$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33342e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e33342e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: TPAjUCjHJnWAtWeWIogMrgqyIk1DQzed8sLTl5HA/OY= Subject key identifier: 84:3B:7D:81:6A:CE:D2:0E:6B:7A:B5:2C:E7:DC:9E:11:9F:16:B9:26 Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 359767E23C426283D5B63597F9A1941769A79D0A Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33342e302f32342d3234203d3e203435333235.roa Signing time: Tue 07 Oct 2025 09:00:38 +0000 ROA not before: Tue 07 Oct 2025 08:55:38 +0000 ROA not after: Tue 06 Oct 2026 09:00:38 +0000 asID: 45325 IP address blocks: 122.248.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:97:67:e2:3c:42:62:83:d5:b6:35:97:f9:a1:94:17:69:a7:9d:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Oct 7 08:55:38 2025 GMT Not After : Oct 6 09:00:38 2026 GMT Subject: CN=843B7D816ACED20E6B7AB52CE7DC9E119F16B926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:29:48:50:2f:70:8e:38:93:1b:d3:b3:ce:5d: 47:97:eb:47:94:bd:2a:a8:28:bb:30:0e:3f:f8:a9: 5d:be:c7:13:2b:26:49:7b:86:a1:a1:05:82:6a:2f: 8b:66:7c:ca:eb:c4:f8:c6:35:12:d2:b9:66:75:18: af:f4:24:0d:df:c7:60:e7:19:87:2c:f2:6e:5e:38: 10:c6:b6:36:66:57:56:e4:74:16:41:82:2a:7a:03: f5:5e:e5:0e:77:64:a6:b7:1c:fe:e7:b6:29:7f:e4: 24:3b:6b:2b:e2:eb:88:38:18:62:73:85:51:f2:ee: 89:6f:a0:56:dc:6d:4e:c1:5f:94:46:91:62:96:0e: 48:5e:36:24:6a:bd:f4:1c:96:77:da:c0:fc:db:cd: e0:da:f8:a5:b8:c8:1b:09:4b:b3:20:78:81:cc:2b: 44:f7:3b:a4:63:63:cf:95:3a:1b:bd:38:ba:cd:36: 12:14:5c:51:8d:24:cf:6a:a7:33:d1:b8:cc:e9:c4: d2:5e:7c:6c:96:55:ea:2c:f5:3f:a9:e7:46:20:2d: d3:c9:64:48:ca:ba:08:47:52:a4:fb:76:d4:05:b8: 26:f4:08:8d:12:5d:dc:9d:6b:a1:21:7e:b5:cb:a8: 9c:63:0e:72:a2:cb:7e:d3:13:87:ba:a4:bc:d3:50: ba:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:3B:7D:81:6A:CE:D2:0E:6B:7A:B5:2C:E7:DC:9E:11:9F:16:B9:26 X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33342e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.34.0/24 Signature Algorithm: sha256WithRSAEncryption 90:2a:98:5d:d9:e0:73:4b:09:5d:c1:bb:c2:9a:46:6b:6c:9c: 4f:ad:4c:57:96:59:73:9a:f2:b3:08:eb:16:08:cc:d3:d0:26: b6:48:30:e3:d2:a0:1d:c1:14:4c:15:9f:9a:0d:97:0f:dc:6f: 9e:4d:aa:bc:21:6a:82:36:fa:55:af:1a:a4:de:8c:79:2a:c0: 7b:ac:d1:a9:03:64:b0:78:87:2a:03:0e:d0:53:01:ac:8c:36: b8:b9:3e:f4:31:0f:28:b9:f7:51:6d:49:48:af:73:06:df:b8: 2a:3c:23:75:4a:fe:67:82:4e:41:19:f9:d0:cc:0a:ca:12:e6: 46:d9:28:9b:83:8f:bd:ee:7e:1b:60:97:a9:07:c5:69:4e:13: de:50:98:0f:fe:72:7a:4b:2a:50:a9:13:88:61:cf:72:f0:44: 69:dc:66:ee:c4:30:7d:da:9a:48:76:50:61:c2:6a:6c:36:86: d6:c5:25:8b:ad:ec:82:3e:f3:3f:7c:67:70:e1:a5:03:9f:ab: fb:98:5e:70:fe:af:da:bd:6f:5a:2a:38:cd:6f:b7:e7:b8:79: 0d:0d:1f:0a:8f:1d:15:cc:67:22:62:3f:9f:b7:73:a1:cf:2f: c0:91:0d:c9:f1:a2:5f:d7:59:ff:95:8c:dc:e4:38:e1:68:51: 84:e7:13:ab -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNZdn4jxCYoPVtjWX+aGUF2mnnQowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNTEwMDcwODU1MzhaFw0yNjEwMDYwOTAwMzhaMDMxMTAvBgNV BAMTKDg0M0I3RDgxNkFDRUQyMEU2QjdBQjUyQ0U3REM5RTExOUYxNkI5MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYKUhQL3COOJMb07POXUeX60eU vSqoKLswDj/4qV2+xxMrJkl7hqGhBYJqL4tmfMrrxPjGNRLSuWZ1GK/0JA3fx2Dn GYcs8m5eOBDGtjZmV1bkdBZBgip6A/Ve5Q53ZKa3HP7ntil/5CQ7ayvi64g4GGJz hVHy7olvoFbcbU7BX5RGkWKWDkheNiRqvfQclnfawPzbzeDa+KW4yBsJS7MgeIHM K0T3O6RjY8+VOhu9OLrNNhIUXFGNJM9qpzPRuMzpxNJefGyWVeos9T+p50YgLdPJ ZEjKughHUqT7dtQFuCb0CI0SXdyda6EhfrXLqJxjDnKiy37TE4e6pLzTULpvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhDt9gWrO0g5rerUs59yeEZ8WuSYwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4IjANBgkqhkiG 9w0BAQsFAAOCAQEAkCqYXdngc0sJXcG7wppGa2ycT61MV5ZZc5ryswjrFgjM09Am tkgw49KgHcEUTBWfmg2XD9xvnk2qvCFqgjb6Va8apN6MeSrAe6zRqQNksHiHKgMO 0FMBrIw2uLk+9DEPKLn3UW1JSK9zBt+4KjwjdUr+Z4JOQRn50MwKyhLmRtkom4OP ve5+G2CXqQfFaU4T3lCYD/5yeksqUKkTiGHPcvBEadxm7sQwfdqaSHZQYcJqbDaG 1sUli63sgj7zP3xncOGlA5+r+5hecP6v2r1vWio4zW+357h5DQ0fCo8dFcxnImI/ n7dzoc8vwJENyfGiX9dZ/5WM3OQ44WhRhOcTqw== -----END CERTIFICATE-----Generated at Mon Oct 20 18:16:21 2025 by rpki-client