$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233352e302f32342d3234203d3e203138303539.roa File: 3230332e3133342e3233352e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: kK7VI8HEp7tTZJ4n0PlyFbFf2xawFxpZ43ZE5Ay8+N0= Subject key identifier: 99:7F:E2:27:56:68:8C:45:D2:B0:97:1B:7D:3A:50:4E:44:78:CB:DF Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 69E5DFA5170C20F08BC9620D5A907851FF85F8D9 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233352e302f32342d3234203d3e203138303539.roa Signing time: Fri 26 Sep 2025 05:00:01 +0000 ROA not before: Fri 26 Sep 2025 04:55:01 +0000 ROA not after: Fri 25 Sep 2026 05:00:01 +0000 asID: 18059 IP address blocks: 203.134.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 15:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:e5:df:a5:17:0c:20:f0:8b:c9:62:0d:5a:90:78:51:ff:85:f8:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 26 04:55:01 2025 GMT Not After : Sep 25 05:00:01 2026 GMT Subject: CN=997FE22756688C45D2B0971B7D3A504E4478CBDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a1:9e:9e:ad:fa:49:e8:59:97:81:bd:71:5f: e5:ff:39:50:08:16:c1:4c:23:ad:d4:e3:0e:37:85: bb:32:94:fe:89:77:d2:05:ca:40:81:70:44:c3:ca: 50:0f:5b:cd:ba:64:78:e5:7c:a0:19:63:84:27:a0: 7a:3b:e2:e2:4a:35:c3:ef:24:cf:6b:35:80:3c:2f: 83:0c:c7:36:93:f4:9e:24:f9:15:b1:c7:f5:ea:28: 3a:53:51:c0:f6:96:ba:70:c9:54:c9:c0:f0:40:1c: 70:10:70:79:42:d7:55:fe:54:16:f2:75:19:4e:99: 69:12:fb:79:b9:f6:d8:ce:c3:91:70:3f:cb:f7:0b: 3e:fa:1c:34:22:b2:07:a2:df:fc:e1:d4:5f:0e:42: 51:60:e5:32:42:ba:c9:19:94:38:c4:64:f9:a1:4e: 53:3a:7d:52:8b:ef:9d:a8:19:1d:f7:16:d6:ea:a6: 9a:5c:e6:68:fb:3a:d8:dc:b7:0a:68:c4:1f:3c:18: 36:27:37:6b:38:ef:27:63:e3:73:47:84:12:3f:69: 9e:9b:f8:5a:fc:07:00:8e:a0:0e:f3:b9:7c:a2:48: 82:89:b8:09:10:fb:0a:5e:e3:24:b1:fb:a6:46:eb: 27:6c:f7:21:39:a3:2a:a1:25:43:15:c4:45:30:89: 1c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:7F:E2:27:56:68:8C:45:D2:B0:97:1B:7D:3A:50:4E:44:78:CB:DF X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233352e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.134.235.0/24 Signature Algorithm: sha256WithRSAEncryption 37:0a:33:f2:eb:aa:9b:f4:54:76:bc:5d:8f:e0:ad:b4:9e:35: ae:6f:24:6c:37:0a:0d:12:33:6d:8a:cc:8f:d9:d2:6f:29:95: e7:26:49:fb:fc:16:c4:cf:37:c7:b9:87:f0:11:52:3d:1d:22: cb:a7:01:89:fa:c1:77:0a:b9:86:2c:9c:d3:25:5d:69:6e:a6: c5:a3:33:13:95:56:4f:cb:40:f6:5a:e5:05:32:8d:90:6b:78: 52:a9:6a:e7:b7:e9:44:6f:3d:a5:ef:13:16:09:90:3e:06:c7: b3:9d:eb:39:8f:9c:b3:2e:ee:f9:44:d0:90:4a:5f:8d:ab:58: fe:4f:3a:42:99:2e:30:c3:81:1d:ff:ab:74:ba:8e:86:df:6c: eb:c6:6d:26:7c:02:16:4f:ff:c9:47:7b:48:31:78:18:3d:6a: 5b:82:44:a0:2e:ab:fb:d3:3a:50:14:23:54:0a:08:5d:04:a0: c8:31:81:0c:22:95:ef:c1:bb:a1:05:96:62:f1:f6:2e:c2:55: 21:98:c5:e4:eb:76:5a:34:04:8f:3a:1d:ee:b5:a5:19:b1:2f: fc:7d:49:1b:4b:c3:f4:48:87:88:c6:da:c0:8c:e8:2b:79:5f: 73:e7:c9:fd:c3:1e:19:b1:02:bd:6b:3e:50:fe:cf:db:d8:70: 4d:fa:2c:f5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaeXfpRcMIPCLyWINWpB4Uf+F+NkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjYwNDU1MDFaFw0yNjA5MjUwNTAwMDFaMDMxMTAvBgNV BAMTKDk5N0ZFMjI3NTY2ODhDNDVEMkIwOTcxQjdEM0E1MDRFNDQ3OENCREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzoZ6erfpJ6FmXgb1xX+X/OVAI FsFMI63U4w43hbsylP6Jd9IFykCBcETDylAPW826ZHjlfKAZY4QnoHo74uJKNcPv JM9rNYA8L4MMxzaT9J4k+RWxx/XqKDpTUcD2lrpwyVTJwPBAHHAQcHlC11X+VBby dRlOmWkS+3m59tjOw5FwP8v3Cz76HDQisgei3/zh1F8OQlFg5TJCuskZlDjEZPmh TlM6fVKL752oGR33Ftbqpppc5mj7OtjctwpoxB88GDYnN2s47ydj43NHhBI/aZ6b +Fr8BwCOoA7zuXyiSIKJuAkQ+wpe4ySx+6ZG6yds9yE5oyqhJUMVxEUwiRzLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmX/iJ1ZojEXSsJcbfTpQTkR4y98wHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMzJlMzEzMzM0MmUzMjMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy4brMA0GCSqG SIb3DQEBCwUAA4IBAQA3CjPy66qb9FR2vF2P4K20njWubyRsNwoNEjNtisyP2dJv KZXnJkn7/BbEzzfHuYfwEVI9HSLLpwGJ+sF3CrmGLJzTJV1pbqbFozMTlVZPy0D2 WuUFMo2Qa3hSqWrnt+lEbz2l7xMWCZA+Bseznes5j5yzLu75RNCQSl+Nq1j+TzpC mS4ww4Ed/6t0uo6G32zrxm0mfAIWT//JR3tIMXgYPWpbgkSgLqv70zpQFCNUCghd BKDIMYEMIpXvwbuhBZZi8fYuwlUhmMXk63ZaNASPOh3utaUZsS/8fUkbS8P0SIeI xtrAjOgreV9z58n9wx4ZsQK9az5Q/s/b2HBN+iz1 -----END CERTIFICATE-----Generated at Mon Oct 20 15:22:40 2025 by rpki-client