$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34372e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e34372e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: pMSHdCGU3wSWW64VJ8Q+XCnRMyb8p81kTgkpP+Gwk14= Subject key identifier: C8:F8:87:F5:BB:9B:BE:C9:62:2C:C4:EB:B3:CA:5D:EB:CB:F0:FA:E0 Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 783B1ED8082450E4E649F2D0B508BF04F62BB5FC Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34372e302f32342d3234203d3e203435333235.roa Signing time: Tue 07 Oct 2025 10:00:02 +0000 ROA not before: Tue 07 Oct 2025 09:55:02 +0000 ROA not after: Tue 06 Oct 2026 10:00:02 +0000 asID: 45325 IP address blocks: 122.248.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:3b:1e:d8:08:24:50:e4:e6:49:f2:d0:b5:08:bf:04:f6:2b:b5:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Oct 7 09:55:02 2025 GMT Not After : Oct 6 10:00:02 2026 GMT Subject: CN=C8F887F5BB9BBEC9622CC4EBB3CA5DEBCBF0FAE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:26:fa:14:81:c2:b9:3e:4a:cf:85:34:88:ac: 8a:f1:ab:a3:81:a5:a6:99:48:80:03:32:c0:c8:55: d7:bf:47:57:53:de:e1:9f:80:d2:55:f5:f7:21:d5: a0:4a:f6:56:ae:3e:ae:8a:a9:ad:8f:ba:7e:39:9d: 7c:88:1a:45:7b:6f:19:a7:c5:89:b1:47:fd:48:a6: b9:57:ad:eb:11:c7:76:e1:af:11:a0:d9:27:6b:3c: 88:ef:81:54:e7:e0:83:5e:57:b6:a4:b3:cd:63:dd: 6b:4c:00:e7:d2:1c:9a:82:4b:b9:8d:6b:b2:bf:24: 8e:01:d8:07:52:70:b3:b9:88:99:39:46:67:d2:a9: 05:3a:6a:a8:9d:63:0c:1c:29:a4:74:9c:4c:85:af: 83:be:d9:e6:e9:f8:39:ca:fa:5a:a6:4a:46:09:42: 77:62:e4:45:5c:35:c0:d0:a8:f8:a0:4b:bf:2a:a7: fa:0e:b9:58:60:2c:5e:7f:72:ae:64:34:26:a8:1a: dc:e8:bf:cc:e4:bd:50:06:22:8b:d1:05:e9:df:b6: 99:6f:8f:28:0e:b3:81:e8:d7:2c:8e:31:84:61:23: ae:68:87:62:76:fd:37:0b:9c:ad:d0:7b:5f:61:29: e1:f8:36:ce:86:72:70:23:d4:1b:8b:7b:02:51:f5: d7:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:F8:87:F5:BB:9B:BE:C9:62:2C:C4:EB:B3:CA:5D:EB:CB:F0:FA:E0 X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34372e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.47.0/24 Signature Algorithm: sha256WithRSAEncryption 48:c9:67:d9:68:ef:2d:08:ba:ef:e2:67:ae:f2:83:72:73:10: e0:02:af:8a:a0:01:a4:65:b1:d6:1c:16:13:dc:43:90:2a:05: 40:2e:7d:0e:24:34:b3:62:8a:46:ee:9a:8f:7c:be:45:9b:e1: 67:00:61:b1:5d:b2:99:ad:91:54:83:2c:23:5f:ce:8a:e2:f6: d9:36:4a:2f:ba:21:dc:02:f0:bf:1d:1a:fc:82:95:da:44:07: ab:e6:ad:75:f1:0f:c4:6d:e5:a1:95:29:ac:73:7a:76:fd:e6: 27:77:b7:75:54:f2:c7:de:db:93:fb:e5:74:4a:72:61:a6:96: 0c:1a:bd:ef:be:ec:f3:58:8d:fa:fe:2d:06:d7:a9:d0:9d:e0: 60:c7:7f:49:90:1b:a1:05:89:15:83:ac:84:6e:e1:83:7e:94: f8:2d:ee:a7:e9:23:69:f1:2a:c7:74:1c:60:2d:57:fe:7b:2d: 0a:b3:be:5a:8f:f6:12:96:8a:a4:a5:3f:6f:61:5b:82:9c:65: e5:1a:44:c5:9a:18:44:f9:0e:b7:e3:8f:29:f4:fd:70:39:ee: 6f:5f:38:79:c2:0c:b7:41:8a:a7:90:da:ed:68:82:c1:5a:1d: 3a:93:81:af:17:f5:ac:1f:3c:1e:28:bc:ab:e1:bc:cf:90:ba: 61:8b:0b:89 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeDse2AgkUOTmSfLQtQi/BPYrtfwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNTEwMDcwOTU1MDJaFw0yNjEwMDYxMDAwMDJaMDMxMTAvBgNV BAMTKEM4Rjg4N0Y1QkI5QkJFQzk2MjJDQzRFQkIzQ0E1REVCQ0JGMEZBRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWJvoUgcK5PkrPhTSIrIrxq6OB paaZSIADMsDIVde/R1dT3uGfgNJV9fch1aBK9lauPq6Kqa2Pun45nXyIGkV7bxmn xYmxR/1IprlXresRx3bhrxGg2SdrPIjvgVTn4INeV7aks81j3WtMAOfSHJqCS7mN a7K/JI4B2AdScLO5iJk5RmfSqQU6aqidYwwcKaR0nEyFr4O+2ebp+DnK+lqmSkYJ Qndi5EVcNcDQqPigS78qp/oOuVhgLF5/cq5kNCaoGtzov8zkvVAGIovRBenftplv jygOs4Ho1yyOMYRhI65oh2J2/TcLnK3Qe19hKeH4Ns6GcnAj1BuLewJR9dcBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyPiH9bubvsliLMTrs8pd68vw+uAwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzNDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4LzANBgkqhkiG 9w0BAQsFAAOCAQEASMln2WjvLQi67+JnrvKDcnMQ4AKviqABpGWx1hwWE9xDkCoF QC59DiQ0s2KKRu6aj3y+RZvhZwBhsV2yma2RVIMsI1/OiuL22TZKL7oh3ALwvx0a /IKV2kQHq+atdfEPxG3loZUprHN6dv3mJ3e3dVTyx97bk/vldEpyYaaWDBq9777s 81iN+v4tBtep0J3gYMd/SZAboQWJFYOshG7hg36U+C3up+kjafEqx3QcYC1X/nst CrO+Wo/2EpaKpKU/b2Fbgpxl5RpExZoYRPkOt+OPKfT9cDnub184ecIMt0GKp5Da 7WiCwVodOpOBrxf1rB88Hii8q+G8z5C6YYsLiQ== -----END CERTIFICATE-----Generated at Mon Oct 20 18:20:09 2025 by rpki-client