$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33382e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e33382e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: Giz7os34qxdcaeyi2EtKcr2LS4LsMlTnJlV8pqSpEa4= Subject key identifier: 47:1F:98:DE:D2:C6:5A:0C:A6:8B:19:B1:DE:EB:6C:5D:F4:EB:76:60 Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 1F1D7899040AE56CBE93861518E66AE193BE4238 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33382e302f32342d3234203d3e203435333235.roa Signing time: Tue 07 Oct 2025 09:00:39 +0000 ROA not before: Tue 07 Oct 2025 08:55:39 +0000 ROA not after: Tue 06 Oct 2026 09:00:39 +0000 asID: 45325 IP address blocks: 122.248.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:1d:78:99:04:0a:e5:6c:be:93:86:15:18:e6:6a:e1:93:be:42:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Oct 7 08:55:39 2025 GMT Not After : Oct 6 09:00:39 2026 GMT Subject: CN=471F98DED2C65A0CA68B19B1DEEB6C5DF4EB7660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:00:87:94:7b:ec:43:59:e4:22:3f:7e:bc:d0: 75:e3:7f:50:33:08:ae:99:9f:6d:ca:1b:71:f2:24: dc:6c:ca:a4:87:cb:29:0d:6b:40:f1:b1:e8:b8:03: fd:3d:25:bc:55:74:c0:db:93:62:d8:17:bc:05:07: 71:d0:15:92:c3:7e:7e:31:36:30:61:fd:04:bf:f3: 12:b5:96:b0:e2:1a:06:a4:22:5d:06:41:7c:74:dc: 67:f4:a9:ec:a5:f1:d3:dd:87:ac:4b:73:c6:72:5a: ee:c5:84:bd:3c:01:97:56:82:1a:e3:76:11:62:2c: a1:56:c5:2b:73:64:70:96:76:20:b6:63:e0:08:68: bf:45:60:70:9c:c6:ca:1e:df:62:c3:da:ba:12:5c: 34:1e:d9:46:a8:eb:7b:1c:43:d9:98:b9:23:d1:9d: c6:56:04:6a:81:44:1f:d2:2c:d2:66:a5:6a:67:6e: 74:5b:64:02:8d:15:c5:6c:ea:43:21:7e:8c:45:20: 46:41:c8:48:d6:78:7e:8a:5f:fb:b0:ef:e5:b0:74: 0b:fc:26:9d:77:62:7c:88:d0:19:9f:44:11:01:01: 7c:48:56:b7:bd:00:35:ed:56:7b:a9:76:86:41:8d: 07:d1:38:f3:ac:0e:02:c6:c3:a6:3c:2d:cc:3c:9f: 96:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:1F:98:DE:D2:C6:5A:0C:A6:8B:19:B1:DE:EB:6C:5D:F4:EB:76:60 X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33382e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.38.0/24 Signature Algorithm: sha256WithRSAEncryption 48:aa:5c:57:4f:bd:dc:bf:2a:71:75:d5:27:de:a9:68:ba:3c: b1:09:da:7b:6f:5c:bd:36:77:5b:6a:15:79:ca:2b:d6:bc:a6: b3:cb:9c:d0:5e:81:60:e7:1e:ee:ea:b4:a1:27:6d:cd:36:d9: 05:5d:6a:d5:07:9a:af:b1:23:e2:90:4b:45:3a:57:0c:98:4d: 22:de:40:78:33:b9:f7:d0:1e:b0:03:c5:9f:8a:5b:b3:da:de: e8:16:00:55:4d:da:66:5d:d5:2c:17:28:04:0c:4c:2a:87:d3: 2f:cd:e2:1e:bc:fe:37:7b:12:66:31:22:2d:9d:d3:83:ba:66: b6:e6:65:66:2e:29:5c:2f:22:dc:9b:5d:ca:98:2e:72:79:90: 57:aa:10:be:48:c6:e2:3e:df:7f:1e:89:01:d3:1f:b5:fe:ef: ce:45:ba:b7:d0:16:ee:15:ab:ff:29:6f:00:d7:70:60:a3:df: b3:2a:9e:e3:69:59:0b:43:35:2f:71:32:b4:5f:a0:f5:7e:5e: 25:b6:a0:71:53:2e:34:df:63:f8:0c:c2:12:8d:42:23:d3:8b: 0d:ca:e6:d0:fc:59:ed:51:fb:69:68:a9:bb:6f:05:1f:10:2d: 2d:1c:73:88:e9:80:a8:a9:ab:15:21:99:fd:57:05:23:c1:bf: 04:2e:24:24 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHx14mQQK5Wy+k4YVGOZq4ZO+QjgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNTEwMDcwODU1MzlaFw0yNjEwMDYwOTAwMzlaMDMxMTAvBgNV BAMTKDQ3MUY5OERFRDJDNjVBMENBNjhCMTlCMURFRUI2QzVERjRFQjc2NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUAIeUe+xDWeQiP3680HXjf1Az CK6Zn23KG3HyJNxsyqSHyykNa0Dxsei4A/09JbxVdMDbk2LYF7wFB3HQFZLDfn4x NjBh/QS/8xK1lrDiGgakIl0GQXx03Gf0qeyl8dPdh6xLc8ZyWu7FhL08AZdWghrj dhFiLKFWxStzZHCWdiC2Y+AIaL9FYHCcxsoe32LD2roSXDQe2Uao63scQ9mYuSPR ncZWBGqBRB/SLNJmpWpnbnRbZAKNFcVs6kMhfoxFIEZByEjWeH6KX/uw7+WwdAv8 Jp13YnyI0BmfRBEBAXxIVre9ADXtVnupdoZBjQfROPOsDgLGw6Y8Lcw8n5ZtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURx+Y3tLGWgymixmx3utsXfTrdmAwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4JjANBgkqhkiG 9w0BAQsFAAOCAQEASKpcV0+93L8qcXXVJ96paLo8sQnae29cvTZ3W2oVecor1rym s8uc0F6BYOce7uq0oSdtzTbZBV1q1Qear7Ej4pBLRTpXDJhNIt5AeDO599AesAPF n4pbs9re6BYAVU3aZl3VLBcoBAxMKofTL83iHrz+N3sSZjEiLZ3Tg7pmtuZlZi4p XC8i3JtdypgucnmQV6oQvkjG4j7ffx6JAdMftf7vzkW6t9AW7hWr/ylvANdwYKPf syqe42lZC0M1L3EytF+g9X5eJbagcVMuNN9j+AzCEo1CI9OLDcrm0PxZ7VH7aWip u28FHxAtLRxziOmAqKmrFSGZ/VcFI8G/BC4kJA== -----END CERTIFICATE-----Generated at Mon Oct 20 12:56:11 2025 by rpki-client