMn5Qirlbq/JhPsbvt14JWyjNlvbRlwPFiml1be2AQrBITWSNYlw3WmD9 TvIR6AlfuiE766mZZcVVliSqTf8N9h6OBxcy4adxvQlWUWJgYFYBVFhwwMGGvxPE Vne2M9KOP9Vs5bwSxjHe6uwBxUBOokBW6d+J1OiYzyyBUelP4E8b3BIz/TeNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUovdAs8hP46PMpJFsD5xKRJqmwN8wHwYDVR0j BBgwFoAUeoLF5c/2j1AIzAaOx8pto4PDPVYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjYwZjAzYy04OTY4LTQ3MGYtYjYxOC1kM2ViMmM5MjhhNGQvMC83QTgyQzVFNUNG RjY4RjUwMDhDQzA2OEVDN0NBNkRBMzgzQzMzRDU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0E4MkM1RTVDRkY2OEY1MDA4Q0MwNjhFQzdDQTZEQTM4M0Mz M0Q1Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyNjBmMDNjLTg5NjgtNDcwZi1i NjE4LWQzZWIyYzkyOGE0ZC8wLzMyMzEzMDJlMzczOTJlMzEzOTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0k++MA0GCSqG SIb3DQEBCwUAA4IBAQClFV5gs5E/OifI7i4u0rorVuGij6Wiwkzw305x2dl5ymP0 bn8MuCl3+SCfZJAQlrX+kx7VnqXoBZMUioZHu6YaHvlGsO3by3zGStPHOI2mnmrz DyQC0iuhKw8xaB/htFfBCOaqrRFLDUMHRkBs1+OX5FOuKA1VzhDNhHRB8vA9f3uj xQi78JXjhifnxErNNAalRklpUGDfluEPUgn9vlmJEDn45ctxXilkecwOSKWZMYQ9 P1Y/bvu9d59kZaJQraJ3ll7jM2mpQGUx25ucsTyLeCzcGfiC8w7ePQDXrVxuFLp+ PffLYz2T+lDxAIek8et42KcD4MDeoH0YQjylc5b9 -----END CERTIFICATE-----Generated at Mon Oct 20 17:53:19 2025 by rpki-client