$ rpki-client -vvf repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36392e302f32342d3234203d3e203436303633.roa File: 32372e3131322e36392e302f32342d3234203d3e203436303633.roa (raw, json) Hash identifier: 2I1hpf1XM01hpFE4apAQaCDZ2SJv/6pMmkxZHdmPTWg= Subject key identifier: 2F:FC:AA:B8:B3:16:F6:FC:9B:66:8C:D4:9A:DD:98:F3:FD:19:08:F1 Certificate issuer: /CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Certificate serial: 6D1CEC386087A0C3DA3EF2D997A665C9F685AE92 Authority key identifier: D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36392e302f32342d3234203d3e203436303633.roa Signing time: Fri 05 Sep 2025 13:00:01 +0000 ROA not before: Fri 05 Sep 2025 12:55:01 +0000 ROA not after: Fri 04 Sep 2026 13:00:01 +0000 asID: 46063 IP address blocks: 27.112.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 18:57:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:1c:ec:38:60:87:a0:c3:da:3e:f2:d9:97:a6:65:c9:f6:85:ae:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Validity Not Before: Sep 5 12:55:01 2025 GMT Not After : Sep 4 13:00:01 2026 GMT Subject: CN=2FFCAAB8B316F6FC9B668CD49ADD98F3FD1908F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:22:c1:40:ca:b4:94:7d:9e:5b:01:75:ed:2a: b1:ed:26:db:b0:20:00:b7:60:6d:c7:ae:35:ff:44: 70:f4:00:6f:9f:b7:89:6e:08:bd:92:f9:75:0f:46: 46:64:50:47:2d:e5:0e:78:c9:1f:83:63:9a:55:c0: 36:9d:22:da:d3:16:e8:29:ac:d6:4c:1c:fa:dd:bd: 38:ad:81:f0:98:17:fb:45:9e:94:53:f3:7d:81:df: af:f8:76:df:9e:f0:7f:5b:9c:c9:d9:a4:b5:ba:b3: 38:c2:4c:51:2e:03:e9:34:47:37:06:71:3e:06:9e: 64:77:ab:c3:84:92:e3:45:79:da:9a:66:08:8a:78: d4:24:2b:df:b1:53:23:6e:92:78:ba:d9:31:d4:8b: 69:e6:19:90:96:4a:e5:54:84:0c:ed:98:6b:3c:00: 54:0e:b8:8b:ed:01:dd:80:e8:06:27:a9:96:92:99: 56:7c:53:7f:92:62:34:38:86:2a:d9:c5:4b:8a:89: 22:11:f9:f4:80:f9:9d:3b:fe:b3:1b:41:3b:4f:23: 0a:fa:71:54:5b:7c:bf:ce:b8:a7:6b:20:b8:7c:4d: 2b:b6:9c:8a:0d:c6:78:ea:77:e7:a1:c6:d2:e7:94: 9b:cb:d0:f3:1e:a1:f0:80:f4:9c:bf:90:6c:c5:f6: 99:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:FC:AA:B8:B3:16:F6:FC:9B:66:8C:D4:9A:DD:98:F3:FD:19:08:F1 X509v3 Authority Key Identifier: keyid:D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36392e302f32342d3234203d3e203436303633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.112.69.0/24 Signature Algorithm: sha256WithRSAEncryption 58:97:7a:18:5c:aa:6d:f9:71:af:f0:ae:31:0f:b1:a4:89:38: 