$ rpki-client -vvf repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36342e302f32342d3234203d3e203436303633.roa File: 32372e3131322e36342e302f32342d3234203d3e203436303633.roa (raw, json) Hash identifier: o9JWChuMppyDlwbbP2wl7a1BlqxO7U1pMNyySwQnepQ= Subject key identifier: 76:E2:D6:CC:29:EF:37:38:CA:D9:8D:04:4A:67:D4:A1:64:3F:D0:08 Certificate issuer: /CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Certificate serial: 46C9AFAC2C00C1B5B6576FC71824ACDD5B71F00E Authority key identifier: D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36342e302f32342d3234203d3e203436303633.roa Signing time: Fri 05 Sep 2025 13:00:01 +0000 ROA not before: Fri 05 Sep 2025 12:55:01 +0000 ROA not after: Fri 04 Sep 2026 13:00:01 +0000 asID: 46063 IP address blocks: 27.112.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 05:48:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:c9:af:ac:2c:00:c1:b5:b6:57:6f:c7:18:24:ac:dd:5b:71:f0:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Validity Not Before: Sep 5 12:55:01 2025 GMT Not After : Sep 4 13:00:01 2026 GMT Subject: CN=76E2D6CC29EF3738CAD98D044A67D4A1643FD008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9e:a8:b8:02:dc:38:4d:d6:af:62:a1:74:50: 70:6b:fd:47:cd:fb:c5:7a:1a:07:33:f1:18:b2:f2: b0:a3:46:a0:6c:b9:ed:2f:91:3f:7b:a7:ce:eb:b4: f6:4e:d3:cf:cc:26:9b:cd:1c:15:d5:ee:f1:75:2b: 8a:bf:c4:b3:6b:fe:32:32:e7:77:fe:ac:06:c1:d3: bf:a7:8d:dd:00:16:ce:15:21:a3:68:df:cb:d8:70: 07:43:d1:cc:cc:ce:2d:8a:cd:98:38:ab:88:d4:5b: bf:01:8b:cb:bc:30:a1:1a:2d:1e:f7:3f:f9:81:20: 70:8d:60:1a:10:85:bc:c9:7a:a1:06:9a:b0:de:5c: d8:b9:b9:a2:5a:62:24:fc:db:0d:94:24:2d:d2:e3: ce:98:20:e1:df:6c:c8:9a:62:02:01:ba:68:c4:8e: f4:d0:88:37:31:89:d6:d8:bc:ec:10:ef:f0:88:b7: d7:5f:e7:10:14:4c:ee:c2:b9:fe:e9:a7:92:d2:2a: 8c:6e:90:33:7e:a4:aa:9b:32:1f:28:8f:d3:55:79: 6d:7a:07:f6:fb:7c:4f:42:b3:28:fe:f0:eb:37:bc: e5:d1:37:db:72:6d:5f:26:8e:b5:37:d0:18:ec:be: 3f:1c:a2:91:f0:da:13:af:f1:ff:f4:3c:09:e1:f8: c6:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:E2:D6:CC:29:EF:37:38:CA:D9:8D:04:4A:67:D4:A1:64:3F:D0:08 X509v3 Authority Key Identifier: keyid:D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36342e302f32342d3234203d3e203436303633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.112.64.