$ rpki-client -vvf repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/3230322e35382e3136302e302f32302d3234203d3e203234353236.roa File: 3230322e35382e3136302e302f32302d3234203d3e203234353236.roa (raw, json) Hash identifier: U5G6WyuhUeeAyAkhv6VtLWLCxLc3eTUGqsMy7Fb3zes= Subject key identifier: 01:0C:85:74:09:48:4B:60:FF:C5:C0:A5:6E:5B:FA:CD:4F:4D:76:EB Certificate issuer: /CN=E42B0752D5FFAB254C3F0E221499F67420870FEB Certificate serial: 0C9D70D19E2F0B5AD39321E9F624C39E2DE31552 Authority key identifier: E4:2B:07:52:D5:FF:AB:25:4C:3F:0E:22:14:99:F6:74:20:87:0F:EB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E42B0752D5FFAB254C3F0E221499F67420870FEB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/3230322e35382e3136302e302f32302d3234203d3e203234353236.roa Signing time: Sat 11 Oct 2025 08:00:00 +0000 ROA not before: Sat 11 Oct 2025 07:55:00 +0000 ROA not after: Sat 10 Oct 2026 08:00:00 +0000 asID: 24526 IP address blocks: 202.58.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/E42B0752D5FFAB254C3F0E221499F67420870FEB.crl rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/E42B0752D5FFAB254C3F0E221499F67420870FEB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E42B0752D5FFAB254C3F0E221499F67420870FEB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 09:57:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:9d:70:d1:9e:2f:0b:5a:d3:93:21:e9:f6:24:c3:9e:2d:e3:15:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E42B0752D5FFAB254C3F0E221499F67420870FEB Validity Not Before: Oct 11 07:55:00 2025 GMT Not After : Oct 10 08:00:00 2026 GMT Subject: CN=010C857409484B60FFC5C0A56E5BFACD4F4D76EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:92:73:e0:d5:22:88:58:e8:d0:85:97:51:f6: eb:a6:db:5a:13:b0:db:7d:41:9d:9c:1a:a8:52:5f: 3d:19:e9:15:eb:66:e8:b8:72:49:3f:b1:bd:9a:8d: a8:4b:40:ce:f8:b8:0b:02:04:ee:19:55:e3:30:0e: 6b:08:65:5c:b1:24:97:3d:09:65:fd:83:aa:d7:c3: f1:e9:6b:3b:79:ef:d2:0b:92:2d:5f:db:60:19:2c: 69:ce:72:56:71:8b:5a:18:9f:5e:79:32:78:58:ad: b7:b8:d7:3e:30:7f:38:f5:f8:3b:de:af:c0:19:18: 0a:d9:aa:d4:33:b1:5e:51:c0:f4:e8:96:d4:5d:5e: 7c:f8:2c:41:52:c6:1e:fc:28:b8:6e:d3:bc:90:c7: f6:14:f1:d1:c1:89:f3:fa:08:6e:1a:80:09:00:73: ec:bf:4c:d3:db:4b:cb:ab:78:22:a2:38:70:09:f1: 94:61:13:00:ed:c0:89:f7:b0:f3:07:f1:5a:46:d3: 09:8e:af:f3:15:e8:5f:d1:7d:d7:7a:03:5f:b8:3f: ed:34:08:79:d3:ce:a5:21:8b:4f:ce:3a:d2:30:45: 7f:46:41:db:3a:02:7f:17:a3:9b:7f:66:ce:3b:a9: c7:9e:30:ae:64:48:93:b1:2a:7a:18:d2:f5:20:fc: 89:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:0C:85:74:09:48:4B:60:FF:C5:C0:A5:6E:5B:FA:CD:4F:4D:76:EB X509v3 Authority Key Identifier: