$ rpki-client -vvf repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36382e302f32342d3234203d3e203436303633.roa File: 32372e3131322e36382e302f32342d3234203d3e203436303633.roa (raw, json) Hash identifier: 6MS+hpY8AAAW2vT3UGxha7ncda+Mv46TSI1kZZNVt4E= Subject key identifier: 61:99:82:00:D1:57:65:EC:6A:6A:A2:AD:9B:0C:DC:50:B0:3A:F9:03 Certificate issuer: /CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Certificate serial: 114FC2B846C03EC84502C5971FB2C8F7361A6AD8 Authority key identifier: D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36382e302f32342d3234203d3e203436303633.roa Signing time: Fri 05 Sep 2025 13:00:01 +0000 ROA not before: Fri 05 Sep 2025 12:55:01 +0000 ROA not after: Fri 04 Sep 2026 13:00:01 +0000 asID: 46063 IP address blocks: 27.112.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 18:57:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:4f:c2:b8:46:c0:3e:c8:45:02:c5:97:1f:b2:c8:f7:36:1a:6a:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Validity Not Before: Sep 5 12:55:01 2025 GMT Not After : Sep 4 13:00:01 2026 GMT Subject: CN=61998200D15765EC6A6AA2AD9B0CDC50B03AF903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ef:4d:86:68:f7:c7:7d:57:4b:22:7e:ad:d1: 25:9d:23:dc:9e:3f:46:1d:e5:7f:51:9d:79:b5:55: 64:10:cd:79:4e:8d:c8:53:7e:81:dd:69:7e:7a:98: c5:3b:48:dd:fe:be:6d:7d:dd:39:b5:f3:a8:e9:ae: ac:91:13:6c:a1:89:5c:f1:bf:19:2b:f9:a3:ce:11: 11:83:9c:31:7c:69:c4:ba:20:9b:04:93:55:be:64: f9:36:2a:b6:e8:18:f3:61:10:91:3a:14:5f:da:1c: f2:6d:a7:95:fa:4c:1a:32:c3:0c:b5:60:16:39:f1: c8:d6:d8:7f:8c:15:9c:92:1d:86:70:b7:2e:03:69: c1:5c:11:5d:89:09:1c:ae:6a:d3:b2:c6:b3:97:75: 5c:70:6d:d8:62:1f:be:9b:08:d5:0f:7b:ec:91:c8: 9b:9d:98:3c:06:40:b0:9f:21:00:90:ec:fb:e6:a0: 9b:b8:bb:e1:97:cf:6b:a8:cb:1e:02:7e:4d:78:7e: e5:48:0c:05:bb:dd:71:e2:99:87:f7:2f:56:07:a6: 91:a7:fd:e6:12:30:59:32:62:b1:63:4e:21:48:cf: 50:34:c1:57:58:0d:70:09:74:dd:1a:a4:58:52:58: 47:70:ca:ff:85:2e:93:26:3e:f2:53:db:b2:33:64: 46:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:99:82:00:D1:57:65:EC:6A:6A:A2:AD:9B:0C:DC:50:B0:3A:F9:03 X509v3 Authority Key Identifier: keyid:D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36382e302f32342d3234203d3e203436303633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.112.68.0/24 Signature Algorithm: sha256WithRSAEncryption 62:9f:2d:c7:f1:cc:e3:86:ea:df:8e:0c:2c:34:32:d9:20:d4: