$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233322e302f32342d3234203d3e203138303539.roa File: 3230332e3133342e3233322e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: IlRWg6/kvbzya6dKpLI5hWJ+Mv8AHfSuRXcyCcVNoDA= Subject key identifier: D7:43:4E:D8:52:20:26:50:53:88:02:CF:5E:42:F6:DD:9E:75:C1:68 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 5C1769FA8B6ABA365A60BC41EA11587F7B736BF0 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233322e302f32342d3234203d3e203138303539.roa Signing time: Fri 26 Sep 2025 06:00:02 +0000 ROA not before: Fri 26 Sep 2025 05:55:02 +0000 ROA not after: Fri 25 Sep 2026 06:00:02 +0000 asID: 18059 IP address blocks: 203.134.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:17:69:fa:8b:6a:ba:36:5a:60:bc:41:ea:11:58:7f:7b:73:6b:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 26 05:55:02 2025 GMT Not After : Sep 25 06:00:02 2026 GMT Subject: CN=D7434ED852202650538802CF5E42F6DD9E75C168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8b:c6:59:ba:5e:f5:ed:93:58:54:4c:e2:8e: aa:61:d1:50:e2:b8:94:32:8b:9a:c1:a8:65:bc:5b: be:1f:5f:b1:89:11:d9:5c:85:dd:5d:f6:6e:7d:ce: af:f5:67:87:e8:85:08:b2:2f:eb:71:34:7d:d6:09: de:e5:dd:87:8f:84:c8:ea:25:13:1e:5a:92:26:71: a6:eb:4e:30:78:25:b6:4e:b0:e7:4d:f8:c0:69:d8: 38:ff:8d:66:f0:a5:9d:b6:ea:4c:a0:cb:bb:c1:0c: 62:37:6d:2b:e6:95:13:74:81:32:0b:f4:60:41:24: 66:39:ff:2e:2c:a9:7d:2b:05:7b:2c:9b:1b:8e:64: 47:84:53:1c:1a:fe:e2:a2:38:5f:2e:e0:78:e6:63: 13:f6:4f:bd:20:0a:2e:46:df:f3:11:87:ab:09:07: d5:7e:47:b8:70:c5:16:9b:e3:08:36:4b:2f:8e:73: 5b:60:c8:98:f0:da:8c:b2:1f:6d:fc:4c:96:f1:c9: fd:07:a5:b3:37:c6:7c:be:99:16:a3:ff:e7:4a:2f: 7e:af:b7:1a:c8:3a:4c:93:ba:6d:a2:e9:57:dc:7e: 47:0e:54:3b:78:e1:33:bf:b7:4c:b3:9a:09:66:53: a6:0f:b2:68:a0:b3:40:7e:95:9b:cd:62:25:7b:74: 45:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:43:4E:D8:52:20:26:50:53:88:02:CF:5E:42:F6:DD:9E:75:C1:68 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233322e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.134.232.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:95:34:27:80:15:c4:77:ce:6f:a7:88:b6:7a:ef:12:7e:22: fc:fe:6c:30:35:5e:cf:1a:30:c8:b9:6a:2a:6b:54:63:f9:69: 6b:aa:89:9a:45:30:00:0c:74:1c:cc:26:9f:ac:4c:3a:61:82: 46:93:b9:42:27:5d:8e:cf:d5:07:f5:97:31:f6:51:dd:fe:06: 0e:d6:47:c1:4a:c6:ab:44:95:f6:36:2e:19:66:f9:1f:47:22: d6:d0:a3:36:b2:0c:2b:a2:88:bb:68:6a:fa:f9:0b:c0:be:25: 99:47:89:e7:5f:fc:14:b8:12:2c:a4:2f:da:d7:18:be:43:ee: 8d:d8:d7:97:9a:57:13:a7:4e:86:21:03:83:de:6a:93:e1:da: 05:1f:5b:6e:1a:3e:45:59:e2:26:90:fc:e7:68:8b:fa:43:47: f1:61:03:37:41:36:9d:46:96:e1:3b:ec:ea:ee:9f:0e:78:f0: e8:a5:7e:6e:01:0b:d8:be:e7:6b:84:75:67:62:23:eb:3f:6a: 5e:8b:e4:a3:58:38:33:5d:d8:a2:94:87:d5:a0:20:e5:3e:b8: 98:a6:35:24:3c:c8:be:81:f7:b2:7d:90:18:32:22:de:ca:87: b2:34:13:ee:d1:0a:90:8c:e4:04:7c:6d:4c:3c:eb:06:f9:20: be:c0:82:e1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXBdp+otqujZaYLxB6hFYf3tza/AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjYwNTU1MDJaFw0yNjA5MjUwNjAwMDJaMDMxMTAvBgNV BAMTKEQ3NDM0RUQ4NTIyMDI2NTA1Mzg4MDJDRjVFNDJGNkREOUU3NUMxNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCi8ZZul717ZNYVEzijqph0VDi uJQyi5rBqGW8W74fX7GJEdlchd1d9m59zq/1Z4fohQiyL+txNH3WCd7l3YePhMjq JRMeWpImcabrTjB4JbZOsOdN+MBp2Dj/jWbwpZ226kygy7vBDGI3bSvmlRN0gTIL 9GBBJGY5/y4sqX0rBXssmxuOZEeEUxwa/uKiOF8u4HjmYxP2T70gCi5G3/MRh6sJ B9V+R7hwxRab4wg2Sy+Oc1tgyJjw2oyyH238TJbxyf0HpbM3xny+mRaj/+dKL36v txrIOkyTum2i6VfcfkcOVDt44TO/t0yzmglmU6YPsmigs0B+lZvNYiV7dEVDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU10NO2FIgJlBTiALPXkL23Z51wWgwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMzJlMzEzMzM0MmUzMjMzMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy4boMA0GCSqG SIb3DQEBCwUAA4IBAQCclTQngBXEd85vp4i2eu8SfiL8/mwwNV7PGjDIuWoqa1Rj +WlrqomaRTAADHQczCafrEw6YYJGk7lCJ12Oz9UH9Zcx9lHd/gYO1kfBSsarRJX2 Ni4ZZvkfRyLW0KM2sgwrooi7aGr6+QvAviWZR4nnX/wUuBIspC/a1xi+Q+6N2NeX mlcTp06GIQOD3mqT4doFH1tuGj5FWeImkPznaIv6Q0fxYQM3QTadRpbhO+zq7p8O ePDopX5uAQvYvudrhHVnYiPrP2pei+SjWDgzXdiilIfVoCDlPriYpjUkPMi+gfey fZAYMiLeyoeyNBPu0QqQjOQEfG1MPOsG+SC+wILh -----END CERTIFICATE-----Generated at Mon Oct 20 17:54:06 2025 by rpki-client