$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32322e302f32332d3233203d3e20313338313238.roa File: 3232332e3133302e32322e302f32332d3233203d3e20313338313238.roa (raw, json) Hash identifier: hEy0rDvTYQnHKZCVMINLjOdzcBCjo3uIeSctB/ZGBr8= Subject key identifier: 8A:4B:7D:59:C6:38:89:59:F3:1B:52:54:98:0A:71:5C:B6:83:55:C0 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 45625B58C2549795F31059B59AD34E362816C74E Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32322e302f32332d3233203d3e20313338313238.roa Signing time: Sun 28 Sep 2025 04:14:53 +0000 ROA not before: Sun 28 Sep 2025 04:09:53 +0000 ROA not after: Sun 27 Sep 2026 04:14:53 +0000 asID: 138128 IP address blocks: 223.130.22.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 06:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:62:5b:58:c2:54:97:95:f3:10:59:b5:9a:d3:4e:36:28:16:c7:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Sep 28 04:09:53 2025 GMT Not After : Sep 27 04:14:53 2026 GMT Subject: CN=8A4B7D59C6388959F31B5254980A715CB68355C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c9:c4:76:e7:30:86:fe:2f:3a:23:3e:d7:b1: 12:14:d1:5b:8f:53:fb:0c:81:94:2d:2f:9f:f3:d0: 25:f0:4e:4f:62:ac:71:e4:6a:ec:5e:ce:5b:37:90: b6:03:f2:9b:27:f7:78:91:91:b5:5a:9a:05:64:da: 66:b7:33:63:11:df:59:ff:de:06:03:b0:bc:5c:b3: 13:d0:92:31:76:5e:68:f4:cf:a9:49:aa:2e:6f:46: 6d:3b:df:fd:94:61:38:9b:13:d8:78:46:91:03:cd: 3d:79:92:30:27:00:0d:6e:ab:5e:27:91:5d:42:3a: 03:8a:7f:c9:53:13:91:48:47:1f:cc:cb:38:de:b2: 78:38:be:9d:b0:ec:57:e6:cf:6c:ff:00:c4:84:44: b1:c8:4f:61:c2:ab:73:e2:e9:2e:f3:26:37:e4:64: fd:b0:19:8d:ec:e3:2e:d8:be:9c:7f:e4:62:47:a3: 0d:ba:a3:a2:c0:c9:bb:cd:70:da:1f:9e:32:ba:51: 21:c5:4e:15:13:a6:71:75:d7:6e:5e:ef:53:15:3c: e4:72:31:8b:6a:3e:5e:7f:90:a6:db:1e:16:74:d6: 4b:85:24:e1:2f:99:a8:44:00:d8:71:f9:64:ba:3c: 05:c8:bc:a4:48:b8:2e:c3:02:ab:18:ab:7e:bf:ac: a3:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:4B:7D:59:C6:38:89:59:F3:1B:52:54:98:0A:71:5C:B6:83:55:C0 X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32322e302f32332d3233203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.130.22.0/23 Signature Algorithm: sha256WithRSAEncryption 77:b9:4a:cb:67:8f:7d:b0:f6:e4:68:1a:4b:19:23:cd:00:6f: 43:d7:a7:16:e5:79:c1:7f:c1:f9:15:16:9c:7a:df:f0:9f:22: fd:e2:84:c2:1e:05:8f:45:6a:53:33:11:25:55:ff:c8:0a:65: da:d1:c3:80:f8:e6:78:97:e9:02:30:59:ab:92:e2:1f:c4:4e: 75:eb:c3:58:b5:16:94:39:fb:3d:e5:26:9c:32:a4:19:f6:ba: 2b:5e:22:b8:00:2b:bc:59:89:19:4a:8f:90:52:35:e4:93:7b: 1f:b8:92:b1:80:f1:e3:d9:ae:34:47:16:8b:a0:74:da:e0:b0: 47:47:5b:12:e0:f1:10:4a:e9:00:22:19:bb:c0:f5:6c:38:bf: a1:5b:f6:d5:23:50:62:b3:5e:33:cf:2f:6f:a5:1c:67:54:4a: 0c:ce:b0:fd:14:e3:e4:90:e6:30:25:5b:a0:f9:52:58:1d:e2: 41:ec:1c:f9:24:17:85:ee:70:60:26:c3:1f:0f:5e:24:c8:71: f7:a1:54:85:b1:16:77:7d:15:a6:e7:8f:b3:50:4b:14:21:f0: c9:3c:b0:81:73:40:73:27:69:e6:58:55:b6:b2:8f:85:40:74: 0f:92:9a:f5:5c:66:7b:84:f5:ce:00:3a:e4:8c:a3:16:40:74: 48:a4:f9:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURWJbWMJUl5XzEFm1mtNONigWx04wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNTA5MjgwNDA5NTNaFw0yNjA5MjcwNDE0NTNaMDMxMTAvBgNV BAMTKDhBNEI3RDU5QzYzODg5NTlGMzFCNTI1NDk4MEE3MTVDQjY4MzU1QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCycR25zCG/i86Iz7XsRIU0VuP U/sMgZQtL5/z0CXwTk9irHHkauxezls3kLYD8psn93iRkbVamgVk2ma3M2MR31n/ 3gYDsLxcsxPQkjF2Xmj0z6lJqi5vRm073/2UYTibE9h4RpEDzT15kjAnAA1uq14n kV1COgOKf8lTE5FIRx/Myzjesng4vp2w7Ffmz2z/AMSERLHIT2HCq3Pi6S7zJjfk ZP2wGY3s4y7Yvpx/5GJHow26o6LAybvNcNofnjK6USHFThUTpnF1125e71MVPORy MYtqPl5/kKbbHhZ01kuFJOEvmahEANhx+WS6PAXIvKRIuC7DAqsYq36/rKMHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUikt9WcY4iVnzG1JUmApxXLaDVcAwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzIzMzJlMzEzMzMwMmUzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM4MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB34IWMA0GCSqG SIb3DQEBCwUAA4IBAQB3uUrLZ499sPbkaBpLGSPNAG9D16cW5XnBf8H5FRacet/w nyL94oTCHgWPRWpTMxElVf/ICmXa0cOA+OZ4l+kCMFmrkuIfxE5168NYtRaUOfs9 5SacMqQZ9rorXiK4ACu8WYkZSo+QUjXkk3sfuJKxgPHj2a40RxaLoHTa4LBHR1sS 4PEQSukAIhm7wPVsOL+hW/bVI1Bis14zzy9vpRxnVEoMzrD9FOPkkOYwJVug+VJY HeJB7Bz5JBeF7nBgJsMfD14kyHH3oVSFsRZ3fRWm54+zUEsUIfDJPLCBc0BzJ2nm WFW2so+FQHQPkpr1XGZ7hPXOADrkjKMWQHRIpPkc -----END CERTIFICATE-----Generated at Thu Oct 16 08:09:48 2025 by rpki-client