$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234342e302f32332d3233203d3e203234323131.roa File: 3230332e3139302e3234342e302f32332d3233203d3e203234323131.roa (raw, json) Hash identifier: 6nG++9Zfsyp00x723uMAP6ndpbIZ+69e5sHDGWiKNkk= Subject key identifier: CB:F1:02:EE:2F:A7:88:23:21:64:14:B7:0E:B0:F1:A8:E7:38:93:58 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 205E6B18CF4FDB2F0F89743D7FC22D18BF08EB8E Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234342e302f32332d3233203d3e203234323131.roa Signing time: Fri 24 Oct 2025 11:00:01 +0000 ROA not before: Fri 24 Oct 2025 10:55:01 +0000 ROA not after: Fri 23 Oct 2026 11:00:01 +0000 asID: 24211 IP address blocks: 203.190.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 17:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:5e:6b:18:cf:4f:db:2f:0f:89:74:3d:7f:c2:2d:18:bf:08:eb:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Oct 24 10:55:01 2025 GMT Not After : Oct 23 11:00:01 2026 GMT Subject: CN=CBF102EE2FA78823216414B70EB0F1A8E7389358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:00:92:41:4b:12:74:f1:c7:4b:d3:a5:ec:a0: 2d:19:67:4a:7b:67:9b:25:ff:b3:0b:a3:2f:0e:7e: ea:b7:5d:a9:39:9b:92:9a:8c:33:67:f4:28:05:de: 46:ec:c6:55:19:f0:70:4f:0e:79:41:39:23:7a:6a: 04:9d:66:6d:f2:1a:b5:17:a1:86:91:e3:74:5c:07: 4c:b3:56:18:c8:d4:0e:c4:09:ea:6e:25:20:44:17: 92:3f:48:86:68:81:81:47:bb:06:e2:26:0a:4d:b1: be:99:b8:1d:96:85:90:76:64:42:6e:25:d1:27:f1: 02:1d:8e:07:d2:5b:23:4d:2b:3e:b4:8a:e2:14:d1: ba:f4:76:30:e7:71:36:44:f2:d4:ae:3f:31:6d:fd: e0:91:ea:ae:28:ff:2a:90:53:7a:d2:94:09:9b:54: 1d:0c:5d:ef:da:98:12:bb:fe:ce:9d:cb:64:0f:d9: 15:dd:37:06:8f:d4:5c:55:b9:d9:d3:40:5e:24:01: ee:fa:ae:ea:8d:af:55:cf:49:a8:ce:fc:61:e5:50: 3c:c7:1e:ef:69:e9:93:8f:49:8d:da:54:df:48:de: e8:67:c6:95:56:0f:d0:4e:4b:8c:db:3b:b0:a0:d7: 3f:39:d7:2f:d7:7f:00:9f:e0:15:bf:3c:b0:9b:44: 0b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F1:02:EE:2F:A7:88:23:21:64:14:B7:0E:B0:F1:A8:E7:38:93:58 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234342e302f32332d3233203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.244.0/23 Signature Algorithm: sha256WithRSAEncryption 75:c6:cd:46:8f:70:92:c1:91:15:14:2c:8b:fc:67:1d:32:86: 3d:e8:39:32:b1:d6:ac:1f:72:4d:96:2e:67:f7:5a:12:5b:5f: 69:dd:29:69:d0:62:a8:a6:b6:e5:9f:62:15:f1:24:fe:e1:73: 71:e0:94:6a:0f:f3:78:32:13:0b:b4:e6:a0:ff:c6:70:1f:80: 75:1d:cd:b9:16:6d:96:0e:f3:81:32:d5:cb:77:85:2c:d3:a9: 7a:37:41:a7:45:fd:ea:64:88:da:15:11:52:40:4b:3b:b0:e7: da:c5:de:5a:ae:f1:20:ab:2a:7d:d6:a4:74:db:fb:c8:72:27: 0b:37:11:f9:14:d4:e6:59:b4:01:e8:01:a2:28:a3:66:a0:64: e4:9a:fb:5d:a9:0f:22:e7:09:ad:00:c0:e6:6b:be:37:3a:c0: 78:59:48:07:15:f2:35:90:82:dc:27:ad:f7:f6:17:d1:aa:cd: 71:66:26:84:43:d2:a0:3e:6f:5c:69:3d:02:a0:94:2e:d0:2a: 5d:ba:fc:6d:c5:30:4b:61:15:e4:6c:ea:0d:63:a4:9d:ec:0e: 6e:f2:53:7a:1c:8e:1e:7c:f5:5f:9b:54:f2:1f:e1:33:01:16: 65:7f:53:e9:20:33:63:08:73:01:a3:a8:71:bd:41:1e:50:6b: 9a:0c:5c:45 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIF5rGM9P2y8PiXQ9f8ItGL8I644wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNTEwMjQxMDU1MDFaFw0yNjEwMjMxMTAwMDFaMDMxMTAvBgNV BAMTKENCRjEwMkVFMkZBNzg4MjMyMTY0MTRCNzBFQjBGMUE4RTczODkzNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCAJJBSxJ08cdL06XsoC0ZZ0p7 Z5sl/7MLoy8Ofuq3Xak5m5KajDNn9CgF3kbsxlUZ8HBPDnlBOSN6agSdZm3yGrUX oYaR43RcB0yzVhjI1A7ECepuJSBEF5I/SIZogYFHuwbiJgpNsb6ZuB2WhZB2ZEJu JdEn8QIdjgfSWyNNKz60iuIU0br0djDncTZE8tSuPzFt/eCR6q4o/yqQU3rSlAmb VB0MXe/amBK7/s6dy2QP2RXdNwaP1FxVudnTQF4kAe76ruqNr1XPSajO/GHlUDzH Hu9p6ZOPSY3aVN9I3uhnxpVWD9BOS4zbO7Cg1z851y/XfwCf4BW/PLCbRAtPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUy/EC7i+niCMhZBS3DrDxqOc4k1gwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy770MA0GCSqG SIb3DQEBCwUAA4IBAQB1xs1Gj3CSwZEVFCyL/GcdMoY96DkysdasH3JNli5n91oS W19p3Slp0GKoprbln2IV8ST+4XNx4JRqD/N4MhMLtOag/8ZwH4B1Hc25Fm2WDvOB MtXLd4Us06l6N0GnRf3qZIjaFRFSQEs7sOfaxd5arvEgqyp91qR02/vIcicLNxH5 FNTmWbQB6AGiKKNmoGTkmvtdqQ8i5wmtAMDma743OsB4WUgHFfI1kILcJ6339hfR qs1xZiaEQ9KgPm9caT0CoJQu0CpduvxtxTBLYRXkbOoNY6Sd7A5u8lN6HI4efPVf m1TyH+EzARZlf1PpIDNjCHMBo6hxvUEeUGuaDFxF -----END CERTIFICATE-----Generated at Tue Oct 28 06:32:39 2025 by rpki-client