00:25:7e:14:02:b1:72:25:a3:61:45:d4:07:23:e4:48:74:e7: d3:67:67:69:37:40:54:75:87:dc:af:f2:1b:d8:3b:46:5b:40: 1b:1e:58:55:2d:d0:d3:53:9e:b0:38:1f:f8:01:cc:8f:89:14: e4:5b:05:0e:b0:90:03:8e:e2:f1:57:8f:6d:29:a8:cf:f0:e4: eb:ac:7c:5b:02:a6:79:4f:3d:60:0d:80:23:52:e9:93:52:c2: 10:c6:49:88:57:e5:59:48:4d:b0:d3:91:ea:9d:14:3a:9c:df: 50:43:9f:e4:c5:20:e4:eb:58:a8:3b:b6:e2:4d:49:de:24:4b: ac:93:ad:5d:f7:3b:4f:c7:20:ca:5f:46:b5:e7:71:38:76:b2: 94:d0:08:2f:91:e1:00:29:fb:15:2c:79:9b:2e:d4:2d:ef:ef: 2f:87:89:5b:29:1e:ec:4c:c3:ef:86:15:43:69:e1:e0:a4:36: fa:21:99:e9:32:98:ce:c2:b4:4a:57:da:8a:26:a4:7d:01:85: a3:6f:18:3e:8f:a7:a0:c3:da:95:62:ef:c7:a2:a4:1f:31:b7: 4b:e6:9a:3f:52:22:cf:16:f0:8e:68:83:33:8d:2a:56:17:0e: 3d:03:84:48 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUbRzsOGCHoMPaPvLZl6ZlyfaFrpIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5 NTkyNTMxMjAeFw0yNTA5MDUxMjU1MDFaFw0yNjA5MDQxMzAwMDFaMDMxMTAvBgNV BAMTKDJGRkNBQUI4QjMxNkY2RkM5QjY2OENENDlBREQ5OEYzRkQxOTA4RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8IsFAyrSUfZ5bAXXtKrHtJtuw IAC3YG3HrjX/RHD0AG+ft4luCL2S+XUPRkZkUEct5Q54yR+DY5pVwDadItrTFugp rNZMHPrdvTitgfCYF/tFnpRT832B36/4dt+e8H9bnMnZpLW6szjCTFEuA+k0RzcG cT4GnmR3q8OEkuNFedqaZgiKeNQkK9+xUyNukni62THUi2nmGZCWSuVUhAztmGs8 AFQOuIvtAd2A6AYnqZaSmVZ8U3+SYjQ4hirZxUuKiSIR+fSA+Z07/rMbQTtPIwr6 cVRbfL/OuKdrILh8TSu2nIoNxnjqd+ehxtLnlJvL0PMeofCA9Jy/kGzF9pm5AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUL/yquLMW9vybZozUmt2Y8/0ZCPEwHwYDVR0j BBgwFoAU0qaryh74lyUQnL6l1C5oPJWSUxIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWQxZTE2YS0wYTRkLTQ0YjEtOTg0NS05YzBjZDdhNmYzOGYvMC9EMkE2QUJDQTFF Rjg5NzI1MTA5Q0JFQTVENDJFNjgzQzk1OTI1MzEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5NTky NTMxMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhZDFlMTZhLTBhNGQtNDRiMS05 ODQ1LTljMGNkN2E2ZjM4Zi8wLzMyMzcyZTMxMzEzMjJlMzYzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbcEUwDQYJKoZIhvcN AQELBQADggEBAFiXehhcqm35ca/wrjEPsaSJOAAlfhQCsXIlo2FF1Acj5Eh059Nn Z2k3QFR1h9yv8hvYO0ZbQBseWFUt0NNTnrA4H/gBzI+JFORbBQ6wkAOO4vFXj20p qM/w5OusfFsCpnlPPWANgCNS6ZNSwhDGSYhX5VlITbDTkeqdFDqc31BDn+TFIOTr WKg7tuJNSd4kS6yTrV33O0/HIMpfRrXncTh2spTQCC+R4QAp+xUseZsu1C3v7y+H iVspHuxMw++GFUNp4eCkNvohmekymM7CtEpX2oompH0BhaNvGD6Pp6DD2pVi78ei pB8xt0vmmj9SIs8W8I5ogzONKlYXDj0DhEg= -----END CERTIFICATE-----Generated at Mon Oct 20 15:50:47 2025 by rpki-client