$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32322e302f32342d3234203d3e20313338313238.roa File: 3232332e3133302e32322e302f32342d3234203d3e20313338313238.roa (raw, json) Hash identifier: XnGn/2+w4AJO6NSWZOl6oPCbIBn8oHiJVNfmgtkBLgs= Subject key identifier: DF:31:9E:C2:28:C7:E9:6B:F8:17:75:D8:21:16:8A:81:AF:24:2C:D8 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 36995FD0854A3B9FE6BA46C897510BE3EB5F06BA Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32322e302f32342d3234203d3e20313338313238.roa Signing time: Sun 28 Sep 2025 03:27:19 +0000 ROA not before: Sun 28 Sep 2025 03:22:19 +0000 ROA not after: Sun 27 Sep 2026 03:27:19 +0000 asID: 138128 IP address blocks: 223.130.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 06:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:99:5f:d0:85:4a:3b:9f:e6:ba:46:c8:97:51:0b:e3:eb:5f:06:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Sep 28 03:22:19 2025 GMT Not After : Sep 27 03:27:19 2026 GMT Subject: CN=DF319EC228C7E96BF81775D821168A81AF242CD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:df:8f:fd:da:d6:d4:bd:02:3d:39:f2:ce:26: 98:82:4c:83:12:ad:9d:af:fc:4b:0a:c8:63:e2:d5: 29:6c:f1:d6:23:76:52:21:cd:0c:c7:0c:64:e6:78: 31:c4:e3:9e:93:f7:9f:c9:af:e8:2f:f9:3c:8c:20: b5:c9:fe:36:89:27:82:7e:54:8e:5f:78:8f:82:bd: 6d:2f:b0:7f:e6:f5:ac:0d:75:64:24:86:12:32:7f: 29:53:a6:31:81:8b:eb:41:26:e5:7e:09:8d:46:f6: d0:ea:d3:96:52:0c:76:47:28:ee:41:43:d5:b8:32: 3e:52:a7:e0:fd:7d:e2:6f:ef:63:ce:f6:13:f8:ac: 59:96:32:63:0d:7b:b5:0e:5d:07:00:48:54:18:8e: f3:bd:c0:a6:b0:29:35:d5:23:14:aa:ef:9d:82:30: ce:d3:78:4b:75:0e:71:fb:67:a5:ac:d6:75:8b:77: e8:07:b0:18:e7:8f:94:34:8e:be:8c:57:2a:05:2f: 05:5a:a5:03:62:bc:e5:13:10:cb:38:f3:f7:fa:fa: 92:79:2e:e0:cd:1d:bb:81:f4:c9:be:19:fa:7f:fd: 8f:5f:03:72:31:c9:14:45:4a:c7:7c:b5:e9:11:22: 83:db:52:05:30:93:56:44:9f:67:2c:44:f0:b7:26: e1:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:31:9E:C2:28:C7:E9:6B:F8:17:75:D8:21:16:8A:81:AF:24:2C:D8 X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32322e302f32342d3234203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.130.22.0/24 Signature Algorithm: sha256WithRSAEncryption 82:7d:ee:7a:65:8a:dc:f6:d8:58:34:2a:99:68:f0:c8:7e:c1: f4:61:1a:d6:0b:3f:4f:7c:e3:16:eb:e8:57:69:2d:55:84:06: 85:e6:6b:10:86:b1:10:69:cd:b9:86:5a:d4:df:38:be:82:8a: d2:98:0f:2d:19:1e:e2:24:df:ae:8c:be:65:02:f0:5a:81:14: 8e:b1:42:26:7c:d4:62:c1:54:78:bb:55:16:6a:9c:cb:da:9b: ee:31:99:7d:95:28:17:26:b3:07:cd:9e:eb:84:48:9b:30:ef: b4:a4:51:ce:6f:4d:3a:18:8a:cd:fe:92:51:01:37:c5:19:fa: cb:76:5d:b7:2c:0c:2e:92:7e:08:40:d9:7b:51:cc:dc:1a:ab: 55:50:bb:f7:00:8e:12:ef:de:94:96:be:fa:a6:a0:42:43:16: 9c:dd:4c:54:48:d2:8a:9d:a3:23:f8:2d:bd:ce:51:cf:6f:20: f3:65:84:25:37:c4:50:71:be:6a:0b:b4:f6:6a:37:4d:ed:87: cf:67:5e:e7:48:54:64:59:20:47:49:6a:52:53:93:7f:df:1c: b5:78:55:67:e3:be:ce:1d:f2:cb:0d:85:e6:85:36:38:fa:25: 4b:cb:b9:b3:3e:55:a4:d8:f3:ab:aa:5c:2b:65:b7:fb:b1:0e: fc:57:ef:13 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNplf0IVKO5/mukbIl1EL4+tfBrowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNTA5MjgwMzIyMTlaFw0yNjA5MjcwMzI3MTlaMDMxMTAvBgNV BAMTKERGMzE5RUMyMjhDN0U5NkJGODE3NzVEODIxMTY4QTgxQUYyNDJDRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC734/92tbUvQI9OfLOJpiCTIMS rZ2v/EsKyGPi1Sls8dYjdlIhzQzHDGTmeDHE456T95/Jr+gv+TyMILXJ/jaJJ4J+ VI5feI+CvW0vsH/m9awNdWQkhhIyfylTpjGBi+tBJuV+CY1G9tDq05ZSDHZHKO5B Q9W4Mj5Sp+D9feJv72PO9hP4rFmWMmMNe7UOXQcASFQYjvO9wKawKTXVIxSq752C MM7TeEt1DnH7Z6Ws1nWLd+gHsBjnj5Q0jr6MVyoFLwVapQNivOUTEMs48/f6+pJ5 LuDNHbuB9Mm+Gfp//Y9fA3IxyRRFSsd8tekRIoPbUgUwk1ZEn2csRPC3JuHfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3zGewijH6Wv4F3XYIRaKga8kLNgwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzIzMzJlMzEzMzMwMmUzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA34IWMA0GCSqG SIb3DQEBCwUAA4IBAQCCfe56ZYrc9thYNCqZaPDIfsH0YRrWCz9PfOMW6+hXaS1V hAaF5msQhrEQac25hlrU3zi+gorSmA8tGR7iJN+ujL5lAvBagRSOsUImfNRiwVR4 u1UWapzL2pvuMZl9lSgXJrMHzZ7rhEibMO+0pFHOb006GIrN/pJRATfFGfrLdl23 LAwukn4IQNl7UczcGqtVULv3AI4S796Ulr76pqBCQxac3UxUSNKKnaMj+C29zlHP byDzZYQlN8RQcb5qC7T2ajdN7YfPZ17nSFRkWSBHSWpSU5N/3xy1eFVn477OHfLL DYXmhTY4+iVLy7mzPlWk2POrqlwrZbf7sQ78V+8T -----END CERTIFICATE-----Generated at Thu Oct 16 08:10:24 2025 by rpki-client