$ rpki-client -vvf repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e37312e302f32342d3234203d3e203436303633.roa File: 32372e3131322e37312e302f32342d3234203d3e203436303633.roa (raw, json) Hash identifier: CFppjbu+j9vN8xa/dDTxQelhICtYUCoA83bushfIr2o= Subject key identifier: 7F:F7:36:2A:35:1C:72:13:CB:8D:F8:67:13:F9:87:96:8C:9B:B4:77 Certificate issuer: /CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Certificate serial: 29CD16B1FD03DE74B7FBD227A76111E239481D5F Authority key identifier: D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e37312e302f32342d3234203d3e203436303633.roa Signing time: Fri 05 Sep 2025 13:00:01 +0000 ROA not before: Fri 05 Sep 2025 12:55:01 +0000 ROA not after: Fri 04 Sep 2026 13:00:01 +0000 asID: 46063 IP address blocks: 27.112.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:cd:16:b1:fd:03:de:74:b7:fb:d2:27:a7:61:11:e2:39:48:1d:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Validity Not Before: Sep 5 12:55:01 2025 GMT Not After : Sep 4 13:00:01 2026 GMT Subject: CN=7FF7362A351C7213CB8DF86713F987968C9BB477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:66:0d:12:64:6a:ba:5f:a1:a8:41:b9:ed:41: 4c:9a:78:c1:85:ad:32:3a:3f:ab:43:36:89:10:f7: 11:1a:dd:79:df:80:41:4f:3c:3c:70:47:42:fd:62: 58:80:1e:f6:70:b9:74:76:36:2d:d1:f9:53:3b:a6: 65:a7:43:4f:a0:b5:03:f9:11:31:9e:e0:79:0b:4e: 92:c7:f7:dc:f7:62:ed:84:e3:35:0a:98:9e:33:ce: 65:2d:70:ad:5e:72:d9:e3:a2:e2:9a:58:b5:94:0f: 59:ea:04:fa:83:e3:af:7b:36:f1:3c:46:2d:d9:f5: a0:8a:31:67:6e:19:d2:9f:0b:93:b2:45:b3:e4:bc: c5:b0:e6:1d:ee:1b:0f:8a:ef:93:bc:d6:7f:fb:77: 87:b2:84:be:53:f6:f3:45:2c:c8:e0:a6:1c:78:23: 43:07:8a:a0:31:ab:c0:ed:c1:b7:61:b0:b0:e4:ba: e6:c8:62:c5:9e:1f:00:36:93:21:84:4e:73:06:5a: ab:96:1e:4a:83:06:09:d8:3f:35:0e:56:22:dc:fd: 90:96:f8:7f:8e:28:00:99:78:a9:1a:9f:c4:a5:06: 07:0d:24:00:71:75:b4:79:d3:37:4a:7c:7b:29:3e: d4:b6:82:38:1d:b9:6d:58:a6:e9:12:89:e1:6b:26: 10:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:F7:36:2A:35:1C:72:13:CB:8D:F8:67:13:F9:87:96:8C:9B:B4:77 X509v3 Authority Key Identifier: keyid:D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e37312e302f32342d3234203d3e203436303633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.112.71.0/24 Signature Algorithm: sha256WithRSAEncryption 08:ee:90:3b:99:5f:86:da:65:60:9b:5f:65:00:da:7d:87:dd: 