$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230332e33302e3235342e302f32342d3234203d3e203435333235.roa File: 3230332e33302e3235342e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: f0QuTjuXU3+PMwtOvyLhhE3F7fk0wnPs64pd29FWWiY= Subject key identifier: F0:ED:06:7D:86:28:69:7B:04:11:BD:D6:90:D3:04:EB:EB:5B:A5:F1 Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 6D096131DFA1368D411AE59114E68D63E7647A16 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230332e33302e3235342e302f32342d3234203d3e203435333235.roa Signing time: Tue 07 Oct 2025 08:00:06 +0000 ROA not before: Tue 07 Oct 2025 07:55:06 +0000 ROA not after: Tue 06 Oct 2026 08:00:06 +0000 asID: 45325 IP address blocks: 203.30.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:09:61:31:df:a1:36:8d:41:1a:e5:91:14:e6:8d:63:e7:64:7a:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Oct 7 07:55:06 2025 GMT Not After : Oct 6 08:00:06 2026 GMT Subject: CN=F0ED067D8628697B0411BDD690D304EBEB5BA5F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:36:bb:11:20:08:2c:c8:16:f3:52:c5:b9:38: ff:13:38:a2:f8:d2:2f:f0:e9:41:b6:da:09:9c:1a: 08:b3:f1:56:a6:c4:75:70:34:98:f6:dd:93:0c:3c: c0:67:62:1b:ac:02:3f:f3:f6:c8:00:1a:80:2f:bd: dd:f4:31:7a:86:24:56:cd:bb:69:a4:1b:2d:1c:1f: 41:58:c4:3a:1f:91:a7:b6:ef:40:52:53:4c:95:c2: 95:f6:fc:ec:fd:64:f2:2d:d7:bf:1c:ad:42:4d:6f: 50:36:49:90:2b:f4:f9:4b:67:ec:c4:5b:a1:35:e4: 63:60:22:6b:00:15:42:33:dc:d0:3d:c7:6f:5c:4c: 7a:54:0e:9d:8a:51:de:c1:17:eb:6c:3f:b5:bd:4e: 65:99:9a:6c:87:53:f2:2b:5e:77:f5:c0:56:7c:a2: 51:df:c4:13:92:b1:17:a6:de:ac:9f:85:bd:aa:1d: ec:27:1b:b1:9e:90:31:76:cc:e7:76:1b:24:c2:95: bc:0e:6b:a1:74:10:1a:fa:ac:08:d4:90:88:40:5a: 9c:7e:c8:10:05:9d:e3:f6:53:71:ab:2c:89:65:fb: 6c:76:81:d6:72:5c:69:14:dd:9c:2f:df:8f:56:b5: b7:b4:70:0c:c6:cc:b5:48:d3:60:87:65:11:87:a3: be:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:ED:06:7D:86:28:69:7B:04:11:BD:D6:90:D3:04:EB:EB:5B:A5:F1 X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230332e33302e3235342e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.30.254.0/24 Signature Algorithm: sha256WithRSAEncryption 26:8e:54:f8:91:fd:ba:d6:02:95:c5:d6:54:f7:b4:a5:25:3a: cb:4a:5f:e1:80:e5:9a:1e:a4:74:84:d6:9c:ad:33:b3:8c:02: bb:8e:ad:b0:1c:5f:0e:11:a6:f8:a6:b9:0d:30:7e:99:c9:2e: 62:72:c1:96:00:db:87:89:4d:4b:36:cb:2e:3f:4f:1c:a8:bb: eb:d4:4b:4b:a1:f7:a5:13:e8:58:8d:53:a8:9e:82:44:b1:2b: 8b:1d:b4:48:47:af:ab:18:e6:68:10:60:f3:4f:3c:7c:80:fd: 19:0d:4a:c1:0c:66:55:e3:d9:0a:10:84:3d:c0:20:71:aa:d0: 35:58:7b:95:64:61:a6:86:72:d3:18:b7:eb:d9:bb:b5:08:01: af:a9:b6:d9:df:62:81:19:67:2c:f0:bd:fd:cf:f0:14:a8:20: 29:e0:e2:bd:e4:9c:bf:0d:b1:41:b6:c7:a7:99:b8:b7:92:ad: 24:85:59:c6:e2:a2:5d:15:18:45:c8:c2:ff:f5:ac:c2:fc:41: 52:e0:68:db:8c:e2:79:d2:4b:bf:bc:6f:24:d6:5b:1a:20:aa: c7:24:48:6a:c4:e5:14:04:33:5b:86:79:59:48:2d:f9:ce:3e: f9:80:dc:67:06:23:65:ab:0c:b4:a3:78:d7:51:68:4d:e5:49: 00:2c:0f:94 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbQlhMd+hNo1BGuWRFOaNY+dkehYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNTEwMDcwNzU1MDZaFw0yNjEwMDYwODAwMDZaMDMxMTAvBgNV BAMTKEYwRUQwNjdEODYyODY5N0IwNDExQkRENjkwRDMwNEVCRUI1QkE1RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3NrsRIAgsyBbzUsW5OP8TOKL4 0i/w6UG22gmcGgiz8VamxHVwNJj23ZMMPMBnYhusAj/z9sgAGoAvvd30MXqGJFbN u2mkGy0cH0FYxDofkae270BSU0yVwpX2/Oz9ZPIt178crUJNb1A2SZAr9PlLZ+zE W6E15GNgImsAFUIz3NA9x29cTHpUDp2KUd7BF+tsP7W9TmWZmmyHU/IrXnf1wFZ8 olHfxBOSsRem3qyfhb2qHewnG7GekDF2zOd2GyTClbwOa6F0EBr6rAjUkIhAWpx+ yBAFneP2U3GrLIll+2x2gdZyXGkU3Zwv349Wtbe0cAzGzLVI02CHZRGHo75nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8O0GfYYoaXsEEb3WkNME6+tbpfEwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMyMzAzMzJlMzMzMDJlMzIzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMse/jANBgkqhkiG 9w0BAQsFAAOCAQEAJo5U+JH9utYClcXWVPe0pSU6y0pf4YDlmh6kdITWnK0zs4wC u46tsBxfDhGm+Ka5DTB+mckuYnLBlgDbh4lNSzbLLj9PHKi769RLS6H3pRPoWI1T qJ6CRLErix20SEevqxjmaBBg8088fID9GQ1KwQxmVePZChCEPcAgcarQNVh7lWRh poZy0xi369m7tQgBr6m22d9igRlnLPC9/c/wFKggKeDiveScvw2xQbbHp5m4t5Kt JIVZxuKiXRUYRcjC//WswvxBUuBo24ziedJLv7xvJNZbGiCqxyRIasTlFAQzW4Z5 WUgt+c4++YDcZwYjZasMtKN411FoTeVJACwPlA== -----END CERTIFICATE-----Generated at Mon Oct 20 12:55:52 2025 by rpki-client