$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33352e302f32342d3234203d3e20313431313432.roa File: 3132322e3234382e33352e302f32342d3234203d3e20313431313432.roa (raw, json) Hash identifier: GE7T9YC/kqBLoYKuMN7OgXcO8QMg0KTigD9MICwdRZo= Subject key identifier: FD:36:A0:63:C7:2A:D4:50:34:09:A9:F9:68:B6:F1:6C:D0:07:DD:88 Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 7EBB3CC49DE7D4414B269FF0397863B7D0D291EC Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33352e302f32342d3234203d3e20313431313432.roa Signing time: Fri 15 Aug 2025 01:32:46 +0000 ROA not before: Fri 15 Aug 2025 01:27:46 +0000 ROA not after: Fri 14 Aug 2026 01:32:46 +0000 asID: 141142 IP address blocks: 122.248.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:bb:3c:c4:9d:e7:d4:41:4b:26:9f:f0:39:78:63:b7:d0:d2:91:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Aug 15 01:27:46 2025 GMT Not After : Aug 14 01:32:46 2026 GMT Subject: CN=FD36A063C72AD4503409A9F968B6F16CD007DD88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7e:5d:98:b2:7c:af:c6:76:86:3d:66:4a:f2: 13:dd:77:c1:82:d3:07:8b:f5:0c:d7:47:f6:c2:ff: 30:d0:26:33:cf:2a:46:62:06:b0:b4:d2:9e:c0:5d: 0e:c8:0d:d5:8e:f3:39:5a:fb:c1:52:25:4e:b5:c7: 77:d6:8a:b9:70:d1:8e:70:17:20:c8:76:39:58:b0: 6c:a1:c6:a8:9e:99:15:81:d4:7e:f7:14:7d:bd:a0: eb:0e:89:93:45:52:9e:16:f7:d2:9b:fa:dc:48:02: d7:58:0a:e4:f1:98:f8:e1:f8:cc:b4:0a:05:8c:d7: c4:f3:a3:d2:ef:2e:c3:c6:97:ca:36:3d:6d:7f:2e: e6:39:f3:76:ef:46:04:0a:c0:be:10:f2:67:29:72: a3:35:51:49:b8:69:c6:c1:c4:55:8c:bd:eb:07:5b: bd:9b:a9:b4:92:92:70:29:90:67:7f:a3:e3:e3:cb: 7a:90:e1:bb:ba:b9:91:49:07:1c:d1:ce:a7:a2:ce: dd:a0:9b:4f:ff:f9:af:ea:6a:d0:51:c6:a3:11:0d: 34:95:7d:4a:16:17:60:47:3d:de:24:ee:05:a5:9f: 06:75:24:9a:88:e3:e3:fe:3f:18:cb:e0:cd:c6:d1: a5:11:f8:34:ca:d3:a2:7c:e6:a6:78:37:89:7c:32: da:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:36:A0:63:C7:2A:D4:50:34:09:A9:F9:68:B6:F1:6C:D0:07:DD:88 X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33352e302f32342d3234203d3e20313431313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.35.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:ca:b1:af:21:74:82:fe:a6:ad:79:c8:0c:d4:d4:41:2c:d0: de:1d:18:a0:02:20:e8:bc:10:b6:7f:ac:9f:3f:40:8f:9f:a0: a6:05:1c:fa:d5:6b:d1:a4:b7:bb:3f:b9:7d:ea:6f:0f:29:83: ce:5d:7b:8c:6b:dc:7c:c8:6f:5e:c6:56:44:70:f6:03:97:53: 6d:40:16:f0:b7:87:91:01:d2:c2:3f:14:4d:8f:89:d6:50:e3: cb:32:30:ac:46:b5:a5:76:63:a4:d0:aa:bd:6c:56:d0:d6:aa: 34:4a:c2:d3:dd:d1:51:49:1d:9a:e3:b8:4c:ac:65:11:df:c0: 13:87:f1:5e:4b:e7:6b:f8:58:75:4f:eb:ed:cb:99:2e:cd:7a: 29:cd:54:73:03:c6:ed:7e:67:a9:64:d0:c9:8b:ff:db:2d:84: 31:de:07:4c:2f:34:23:5e:d6:92:7f:56:a9:69:a5:02:dc:19: 05:35:b3:13:e0:72:e8:c6:80:f5:b6:74:57:12:f4:30:8a:e6: f7:97:6e:3b:a9:00:75:2b:52:43:96:11:01:09:c5:8c:5e:7c: 4d:1b:68:66:6d:d6:6f:45:39:4b:6c:cb:80:3e:0d:07:23:c9: a7:7a:23:1b:42:5f:79:3c:b6:24:8a:a4:c6:aa:8a:de:4a:d4: c3:af:d1:7e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfrs8xJ3n1EFLJp/wOXhjt9DSkewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNTA4MTUwMTI3NDZaFw0yNjA4MTQwMTMyNDZaMDMxMTAvBgNV BAMTKEZEMzZBMDYzQzcyQUQ0NTAzNDA5QTlGOTY4QjZGMTZDRDAwN0REODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdfl2YsnyvxnaGPWZK8hPdd8GC 0weL9QzXR/bC/zDQJjPPKkZiBrC00p7AXQ7IDdWO8zla+8FSJU61x3fWirlw0Y5w FyDIdjlYsGyhxqiemRWB1H73FH29oOsOiZNFUp4W99Kb+txIAtdYCuTxmPjh+My0 CgWM18Tzo9LvLsPGl8o2PW1/LuY583bvRgQKwL4Q8mcpcqM1UUm4acbBxFWMvesH W72bqbSSknApkGd/o+Pjy3qQ4bu6uZFJBxzRzqeizt2gm0//+a/qatBRxqMRDTSV fUoWF2BHPd4k7gWlnwZ1JJqI4+P+PxjL4M3G0aUR+DTK06J85qZ4N4l8MtrpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/TagY8cq1FA0Can5aLbxbNAH3YgwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAevgjMA0GCSqG SIb3DQEBCwUAA4IBAQBeyrGvIXSC/qatecgM1NRBLNDeHRigAiDovBC2f6yfP0CP n6CmBRz61WvRpLe7P7l96m8PKYPOXXuMa9x8yG9exlZEcPYDl1NtQBbwt4eRAdLC PxRNj4nWUOPLMjCsRrWldmOk0Kq9bFbQ1qo0SsLT3dFRSR2a47hMrGUR38ATh/Fe S+dr+Fh1T+vty5kuzXopzVRzA8btfmepZNDJi//bLYQx3gdMLzQjXtaSf1apaaUC 3BkFNbMT4HLoxoD1tnRXEvQwiub3l247qQB1K1JDlhEBCcWMXnxNG2hmbdZvRTlL bMuAPg0HI8mneiMbQl95PLYkiqTGqoreStTDr9F+ -----END CERTIFICATE-----Generated at Mon Oct 20 21:21:16 2025 by rpki-client