$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34302e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e34302e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: r1xG0EZ+diPvqjo3maUSgSdAXF/PbzNzYbElj3DkPms= Subject key identifier: 70:4E:3E:57:9B:7E:EF:DF:BD:9C:0B:90:3D:D1:ED:05:7C:B2:67:28 Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 07E59B726FC409003FA2C1DCF74772079698E861 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34302e302f32342d3234203d3e203435333235.roa Signing time: Tue 07 Oct 2025 09:00:38 +0000 ROA not before: Tue 07 Oct 2025 08:55:38 +0000 ROA not after: Tue 06 Oct 2026 09:00:38 +0000 asID: 45325 IP address blocks: 122.248.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:e5:9b:72:6f:c4:09:00:3f:a2:c1:dc:f7:47:72:07:96:98:e8:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Oct 7 08:55:38 2025 GMT Not After : Oct 6 09:00:38 2026 GMT Subject: CN=704E3E579B7EEFDFBD9C0B903DD1ED057CB26728 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:44:05:37:3a:a9:97:6b:f3:47:af:5a:90:58: 65:f6:7e:9a:82:17:bd:88:43:02:86:b5:b0:a6:2f: e2:0a:32:ff:ee:61:5d:83:ef:8f:0a:fd:db:17:16: 8e:dd:d1:89:a3:be:8c:80:13:a5:b2:25:56:11:72: 9d:f6:13:a2:12:02:d2:a1:e3:dc:39:2d:57:48:aa: 84:56:e5:c5:e3:2f:e3:c1:fa:d2:ff:60:8e:f6:60: 42:a4:d6:fe:13:8c:7e:63:b9:80:7d:85:78:c2:e6: 8d:9a:e7:93:e5:22:1b:2d:4e:7b:97:00:5b:40:43: 83:9e:5e:ff:a7:a1:43:62:84:81:e4:51:69:69:cb: cb:1a:69:d3:a9:b5:a7:20:05:d9:76:0a:81:53:f4: 2a:5a:d8:a9:8d:f9:e7:83:f1:dd:28:57:b5:b6:10: ea:38:ec:a1:ca:5e:68:af:34:2b:24:a6:e6:ca:76: 47:2d:d4:cb:6a:c6:d7:49:cb:07:ac:a9:dd:ce:e7: 31:af:33:b5:28:0e:63:23:6a:32:86:58:a0:4a:07: 6f:22:ad:3c:04:41:6c:7e:7f:5b:76:c2:fe:96:fb: f0:72:25:62:0a:ab:44:a1:5e:61:65:71:8a:8b:f5: fc:92:37:57:93:8f:7a:d5:27:5b:ac:42:67:f9:9e: a4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:4E:3E:57:9B:7E:EF:DF:BD:9C:0B:90:3D:D1:ED:05:7C:B2:67:28 X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34302e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.40.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:67:f3:68:67:99:a8:2b:dd:25:88:0e:e4:91:6f:4c:b4:81: 32:c1:02:ef:c4:9a:cd:4e:7b:b5:a2:60:72:1a:50:a4:56:a2: 5a:58:2a:e7:65:f4:5a:32:ed:09:43:2c:85:74:27:a6:f0:21: c5:e8:24:a4:0b:9b:fb:d7:c8:35:61:c3:27:8f:ae:92:33:25: 75:89:c5:0e:ee:cf:1a:f8:74:c7:32:82:b8:dc:94:10:a8:eb: 00:c6:b3:0c:d6:ac:12:b3:83:aa:65:b3:6a:ca:a4:9c:e2:ad: fd:11:43:d4:a5:c7:24:2b:43:f6:37:15:fe:41:11:39:9d:b2: 1b:ff:b8:11:42:09:46:7d:1c:54:f2:a8:23:2f:f1:1e:59:c3: a2:dc:39:2a:86:5c:9f:b1:f6:22:8a:e0:b1:5d:db:3a:e9:5f: 7b:9b:f8:4b:ea:97:2a:a6:e6:06:0b:02:a1:f8:5e:7b:00:9b: c5:48:ca:23:4d:3c:d2:83:1d:a2:7c:1e:a2:e5:8b:89:95:40: db:fe:c3:2a:d7:78:cb:14:d0:6f:f4:ca:20:53:89:71:c3:73: 78:3f:39:b9:8d:53:15:cf:d4:4d:ce:3f:e5:90:05:04:ba:2d: 23:6d:bb:af:b7:35:db:8d:7b:83:d4:18:f3:8a:34:f2:6b:56: 67:59:07:d4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUB+Wbcm/ECQA/osHc90dyB5aY6GEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNTEwMDcwODU1MzhaFw0yNjEwMDYwOTAwMzhaMDMxMTAvBgNV BAMTKDcwNEUzRTU3OUI3RUVGREZCRDlDMEI5MDNERDFFRDA1N0NCMjY3MjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTRAU3OqmXa/NHr1qQWGX2fpqC F72IQwKGtbCmL+IKMv/uYV2D748K/dsXFo7d0YmjvoyAE6WyJVYRcp32E6ISAtKh 49w5LVdIqoRW5cXjL+PB+tL/YI72YEKk1v4TjH5juYB9hXjC5o2a55PlIhstTnuX AFtAQ4OeXv+noUNihIHkUWlpy8saadOptacgBdl2CoFT9Cpa2KmN+eeD8d0oV7W2 EOo47KHKXmivNCskpubKdkct1MtqxtdJywesqd3O5zGvM7UoDmMjajKGWKBKB28i rTwEQWx+f1t2wv6W+/ByJWIKq0ShXmFlcYqL9fySN1eTj3rVJ1usQmf5nqTvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcE4+V5t+79+9nAuQPdHtBXyyZygwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4KDANBgkqhkiG 9w0BAQsFAAOCAQEADGfzaGeZqCvdJYgO5JFvTLSBMsEC78SazU57taJgchpQpFai Wlgq52X0WjLtCUMshXQnpvAhxegkpAub+9fINWHDJ4+ukjMldYnFDu7PGvh0xzKC uNyUEKjrAMazDNasErODqmWzasqknOKt/RFD1KXHJCtD9jcV/kEROZ2yG/+4EUIJ Rn0cVPKoIy/xHlnDotw5KoZcn7H2IorgsV3bOulfe5v4S+qXKqbmBgsCofheewCb xUjKI0080oMdonweouWLiZVA2/7DKtd4yxTQb/TKIFOJccNzeD85uY1TFc/UTc4/ 5ZAFBLotI227r7c12417g9QY84o08mtWZ1kH1A== -----END CERTIFICATE-----Generated at Mon Oct 20 12:57:15 2025 by rpki-client