$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3131362e39302e3137322e302f32342d3234203d3e203138303539.roa File: 3131362e39302e3137322e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: Y0oiG6OqqEV+YLFYfSWX8whZUk39EChZcG2je0zGPHs= Subject key identifier: 9D:2D:A4:E5:25:99:D3:03:E0:14:6C:FA:A6:9C:22:77:2B:03:5C:8D Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 78A63DE7F7AD42A17FC00146F061E71EEA33D660 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3131362e39302e3137322e302f32342d3234203d3e203138303539.roa Signing time: Fri 26 Sep 2025 04:03:01 +0000 ROA not before: Fri 26 Sep 2025 03:58:01 +0000 ROA not after: Fri 25 Sep 2026 04:03:01 +0000 asID: 18059 IP address blocks: 116.90.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 21:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:a6:3d:e7:f7:ad:42:a1:7f:c0:01:46:f0:61:e7:1e:ea:33:d6:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 26 03:58:01 2025 GMT Not After : Sep 25 04:03:01 2026 GMT Subject: CN=9D2DA4E52599D303E0146CFAA69C22772B035C8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:4c:8e:86:c7:0e:37:88:14:0f:e9:e8:04:1f: 9b:d1:6b:93:71:e3:d1:05:5b:e0:eb:c1:ce:14:b6: 95:12:21:e5:c1:f9:64:b2:c5:74:4f:34:39:21:f2: 6f:10:09:00:2b:2a:7d:ef:70:30:ce:0a:0c:e5:20: 83:56:06:9a:33:c3:59:6e:3d:7d:31:47:f0:c0:a7: 5e:ad:2c:4f:98:be:1f:79:ee:cd:51:73:6a:ec:cd: d0:ab:dc:c1:59:26:54:f7:ca:e6:36:53:d1:ce:9a: dd:d9:81:94:73:2c:ae:c5:1b:4b:44:9e:02:5a:62: 9c:67:0a:24:a7:dd:7a:3a:09:27:69:3f:be:85:77: 3a:cc:01:6b:df:91:65:5a:96:d8:87:60:fd:7f:0a: 4b:a6:ac:54:fa:97:88:69:fa:75:72:54:82:03:c4: 78:c0:c5:10:43:a4:79:9d:1e:03:39:56:e2:a7:83: bf:3b:34:2f:8f:be:ef:d0:1d:72:16:eb:86:98:bd: ae:f8:a4:b5:98:88:9b:e7:96:21:01:4f:c3:c0:b9: 44:2e:e4:10:7c:ef:7f:86:ee:11:67:aa:84:c4:a2: e5:ca:64:4a:4e:14:05:1c:d5:14:97:54:f9:9b:96: 02:e2:06:a9:0d:8d:80:cf:68:65:40:f3:d2:d3:04: 1b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:2D:A4:E5:25:99:D3:03:E0:14:6C:FA:A6:9C:22:77:2B:03:5C:8D X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3131362e39302e3137322e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.90.172.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:98:4f:80:a2:28:69:d1:2c:6d:1a:95:0b:5f:fc:e6:27:32: ea:9d:78:94:68:bd:47:fc:ee:af:08:21:52:4e:ab:1f:ca:a7: c9:59:87:44:b6:91:6a:d5:d8:c7:90:99:ff:2f:a9:8d:fc:c4: 21:62:8a:9d:16:36:8f:07:07:1f:f0:5b:4d:f0:e2:83:4a:67: 20:fa:41:be:66:71:81:a6:ff:48:eb:92:6f:3a:ae:46:d1:93: e4:4f:f3:72:af:21:c9:e7:18:e5:90:64:9e:03:cd:a3:3a:7d: 4d:67:ac:a7:53:6f:f1:78:de:3b:ac:2a:7c:a1:03:26:f9:08: 85:66:7a:ff:3b:84:fe:99:25:6c:b5:a8:2f:6f:b6:74:95:39: 64:00:09:cc:12:c2:4c:75:c0:dd:43:22:d8:d2:a3:2b:b1:f3: 44:db:75:ad:ec:64:03:2b:3f:f7:ea:70:91:d8:04:fa:9b:31: 9f:43:f1:bb:38:16:10:db:c9:63:b8:94:12:89:bb:74:a8:e5: 37:57:f9:b5:b3:e5:42:91:d5:7c:de:88:b6:19:f4:27:6e:fc: 9e:53:2b:be:9f:af:ce:35:47:98:1d:be:a8:ef:69:87:92:c4: 7f:ac:60:12:d4:52:69:8a:f2:96:17:ff:5f:d8:be:03:46:77: e8:22:b7:5b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeKY95/etQqF/wAFG8GHnHuoz1mAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjYwMzU4MDFaFw0yNjA5MjUwNDAzMDFaMDMxMTAvBgNV BAMTKDlEMkRBNEU1MjU5OUQzMDNFMDE0NkNGQUE2OUMyMjc3MkIwMzVDOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZTI6Gxw43iBQP6egEH5vRa5Nx 49EFW+Drwc4UtpUSIeXB+WSyxXRPNDkh8m8QCQArKn3vcDDOCgzlIINWBpozw1lu PX0xR/DAp16tLE+Yvh957s1Rc2rszdCr3MFZJlT3yuY2U9HOmt3ZgZRzLK7FG0tE ngJaYpxnCiSn3Xo6CSdpP76FdzrMAWvfkWValtiHYP1/CkumrFT6l4hp+nVyVIID xHjAxRBDpHmdHgM5VuKng787NC+Pvu/QHXIW64aYva74pLWYiJvnliEBT8PAuUQu 5BB873+G7hFnqoTEouXKZEpOFAUc1RSXVPmblgLiBqkNjYDPaGVA89LTBBtrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnS2k5SWZ0wPgFGz6ppwidysDXI0wHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMxMzEzNjJlMzkzMDJlMzEzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHRarDANBgkqhkiG 9w0BAQsFAAOCAQEAL5hPgKIoadEsbRqVC1/85icy6p14lGi9R/zurwghUk6rH8qn yVmHRLaRatXYx5CZ/y+pjfzEIWKKnRY2jwcHH/BbTfDig0pnIPpBvmZxgab/SOuS bzquRtGT5E/zcq8hyecY5ZBkngPNozp9TWesp1Nv8XjeO6wqfKEDJvkIhWZ6/zuE /pklbLWoL2+2dJU5ZAAJzBLCTHXA3UMi2NKjK7HzRNt1rexkAys/9+pwkdgE+psx n0PxuzgWENvJY7iUEom7dKjlN1f5tbPlQpHVfN6Ithn0J278nlMrvp+vzjVHmB2+ qO9ph5LEf6xgEtRSaYrylhf/X9i+A0Z36CK3Ww== -----END CERTIFICATE-----Generated at Tue Oct 21 06:29:21 2025 by rpki-client