$ rpki-client -vvf repo-rpki.idnic.net/repo/d05409ed-9f40-4f5a-b5ee-a088da2f5978/0/3131352e3138372e33302e302f32332d3233203d3e203538333639.roa File: 3131352e3138372e33302e302f32332d3233203d3e203538333639.roa (raw, json) Hash identifier: l/6nAOjqjGZrtcrrhw7ZuCSQaMYlD7Yflxw07XBPvJ0= Subject key identifier: 24:86:1E:71:5C:62:8E:C2:0A:30:EC:D7:76:BF:E5:49:06:04:85:0C Certificate issuer: /CN=46A0859F8C7CC2C2E7D5CBC8E43634F8A3DDAAF5 Certificate serial: 7F0ED535AD69CB6422EF62937DE0EC7A8441454A Authority key identifier: 46:A0:85:9F:8C:7C:C2:C2:E7:D5:CB:C8:E4:36:34:F8:A3:DD:AA:F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/46A0859F8C7CC2C2E7D5CBC8E43634F8A3DDAAF5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d05409ed-9f40-4f5a-b5ee-a088da2f5978/0/3131352e3138372e33302e302f32332d3233203d3e203538333639.roa Signing time: Tue 23 Sep 2025 09:02:24 +0000 ROA not before: Tue 23 Sep 2025 08:57:24 +0000 ROA not after: Tue 22 Sep 2026 09:02:24 +0000 asID: 58369 IP address blocks: 115.187.30.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d05409ed-9f40-4f5a-b5ee-a088da2f5978/0/46A0859F8C7CC2C2E7D5CBC8E43634F8A3DDAAF5.crl rsync://repo-rpki.idnic.net/repo/d05409ed-9f40-4f5a-b5ee-a088da2f5978/0/46A0859F8C7CC2C2E7D5CBC8E43634F8A3DDAAF5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/46A0859F8C7CC2C2E7D5CBC8E43634F8A3DDAAF5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 17:52:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:0e:d5:35:ad:69:cb:64:22:ef:62:93:7d:e0:ec:7a:84:41:45:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46A0859F8C7CC2C2E7D5CBC8E43634F8A3DDAAF5 Validity Not Before: Sep 23 08:57:24 2025 GMT Not After : Sep 22 09:02:24 2026 GMT Subject: CN=24861E715C628EC20A30ECD776BFE5490604850C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:af:b6:07:63:b8:bc:44:eb:8e:1c:3f:6c:14: b4:a4:d5:c0:b7:42:8a:b2:2c:33:53:8d:00:61:e2: d4:8d:e7:9d:4e:3c:21:31:f5:11:d0:73:7d:04:eb: f1:82:b2:40:6d:13:52:9e:fe:13:84:6b:fa:e3:76: 68:82:c8:80:d6:67:73:3b:b7:aa:60:b5:da:98:c3: 56:43:f5:75:25:f2:73:0a:64:98:bd:42:b0:43:35: 30:06:ff:ae:0e:f9:06:d9:01:52:d1:cc:2d:c6:f4: 35:bf:f7:84:bd:58:f9:00:a5:c3:38:c7:b5:71:ca: af:41:38:f7:88:62:8e:10:7c:84:ba:00:de:b2:6a: a5:58:b2:1e:6f:df:4d:39:00:a2:91:25:a9:9d:88: 8f:68:56:b4:93:29:b2:c9:31:c7:ae:c7:74:26:de: 9f:2a:47:3d:0a:17:c5:33:f2:6c:b7:46:f4:04:c4: df:31:d5:88:f6:0f:62:00:a3:26:b5:63:e9:69:66: ef:e3:a6:36:de:5f:03:87:23:02:9e:ac:0d:fb:5e: 57:cb:9a:7b:1c:89:89:c6:dd:e1:70:31:4c:b1:9d: 8e:b3:22:10:bd:8f:12:93:07:ca:30:83:d1:22:a9: 83:74:c9:81:d1:f7:d2:fb:f2:2e:d3:65:66:b0:f9: 08:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:86:1E:71:5C:62:8E:C2:0A:30:EC:D7:76:BF:E5:49:06:04:85:0C X509v3 Authority Key Identifier: keyid:46:A0:85:9F:8C:7C:C2:C2:E7:D5:CB:C8:E4:36:34:F8:A3:DD:AA:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d05409ed-9f40-4f5a-b5ee-a088da2f5978/0/46A0859F8C7CC2C2E7D5CBC8E43634F8A3DDAAF5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/46A0859F8C7CC2C2E7D5CBC8E43634F8A3DDAAF5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d05409ed-9f40-4f5a-b5ee-a088da2f5978/0/3131352e3138372e33302e302f32332d3233203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.187.30.