$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230332e33302e3235352e302f32342d3234203d3e203435333235.roa File: 3230332e33302e3235352e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: xUdwOu6GtGdzxItV3iA1A5hAD2Ey5dnmQ19p3DcRu10= Subject key identifier: C8:67:AB:D0:6C:1B:63:67:1A:A1:02:8E:B3:19:85:0F:13:23:9F:28 Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 607915E33964328058135B014124A92EDBBAC72C Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230332e33302e3235352e302f32342d3234203d3e203435333235.roa Signing time: Tue 07 Oct 2025 08:00:06 +0000 ROA not before: Tue 07 Oct 2025 07:55:06 +0000 ROA not after: Tue 06 Oct 2026 08:00:06 +0000 asID: 45325 IP address blocks: 203.30.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:79:15:e3:39:64:32:80:58:13:5b:01:41:24:a9:2e:db:ba:c7:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Oct 7 07:55:06 2025 GMT Not After : Oct 6 08:00:06 2026 GMT Subject: CN=C867ABD06C1B63671AA1028EB319850F13239F28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2e:1c:b3:28:3f:3b:9a:63:c8:b2:80:fc:1a: 9b:79:a8:e0:f1:bf:ac:85:e0:b9:30:58:03:8c:92: 7c:7a:97:c1:c6:74:ea:ba:bd:c4:b5:f7:90:65:28: 35:fc:bb:3f:9a:bb:c2:c5:64:0f:a4:4b:db:1e:ac: 96:d5:6e:f1:f7:72:a9:53:45:0a:de:5d:4d:2d:02: 0f:3a:ec:44:b2:a8:96:94:1b:67:ef:a3:d1:00:fe: 90:15:14:da:be:f1:3e:ce:d8:18:cb:55:79:0f:4f: 29:37:31:bf:24:5d:76:1c:09:a9:f6:d9:b6:2e:f7: ba:c8:c2:66:2a:cc:9f:28:c0:b9:7b:f9:37:0e:6a: f1:40:1e:da:92:1e:25:f8:3a:9f:63:53:b1:33:84: d4:91:1e:6d:18:88:a6:37:31:e9:b4:91:be:ea:83: 65:50:c3:94:31:01:d8:0a:6d:79:ee:b5:27:f0:aa: d4:22:dd:32:37:59:4c:87:2e:06:7a:55:65:37:05: c3:75:3c:93:96:15:fe:61:b8:a0:da:a7:50:8a:12: 44:1c:3f:ef:d9:a3:6a:d1:a4:3a:c3:4a:5c:b8:0a: fd:fe:11:2c:86:9b:02:64:3b:b7:f3:c5:50:7f:d8: d0:83:c4:1a:1b:1c:2f:f3:64:19:65:77:19:85:99: b1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:67:AB:D0:6C:1B:63:67:1A:A1:02:8E:B3:19:85:0F:13:23:9F:28 X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230332e33302e3235352e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.30.255.0/24 Signature Algorithm: sha256WithRSAEncryption 95:ad:0a:00:1b:68:23:9b:43:c6:7b:5d:36:7d:47:9a:ff:eb: 86:e2:5e:6b:8e:44:42:e4:ea:bb:4d:a1:ab:16:93:a2:ca:66: 01:03:19:04:ae:4f:5b:84:bc:a1:b0:49:75:81:1d:79:44:33: 6c:a1:f8:84:81:0c:23:fd:c9:ec:c3:6d:b3:55:d6:48:d4:92: ed:bd:a3:09:b2:29:d4:2a:71:88:53:e8:fe:e9:48:0c:4b:c7: 1d:8b:80:de:bc:38:40:d6:b3:19:58:36:4b:be:47:fb:7b:e8: ca:d7:46:53:31:3f:d0:97:75:d4:74:8d:90:46:cb:6a:54:13: a7:ec:bf:17:bd:80:d5:e7:34:13:07:d0:5b:ef:d2:c4:fe:19: 6a:62:8c:a3:f9:4b:f9:44:b9:50:b3:e6:0a:81:51:70:90:d9: 43:91:b0:cb:92:6e:06:e1:e6:a2:cc:72:7e:c3:64:c7:19:07: be:66:6a:16:2f:53:6c:22:86:04:c0:1b:fa:40:91:2f:69:39: be:0f:8d:50:91:2c:ab:a2:91:29:4e:5e:2b:f3:0a:6f:92:7b: b2:ff:72:0a:4a:a6:8e:92:2b:25:96:bd:e8:0a:1e:64:ae:3a: 29:94:5d:76:6a:ab:c4:4b:fd:55:91:4f:c6:24:b9:fa:c3:37: c0:4c:1a:32 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYHkV4zlkMoBYE1sBQSSpLtu6xywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNTEwMDcwNzU1MDZaFw0yNjEwMDYwODAwMDZaMDMxMTAvBgNV BAMTKEM4NjdBQkQwNkMxQjYzNjcxQUExMDI4RUIzMTk4NTBGMTMyMzlGMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgLhyzKD87mmPIsoD8Gpt5qODx v6yF4LkwWAOMknx6l8HGdOq6vcS195BlKDX8uz+au8LFZA+kS9serJbVbvH3cqlT RQreXU0tAg867ESyqJaUG2fvo9EA/pAVFNq+8T7O2BjLVXkPTyk3Mb8kXXYcCan2 2bYu97rIwmYqzJ8owLl7+TcOavFAHtqSHiX4Op9jU7EzhNSRHm0YiKY3Mem0kb7q g2VQw5QxAdgKbXnutSfwqtQi3TI3WUyHLgZ6VWU3BcN1PJOWFf5huKDap1CKEkQc P+/Zo2rRpDrDSly4Cv3+ESyGmwJkO7fzxVB/2NCDxBobHC/zZBlldxmFmbGxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyGer0GwbY2caoQKOsxmFDxMjnygwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMyMzAzMzJlMzMzMDJlMzIzNTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMse/zANBgkqhkiG 9w0BAQsFAAOCAQEAla0KABtoI5tDxntdNn1Hmv/rhuJea45EQuTqu02hqxaTospm AQMZBK5PW4S8obBJdYEdeUQzbKH4hIEMI/3J7MNts1XWSNSS7b2jCbIp1CpxiFPo /ulIDEvHHYuA3rw4QNazGVg2S75H+3voytdGUzE/0Jd11HSNkEbLalQTp+y/F72A 1ec0EwfQW+/SxP4ZamKMo/lL+US5ULPmCoFRcJDZQ5Gwy5JuBuHmosxyfsNkxxkH vmZqFi9TbCKGBMAb+kCRL2k5vg+NUJEsq6KRKU5eK/MKb5J7sv9yCkqmjpIrJZa9 6AoeZK46KZRddmqrxEv9VZFPxiS5+sM3wEwaMg== -----END CERTIFICATE-----Generated at Mon Oct 20 20:43:21 2025 by rpki-client