$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33322e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e33322e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: YtgOnaLw1bxl1wUrgM2neAz8Qf57lo3CvBW85nMyhJg= Subject key identifier: 2A:82:38:AD:21:BD:2C:07:CE:CA:5A:B8:FF:8D:E0:AB:2F:23:A9:E1 Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 02AA2D94CDF2E3294E08246BB78521DF6FA65399 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33322e302f32342d3234203d3e203435333235.roa Signing time: Tue 07 Oct 2025 08:00:07 +0000 ROA not before: Tue 07 Oct 2025 07:55:07 +0000 ROA not after: Tue 06 Oct 2026 08:00:07 +0000 asID: 45325 IP address blocks: 122.248.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:aa:2d:94:cd:f2:e3:29:4e:08:24:6b:b7:85:21:df:6f:a6:53:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Oct 7 07:55:07 2025 GMT Not After : Oct 6 08:00:07 2026 GMT Subject: CN=2A8238AD21BD2C07CECA5AB8FF8DE0AB2F23A9E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:36:dc:15:d9:81:5d:24:11:83:ee:4b:f1:8a: 41:b5:99:bf:8d:e4:63:da:08:72:03:d0:24:ae:32: 16:ea:c7:a0:6c:c9:bb:a3:f8:45:c7:30:68:e7:ce: f2:2d:b7:48:9e:6a:17:25:37:93:2c:18:04:cd:e0: 6f:f6:76:75:7c:52:8f:0f:0d:7f:22:8e:62:06:89: 6f:89:40:f3:48:e8:6b:a6:01:65:79:89:3f:34:38: e4:46:36:49:3f:d8:56:1a:2f:2e:4c:f4:c4:9a:f3: 0f:e7:b0:07:75:29:9b:e5:95:3a:76:5a:67:2c:d5: 50:7a:b4:cd:b0:7f:27:65:14:bc:3c:b3:9f:62:09: f9:18:0c:26:97:a1:b3:ec:92:1f:91:08:19:24:d4: 5e:4d:69:80:b3:d8:c4:fb:75:1e:94:b8:ca:e2:b1: 9b:6b:e0:b9:c7:91:43:c7:6b:c3:8f:fa:9a:49:41: 20:49:91:76:67:8d:82:c3:30:d7:cb:00:91:a3:ff: 5d:8f:3e:f7:ff:fb:52:ee:59:f1:b6:2d:e4:73:06: 2b:2c:cd:51:8a:73:1c:8a:50:80:05:c0:df:6a:a3: 05:5c:98:ad:0f:d2:f3:35:52:1b:d4:d5:c1:fc:8d: 00:e3:6d:28:5a:49:80:ea:ed:b4:5e:0c:87:38:28: ca:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:82:38:AD:21:BD:2C:07:CE:CA:5A:B8:FF:8D:E0:AB:2F:23:A9:E1 X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33322e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.32.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:52:30:f0:c4:d1:01:2c:ca:12:82:ce:43:4f:3d:2a:52:10: c0:a5:54:47:a5:1d:cb:93:a0:fd:0c:1a:ed:1d:cb:08:de:ce: b1:ea:a0:c2:4d:1d:23:9c:e6:d4:8d:2e:56:d5:b0:70:e4:40: 9c:4a:a9:60:77:13:b3:0d:38:82:ff:80:fc:c1:2d:de:44:c0: 01:00:fb:74:41:e2:6f:45:fa:4b:d6:88:e3:60:a3:92:74:92: 4e:25:f0:b4:3e:80:9a:3f:22:dc:a9:48:f9:3e:eb:18:93:ab: 35:47:43:2a:10:82:8f:03:32:fb:af:6e:d5:d0:ff:0c:96:9e: 81:97:42:0a:e9:e3:6b:23:61:7b:8b:ed:93:98:7f:e4:2a:24: e4:5b:bc:0b:fb:39:3b:db:9e:f4:c8:f5:e2:0f:63:7d:37:55: 6e:4a:13:ef:15:7e:6d:b2:49:79:c6:b1:3d:e5:aa:4a:8f:98: 2d:d3:d3:7f:e4:cd:8f:69:46:82:6d:e4:b5:a3:bf:2c:c2:06: 33:51:a2:81:9c:c1:7f:a0:36:e1:f8:b9:62:c2:f8:a7:51:3c: 87:d0:1b:89:40:40:86:eb:3e:7d:b2:94:d0:81:b9:3b:c4:9f: 5f:f6:65:b5:02:4f:72:ba:1a:18:f3:95:ca:82:a2:0f:ea:ef: 20:0d:bb:26 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAqotlM3y4ylOCCRrt4Uh32+mU5kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNTEwMDcwNzU1MDdaFw0yNjEwMDYwODAwMDdaMDMxMTAvBgNV BAMTKDJBODIzOEFEMjFCRDJDMDdDRUNBNUFCOEZGOERFMEFCMkYyM0E5RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDENtwV2YFdJBGD7kvxikG1mb+N 5GPaCHID0CSuMhbqx6Bsybuj+EXHMGjnzvItt0ieahclN5MsGATN4G/2dnV8Uo8P DX8ijmIGiW+JQPNI6GumAWV5iT80OORGNkk/2FYaLy5M9MSa8w/nsAd1KZvllTp2 Wmcs1VB6tM2wfydlFLw8s59iCfkYDCaXobPskh+RCBkk1F5NaYCz2MT7dR6UuMri sZtr4LnHkUPHa8OP+ppJQSBJkXZnjYLDMNfLAJGj/12PPvf/+1LuWfG2LeRzBiss zVGKcxyKUIAFwN9qowVcmK0P0vM1UhvU1cH8jQDjbShaSYDq7bReDIc4KMplAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKoI4rSG9LAfOylq4/43gqy8jqeEwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4IDANBgkqhkiG 9w0BAQsFAAOCAQEAHVIw8MTRASzKEoLOQ089KlIQwKVUR6Udy5Og/Qwa7R3LCN7O seqgwk0dI5zm1I0uVtWwcORAnEqpYHcTsw04gv+A/MEt3kTAAQD7dEHib0X6S9aI 42CjknSSTiXwtD6Amj8i3KlI+T7rGJOrNUdDKhCCjwMy+69u1dD/DJaegZdCCunj ayNhe4vtk5h/5Cok5Fu8C/s5O9ue9Mj14g9jfTdVbkoT7xV+bbJJecaxPeWqSo+Y LdPTf+TNj2lGgm3ktaO/LMIGM1GigZzBf6A24fi5YsL4p1E8h9AbiUBAhus+fbKU 0IG5O8SfX/ZltQJPcroaGPOVyoKiD+rvIA27Jg== -----END CERTIFICATE-----Generated at Mon Oct 20 12:55:52 2025 by rpki-client