keyid:E4:2B:07:52:D5:FF:AB:25:4C:3F:0E:22:14:99:F6:74:20:87:0F:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/E42B0752D5FFAB254C3F0E221499F67420870FEB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E42B0752D5FFAB254C3F0E221499F67420870FEB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/3230322e35382e3136302e302f32302d3234203d3e203234353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.160.0/20 Signature Algorithm: sha256WithRSAEncryption 5f:4b:c3:4e:f5:e5:fb:27:a9:e7:c4:f8:99:8e:7e:f3:64:58: 3c:b2:5a:7f:66:e8:77:04:38:5c:11:5c:2d:1c:b6:3f:8c:6a: 59:1e:f9:66:9f:f9:3f:18:48:a1:0d:9a:03:f2:16:bd:24:83: 0c:8d:d1:15:be:cb:23:ac:94:41:4f:59:55:03:d4:2e:ab:9b: c1:dc:d5:d7:57:79:08:9e:fd:d5:60:48:ee:d5:48:aa:7e:93: 48:d8:ad:27:ae:a8:12:bc:71:7e:69:64:d1:84:11:b9:a1:29: c8:f1:8d:82:cc:9a:30:77:1e:1f:e4:0b:69:61:e9:f2:07:70: 43:b2:f0:d9:57:7e:29:28:24:1b:92:e1:a8:c5:08:5f:f1:ca: f6:db:70:c3:0d:03:8a:18:b0:cf:80:d2:e9:0c:56:c5:0e:5d: 05:ee:8e:27:f7:3f:ee:3c:20:d5:6f:81:b5:98:c0:8e:dc:75: 5b:54:29:d2:4d:d0:7b:c8:4d:06:0a:23:ed:8f:04:b3:c5:77: fe:3a:3b:9e:43:6e:9d:28:fa:ef:34:47:e4:ce:4a:c9:93:7f: 02:11:9a:67:38:5e:29:70:3e:82:fa:00:c4:da:17:88:dd:29: 6d:f7:ea:76:a6:93:5f:e9:cf:ba:94:d1:d7:86:dc:f0:51:45: e9:a0:f2:86 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDJ1w0Z4vC1rTkyHp9iTDni3jFVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQyQjA3NTJENUZGQUIyNTRDM0YwRTIyMTQ5OUY2NzQy MDg3MEZFQjAeFw0yNTEwMTEwNzU1MDBaFw0yNjEwMTAwODAwMDBaMDMxMTAvBgNV BAMTKDAxMEM4NTc0MDk0ODRCNjBGRkM1QzBBNTZFNUJGQUNENEY0RDc2RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKknPg1SKIWOjQhZdR9uum21oT sNt9QZ2cGqhSXz0Z6RXrZui4ckk/sb2ajahLQM74uAsCBO4ZVeMwDmsIZVyxJJc9 CWX9g6rXw/Hpazt579ILki1f22AZLGnOclZxi1oYn155MnhYrbe41z4wfzj1+Dve r8AZGArZqtQzsV5RwPToltRdXnz4LEFSxh78KLhu07yQx/YU8dHBifP6CG4agAkA c+y/TNPbS8ureCKiOHAJ8ZRhEwDtwIn3sPMH8VpG0wmOr/MV6F/Rfdd6A1+4P+00 CHnTzqUhi0/OOtIwRX9GQds6An8Xo5t/Zs47qceeMK5kSJOxKnoY0vUg/InPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAQyFdAlIS2D/xcClblv6zU9NduswHwYDVR0j BBgwFoAU5CsHUtX/qyVMPw4iFJn2dCCHD+swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzUxMjllNC0yMzI4LTQzZDItYTQ1OC05ZDM4Mjk2MTQ4MTUvMC9FNDJCMDc1MkQ1 RkZBQjI1NEMzRjBFMjIxNDk5RjY3NDIwODcwRkVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTQyQjA3NTJENUZGQUIyNTRDM0YwRTIyMTQ5OUY2NzQyMDg3 MEZFQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNTEyOWU0LTIzMjgtNDNkMi1h NDU4LTlkMzgyOTYxNDgxNS8wLzMyMzAzMjJlMzUzODJlMzEzNjMwMmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMo6oDANBgkqhkiG 9w0BAQsFAAOCAQEAX0vDTvXl+yep58T4mY5+82RYPLJaf2bodwQ4XBFcLRy2P4xq WR75Zp/5PxhIoQ2aA/IWvSSDDI3RFb7LI6yUQU9ZVQPULqubwdzV11d5CJ791WBI 7tVIqn6TSNitJ66oErxxfmlk0YQRuaEpyPGNgsyaMHceH+QLaWHp8gdwQ7Lw2Vd+ KSgkG5LhqMUIX/HK9ttwww0Dihiwz4DS6QxWxQ5dBe6OJ/c/7jwg1W+BtZjAjtx1 W1Qp0k3Qe8hNBgoj7Y8Es8V3/jo7nkNunSj67zRH5M5KyZN/AhGaZzheKXA+gvoA xNoXiN0pbffqdqaTX+nPupTR14bc8FFF6aDyhg== -----END CERTIFICATE-----Generated at Mon Oct 20 15:32:53 2025 by rpki-client