92:91:0f:96:21:2d:49:b4:ba:fa:cf:ca:c6:72:5c:01:06:d0: cf:f4:d4:d2:a6:2c:4a:66:6e:03:15:8c:72:67:04:ef:e2:20: f6:53:bf:cd:c3:31:6b:29:0d:ee:41:ae:3d:ac:d2:4e:00:4b: 08:5a:a7:97:8a:a7:1a:33:c6:b0:3a:74:53:15:95:af:bc:16: 61:26:2f:38:3e:2d:2e:c0:6b:ca:70:e0:b6:8b:13:ba:37:97: f0:4f:fd:97:b8:0a:e9:03:79:17:8a:ff:9e:ab:09:92:9d:34: 15:90:be:8e:8c:85:4a:e1:65:fa:4a:74:bb:dd:0b:19:51:d4: 52:88:dc:ff:c3:fd:2a:54:65:32:a5:e7:ce:08:1a:df:ce:29: f8:a9:5a:a8:6f:cc:af:a8:94:62:eb:85:a9:49:2c:a2:56:c1: ef:4d:cc:43:30:2d:25:ac:b4:76:2c:98:df:f2:cd:14:91:03: 28:b6:94:1a:69:9b:22:cc:df:77:5a:ab:90:d9:aa:9d:ff:e2: db:28:0b:e9:ca:c0:fd:53:56:1f:71:ba:25:08:18:41:81:b3: 19:78:f5:75:4f:63:98:a3:57:74:ef:23:fe:d6:81:06:70:a5: 0b:90:f7:54 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKc0Wsf0D3nS3+9Inp2ER4jlIHV8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5 NTkyNTMxMjAeFw0yNTA5MDUxMjU1MDFaFw0yNjA5MDQxMzAwMDFaMDMxMTAvBgNV BAMTKDdGRjczNjJBMzUxQzcyMTNDQjhERjg2NzEzRjk4Nzk2OEM5QkI0NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEZg0SZGq6X6GoQbntQUyaeMGF rTI6P6tDNokQ9xEa3XnfgEFPPDxwR0L9YliAHvZwuXR2Ni3R+VM7pmWnQ0+gtQP5 ETGe4HkLTpLH99z3Yu2E4zUKmJ4zzmUtcK1ectnjouKaWLWUD1nqBPqD4697NvE8 Ri3Z9aCKMWduGdKfC5OyRbPkvMWw5h3uGw+K75O81n/7d4eyhL5T9vNFLMjgphx4 I0MHiqAxq8DtwbdhsLDkuubIYsWeHwA2kyGETnMGWquWHkqDBgnYPzUOViLc/ZCW +H+OKACZeKkan8SlBgcNJABxdbR50zdKfHspPtS2gjgduW1YpukSieFrJhD3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUf/c2KjUcchPLjfhnE/mHloybtHcwHwYDVR0j BBgwFoAU0qaryh74lyUQnL6l1C5oPJWSUxIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWQxZTE2YS0wYTRkLTQ0YjEtOTg0NS05YzBjZDdhNmYzOGYvMC9EMkE2QUJDQTFF Rjg5NzI1MTA5Q0JFQTVENDJFNjgzQzk1OTI1MzEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5NTky NTMxMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhZDFlMTZhLTBhNGQtNDRiMS05 ODQ1LTljMGNkN2E2ZjM4Zi8wLzMyMzcyZTMxMzEzMjJlMzczMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbcEcwDQYJKoZIhvcN AQELBQADggEBAAjukDuZX4baZWCbX2UA2n2H3ZKRD5YhLUm0uvrPysZyXAEG0M/0 1NKmLEpmbgMVjHJnBO/iIPZTv83DMWspDe5Brj2s0k4ASwhap5eKpxozxrA6dFMV la+8FmEmLzg+LS7Aa8pw4LaLE7o3l/BP/Ze4CukDeReK/56rCZKdNBWQvo6MhUrh ZfpKdLvdCxlR1FKI3P/D/SpUZTKl584IGt/OKfipWqhvzK+olGLrhalJLKJWwe9N zEMwLSWstHYsmN/yzRSRAyi2lBppmyLM33daq5DZqp3/4tsoC+nKwP1TVh9xuiUI GEGBsxl49XVPY5ijV3TvI/7WgQZwpQuQ91Q= -----END CERTIFICATE-----Generated at Tue Oct 21 00:48:08 2025 by rpki-client