$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3132342e3130392e32322e302f32342d3234203d3e20313339393439.roa File: 3132342e3130392e32322e302f32342d3234203d3e20313339393439.roa (raw, json) Hash identifier: HVWbk3IWKH+5JXE4MGQxsGy0csGyHkuWv0WX8uhGzdw= Subject key identifier: 83:08:8E:F4:09:49:47:6F:27:BF:2E:7F:2F:7B:4F:11:40:40:A6:ED Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Certificate serial: 05840CE1C99332112EB284A617E2F6829CFC9E3F Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3132342e3130392e32322e302f32342d3234203d3e20313339393439.roa Signing time: Wed 23 Jul 2025 13:02:23 +0000 ROA not before: Wed 23 Jul 2025 12:57:23 +0000 ROA not after: Wed 22 Jul 2026 13:02:23 +0000 asID: 139949 IP address blocks: 124.109.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 18:44:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:84:0c:e1:c9:93:32:11:2e:b2:84:a6:17:e2:f6:82:9c:fc:9e:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Validity Not Before: Jul 23 12:57:23 2025 GMT Not After : Jul 22 13:02:23 2026 GMT Subject: CN=83088EF40949476F27BF2E7F2F7B4F114040A6ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:15:51:04:39:71:4c:46:80:9d:1e:5c:85:16: ad:18:3d:9d:90:60:13:bb:b0:2b:e0:7a:8e:82:65: 3a:3e:81:87:01:f3:7c:12:d1:69:61:94:d6:a4:30: 9c:aa:35:f6:24:5c:42:54:31:0c:84:3f:a2:99:8e: 37:9b:0f:40:08:1e:ce:1b:a6:cb:a5:69:20:17:45: 39:08:d1:7a:36:68:61:4b:c6:52:a3:fa:bc:85:cc: 37:37:8d:d7:58:aa:92:4a:07:80:4e:c6:6d:3e:9d: d7:79:41:b3:e4:0b:68:7d:1b:7e:64:1e:07:d9:2b: 0b:ea:f8:d4:74:f5:d7:56:5b:58:60:28:dc:10:3c: 0b:2b:ca:09:0b:82:cc:0d:ff:85:31:cd:15:ae:49: 25:26:e3:a2:5f:33:96:e5:9b:1b:26:24:16:d8:f9: fc:8f:69:0f:1a:8f:3b:ff:20:27:0b:26:4e:d3:2b: 1e:f8:64:55:67:86:02:1a:18:ec:c2:0f:4a:4b:b1: d6:08:22:9a:da:3d:fe:56:3a:32:cf:1d:8d:36:b3: ee:ab:f0:f3:61:4d:c9:7f:cc:e5:30:cc:cb:bc:d4: ff:31:03:29:1f:e5:e6:1c:59:bf:e4:81:5b:11:4a: 27:e8:02:96:41:f9:bc:5c:aa:63:44:5e:86:50:96: 1c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:08:8E:F4:09:49:47:6F:27:BF:2E:7F:2F:7B:4F:11:40:40:A6:ED X509v3 Authority Key Identifier: keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3132342e3130392e32322e302f32342d3234203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.109.22.0/24 Signature Algorithm: sha256WithRSAEncryption 53:b0:fc:4e:6e:f4:de:60:61:7e:0d:b1:f7:01:ba:8d:0a:18: 