$ rpki-client -vvf repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e37302e302f32342d3234203d3e203436303633.roa File: 32372e3131322e37302e302f32342d3234203d3e203436303633.roa (raw, json) Hash identifier: q2HyhqMcqNKr/1kOvWeC7Bv0LZJy34QkHpHUyM3pSpc= Subject key identifier: 8F:F5:CB:71:F2:F2:7F:C0:37:A3:F5:0F:1D:95:9E:00:BD:5D:82:B5 Certificate issuer: /CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Certificate serial: 3903E555CBB25E649C543470EED924FC2F031099 Authority key identifier: D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e37302e302f32342d3234203d3e203436303633.roa Signing time: Fri 05 Sep 2025 13:00:01 +0000 ROA not before: Fri 05 Sep 2025 12:55:01 +0000 ROA not after: Fri 04 Sep 2026 13:00:01 +0000 asID: 46063 IP address blocks: 27.112.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:03:e5:55:cb:b2:5e:64:9c:54:34:70:ee:d9:24:fc:2f:03:10:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Validity Not Before: Sep 5 12:55:01 2025 GMT Not After : Sep 4 13:00:01 2026 GMT Subject: CN=8FF5CB71F2F27FC037A3F50F1D959E00BD5D82B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e7:eb:c5:79:ea:15:26:33:cf:4b:75:38:c3: 1c:20:cc:a4:38:46:9d:54:aa:53:de:ce:23:56:90: 7b:6b:62:4f:14:5e:e5:f4:0a:ee:31:a3:bc:85:26: 7d:dd:bd:68:2c:14:86:14:26:1b:86:62:1f:99:23: 55:cf:88:8b:1d:12:d2:1f:95:b1:88:de:86:74:6e: 23:a1:5a:c0:e2:5b:68:f8:62:20:26:b7:6a:ac:15: c7:bf:7d:50:00:74:82:5d:cc:c6:1c:9f:a9:d2:38: 3e:9d:14:25:51:f2:d8:7c:da:d6:5e:9c:73:ad:1c: 40:93:49:2c:74:d4:03:ba:2e:72:ed:ef:b8:8e:b9: aa:39:26:f9:99:d4:42:a7:4f:20:49:67:13:a5:bd: 75:c3:dd:3b:63:b5:9e:8f:15:61:32:26:e5:da:47: 86:54:3b:97:a5:90:e5:48:91:c2:f7:cf:41:0a:e7: 8e:5d:8c:d6:6e:6f:73:2c:27:de:99:c6:4e:4a:67: 76:c8:12:22:5c:cb:2b:24:d7:3b:c0:12:6f:0b:4b: a2:0d:6f:d7:06:80:46:8e:e8:5c:e4:d0:66:9f:b3: af:0b:69:05:b6:83:35:ff:ae:35:75:fd:27:d6:95: 5a:4a:02:46:9d:d6:39:b5:2e:b7:b9:cf:7d:31:9a: f8:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F5:CB:71:F2:F2:7F:C0:37:A3:F5:0F:1D:95:9E:00:BD:5D:82:B5 X509v3 Authority Key Identifier: keyid:D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e37302e302f32342d3234203d3e203436303633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.112.70.0/24 Signature Algorithm: sha256WithRSAEncryption 33:e8:28:47:f6:b6:d1:25:68:07:f8:ad:1f:d1:8c:22:5b:d0: 29:4d:a7:d0:6e:a7:5a:4e:6d:c1:9e:74:c8:4f:9b:82:ba:68: