$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32352e302f32342d3234203d3e20313430343639.roa File: 3230322e35372e32352e302f32342d3234203d3e20313430343639.roa (raw, json) Hash identifier: N2Cye2k2ArU32sR4BIWlxYfXaoMWkhmX2inof4bL/qc= Subject key identifier: 58:C7:B8:BA:B4:A2:A4:FB:30:50:A0:99:C9:F4:BA:64:D9:B2:52:34 Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Certificate serial: 78DE1A137EB6E1120C0D36CD7170BC048AA5F198 Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32352e302f32342d3234203d3e20313430343639.roa Signing time: Mon 06 Oct 2025 15:00:01 +0000 ROA not before: Mon 06 Oct 2025 14:55:01 +0000 ROA not after: Mon 05 Oct 2026 15:00:01 +0000 asID: 140469 IP address blocks: 202.57.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 00:24:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:de:1a:13:7e:b6:e1:12:0c:0d:36:cd:71:70:bc:04:8a:a5:f1:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Validity Not Before: Oct 6 14:55:01 2025 GMT Not After : Oct 5 15:00:01 2026 GMT Subject: CN=58C7B8BAB4A2A4FB3050A099C9F4BA64D9B25234 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:86:1b:cd:c6:69:00:74:ff:69:e1:3b:57:2c: 5c:30:c7:03:07:88:05:4f:71:62:26:a6:ae:77:6f: 47:59:35:e6:9f:62:1b:bc:80:fe:86:3b:21:75:72: e8:b2:0c:9a:ad:82:55:f9:ee:b6:6f:4d:1a:0b:93: 30:2a:fe:c1:ae:32:ab:38:c3:8f:70:1f:71:df:27: ab:5a:c3:04:c0:1d:e1:e0:e7:6b:47:8d:de:a5:49: d9:0b:46:dd:bd:0d:df:22:82:24:e2:da:00:ca:d7: 35:36:99:6b:df:47:64:d4:66:45:de:70:d3:27:3d: 33:17:ce:cd:c9:d1:99:69:48:11:53:fd:76:02:ce: ce:d5:28:f4:ab:50:c3:2c:2e:31:40:eb:b4:2d:d8: b8:e5:e8:21:0b:c0:90:fb:13:c0:7a:c5:87:82:56: 54:5d:ca:c3:cf:6c:2c:00:8a:d6:b0:16:5a:a9:aa: 31:b7:ce:5d:a2:c6:9c:a6:77:83:f7:b9:56:86:1a: 55:62:0d:3c:5c:ed:96:e1:d8:6e:0a:57:e8:3f:5e: aa:cc:47:4b:9e:07:8d:62:16:5b:b1:5f:d8:93:df: 2b:17:78:14:6f:87:98:92:e0:69:ed:f4:00:75:4c: 69:dc:6d:b1:0d:d6:d8:1f:ec:e1:d4:72:bd:3b:73: 13:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:C7:B8:BA:B4:A2:A4:FB:30:50:A0:99:C9:F4:BA:64:D9:B2:52:34 X509v3 Authority Key Identifier: keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32352e302f32342d3234203d3e20313430343639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.25.0/24 Signature Algorithm: sha256WithRSAEncryption a2:73:73:01:5e:c5:2c:c6:70:86:b1:24:6b:b4:db:c8:62:6f: b2:8d:ba:85:a3:ed:20:17:64:e2:9b:66:94:98:25:bd:89:06: 42:44:3b:c6:6e:fa:ba:dd:22:14:41:20:11:0b:0f:3f:7a:07: c7:01:55:b9:b0:ee:ab:1a:c2:e2:b4:74:d6:5e:89:19:a7:d7: 62:d5:e3:6b:49:a0:0f:4f:a7:cf:be:c9:17:00:e7:99:15:fb: 75:54:3f:25:6a:d0:07:ae:61:0c:85:bf:b3:8a:28:36:8b:49: eb:56:91:a6:86:e0:d0:93:b3:6c:d8:7a:09:ab:24:30:6b:0d: 72:3e:b3:4b:38:0d:0a:b1:f8:29:e1:01:0c:06:e8:fc:cf:9a: c1:99:62:30:dd:0b:10:a3:28:16:9c:7e:e6:62:48:41:12:46: 19:8c:61:2f:99:0f:0e:5a:74:90:63:26:e5:ac:f8:8b:48:21: ed:f6:5c:bf:cb:26:5b:f3:2b:03:d6:8e:84:b3:1a:fe:27:2b: 80:a4:1a:e2:5f:d3:12:f7:58:d1:32:76:13:86:15:e3:55:47: e3:8b:ff:18:9a:a4:79:4e:27:5b:bc:13:37:25:ba:14:60:6c: 36:20:11:9a:ce:fa:7b:d8:d4:43:50:38:d9:58:12:a4:6b:c9: 44:67:ea:2c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeN4aE3624RIMDTbNcXC8BIql8ZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3 Qjg1OUJENTAeFw0yNTEwMDYxNDU1MDFaFw0yNjEwMDUxNTAwMDFaMDMxMTAvBgNV BAMTKDU4QzdCOEJBQjRBMkE0RkIzMDUwQTA5OUM5RjRCQTY0RDlCMjUyMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKhhvNxmkAdP9p4TtXLFwwxwMH iAVPcWImpq53b0dZNeafYhu8gP6GOyF1cuiyDJqtglX57rZvTRoLkzAq/sGuMqs4 w49wH3HfJ6tawwTAHeHg52tHjd6lSdkLRt29Dd8igiTi2gDK1zU2mWvfR2TUZkXe cNMnPTMXzs3J0ZlpSBFT/XYCzs7VKPSrUMMsLjFA67Qt2Ljl6CELwJD7E8B6xYeC VlRdysPPbCwAitawFlqpqjG3zl2ixpymd4P3uVaGGlViDTxc7Zbh2G4KV+g/XqrM R0ueB41iFluxX9iT3ysXeBRvh5iS4Gnt9AB1TGncbbEN1tgf7OHUcr07cxPnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWMe4urSipPswUKCZyfS6ZNmyUjQwHwYDVR0j BBgwFoAUH5ae6bCDjSIVYRioiLgb8nuFm9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZDNmMDk1Yi03MTMwLTQxMjItYWYyNS03ZDJlN2ExMWIxYjEvMC8xRjk2OUVFOUIw ODM4RDIyMTU2MTE4QTg4OEI4MUJGMjdCODU5QkQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3Qjg1 OUJENS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkM2YwOTViLTcxMzAtNDEyMi1h ZjI1LTdkMmU3YTExYjFiMS8wLzMyMzAzMjJlMzUzNzJlMzIzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo5GTANBgkqhkiG 9w0BAQsFAAOCAQEAonNzAV7FLMZwhrEka7TbyGJvso26haPtIBdk4ptmlJglvYkG QkQ7xm76ut0iFEEgEQsPP3oHxwFVubDuqxrC4rR01l6JGafXYtXja0mgD0+nz77J FwDnmRX7dVQ/JWrQB65hDIW/s4ooNotJ61aRpobg0JOzbNh6CaskMGsNcj6zSzgN CrH4KeEBDAbo/M+awZliMN0LEKMoFpx+5mJIQRJGGYxhL5kPDlp0kGMm5az4i0gh 7fZcv8smW/MrA9aOhLMa/icrgKQa4l/TEvdY0TJ2E4YV41VH44v/GJqkeU4nW7wT NyW6FGBsNiARms76e9jUQ1A42VgSpGvJRGfqLA== -----END CERTIFICATE-----Generated at Thu Oct 30 03:01:37 2025 by rpki-client