$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32382e302f32342d3234203d3e203138303539.roa File: 3132322e3132382e32382e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: XqvN/wlPP7BQ4Ekhfbtg/ikCkM5T/X1f7WQiwUEwtD0= Subject key identifier: BE:C7:C4:81:34:66:DD:E4:7C:2C:89:4E:7D:87:6F:0F:D0:C5:FB:DD Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 1F6D9413553A432353EDAFBD4F1E73D5FB5698B4 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32382e302f32342d3234203d3e203138303539.roa Signing time: Wed 24 Sep 2025 12:00:01 +0000 ROA not before: Wed 24 Sep 2025 11:55:01 +0000 ROA not after: Wed 23 Sep 2026 12:00:01 +0000 asID: 18059 IP address blocks: 122.128.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:6d:94:13:55:3a:43:23:53:ed:af:bd:4f:1e:73:d5:fb:56:98:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 24 11:55:01 2025 GMT Not After : Sep 23 12:00:01 2026 GMT Subject: CN=BEC7C4813466DDE47C2C894E7D876F0FD0C5FBDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c0:e2:51:3c:9c:99:61:ef:c6:9d:15:ca:d8: 5f:90:c7:28:46:07:58:13:a5:84:05:44:6d:7c:38: 4f:3f:32:2a:ba:b2:7c:ff:dc:83:77:87:2f:54:70: 87:20:87:a0:1a:76:1c:9e:0a:86:21:da:ba:11:80: 14:03:13:df:4b:ad:f6:f6:ef:c1:b3:14:d3:90:fe: 0a:d3:ab:7c:4b:07:10:96:8d:5b:fa:ee:d3:99:bb: d1:6f:31:74:b7:1e:9f:04:a2:59:cf:96:df:77:80: 18:de:dc:a0:9d:0e:2d:7b:a4:51:9c:7b:3d:dd:3e: df:06:33:76:71:50:83:77:ba:83:b1:ed:09:74:54: 04:e7:a2:96:eb:ae:4c:2f:18:75:41:92:7f:cf:d8: 44:a5:ce:1b:3a:80:7b:9f:a9:45:d7:4b:a4:6e:5e: 14:51:80:a9:c6:fa:d9:77:47:1b:76:1c:44:01:08: 47:50:4c:e8:ba:74:cd:4a:62:3d:06:fd:8d:7c:1b: 64:8d:67:29:11:a2:58:eb:fe:96:be:28:ef:bd:3d: 21:08:c6:17:08:8b:6e:dd:9b:d4:10:7e:ea:37:6d: b3:a4:48:49:33:53:c1:88:90:d8:4c:f4:c2:bd:e5: 42:61:4b:1a:72:0c:c4:f1:a7:5c:dd:bc:ae:90:f1: 32:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:C7:C4:81:34:66:DD:E4:7C:2C:89:4E:7D:87:6F:0F:D0:C5:FB:DD X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32382e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.28.0/24 Signature Algorithm: sha256WithRSAEncryption 13:4f:fd:7d:de:18:66:5c:c0:33:d7:9d:a5:ae:db:03:c2:4f: 21:3a:37:23:57:75:17:bc:f4:d4:19:18:82:6a:0b:cf:a7:e4: fc:94:12:98:4e:3b:52:10:79:4c:71:f4:f0:9a:7b:aa:e7:c2: 6b:37:36:5d:63:37:7d:1e:de:b5:24:98:f1:29:92:47:84:52: 58:7c:fe:69:b1:0a:b3:73:75:fe:b2:98:38:91:e7:1a:9e:7d: 2e:5e:d9:f6:66:20:8a:19:08:0c:02:36:95:9d:3b:43:ab:07: e2:39:84:d5:02:3d:9d:e5:6e:a0:ca:66:5b:ba:1c:65:27:23: 26:62:83:8b:de:f1:1c:1e:0e:ff:6d:79:8f:7f:96:29:28:2c: 7b:b2:44:fe:a4:b3:aa:03:12:7f:3f:c7:b5:c8:a6:0a:b5:dc: d1:47:f4:e5:a6:f6:6d:59:af:a7:8a:f0:6b:92:69:7b:1b:ce: b7:be:0f:8d:a8:44:f3:52:ed:e4:2c:c3:4a:e3:c5:d9:54:fb: b0:d5:b0:cd:cd:be:a3:5d:3e:e0:f8:b6:35:77:cb:6b:67:05: 5e:a6:35:88:a0:8c:aa:52:64:0a:bb:63:36:14:94:4b:4c:ca: c8:c7:58:61:1e:cc:ed:62:cd:f9:ed:36:5c:3e:45:be:d7:c4: aa:21:c6:c0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUH22UE1U6QyNT7a+9Tx5z1ftWmLQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjQxMTU1MDFaFw0yNjA5MjMxMjAwMDFaMDMxMTAvBgNV BAMTKEJFQzdDNDgxMzQ2NkRERTQ3QzJDODk0RTdEODc2RjBGRDBDNUZCREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgwOJRPJyZYe/GnRXK2F+QxyhG B1gTpYQFRG18OE8/Miq6snz/3IN3hy9UcIcgh6AadhyeCoYh2roRgBQDE99Lrfb2 78GzFNOQ/grTq3xLBxCWjVv67tOZu9FvMXS3Hp8EolnPlt93gBje3KCdDi17pFGc ez3dPt8GM3ZxUIN3uoOx7Ql0VATnopbrrkwvGHVBkn/P2ESlzhs6gHufqUXXS6Ru XhRRgKnG+tl3Rxt2HEQBCEdQTOi6dM1KYj0G/Y18G2SNZykRoljr/pa+KO+9PSEI xhcIi27dm9QQfuo3bbOkSEkzU8GIkNhM9MK95UJhSxpyDMTxp1zdvK6Q8TJZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvsfEgTRm3eR8LIlOfYdvD9DF+90wHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMxMzIzMjJlMzEzMjM4MmUzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAHDANBgkqhkiG 9w0BAQsFAAOCAQEAE0/9fd4YZlzAM9edpa7bA8JPITo3I1d1F7z01BkYgmoLz6fk /JQSmE47UhB5THH08Jp7qufCazc2XWM3fR7etSSY8SmSR4RSWHz+abEKs3N1/rKY OJHnGp59Ll7Z9mYgihkIDAI2lZ07Q6sH4jmE1QI9neVuoMpmW7ocZScjJmKDi97x HB4O/215j3+WKSgse7JE/qSzqgMSfz/HtcimCrXc0Uf05ab2bVmvp4rwa5JpexvO t74PjahE81Lt5CzDSuPF2VT7sNWwzc2+o10+4Pi2NXfLa2cFXqY1iKCMqlJkCrtj NhSUS0zKyMdYYR7M7WLN+e02XD5FvtfEqiHGwA== -----END CERTIFICATE-----Generated at Mon Oct 20 20:44:39 2025 by rpki-client