ac:e0:af:09:65:5c:a3:66:b8:ab:08:33:95:1d:0d:92:be:dc: 9e:c6:f2:32:48:fd:c2:a5:c6:20:64:2e:87:8d:3f:44:8b:d1: 34:ef:b2:b0:f3:77:9a:b8:ae:68:1f:2e:8d:f2:21:37:39:3a: 76:2c:5e:b1:f9:3a:6b:d1:18:46:67:6c:ca:9e:6f:98:7c:10: 99:22:21:d2:43:0d:39:3b:04:ea:53:de:dd:a9:71:ee:2e:b8: ba:19:4a:8a:6a:10:b7:df:8c:5e:2c:4a:fd:22:00:cc:02:89: 0d:a6:7d:1e:23:b7:bd:de:b0:87:cc:bc:85:11:3f:f2:1d:1e: e1:37:b8:d3:56:bf:f9:f2:88:5c:bc:fd:2d:3b:56:08:87:5b: 49:73:1a:20:98:e0:18:27:b7:3c:00:0f:72:eb:f4:f8:ba:65: 5b:0c:b0:50:08:09:49:3c:48:56:ce:cf:16:a2:2d:83:47:04: d5:ad:d9:49:6a:cf:1b:49:9b:d1:1b:d8:ac:09:b9:9c:2c:82: 2d:b0:02:3d:8c:3b:5d:87:c5:e0:05:ec:2d:81:a3:74:06:3c: 3c:a5:82:19 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOQPlVcuyXmScVDRw7tkk/C8DEJkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5 NTkyNTMxMjAeFw0yNTA5MDUxMjU1MDFaFw0yNjA5MDQxMzAwMDFaMDMxMTAvBgNV BAMTKDhGRjVDQjcxRjJGMjdGQzAzN0EzRjUwRjFEOTU5RTAwQkQ1RDgyQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk5+vFeeoVJjPPS3U4wxwgzKQ4 Rp1UqlPeziNWkHtrYk8UXuX0Cu4xo7yFJn3dvWgsFIYUJhuGYh+ZI1XPiIsdEtIf lbGI3oZ0biOhWsDiW2j4YiAmt2qsFce/fVAAdIJdzMYcn6nSOD6dFCVR8th82tZe nHOtHECTSSx01AO6LnLt77iOuao5JvmZ1EKnTyBJZxOlvXXD3TtjtZ6PFWEyJuXa R4ZUO5elkOVIkcL3z0EK545djNZub3MsJ96Zxk5KZ3bIEiJcyysk1zvAEm8LS6IN b9cGgEaO6Fzk0Gafs68LaQW2gzX/rjV1/SfWlVpKAkad1jm1Lre5z30xmvg/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUj/XLcfLyf8A3o/UPHZWeAL1dgrUwHwYDVR0j BBgwFoAU0qaryh74lyUQnL6l1C5oPJWSUxIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWQxZTE2YS0wYTRkLTQ0YjEtOTg0NS05YzBjZDdhNmYzOGYvMC9EMkE2QUJDQTFF Rjg5NzI1MTA5Q0JFQTVENDJFNjgzQzk1OTI1MzEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5NTky NTMxMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhZDFlMTZhLTBhNGQtNDRiMS05 ODQ1LTljMGNkN2E2ZjM4Zi8wLzMyMzcyZTMxMzEzMjJlMzczMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbcEYwDQYJKoZIhvcN AQELBQADggEBADPoKEf2ttElaAf4rR/RjCJb0ClNp9Bup1pObcGedMhPm4K6aKzg rwllXKNmuKsIM5UdDZK+3J7G8jJI/cKlxiBkLoeNP0SL0TTvsrDzd5q4rmgfLo3y ITc5OnYsXrH5OmvRGEZnbMqeb5h8EJkiIdJDDTk7BOpT3t2pce4uuLoZSopqELff jF4sSv0iAMwCiQ2mfR4jt73esIfMvIURP/IdHuE3uNNWv/nyiFy8/S07VgiHW0lz GiCY4BgntzwAD3Lr9Pi6ZVsMsFAICUk8SFbOzxaiLYNHBNWt2UlqzxtJm9Eb2KwJ uZwsgi2wAj2MO12HxeAF7C2Bo3QGPDylghk= -----END CERTIFICATE-----Generated at Tue Oct 21 00:48:09 2025 by rpki-client