$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e33312e302f32342d3234203d3e203138303539.roa File: 3132322e3132382e33312e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: Qf9XoiqB3abqgAObuf3TaxgBvvu4D55+pR6zxcIYcsI= Subject key identifier: 54:C1:7F:5B:37:7E:59:E9:7F:91:E2:D7:D5:89:ED:F1:80:63:0D:94 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 12BA344EE2056D5A3A1A275FA208CB8787246AEB Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e33312e302f32342d3234203d3e203138303539.roa Signing time: Wed 24 Sep 2025 12:00:01 +0000 ROA not before: Wed 24 Sep 2025 11:55:01 +0000 ROA not after: Wed 23 Sep 2026 12:00:01 +0000 asID: 18059 IP address blocks: 122.128.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:ba:34:4e:e2:05:6d:5a:3a:1a:27:5f:a2:08:cb:87:87:24:6a:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 24 11:55:01 2025 GMT Not After : Sep 23 12:00:01 2026 GMT Subject: CN=54C17F5B377E59E97F91E2D7D589EDF180630D94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0d:d9:45:f0:bb:c2:97:63:93:79:56:9b:e4: 45:93:81:3f:e0:c7:aa:f5:ce:5c:09:89:ae:34:43: 6c:ca:8b:77:a1:d1:f7:3e:0b:67:73:e0:ef:b5:1d: 43:1a:d1:58:9c:cf:70:1b:8b:84:14:45:9a:bb:62: 5a:65:68:85:f1:76:0d:8b:8c:05:a4:fe:d5:74:7a: b7:bb:cf:01:d9:2f:c7:d3:d7:0a:7f:55:7a:a6:35: 6c:fb:d6:d5:2c:50:a4:46:9c:9a:eb:82:3b:50:3a: 1f:05:ca:39:d4:ce:b7:de:0a:8f:27:68:4b:bc:ba: 01:86:48:45:53:0d:ac:94:af:3c:c2:11:36:bd:8a: 56:44:7e:19:81:b5:f4:5e:be:64:a4:c6:c0:75:07: 3b:2d:81:e7:ad:50:dd:f4:9d:c8:ff:3a:24:42:bb: c6:60:36:95:c8:ae:73:55:f5:83:7f:70:53:ed:29: 2f:a4:5d:dc:15:11:91:c4:b0:18:b9:fb:18:74:dc: 0c:99:3f:63:33:7a:81:4d:09:62:41:a7:3e:df:80: ee:f2:4f:9b:87:75:04:06:fe:53:e0:c3:1f:5c:f3: 7e:f2:47:82:dd:08:54:d7:88:c3:0c:46:2c:dc:a2: 9c:7b:9e:f6:56:cd:cd:a0:13:e4:fc:57:39:74:e9: af:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:C1:7F:5B:37:7E:59:E9:7F:91:E2:D7:D5:89:ED:F1:80:63:0D:94 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e33312e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.31.0/24 Signature Algorithm: sha256WithRSAEncryption 35:7b:74:6a:e4:03:af:87:f9:e7:09:24:db:e9:21:8c:2c:dd: 1e:02:3a:4d:93:ff:07:33:63:e4:3e:6b:26:05:c4:8b:16:dc: c5:b4:69:f8:57:23:c2:56:2f:df:be:32:22:b0:27:23:69:6f: ec:a2:0b:65:ac:1d:fc:a0:07:43:e3:a1:24:6d:d9:c9:ca:af: 5c:2a:2e:4b:94:58:af:4c:be:03:d8:56:71:2f:af:f6:13:bc: fe:02:7f:56:93:0d:41:c7:92:d8:cc:c1:6b:29:71:ea:53:33: e7:1b:3d:f6:c7:4f:a1:4f:ac:d6:db:64:a7:94:d4:b6:be:75: ad:0c:45:2f:0d:5b:ec:3f:47:a5:36:2b:b5:b0:e7:8c:dc:2f: 84:06:5d:07:fb:fc:a2:27:86:26:16:41:0e:34:29:5d:34:2f: 6e:a9:7a:d8:6f:cb:17:fb:84:b5:fa:97:c2:5e:8c:66:76:ca: 21:7b:01:21:71:a8:d2:07:1c:fc:77:32:11:2e:b2:dc:7b:87: ad:5d:f6:99:ce:e2:de:7c:53:37:21:9c:b1:0f:7d:35:d6:2b: 34:44:b0:5c:1d:5d:21:9f:46:0d:4a:bc:08:e7:96:66:cd:80: d4:65:37:5a:c3:af:dd:d3:0c:8f:91:97:85:8d:72:68:3d:bc: 0e:93:75:76 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEro0TuIFbVo6GidfogjLh4ckauswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjQxMTU1MDFaFw0yNjA5MjMxMjAwMDFaMDMxMTAvBgNV BAMTKDU0QzE3RjVCMzc3RTU5RTk3RjkxRTJEN0Q1ODlFREYxODA2MzBEOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxDdlF8LvCl2OTeVab5EWTgT/g x6r1zlwJia40Q2zKi3eh0fc+C2dz4O+1HUMa0Vicz3Abi4QURZq7YlplaIXxdg2L jAWk/tV0ere7zwHZL8fT1wp/VXqmNWz71tUsUKRGnJrrgjtQOh8FyjnUzrfeCo8n aEu8ugGGSEVTDayUrzzCETa9ilZEfhmBtfRevmSkxsB1BzstgeetUN30ncj/OiRC u8ZgNpXIrnNV9YN/cFPtKS+kXdwVEZHEsBi5+xh03AyZP2MzeoFNCWJBpz7fgO7y T5uHdQQG/lPgwx9c837yR4LdCFTXiMMMRizcopx7nvZWzc2gE+T8Vzl06a8NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVMF/Wzd+Wel/keLX1Ynt8YBjDZQwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMxMzIzMjJlMzEzMjM4MmUzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAHzANBgkqhkiG 9w0BAQsFAAOCAQEANXt0auQDr4f55wkk2+khjCzdHgI6TZP/BzNj5D5rJgXEixbc xbRp+FcjwlYv374yIrAnI2lv7KILZawd/KAHQ+OhJG3ZycqvXCouS5RYr0y+A9hW cS+v9hO8/gJ/VpMNQceS2MzBaylx6lMz5xs99sdPoU+s1ttkp5TUtr51rQxFLw1b 7D9HpTYrtbDnjNwvhAZdB/v8oieGJhZBDjQpXTQvbql62G/LF/uEtfqXwl6MZnbK IXsBIXGo0gcc/HcyES6y3HuHrV32mc7i3nxTNyGcsQ99NdYrNESwXB1dIZ9GDUq8 COeWZs2A1GU3WsOv3dMMj5GXhY1yaD28DpN1dg== -----END CERTIFICATE-----Generated at Mon Oct 20 20:40:31 2025 by rpki-client