$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233372e302f32342d3234203d3e203138303539.roa File: 3230332e3133342e3233372e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: 9c3ojCX5jiQWRvT8MQt/GT2bu1siCypzRssd9vSFo40= Subject key identifier: 24:9D:55:A6:F6:C8:4D:D1:D3:73:9A:C5:6D:D3:DE:07:8B:31:DF:AB Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 2B6C38E7D1F9DB6AC83B3F3EA6151C925F9EA173 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233372e302f32342d3234203d3e203138303539.roa Signing time: Fri 26 Sep 2025 06:00:01 +0000 ROA not before: Fri 26 Sep 2025 05:55:01 +0000 ROA not after: Fri 25 Sep 2026 06:00:01 +0000 asID: 18059 IP address blocks: 203.134.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 15:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:6c:38:e7:d1:f9:db:6a:c8:3b:3f:3e:a6:15:1c:92:5f:9e:a1:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 26 05:55:01 2025 GMT Not After : Sep 25 06:00:01 2026 GMT Subject: CN=249D55A6F6C84DD1D3739AC56DD3DE078B31DFAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:44:1b:74:75:ec:73:26:33:ee:1b:f1:5e:3d: 7c:81:2c:73:48:10:b8:ba:ce:35:0b:55:19:52:53: 3a:db:54:58:14:88:82:9f:ef:12:11:df:a7:9f:13: 3f:61:b2:af:55:6a:56:08:c4:aa:6b:75:d4:3c:4c: 49:4d:32:48:f9:1b:9a:52:6a:8a:70:59:dd:66:5c: c9:8b:df:ad:84:01:bb:a6:64:7f:96:f6:06:dd:78: 08:02:3b:d4:e7:82:e3:47:98:0f:fd:fe:1c:b5:66: 26:c6:51:9d:3f:6a:10:90:83:8b:1d:96:6a:4d:7a: c8:23:4a:eb:82:1b:fa:3c:f1:a3:a4:38:d0:95:af: 82:fb:f9:01:06:b9:35:47:b4:d6:b4:57:3e:50:b5: ff:8a:12:f8:fe:c3:73:83:d7:a1:f3:b5:db:12:09: 80:af:9d:44:15:5c:dc:b3:02:7b:06:e7:c4:32:70: 65:63:59:95:22:96:5d:2c:b5:f3:06:0a:3e:c5:67: bd:f9:88:db:32:4d:0b:87:e0:16:91:b2:cf:12:64: 4a:24:28:92:14:50:49:ff:e7:be:a8:a4:17:99:aa: 19:f4:ef:98:88:c8:fc:0b:33:e3:5f:f7:4f:7c:97: 79:b0:2d:53:ec:b2:7d:fe:9f:3c:ce:07:b5:24:bb: 2b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:9D:55:A6:F6:C8:4D:D1:D3:73:9A:C5:6D:D3:DE:07:8B:31:DF:AB X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233372e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.134.237.0/24 Signature Algorithm: sha256WithRSAEncryption 85:ff:2c:46:8d:35:b5:79:9e:61:46:86:11:de:b7:31:f1:68: bf:72:f3:51:b5:1c:30:3f:45:7f:ec:45:f1:9b:98:1d:74:bb: ac:d9:ca:44:b6:84:41:35:8a:77:a9:4f:81:c6:44:be:80:e5: 50:04:b4:57:47:34:2b:fc:22:7f:e0:ac:b6:4b:5b:21:54:82: c2:e2:b4:94:f7:f6:61:9b:8a:de:b7:31:c9:7e:b8:f0:51:bd: 0a:a9:b9:2c:39:2b:f3:96:ab:1b:a7:87:b2:42:34:11:76:e5: 1e:02:8f:e2:e5:a0:77:7b:5e:04:0e:6c:b2:ff:fa:b3:cf:af: c3:35:47:6b:a0:37:fe:4c:ed:90:6a:12:7f:57:bd:e0:76:52: be:42:42:46:16:68:67:d0:dd:f9:5d:69:ec:2a:ea:d5:42:47: d8:5f:c1:12:7d:70:66:a5:5c:2c:7a:53:83:d0:28:46:4d:9f: 26:4a:39:1f:ca:c8:be:14:37:a2:3a:57:a3:3d:84:f2:27:ff: 78:26:84:75:1c:a2:11:eb:2a:af:09:4f:65:4d:5a:56:56:1d: 23:da:0c:5d:50:cd:a6:39:6f:80:60:9b:9b:7a:e1:6d:9f:3b: bc:a2:3a:09:f2:bf:b4:b2:8b:ef:28:cf:0b:be:53:69:76:99: 4f:8c:83:52 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUK2w459H522rIOz8+phUckl+eoXMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjYwNTU1MDFaFw0yNjA5MjUwNjAwMDFaMDMxMTAvBgNV BAMTKDI0OUQ1NUE2RjZDODRERDFEMzczOUFDNTZERDNERTA3OEIzMURGQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqRBt0dexzJjPuG/FePXyBLHNI ELi6zjULVRlSUzrbVFgUiIKf7xIR36efEz9hsq9ValYIxKprddQ8TElNMkj5G5pS aopwWd1mXMmL362EAbumZH+W9gbdeAgCO9TnguNHmA/9/hy1ZibGUZ0/ahCQg4sd lmpNesgjSuuCG/o88aOkONCVr4L7+QEGuTVHtNa0Vz5Qtf+KEvj+w3OD16HztdsS CYCvnUQVXNyzAnsG58QycGVjWZUill0stfMGCj7FZ735iNsyTQuH4BaRss8SZEok KJIUUEn/576opBeZqhn075iIyPwLM+Nf9098l3mwLVPssn3+nzzOB7UkuyuNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJJ1VpvbITdHTc5rFbdPeB4sx36swHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMzJlMzEzMzM0MmUzMjMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy4btMA0GCSqG SIb3DQEBCwUAA4IBAQCF/yxGjTW1eZ5hRoYR3rcx8Wi/cvNRtRwwP0V/7EXxm5gd dLus2cpEtoRBNYp3qU+BxkS+gOVQBLRXRzQr/CJ/4Ky2S1shVILC4rSU9/Zhm4re tzHJfrjwUb0KqbksOSvzlqsbp4eyQjQRduUeAo/i5aB3e14EDmyy//qzz6/DNUdr oDf+TO2QahJ/V73gdlK+QkJGFmhn0N35XWnsKurVQkfYX8ESfXBmpVwselOD0ChG TZ8mSjkfysi+FDeiOlejPYTyJ/94JoR1HKIR6yqvCU9lTVpWVh0j2gxdUM2mOW+A YJubeuFtnzu8ojoJ8r+0sovvKM8LvlNpdplPjINS -----END CERTIFICATE-----Generated at Mon Oct 20 15:22:18 2025 by rpki-client