$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34312e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e34312e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: VEDwBMu7e2mzL/h9CHSnsP+W8nFPBXkEhV06ak5Sn4k= Subject key identifier: D8:96:73:EF:FF:D3:BC:01:08:13:F5:A8:C4:69:F5:CF:C7:77:3C:BE Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 35A4B2D7888F5FADF802C84B129E3D4CDA501362 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34312e302f32342d3234203d3e203435333235.roa Signing time: Tue 07 Oct 2025 09:00:37 +0000 ROA not before: Tue 07 Oct 2025 08:55:37 +0000 ROA not after: Tue 06 Oct 2026 09:00:37 +0000 asID: 45325 IP address blocks: 122.248.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:a4:b2:d7:88:8f:5f:ad:f8:02:c8:4b:12:9e:3d:4c:da:50:13:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Oct 7 08:55:37 2025 GMT Not After : Oct 6 09:00:37 2026 GMT Subject: CN=D89673EFFFD3BC010813F5A8C469F5CFC7773CBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4f:28:43:c4:fc:44:a0:b5:e8:d8:b0:ce:9e: 11:39:bd:fd:7b:83:65:6f:56:4f:20:10:d0:8c:cd: 7d:b1:dc:a3:7c:6a:d0:26:87:3c:54:67:80:1d:00: 5e:3c:b6:b5:b0:2a:b6:3d:db:3e:73:0b:b7:7b:07: 36:72:c0:a1:72:71:33:53:b4:03:99:53:cd:07:50: b0:6b:8e:57:0e:88:f9:50:73:27:87:61:be:12:7a: 90:f5:42:cd:e8:21:ba:db:13:ea:26:30:eb:91:2e: 32:14:dc:bf:04:a6:b5:2b:34:ae:26:b9:36:bf:3c: bf:3a:45:1b:71:0d:2a:e6:60:c6:a7:5f:07:75:79: e5:12:96:eb:d0:ae:ad:76:cd:67:df:3d:eb:5e:e6: 4a:0b:83:67:9d:86:d3:63:45:be:6b:e0:cd:5c:69: d5:0c:47:4b:a3:03:d2:1e:29:e5:38:8f:a2:42:eb: e2:b3:e5:5c:9d:30:22:bf:ea:ee:1c:c8:95:49:cf: 22:b7:9a:e1:4c:da:47:d3:15:09:e4:55:19:01:04: 85:c7:0d:10:57:65:56:ba:5c:27:86:5e:12:31:8e: 89:84:28:1d:d3:95:93:40:5a:8b:a4:1f:e5:bd:09: 91:f7:af:00:a0:fe:de:7e:ad:f6:c5:75:ed:27:ba: 1d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:96:73:EF:FF:D3:BC:01:08:13:F5:A8:C4:69:F5:CF:C7:77:3C:BE X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34312e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.41.0/24 Signature Algorithm: sha256WithRSAEncryption 33:f1:2d:9d:2b:6c:a2:aa:0d:58:11:0f:8a:bb:20:5c:ac:7c: de:7a:a8:dc:00:e3:60:0e:60:3d:04:44:0b:ae:63:c1:b6:fb: c3:88:63:b7:e1:8d:33:c4:59:c3:fd:f7:4a:c7:a3:5e:48:85: 27:47:b9:51:29:e2:6f:e1:b4:30:15:bb:7c:4f:16:12:3e:21: f5:4b:1b:23:b4:a9:00:0a:c7:c3:c5:6b:23:a2:77:41:d4:7b: 80:cf:c8:55:81:8e:a4:af:0f:2c:1a:2f:c5:8d:7f:1b:a0:db: 6d:74:0b:e8:6f:57:87:3e:ed:18:d5:59:37:06:e6:83:88:13: 8e:bc:b5:d1:b3:ff:75:93:3f:9b:39:69:ff:f6:79:6c:30:79: f3:8d:31:2f:40:38:b9:43:0b:d5:a7:a6:32:4c:5b:7a:07:e6: 01:60:36:43:2d:49:15:94:aa:e1:85:25:9f:92:12:ad:38:a7: 7d:1d:1f:f8:bb:77:71:b5:2b:a1:16:5c:78:7a:fe:74:96:6d: 1c:26:ce:61:07:67:e1:a9:0d:39:bd:2d:20:c4:f2:28:a6:86: 16:74:86:40:96:88:ca:1a:a5:c8:58:2c:d1:8b:b4:be:b7:66: a6:23:e0:ca:77:08:0e:66:55:aa:77:15:9c:c2:0a:8e:4c:7a: 72:79:d4:9d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNaSy14iPX634AshLEp49TNpQE2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNTEwMDcwODU1MzdaFw0yNjEwMDYwOTAwMzdaMDMxMTAvBgNV BAMTKEQ4OTY3M0VGRkZEM0JDMDEwODEzRjVBOEM0NjlGNUNGQzc3NzNDQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/TyhDxPxEoLXo2LDOnhE5vf17 g2VvVk8gENCMzX2x3KN8atAmhzxUZ4AdAF48trWwKrY92z5zC7d7BzZywKFycTNT tAOZU80HULBrjlcOiPlQcyeHYb4SepD1Qs3oIbrbE+omMOuRLjIU3L8EprUrNK4m uTa/PL86RRtxDSrmYManXwd1eeUSluvQrq12zWffPete5koLg2edhtNjRb5r4M1c adUMR0ujA9IeKeU4j6JC6+Kz5VydMCK/6u4cyJVJzyK3muFM2kfTFQnkVRkBBIXH DRBXZVa6XCeGXhIxjomEKB3TlZNAWoukH+W9CZH3rwCg/t5+rfbFde0nuh3fAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2JZz7//TvAEIE/WoxGn1z8d3PL4wHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4KTANBgkqhkiG 9w0BAQsFAAOCAQEAM/EtnStsoqoNWBEPirsgXKx83nqo3ADjYA5gPQREC65jwbb7 w4hjt+GNM8RZw/33SsejXkiFJ0e5USnib+G0MBW7fE8WEj4h9UsbI7SpAArHw8Vr I6J3QdR7gM/IVYGOpK8PLBovxY1/G6DbbXQL6G9Xhz7tGNVZNwbmg4gTjry10bP/ dZM/mzlp//Z5bDB5840xL0A4uUML1aemMkxbegfmAWA2Qy1JFZSq4YUln5ISrTin fR0f+Lt3cbUroRZceHr+dJZtHCbOYQdn4akNOb0tIMTyKKaGFnSGQJaIyhqlyFgs 0Yu0vrdmpiPgyncIDmZVqncVnMIKjkx6cnnUnQ== -----END CERTIFICATE-----Generated at Mon Oct 20 12:56:28 2025 by rpki-client