$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230322e34332e3131332e302f32342d3234203d3e203435333235.roa File: 3230322e34332e3131332e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: 8c4EuCrXR9USSkoSueUSWcZF3Vya08SYcqUOI9OfmOY= Subject key identifier: 26:3B:18:B2:9A:7E:86:23:D4:84:71:EB:33:85:76:4D:36:AB:0A:ED Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 08320A3E29092A0C5E1145C8025CD899D64A4B26 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230322e34332e3131332e302f32342d3234203d3e203435333235.roa Signing time: Tue 07 Oct 2025 08:00:07 +0000 ROA not before: Tue 07 Oct 2025 07:55:07 +0000 ROA not after: Tue 06 Oct 2026 08:00:07 +0000 asID: 45325 IP address blocks: 202.43.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:32:0a:3e:29:09:2a:0c:5e:11:45:c8:02:5c:d8:99:d6:4a:4b:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Oct 7 07:55:07 2025 GMT Not After : Oct 6 08:00:07 2026 GMT Subject: CN=263B18B29A7E8623D48471EB3385764D36AB0AED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:39:99:4d:83:41:15:54:cd:7d:96:88:6a:7b: 54:b5:d0:36:4c:bc:ef:b5:80:06:f1:60:ad:71:0a: f5:c0:e8:02:31:21:be:e1:4e:13:50:36:60:ae:e1: c2:ff:0b:3d:85:1d:a7:51:ec:54:9a:aa:ec:32:0f: 6c:73:c8:97:c0:03:36:e4:94:a4:a6:02:c0:ab:a9: 98:d6:ed:66:d6:b9:2d:3f:63:80:c8:8f:b8:cb:1a: 47:e3:42:f2:94:90:0a:f3:80:5d:b2:3f:52:81:9e: 1c:19:fc:ba:88:62:7b:75:04:23:9b:3f:ba:e5:bf: 14:a3:93:52:2d:ad:2b:c4:a9:bf:2c:dc:0c:f2:31: 8f:ee:88:fa:60:2f:c4:e4:41:d2:c1:ca:d3:47:c9: ec:51:a9:d3:06:05:14:b8:0a:66:cc:1a:a5:b1:8f: d1:f7:9c:f8:54:f7:7e:7e:e8:4a:0e:28:a8:54:9c: 4a:00:8b:29:16:79:dc:c0:cd:26:2e:8a:fe:73:35: 5f:4a:93:02:24:99:9f:a1:43:86:df:67:05:91:0c: 74:64:62:34:c4:f7:51:67:40:f0:73:1e:2e:83:9d: 0f:bf:64:e2:12:bf:ed:f7:b5:2a:f0:51:e7:8c:e6: ac:17:7e:66:8c:ca:b0:cb:98:a5:e8:cf:01:f0:57: 01:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:3B:18:B2:9A:7E:86:23:D4:84:71:EB:33:85:76:4D:36:AB:0A:ED X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230322e34332e3131332e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.113.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:c7:e6:a3:2a:c0:0a:04:01:36:c8:8f:d7:cd:71:5c:06:9e: 1f:77:30:b5:c7:ca:e7:6e:96:01:89:44:77:d6:54:72:d8:b9: 5c:75:55:c0:b4:1c:1b:fb:d3:90:96:47:ea:22:fc:3c:07:50: c0:dd:ae:f8:36:31:6b:12:d3:8e:ff:5c:72:83:4f:3c:4e:15: 5c:74:b5:de:49:35:d5:48:a1:30:46:4c:ac:b5:5b:f3:80:74: 45:f5:25:34:33:4f:d0:ff:2a:66:f3:c0:68:b9:cd:6e:81:eb: 76:ea:30:57:1c:2f:e5:e5:85:98:ca:1e:54:36:47:56:d9:06: 16:09:eb:67:e2:d3:61:94:54:19:d7:2c:17:67:8d:d9:17:20: 05:be:3a:97:39:8b:8b:82:17:9e:83:1a:8b:f1:ed:da:f6:c8: d1:a4:1e:a0:1f:6f:0e:07:fd:d6:3e:d3:11:f9:23:b7:49:22: 0d:48:16:27:52:31:df:4d:4b:2a:c6:bb:ef:e2:38:0a:4d:5c: 27:ca:18:0e:97:22:6a:42:4b:10:4c:34:b3:2c:1d:6a:a2:dd: 9e:49:38:ad:20:6d:ff:9d:78:0b:9e:f8:17:da:87:d5:d9:78: 15:eb:5b:16:a9:c2:e9:38:97:d8:cc:8c:93:f8:ac:58:44:3e: a2:52:d7:3c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCDIKPikJKgxeEUXIAlzYmdZKSyYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNTEwMDcwNzU1MDdaFw0yNjEwMDYwODAwMDdaMDMxMTAvBgNV BAMTKDI2M0IxOEIyOUE3RTg2MjNENDg0NzFFQjMzODU3NjREMzZBQjBBRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBOZlNg0EVVM19lohqe1S10DZM vO+1gAbxYK1xCvXA6AIxIb7hThNQNmCu4cL/Cz2FHadR7FSaquwyD2xzyJfAAzbk lKSmAsCrqZjW7WbWuS0/Y4DIj7jLGkfjQvKUkArzgF2yP1KBnhwZ/LqIYnt1BCOb P7rlvxSjk1ItrSvEqb8s3AzyMY/uiPpgL8TkQdLBytNHyexRqdMGBRS4CmbMGqWx j9H3nPhU935+6EoOKKhUnEoAiykWedzAzSYuiv5zNV9KkwIkmZ+hQ4bfZwWRDHRk YjTE91FnQPBzHi6DnQ+/ZOISv+33tSrwUeeM5qwXfmaMyrDLmKXozwHwVwEXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJjsYspp+hiPUhHHrM4V2TTarCu0wHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMyMzAzMjJlMzQzMzJlMzEzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorcTANBgkqhkiG 9w0BAQsFAAOCAQEAjcfmoyrACgQBNsiP181xXAaeH3cwtcfK526WAYlEd9ZUcti5 XHVVwLQcG/vTkJZH6iL8PAdQwN2u+DYxaxLTjv9ccoNPPE4VXHS13kk11UihMEZM rLVb84B0RfUlNDNP0P8qZvPAaLnNboHrduowVxwv5eWFmMoeVDZHVtkGFgnrZ+LT YZRUGdcsF2eN2RcgBb46lzmLi4IXnoMai/Ht2vbI0aQeoB9vDgf91j7TEfkjt0ki DUgWJ1Ix301LKsa77+I4Ck1cJ8oYDpciakJLEEw0sywdaqLdnkk4rSBt/514C574 F9qH1dl4FetbFqnC6TiX2MyMk/isWEQ+olLXPA== -----END CERTIFICATE-----Generated at Mon Oct 20 18:19:42 2025 by rpki-client