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:ab:50:57:75:87:8c:05:5c:c7:28:f5:06:30:15:75:79:27: 26:53:86:42:b1:5d:5f:bb:7c:1b:7d:6d:d3:dc:2e:e7:30:9b: fc:eb:b4:61:bc:63:b4:55:04:63:8d:0b:e6:4d:b4:68:29:a6: 80:60:63:85:b7:73:69:81:3f:f1:0e:da:59:3e:f8:92:6e:13: 83:4e:c1:7c:dc:3f:50:5b:c8:c5:a1:1b:57:27:c8:d4:64:0c: a4:90:c7:6a:6f:d9:4b:87:12:94:83:dd:50:e6:e2:f0:f6:8c: b2:f7:d4:c1:57:1c:71:ba:4c:9f:64:10:15:f9:3a:a0:33:0d: f5:5d:6f:00:68:d9:d7:22:56:47:88:c5:58:25:29:5f:d8:fe: 9c:80:4c:6b:2e:89:af:3c:fc:ee:26:9f:55:7b:34:ec:c2:27: b6:85:2c:45:b5:1e:50:8f:b3:75:c8:34:60:d6:3d:20:d2:75: e0:b3:82:d5:1c:37:9b:25:97:31:48:ec:ad:f5:04:4c:89:00: 94:98:cf:6c:b1:4f:59:4e:9f:b2:6f:98:5a:53:e9:6a:98:ff: 35:e5:70:ad:68:d1:77:b0:c5:02:1e:00:28:cb:c7:ed:2d:77: 15:bb:30:f6:c4:4e:29:a7:7a:a1:42:07:05:f6:c3:fc:e4:4e: 93:34:a8:24 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIURsmvrCwAwbW2V2/HGCSs3Vtx8A4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5 NTkyNTMxMjAeFw0yNTA5MDUxMjU1MDFaFw0yNjA5MDQxMzAwMDFaMDMxMTAvBgNV BAMTKDc2RTJENkNDMjlFRjM3MzhDQUQ5OEQwNDRBNjdENEExNjQzRkQwMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1nqi4Atw4TdavYqF0UHBr/UfN +8V6Ggcz8Riy8rCjRqBsue0vkT97p87rtPZO08/MJpvNHBXV7vF1K4q/xLNr/jIy 53f+rAbB07+njd0AFs4VIaNo38vYcAdD0czMzi2KzZg4q4jUW78Bi8u8MKEaLR73 P/mBIHCNYBoQhbzJeqEGmrDeXNi5uaJaYiT82w2UJC3S486YIOHfbMiaYgIBumjE jvTQiDcxidbYvOwQ7/CIt9df5xAUTO7Cuf7pp5LSKoxukDN+pKqbMh8oj9NVeW16 B/b7fE9Csyj+8Os3vOXRN9tybV8mjrU30Bjsvj8copHw2hOv8f/0PAnh+MaLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUduLWzCnvNzjK2Y0ESmfUoWQ/0AgwHwYDVR0j BBgwFoAU0qaryh74lyUQnL6l1C5oPJWSUxIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWQxZTE2YS0wYTRkLTQ0YjEtOTg0NS05YzBjZDdhNmYzOGYvMC9EMkE2QUJDQTFF Rjg5NzI1MTA5Q0JFQTVENDJFNjgzQzk1OTI1MzEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5NTky NTMxMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhZDFlMTZhLTBhNGQtNDRiMS05 ODQ1LTljMGNkN2E2ZjM4Zi8wLzMyMzcyZTMxMzEzMjJlMzYzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbcEAwDQYJKoZIhvcN AQELBQADggEBAG6rUFd1h4wFXMco9QYwFXV5JyZThkKxXV+7fBt9bdPcLucwm/zr tGG8Y7RVBGONC+ZNtGgppoBgY4W3c2mBP/EO2lk++JJuE4NOwXzcP1BbyMWhG1cn yNRkDKSQx2pv2UuHEpSD3VDm4vD2jLL31MFXHHG6TJ9kEBX5OqAzDfVdbwBo2dci VkeIxVglKV/Y/pyATGsuia88/O4mn1V7NOzCJ7aFLEW1HlCPs3XINGDWPSDSdeCz gtUcN5sllzFI7K31BEyJAJSYz2yxT1lOn7JvmFpT6WqY/zXlcK1o0XewxQIeACjL x+0tdxW7MPbETimneqFCBwX2w/zkTpM0qCQ= -----END CERTIFICATE-----Generated at Tue Oct 21 03:03:09 2025 by rpki-client