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:86:0b:2e:60:fe:c2:b9:64:a4:b6:fa:d7:fb:30:ec:0f:c7: bb:99:0e:3c:d8:1e:c9:7c:f7:b8:54:d5:8c:c3:74:62:b2:3f: f2:81:70:9d:a2:a8:12:40:f1:78:2d:64:dd:1a:82:7d:db:8c: 55:b5:31:8e:29:e2:fa:35:65:ea:93:73:ea:86:d6:d7:7e:f2: 1f:74:01:88:75:af:f5:9c:db:9e:17:36:d7:15:d6:0d:6e:72: 5a:dd:ea:f3:63:35:1f:53:75:fe:d9:3b:02:27:3f:6b:9d:ae: 93:5e:7f:46:6f:ea:bc:f4:62:be:87:00:4d:f8:60:2e:d3:3b: d9:8d:75:7d:bd:7b:e8:8e:1a:07:32:9d:c9:fc:db:38:12:e6: a1:e5:73:5c:40:50:0a:06:3d:3a:ac:ec:02:29:1c:a9:c8:cd: 5a:55:cf:d0:54:a7:6f:ce:51:ab:49:b0:2a:88:9a:4e:e7:37: 4f:fd:ea:18:4d:be:76:f3:94:cc:d2:7f:fc:f4:0b:a2:b7:36: d7:3a:88:bc:8f:36:3c:b6:bb:15:66:0d:a9:30:f2:fe:67:96: 7a:1b:db:8b:33:4d:20:4b:75:dd:11:fd:ad:d6:a1:71:d2:95: 39:a3:21:eb:bf:df:50:c5:27:e6:8d:c1:82:fa:48:ed:4e:a2: 89:04:ee:76 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfw7VNa1py2Qi72KTfeDseoRBRUowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDZBMDg1OUY4QzdDQzJDMkU3RDVDQkM4RTQzNjM0RjhB M0REQUFGNTAeFw0yNTA5MjMwODU3MjRaFw0yNjA5MjIwOTAyMjRaMDMxMTAvBgNV BAMTKDI0ODYxRTcxNUM2MjhFQzIwQTMwRUNENzc2QkZFNTQ5MDYwNDg1MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLr7YHY7i8ROuOHD9sFLSk1cC3 QoqyLDNTjQBh4tSN551OPCEx9RHQc30E6/GCskBtE1Ke/hOEa/rjdmiCyIDWZ3M7 t6pgtdqYw1ZD9XUl8nMKZJi9QrBDNTAG/64O+QbZAVLRzC3G9DW/94S9WPkApcM4 x7Vxyq9BOPeIYo4QfIS6AN6yaqVYsh5v3005AKKRJamdiI9oVrSTKbLJMceux3Qm 3p8qRz0KF8Uz8my3RvQExN8x1Yj2D2IAoya1Y+lpZu/jpjbeXwOHIwKerA37XlfL mnsciYnG3eFwMUyxnY6zIhC9jxKTB8owg9EiqYN0yYHR99L78i7TZWaw+QjrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJIYecVxijsIKMOzXdr/lSQYEhQwwHwYDVR0j BBgwFoAURqCFn4x8wsLn1cvI5DY0+KPdqvUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDU0MDllZC05ZjQwLTRmNWEtYjVlZS1hMDg4ZGEyZjU5NzgvMC80NkEwODU5RjhD N0NDMkMyRTdENUNCQzhFNDM2MzRGOEEzRERBQUY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDZBMDg1OUY4QzdDQzJDMkU3RDVDQkM4RTQzNjM0RjhBM0RE QUFGNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNTQwOWVkLTlmNDAtNGY1YS1i NWVlLWEwODhkYTJmNTk3OC8wLzMxMzEzNTJlMzEzODM3MmUzMzMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXO7HjANBgkqhkiG 9w0BAQsFAAOCAQEASoYLLmD+wrlkpLb61/sw7A/Hu5kOPNgeyXz3uFTVjMN0YrI/ 8oFwnaKoEkDxeC1k3RqCfduMVbUxjini+jVl6pNz6obW137yH3QBiHWv9Zzbnhc2 1xXWDW5yWt3q82M1H1N1/tk7Aic/a52uk15/Rm/qvPRivocATfhgLtM72Y11fb17 6I4aBzKdyfzbOBLmoeVzXEBQCgY9OqzsAikcqcjNWlXP0FSnb85Rq0mwKoiaTuc3 T/3qGE2+dvOUzNJ//PQLorc21zqIvI82PLa7FWYNqTDy/meWehvbizNNIEt13RH9 rdahcdKVOaMh67/fUMUn5o3BgvpI7U6iiQTudg== -----END CERTIFICATE-----Generated at Mon Oct 20 12:57:24 2025 by rpki-client