$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32332e302f32342d3234203d3e20313338313238.roa File: 3232332e3133302e32332e302f32342d3234203d3e20313338313238.roa (raw, json) Hash identifier: Z00cWWLpoEgJbs9IwwNUQ+8l5Sk95TAHVLqYoXdZIhA= Subject key identifier: DF:B9:41:B6:3C:44:4D:25:F0:3D:80:24:AB:1C:95:2B:46:52:89:A9 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 4AF0192D373CC0AD366CC302CB35B011E8F58790 Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32332e302f32342d3234203d3e20313338313238.roa Signing time: Sun 28 Sep 2025 03:27:36 +0000 ROA not before: Sun 28 Sep 2025 03:22:36 +0000 ROA not after: Sun 27 Sep 2026 03:27:36 +0000 asID: 138128 IP address blocks: 223.130.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 06:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:f0:19:2d:37:3c:c0:ad:36:6c:c3:02:cb:35:b0:11:e8:f5:87:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Sep 28 03:22:36 2025 GMT Not After : Sep 27 03:27:36 2026 GMT Subject: CN=DFB941B63C444D25F03D8024AB1C952B465289A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:41:54:2a:9b:91:16:ed:cc:01:22:fd:70:e1: db:ef:76:1f:3c:92:49:de:b0:be:89:11:b8:9a:73: c4:32:81:1e:01:f5:1d:4c:d9:68:f0:75:3e:58:94: 1f:50:7c:25:37:9f:43:ce:10:59:5b:92:7b:e1:a4: 53:0f:a4:96:35:90:d0:72:9b:97:7c:94:9b:58:a8: 08:46:89:44:fe:38:d0:f5:29:97:3c:d6:12:88:f5: 6a:bc:cc:13:6c:65:d8:01:cc:7a:4e:67:fc:cf:34: 0e:8c:47:6f:96:1a:7c:38:b0:cb:3f:2f:7d:93:b5: 31:8d:8d:47:e1:58:3f:b1:64:fb:53:32:c4:ae:7a: 01:48:02:be:d7:29:4f:fd:1c:c1:ec:05:57:c0:39: 28:5c:cf:20:2e:11:3e:f6:a9:a5:ba:02:f7:02:43: 14:06:1d:31:fe:99:c7:d6:14:0c:66:6b:24:53:62: 4b:bf:6e:bb:fb:10:4e:43:75:24:73:46:87:26:1b: 3f:de:a3:17:8c:07:24:dd:5b:95:b0:d7:e7:3f:c2: 2d:5a:d3:37:c0:62:0a:10:e7:14:71:8e:fc:f2:3d: 64:3f:13:6c:21:0a:17:89:a8:4c:21:67:9f:a5:84: d9:94:e9:6d:fa:df:ed:0c:af:fa:67:b1:1d:9d:97: 63:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:B9:41:B6:3C:44:4D:25:F0:3D:80:24:AB:1C:95:2B:46:52:89:A9 X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32332e302f32342d3234203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.130.23.0/24 Signature Algorithm: sha256WithRSAEncryption 97:72:55:4b:81:f9:f8:63:90:f4:c9:05:91:7f:84:26:4c:a9: d8:b2:e9:32:aa:3f:0a:1f:e3:19:1d:4e:6e:0d:e8:05:cf:e2: 4a:b6:1d:8f:8c:ce:85:72:a9:ae:45:ee:5d:e3:f8:8f:4d:69: 70:6b:ee:52:5f:39:ee:00:e9:7c:78:91:22:a1:12:80:22:83: 35:13:81:02:76:8e:90:c1:a9:b3:31:ab:7f:e8:bb:36:7e:b1: 75:c3:02:da:93:8f:4d:14:30:d8:6f:3e:d3:ec:fb:6e:3a:fb: 22:11:0e:50:a9:00:62:e0:48:38:9b:a1:09:fb:4e:a5:f4:57: b9:4a:b8:b2:4d:8f:82:0c:22:23:6f:29:1d:90:e9:54:0f:ba: 4f:08:f2:d4:a0:6a:78:0f:f2:16:a2:ea:78:b7:7d:32:9c:e9: c7:7b:7a:96:3c:0d:b3:90:b4:ec:ba:02:18:24:20:d3:82:9b: 5c:29:c0:27:5e:d6:d2:5f:7c:a2:40:29:75:63:2e:f3:0a:3b: 04:2e:07:32:fe:5f:95:ad:17:e3:fe:58:85:65:b6:eb:30:0c: 4a:d6:31:73:db:87:98:ee:96:6b:44:bb:19:74:cc:eb:d1:e0: ec:35:6a:15:36:ae:80:0a:70:b0:a2:50:d8:e1:6e:83:24:68: 34:43:d2:ec -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSvAZLTc8wK02bMMCyzWwEej1h5AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNTA5MjgwMzIyMzZaFw0yNjA5MjcwMzI3MzZaMDMxMTAvBgNV BAMTKERGQjk0MUI2M0M0NDREMjVGMDNEODAyNEFCMUM5NTJCNDY1Mjg5QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXQVQqm5EW7cwBIv1w4dvvdh88 kknesL6JEbiac8QygR4B9R1M2WjwdT5YlB9QfCU3n0POEFlbknvhpFMPpJY1kNBy m5d8lJtYqAhGiUT+OND1KZc81hKI9Wq8zBNsZdgBzHpOZ/zPNA6MR2+WGnw4sMs/ L32TtTGNjUfhWD+xZPtTMsSuegFIAr7XKU/9HMHsBVfAOShczyAuET72qaW6AvcC QxQGHTH+mcfWFAxmayRTYku/brv7EE5DdSRzRocmGz/eoxeMByTdW5Ww1+c/wi1a 0zfAYgoQ5xRxjvzyPWQ/E2whCheJqEwhZ5+lhNmU6W363+0Mr/pnsR2dl2N9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU37lBtjxETSXwPYAkqxyVK0ZSiakwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzIzMzJlMzEzMzMwMmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA34IXMA0GCSqG SIb3DQEBCwUAA4IBAQCXclVLgfn4Y5D0yQWRf4QmTKnYsukyqj8KH+MZHU5uDegF z+JKth2PjM6FcqmuRe5d4/iPTWlwa+5SXznuAOl8eJEioRKAIoM1E4ECdo6Qwamz Mat/6Ls2frF1wwLak49NFDDYbz7T7PtuOvsiEQ5QqQBi4Eg4m6EJ+06l9Fe5Sriy TY+CDCIjbykdkOlUD7pPCPLUoGp4D/IWoup4t30ynOnHe3qWPA2zkLTsugIYJCDT gptcKcAnXtbSX3yiQCl1Yy7zCjsELgcy/l+VrRfj/liFZbbrMAxK1jFz24eY7pZr RLsZdMzr0eDsNWoVNq6ACnCwolDY4W6DJGg0Q9Ls -----END CERTIFICATE-----Generated at Thu Oct 16 08:09:48 2025 by rpki-client