$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230322e34332e3131322e302f32342d3234203d3e203435333235.roa File: 3230322e34332e3131322e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: YfbB3z09y4MNoTi1HjR4+z9IdxMYyBM89bj8p3WiTw4= Subject key identifier: 4C:32:E9:A6:E7:FC:2A:B3:FD:80:3A:49:AA:10:93:2C:54:A7:8A:B6 Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 7B5D44195FE47AACFE6AF4920B6992ECDAF53B57 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230322e34332e3131322e302f32342d3234203d3e203435333235.roa Signing time: Tue 07 Oct 2025 08:00:07 +0000 ROA not before: Tue 07 Oct 2025 07:55:07 +0000 ROA not after: Tue 06 Oct 2026 08:00:07 +0000 asID: 45325 IP address blocks: 202.43.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:5d:44:19:5f:e4:7a:ac:fe:6a:f4:92:0b:69:92:ec:da:f5:3b:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Oct 7 07:55:07 2025 GMT Not After : Oct 6 08:00:07 2026 GMT Subject: CN=4C32E9A6E7FC2AB3FD803A49AA10932C54A78AB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5d:58:96:dd:bd:0e:5d:64:e4:92:95:8f:47: fb:8a:c2:03:d2:cd:2f:46:f1:2b:e0:40:36:0a:72: 70:bc:06:b4:c4:e6:e6:d9:33:92:5e:3f:a2:bc:a7: c7:c2:ea:dd:6b:8e:c0:35:00:ce:03:8d:bf:07:2b: 38:2c:13:6a:e8:e8:94:20:45:37:2c:16:96:a0:fd: c6:67:63:ec:68:43:df:b5:67:ea:27:f8:fe:5a:cf: e0:af:e7:4d:91:12:3f:8c:6b:11:b1:28:8c:63:d1: 4a:5e:b8:bd:8f:bd:3e:06:b0:51:92:93:47:b3:67: 60:b2:b9:91:9a:ab:14:35:87:f3:43:61:e4:4c:b1: 07:9d:df:c8:88:c4:73:f4:b0:a5:e0:99:68:e5:82: a0:d4:b3:c1:3a:06:f5:eb:ca:6b:86:cf:16:5d:71: a6:8c:0f:68:a9:cc:5b:e9:8b:39:a5:91:0c:f1:81: d5:7d:4d:91:b3:8d:c8:f3:36:c6:66:d8:ca:08:e8: b1:ce:ce:8f:85:1c:4c:68:f7:6f:25:43:b2:ea:93: e3:34:54:5e:e8:fa:8e:f8:81:cb:8f:b3:63:ba:50: 04:53:d0:4f:f0:7b:e8:f3:51:b1:ac:5c:92:a6:66: 55:50:90:ba:92:61:45:30:75:46:69:c8:a2:16:07: e4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:32:E9:A6:E7:FC:2A:B3:FD:80:3A:49:AA:10:93:2C:54:A7:8A:B6 X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230322e34332e3131322e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.112.0/24 Signature Algorithm: sha256WithRSAEncryption 33:a7:38:6c:1d:35:83:17:a1:2d:32:20:b1:42:ce:b3:35:85: b8:79:d4:27:18:0e:96:82:4e:61:f2:da:ab:25:99:a5:ed:03: 2f:c3:aa:76:ef:ea:ba:e2:aa:6c:d2:f5:91:6c:d3:22:9c:c5: e7:89:04:83:05:34:10:09:86:bd:d3:46:5f:54:bd:47:94:ca: d6:9a:1d:b1:55:58:e3:d8:6a:ef:a3:1d:b0:de:8d:cf:04:b3: eb:63:9d:17:b9:a1:70:54:94:c9:a5:f6:7f:d3:2a:66:b4:0e: c8:5a:1d:9f:03:1f:ca:f7:c8:29:8c:dd:56:20:50:e5:19:d9: 2c:43:40:77:ed:ec:6c:6b:6e:c5:23:e9:db:ac:92:10:b2:f4: cb:a7:60:ec:47:04:a6:60:56:d0:d3:b0:9f:b8:6d:46:81:2f: a0:b1:77:12:c2:67:e3:ff:ce:8b:54:00:7e:86:38:cf:7f:77: 4b:e8:59:1b:d9:d3:b5:13:a4:69:38:c1:68:47:ba:00:1b:1d: ad:5f:82:b9:6e:86:ea:61:15:62:6a:ca:d3:f0:94:64:4a:46: 09:ee:27:d6:78:ff:fa:fe:c5:d8:87:c8:93:59:4f:24:4d:61: 66:54:93:57:46:89:8e:84:be:d6:e8:ea:af:67:0f:fe:a9:f4: bf:eb:0f:a0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUe11EGV/keqz+avSSC2mS7Nr1O1cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNTEwMDcwNzU1MDdaFw0yNjEwMDYwODAwMDdaMDMxMTAvBgNV BAMTKDRDMzJFOUE2RTdGQzJBQjNGRDgwM0E0OUFBMTA5MzJDNTRBNzhBQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAXViW3b0OXWTkkpWPR/uKwgPS zS9G8SvgQDYKcnC8BrTE5ubZM5JeP6K8p8fC6t1rjsA1AM4Djb8HKzgsE2ro6JQg RTcsFpag/cZnY+xoQ9+1Z+on+P5az+Cv502REj+MaxGxKIxj0UpeuL2PvT4GsFGS k0ezZ2CyuZGaqxQ1h/NDYeRMsQed38iIxHP0sKXgmWjlgqDUs8E6BvXrymuGzxZd caaMD2ipzFvpizmlkQzxgdV9TZGzjcjzNsZm2MoI6LHOzo+FHExo928lQ7Lqk+M0 VF7o+o74gcuPs2O6UART0E/we+jzUbGsXJKmZlVQkLqSYUUwdUZpyKIWB+QpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTDLppuf8KrP9gDpJqhCTLFSnirYwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMyMzAzMjJlMzQzMzJlMzEzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorcDANBgkqhkiG 9w0BAQsFAAOCAQEAM6c4bB01gxehLTIgsULOszWFuHnUJxgOloJOYfLaqyWZpe0D L8Oqdu/quuKqbNL1kWzTIpzF54kEgwU0EAmGvdNGX1S9R5TK1podsVVY49hq76Md sN6NzwSz62OdF7mhcFSUyaX2f9MqZrQOyFodnwMfyvfIKYzdViBQ5RnZLENAd+3s bGtuxSPp26ySELL0y6dg7EcEpmBW0NOwn7htRoEvoLF3EsJn4//Oi1QAfoY4z393 S+hZG9nTtROkaTjBaEe6ABsdrV+CuW6G6mEVYmrK0/CUZEpGCe4n1nj/+v7F2IfI k1lPJE1hZlSTV0aJjoS+1ujqr2cP/qn0v+sPoA== -----END CERTIFICATE-----Generated at Mon Oct 20 18:15:37 2025 by rpki-client