54:0d:ec:12:2f:d5:23:df:7c:e5:9f:a0:dc:91:61:70:df:29: 85:10:6f:27:41:61:60:63:70:29:08:f4:e4:8e:f5:79:75:ee: 46:c7:07:88:6d:11:49:c9:40:12:4c:0b:70:19:aa:1c:15:20: 00:16:ea:ad:59:2f:5e:de:4a:e2:04:c2:c9:93:29:78:f2:50: 7a:a9:46:f2:dc:31:7c:c9:4d:5a:7c:95:44:0d:90:c8:3b:ac: e1:df:2c:08:a9:1f:fa:d3:78:22:45:65:20:97:e2:c8:b4:e8: 78:db:0d:05:c0:4f:e6:f0:19:1e:0d:c1:83:be:af:eb:96:fc: 5d:86:f5:56:fe:59:5e:46:dd:6f:36:c4:4b:94:32:75:06:2f: 9b:01:14:45:8f:a5:69:80:1d:bd:86:3e:22:4b:74:d7:ea:64: f8:7c:98:47:b9:1d:ea:70:8e:0f:97:a0:14:04:85:06:df:9e: 78:92:2d:78:74:e7:26:5a:51:f0:65:58:19:8d:b5:b5:4d:56: 5b:6e:05:d1:ac:5d:d8:b7:b5:1e:3e:cf:45:f2:fa:21:c1:1c: 5b:0a:c7:e1:aa:5c:c1:cb:b5:51:c8:a3:ab:93:d8:43:f7:1a: d4:b3:97:62 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBYQM4cmTMhEusoSmF+L2gpz8nj8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBD RjlBNjQ3MzAeFw0yNTA3MjMxMjU3MjNaFw0yNjA3MjIxMzAyMjNaMDMxMTAvBgNV BAMTKDgzMDg4RUY0MDk0OTQ3NkYyN0JGMkU3RjJGN0I0RjExNDA0MEE2RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfFVEEOXFMRoCdHlyFFq0YPZ2Q YBO7sCvgeo6CZTo+gYcB83wS0WlhlNakMJyqNfYkXEJUMQyEP6KZjjebD0AIHs4b psulaSAXRTkI0Xo2aGFLxlKj+ryFzDc3jddYqpJKB4BOxm0+ndd5QbPkC2h9G35k HgfZKwvq+NR09ddWW1hgKNwQPAsrygkLgswN/4UxzRWuSSUm46JfM5blmxsmJBbY +fyPaQ8ajzv/ICcLJk7TKx74ZFVnhgIaGOzCD0pLsdYIIpraPf5WOjLPHY02s+6r 8PNhTcl/zOUwzMu81P8xAykf5eYcWb/kgVsRSifoApZB+bxcqmNEXoZQlhxRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgwiO9AlJR28nvy5/L3tPEUBApu0wHwYDVR0j BBgwFoAUIo51K7+4wWs7RvPTiOztUM+aZHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTdlZmQyYS0wMmFiLTQyMDItOTcwZi1mNjk5ZGZmOTdkZTUvMC8yMjhFNzUyQkJG QjhDMTZCM0I0NkYzRDM4OEVDRUQ1MENGOUE2NDczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBDRjlB NjQ3My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxN2VmZDJhLTAyYWItNDIwMi05 NzBmLWY2OTlkZmY5N2RlNS8wLzMxMzIzNDJlMzEzMDM5MmUzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAfG0WMA0GCSqG SIb3DQEBCwUAA4IBAQBTsPxObvTeYGF+DbH3AbqNChhUDewSL9Uj33zln6DckWFw 3ymFEG8nQWFgY3ApCPTkjvV5de5GxweIbRFJyUASTAtwGaocFSAAFuqtWS9e3kri BMLJkyl48lB6qUby3DF8yU1afJVEDZDIO6zh3ywIqR/603giRWUgl+LItOh42w0F wE/m8BkeDcGDvq/rlvxdhvVW/lleRt1vNsRLlDJ1Bi+bARRFj6VpgB29hj4iS3TX 6mT4fJhHuR3qcI4Pl6AUBIUG3554ki14dOcmWlHwZVgZjbW1TVZbbgXRrF3Yt7Ue Ps9F8vohwRxbCsfhqlzBy7VRyKOrk9hD9xrUs5di -----END CERTIFICATE-----Generated at Sat Oct 25 18:35:20 2025 by rpki-client