$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34332e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e34332e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: TzoAuOSZ6mXbYFD7JpUog8X7cU+aL4pu97WqgSsQlww= Subject key identifier: DA:2B:8F:C6:9D:13:53:DD:A1:BB:7C:59:E5:68:C0:18:B7:DF:DB:DF Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 3D8C2175B5E8E657061E01C39C8BD238807FD1C6 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34332e302f32342d3234203d3e203435333235.roa Signing time: Tue 07 Oct 2025 09:00:38 +0000 ROA not before: Tue 07 Oct 2025 08:55:38 +0000 ROA not after: Tue 06 Oct 2026 09:00:38 +0000 asID: 45325 IP address blocks: 122.248.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:8c:21:75:b5:e8:e6:57:06:1e:01:c3:9c:8b:d2:38:80:7f:d1:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Oct 7 08:55:38 2025 GMT Not After : Oct 6 09:00:38 2026 GMT Subject: CN=DA2B8FC69D1353DDA1BB7C59E568C018B7DFDBDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:17:91:53:4f:f6:b2:b8:6c:95:b3:58:f4:91: 9b:ba:20:6e:7d:8e:83:8d:2e:f8:c1:d6:17:21:bc: 4e:b6:e3:e3:d5:23:22:6d:69:c0:7b:4e:3a:b6:89: e5:3f:eb:a5:25:d8:26:35:c4:e1:48:b0:5b:72:ec: 41:26:a3:80:09:93:e1:74:9a:d5:3f:b4:9c:bf:a0: e7:13:8c:33:98:a2:72:0d:01:83:7e:1c:d3:58:f2: 4e:9b:8d:03:ce:98:05:45:c6:07:a1:ce:0d:ef:8a: e4:cf:f5:a8:ac:f0:d9:6c:c7:c2:eb:d1:83:e5:b9: 38:33:e2:32:d3:57:f3:30:58:32:9c:8d:63:a5:8f: fa:b2:02:20:c7:ee:52:54:e1:7d:c7:75:1f:9c:c6: 88:db:94:2a:2f:b8:47:b1:4b:cf:5c:9a:41:bc:fa: eb:8d:2d:f6:b1:fd:e7:9f:1f:13:9e:e2:5d:aa:20: 38:3b:88:ef:d5:a9:04:c8:aa:40:44:00:f8:77:23: f6:8e:d6:6f:66:25:32:0c:47:91:48:2a:d5:6c:45: 9c:ec:2f:ce:44:bb:ed:78:18:a3:cc:52:17:72:0b: e4:e0:0f:b0:03:d0:5d:e0:99:2e:ea:21:b3:38:a5: 1a:be:0a:07:46:88:a5:72:bb:28:d2:46:ec:ed:d1: 57:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:2B:8F:C6:9D:13:53:DD:A1:BB:7C:59:E5:68:C0:18:B7:DF:DB:DF X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34332e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.43.0/24 Signature Algorithm: sha256WithRSAEncryption 56:1e:c1:d0:2d:7d:1a:82:ba:7c:6e:ef:fb:34:62:15:62:ee: e9:17:aa:51:94:7c:da:94:80:fa:20:17:65:f9:ee:6a:f3:ef: 7f:31:e0:4c:78:b3:79:90:4b:95:2b:89:e9:07:da:0c:26:2f: 55:e3:83:ac:30:c3:b3:44:c5:74:c2:33:63:3d:1d:f5:af:a2: f2:f4:24:db:e6:3a:fd:53:a2:a1:36:d5:a2:a8:70:32:ef:a7: 3f:29:ef:ae:81:07:ad:67:22:24:87:f3:53:72:03:9f:71:79: 18:0a:9b:cd:ea:03:6c:8d:e8:c3:44:a1:f4:ab:b1:40:75:33: 49:5e:6d:72:d3:39:39:26:a1:bf:7c:d3:db:d3:8f:0a:49:3e: 70:04:c8:27:94:44:50:fb:16:ff:90:90:b0:dd:53:c1:3a:8e: ec:c1:a1:fb:98:31:1d:c3:76:0d:64:fb:d1:1c:fc:20:59:d5: d3:31:bc:87:40:9d:9e:8c:4b:87:e7:9d:90:3e:ef:4c:ac:d3: 0c:4d:3f:ad:5f:c9:fd:19:68:6e:47:50:49:05:b8:da:9a:36: 3e:70:d2:a5:fe:a1:ae:69:68:38:fe:db:38:19:08:76:5f:21: 6d:4f:1d:c4:c3:63:a5:80:f1:13:37:89:d3:ed:aa:2b:19:16: da:44:fc:2f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPYwhdbXo5lcGHgHDnIvSOIB/0cYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNTEwMDcwODU1MzhaFw0yNjEwMDYwOTAwMzhaMDMxMTAvBgNV BAMTKERBMkI4RkM2OUQxMzUzRERBMUJCN0M1OUU1NjhDMDE4QjdERkRCREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRF5FTT/ayuGyVs1j0kZu6IG59 joONLvjB1hchvE624+PVIyJtacB7Tjq2ieU/66Ul2CY1xOFIsFty7EEmo4AJk+F0 mtU/tJy/oOcTjDOYonINAYN+HNNY8k6bjQPOmAVFxgehzg3viuTP9ais8Nlsx8Lr 0YPluTgz4jLTV/MwWDKcjWOlj/qyAiDH7lJU4X3HdR+cxojblCovuEexS89cmkG8 +uuNLfax/eefHxOe4l2qIDg7iO/VqQTIqkBEAPh3I/aO1m9mJTIMR5FIKtVsRZzs L85Eu+14GKPMUhdyC+TgD7AD0F3gmS7qIbM4pRq+CgdGiKVyuyjSRuzt0VfDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2iuPxp0TU92hu3xZ5WjAGLff298wHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzNDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4KzANBgkqhkiG 9w0BAQsFAAOCAQEAVh7B0C19GoK6fG7v+zRiFWLu6ReqUZR82pSA+iAXZfnuavPv fzHgTHizeZBLlSuJ6QfaDCYvVeODrDDDs0TFdMIzYz0d9a+i8vQk2+Y6/VOioTbV oqhwMu+nPynvroEHrWciJIfzU3IDn3F5GAqbzeoDbI3ow0Sh9KuxQHUzSV5tctM5 OSahv3zT29OPCkk+cATIJ5REUPsW/5CQsN1TwTqO7MGh+5gxHcN2DWT70Rz8IFnV 0zG8h0CdnoxLh+edkD7vTKzTDE0/rV/J/RlobkdQSQW42po2PnDSpf6hrmloOP7b OBkIdl8hbU8dxMNjpYDxEzeJ0+2qKxkW2kT8Lw== -----END CERTIFICATE-----Generated at Mon Oct 20 18:19:14 2025 by rpki-client