$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33362e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e33362e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: s1sd22aoOx7eVnGzzPZfaCEnUeLM+0ey0B/Ng0FNQzE= Subject key identifier: 10:88:A2:9B:5F:8F:DB:B0:71:23:91:9C:61:3B:06:2B:24:B8:AC:C1 Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 3D71F4DB4BA8787EB13876C5AC87F4694F63311D Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33362e302f32342d3234203d3e203435333235.roa Signing time: Tue 07 Oct 2025 09:00:38 +0000 ROA not before: Tue 07 Oct 2025 08:55:38 +0000 ROA not after: Tue 06 Oct 2026 09:00:38 +0000 asID: 45325 IP address blocks: 122.248.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:71:f4:db:4b:a8:78:7e:b1:38:76:c5:ac:87:f4:69:4f:63:31:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Oct 7 08:55:38 2025 GMT Not After : Oct 6 09:00:38 2026 GMT Subject: CN=1088A29B5F8FDBB07123919C613B062B24B8ACC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:46:58:4a:7d:8d:6a:99:de:18:e3:bd:b8:f5: 61:68:21:fa:7e:b3:40:27:67:81:7a:51:c9:0b:d1: d6:9f:ec:b8:76:c6:77:89:ca:98:ab:2f:19:7e:59: 68:35:a3:9e:b7:57:0d:a2:26:bd:07:9b:ce:f1:28: 02:61:cb:e5:87:ca:47:a3:70:b4:f3:86:33:ba:54: cd:e4:62:02:7d:b3:a3:04:c3:75:37:45:c5:a0:f0: 32:4c:7e:41:4a:d8:d4:bf:1b:b3:9f:01:a7:78:d0: d4:cf:2c:7c:32:90:b6:56:c8:98:69:7f:41:2c:1b: 74:11:18:24:2c:86:48:8d:a7:00:43:65:a7:67:d4: b9:31:68:63:a2:f3:1c:fe:b2:38:57:32:0e:f7:b0: db:c5:89:34:93:be:41:db:10:97:95:55:08:e3:1f: a2:93:38:6d:53:16:56:a3:1e:b3:8e:df:b5:78:06: fe:5b:3e:32:fd:5d:b0:06:86:79:bf:27:86:d0:f4: 2a:a7:e0:f0:71:bb:c2:af:37:d9:80:e5:4c:96:a7: 2f:4a:5c:6b:a6:0e:2b:99:61:77:85:23:5a:d0:da: 9a:13:05:24:d6:24:5d:27:75:ad:37:4f:fb:1e:4b: 56:10:ff:82:a1:d6:02:e8:06:98:33:4f:d3:3b:f4: 35:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:88:A2:9B:5F:8F:DB:B0:71:23:91:9C:61:3B:06:2B:24:B8:AC:C1 X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33362e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.36.0/24 Signature Algorithm: sha256WithRSAEncryption 04:b3:e2:15:29:ff:69:57:cd:13:a2:65:94:38:7c:17:11:c5: 3f:8d:b7:89:8f:12:6b:fa:4e:b1:cb:a0:14:67:60:6d:89:d0: 9a:f7:58:f5:5d:4b:ab:7c:9b:8c:77:a5:91:da:1e:0e:60:49: 57:21:e2:ab:64:c7:1a:32:7d:a1:09:f6:e4:ed:48:a1:b9:4c: 86:c9:42:a7:95:5c:1b:b0:fd:90:09:94:fc:f9:20:26:09:76: 22:e0:bc:04:69:2e:aa:51:be:5d:f1:59:16:8f:ad:bb:6d:e3: f9:c0:0f:2f:bf:7a:d6:60:c5:9f:93:0e:50:be:26:a2:dc:27: ba:88:1f:ef:c9:35:71:dd:0a:62:58:08:d7:5e:af:25:1c:be: 3d:27:ed:3b:75:75:bb:c6:91:1e:0c:34:f3:77:d8:6c:a2:c7: a9:84:10:81:de:46:8c:b5:8a:7c:9c:9e:8f:eb:bf:31:ae:a1: fa:f6:90:ce:02:59:d6:1c:60:18:38:0d:88:66:d0:7b:45:d1: 08:f5:f1:34:3b:e4:17:56:60:6b:11:9d:ea:bc:79:50:ec:49: 1b:7a:45:a5:55:52:e0:74:3b:60:2a:85:88:75:00:f0:2a:c4: 67:66:a9:73:f6:77:c5:66:e5:66:29:84:ce:4f:47:be:15:db: 3a:85:bc:80 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPXH020uoeH6xOHbFrIf0aU9jMR0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNTEwMDcwODU1MzhaFw0yNjEwMDYwOTAwMzhaMDMxMTAvBgNV BAMTKDEwODhBMjlCNUY4RkRCQjA3MTIzOTE5QzYxM0IwNjJCMjRCOEFDQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBRlhKfY1qmd4Y47249WFoIfp+ s0AnZ4F6UckL0daf7Lh2xneJypirLxl+WWg1o563Vw2iJr0Hm87xKAJhy+WHykej cLTzhjO6VM3kYgJ9s6MEw3U3RcWg8DJMfkFK2NS/G7OfAad40NTPLHwykLZWyJhp f0EsG3QRGCQshkiNpwBDZadn1LkxaGOi8xz+sjhXMg73sNvFiTSTvkHbEJeVVQjj H6KTOG1TFlajHrOO37V4Bv5bPjL9XbAGhnm/J4bQ9Cqn4PBxu8KvN9mA5UyWpy9K XGumDiuZYXeFI1rQ2poTBSTWJF0nda03T/seS1YQ/4Kh1gLoBpgzT9M79DUZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEIiim1+P27BxI5GcYTsGKyS4rMEwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4JDANBgkqhkiG 9w0BAQsFAAOCAQEABLPiFSn/aVfNE6JllDh8FxHFP423iY8Sa/pOscugFGdgbYnQ mvdY9V1Lq3ybjHelkdoeDmBJVyHiq2THGjJ9oQn25O1IoblMhslCp5VcG7D9kAmU /PkgJgl2IuC8BGkuqlG+XfFZFo+tu23j+cAPL7961mDFn5MOUL4motwnuogf78k1 cd0KYlgI116vJRy+PSftO3V1u8aRHgw083fYbKLHqYQQgd5GjLWKfJyej+u/Ma6h +vaQzgJZ1hxgGDgNiGbQe0XRCPXxNDvkF1ZgaxGd6rx5UOxJG3pFpVVS4HQ7YCqF iHUA8CrEZ2apc/Z3xWblZimEzk9HvhXbOoW8gA== -----END CERTIFICATE-----Generated at Mon Oct 20 12:56:48 2025 by rpki-client