f7:2a:6d:61:c0:d6:08:59:07:35:fb:5e:6c:d1:cd:d9:a7:57: 47:81:c0:13:29:e4:fd:10:6b:eb:14:85:10:a0:08:89:0f:81: 23:a7:47:40:9c:dd:7c:f8:25:89:a3:b4:5f:50:de:a7:08:6e: 65:42:d4:a4:de:ed:4a:96:5f:f3:f4:85:7f:60:b4:f7:d2:48: 33:5f:a4:3c:6c:ef:47:84:5c:4e:6c:5c:69:dc:85:9a:73:65: e6:09:63:2f:43:e2:b6:7b:84:4a:89:f1:e1:f6:ee:f4:3e:72: 8d:26:bb:a6:66:b9:4e:f6:e4:a3:81:4d:85:e5:cf:e5:cb:1e: db:0a:e9:5b:1b:65:a3:c9:07:34:f8:11:ff:97:75:19:69:52: 8a:37:fe:d3:57:17:a1:8e:52:0a:c0:a8:9d:72:54:7c:9c:b6: 19:6f:17:8a:b1:1c:8e:c0:79:cf:fb:c8:e7:0b:d9:f7:f0:ce: 29:b4:6c:ad:70:63:a4:d6:61:1a:3e:d3:0b:4d:29:1c:d6:b5: 1a:df:91:a7:ae:df:d0:2a:d5:d8:c2:44:f4:97:4e:16:fc:98: b4:b9:0e:96:38:64:5d:f5:ea:cd:52:3a:f2:58:cc:1e:0a:2d: 41:cc:32:3e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUEU/CuEbAPshFAsWXH7LI9zYaatgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5 NTkyNTMxMjAeFw0yNTA5MDUxMjU1MDFaFw0yNjA5MDQxMzAwMDFaMDMxMTAvBgNV BAMTKDYxOTk4MjAwRDE1NzY1RUM2QTZBQTJBRDlCMENEQzUwQjAzQUY5MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk702GaPfHfVdLIn6t0SWdI9ye P0Yd5X9RnXm1VWQQzXlOjchTfoHdaX56mMU7SN3+vm193Tm186jprqyRE2yhiVzx vxkr+aPOERGDnDF8acS6IJsEk1W+ZPk2KrboGPNhEJE6FF/aHPJtp5X6TBoywwy1 YBY58cjW2H+MFZySHYZwty4DacFcEV2JCRyuatOyxrOXdVxwbdhiH76bCNUPe+yR yJudmDwGQLCfIQCQ7PvmoJu4u+GXz2uoyx4Cfk14fuVIDAW73XHimYf3L1YHppGn /eYSMFkyYrFjTiFIz1A0wVdYDXAJdN0apFhSWEdwyv+FLpMmPvJT27IzZEaXAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUYZmCANFXZexqaqKtmwzcULA6+QMwHwYDVR0j BBgwFoAU0qaryh74lyUQnL6l1C5oPJWSUxIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWQxZTE2YS0wYTRkLTQ0YjEtOTg0NS05YzBjZDdhNmYzOGYvMC9EMkE2QUJDQTFF Rjg5NzI1MTA5Q0JFQTVENDJFNjgzQzk1OTI1MzEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5NTky NTMxMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhZDFlMTZhLTBhNGQtNDRiMS05 ODQ1LTljMGNkN2E2ZjM4Zi8wLzMyMzcyZTMxMzEzMjJlMzYzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbcEQwDQYJKoZIhvcN AQELBQADggEBAGKfLcfxzOOG6t+ODCw0Mtkg1PcqbWHA1ghZBzX7XmzRzdmnV0eB wBMp5P0Qa+sUhRCgCIkPgSOnR0Cc3Xz4JYmjtF9Q3qcIbmVC1KTe7UqWX/P0hX9g tPfSSDNfpDxs70eEXE5sXGnchZpzZeYJYy9D4rZ7hEqJ8eH27vQ+co0mu6ZmuU72 5KOBTYXlz+XLHtsK6VsbZaPJBzT4Ef+XdRlpUoo3/tNXF6GOUgrAqJ1yVHycthlv F4qxHI7Aec/7yOcL2ffwzim0bK1wY6TWYRo+0wtNKRzWtRrfkaeu39Aq1djCRPSX Thb8mLS5DpY4ZF316s1SOvJYzB4KLUHMMj4= -----END CERTIFICATE-----Generated at Mon Oct 20 15:50:43 2025 by rpki-client