$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234362e302f32332d3233203d3e203234323131.roa File: 3230332e3139302e3234362e302f32332d3233203d3e203234323131.roa (raw, json) Hash identifier: 0qjl6ejKCXE+eF92NFpusciVm5OV6Kg83rjP6jAiQxg= Subject key identifier: F0:CC:D2:D7:8E:F0:84:81:48:58:54:40:1F:45:9E:8B:8B:74:63:DF Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 5D933523935BC4D1447BAED81F291AA9C0B948B1 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234362e302f32332d3233203d3e203234323131.roa Signing time: Fri 24 Oct 2025 11:00:01 +0000 ROA not before: Fri 24 Oct 2025 10:55:01 +0000 ROA not after: Fri 23 Oct 2026 11:00:01 +0000 asID: 24211 IP address blocks: 203.190.246.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 17:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:93:35:23:93:5b:c4:d1:44:7b:ae:d8:1f:29:1a:a9:c0:b9:48:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Oct 24 10:55:01 2025 GMT Not After : Oct 23 11:00:01 2026 GMT Subject: CN=F0CCD2D78EF08481485854401F459E8B8B7463DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ae:85:b7:5c:13:e5:2d:f7:13:b5:45:0b:1a: 1f:63:d1:08:f6:c7:03:19:dd:36:e4:af:94:91:2f: 6d:03:1b:36:a0:69:bb:e7:f9:97:02:ee:ba:4b:87: dc:94:20:68:d5:c4:2c:7d:fb:57:74:0e:ff:2e:fd: 1b:8c:c1:53:c5:8a:14:68:26:29:c8:da:78:5c:55: de:1c:28:6b:3c:cd:2d:99:7c:7d:14:d2:50:2a:ce: f1:40:6e:92:99:b3:95:86:dc:2a:a8:ba:5e:c1:c2: ac:be:b6:03:e5:2e:1c:fd:41:ef:96:48:0b:1b:84: a8:dc:85:09:6f:48:87:c9:84:d9:9e:a7:85:e8:db: 85:0a:0e:5d:79:3f:18:df:38:ef:37:ff:63:68:74: 4a:d4:9c:ba:d2:8f:61:8a:e7:2f:9d:f9:93:c2:ee: 09:77:f3:65:80:4b:60:7a:5b:1a:3b:aa:ca:e3:74: 7c:f4:8d:fd:16:b3:9a:39:50:fe:a7:4e:e5:92:02: 1b:a3:b7:8b:02:17:d4:30:11:99:9d:44:a4:ac:e3: 33:50:b5:83:0a:4b:19:b9:76:57:ad:87:56:d2:64: ca:dd:1e:7e:8b:9e:ad:b7:06:89:bf:76:b0:43:69: c4:8d:4b:be:50:63:b4:80:00:f4:c9:ef:d2:bd:b3: b0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:CC:D2:D7:8E:F0:84:81:48:58:54:40:1F:45:9E:8B:8B:74:63:DF X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234362e302f32332d3233203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.246.0/23 Signature Algorithm: sha256WithRSAEncryption 31:3c:90:40:7c:f1:19:a1:d9:05:62:58:0c:12:00:4f:6a:06: aa:85:37:69:b9:05:1f:d2:1e:26:31:b7:c9:c6:bd:2a:27:58: 2f:ca:57:74:be:cd:b3:5b:b4:64:f9:43:75:2f:78:35:1c:8f: 40:8a:cf:4a:68:9a:9d:6f:ba:22:b0:84:b2:cf:f2:a6:f3:21: d5:6e:1e:a3:f5:bb:46:36:82:1e:71:d8:d6:d6:fa:b6:42:ff: 1e:5a:8f:6d:9d:8f:9e:9d:6b:69:f4:27:4e:43:c7:5a:99:77: a0:65:3e:8a:e8:7b:b8:b5:dd:05:9f:b2:a9:2f:0f:1c:a4:e5: 3c:ec:d1:38:1b:5d:4b:3d:79:89:33:8b:e6:a7:22:91:82:0f: 9f:88:c3:81:16:9d:cc:16:eb:28:16:d0:f0:48:2d:90:45:1b: de:34:a6:77:e1:8b:88:c4:eb:a6:a1:4e:75:fa:bf:45:be:eb: e0:eb:c2:93:ed:95:a2:b2:6c:4f:ce:3f:3f:af:4a:62:3a:ed: e4:3b:35:d0:2d:4d:a7:8b:12:79:d7:e3:ca:66:c7:fa:3e:9a: 19:fa:48:bc:a7:cb:60:5a:9f:27:b3:16:70:a3:11:29:e3:05: ca:7c:49:7f:5e:77:f9:5d:3b:18:cc:c1:fa:a2:2d:77:f5:d1: f4:55:b3:9d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXZM1I5NbxNFEe67YHykaqcC5SLEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNTEwMjQxMDU1MDFaFw0yNjEwMjMxMTAwMDFaMDMxMTAvBgNV BAMTKEYwQ0NEMkQ3OEVGMDg0ODE0ODU4NTQ0MDFGNDU5RThCOEI3NDYzREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrroW3XBPlLfcTtUULGh9j0Qj2 xwMZ3Tbkr5SRL20DGzagabvn+ZcC7rpLh9yUIGjVxCx9+1d0Dv8u/RuMwVPFihRo JinI2nhcVd4cKGs8zS2ZfH0U0lAqzvFAbpKZs5WG3Cqoul7Bwqy+tgPlLhz9Qe+W SAsbhKjchQlvSIfJhNmep4Xo24UKDl15PxjfOO83/2NodErUnLrSj2GK5y+d+ZPC 7gl382WAS2B6Wxo7qsrjdHz0jf0Ws5o5UP6nTuWSAhujt4sCF9QwEZmdRKSs4zNQ tYMKSxm5dleth1bSZMrdHn6Lnq23Bom/drBDacSNS75QY7SAAPTJ79K9s7DVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8MzS147whIFIWFRAH0Wei4t0Y98wHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy772MA0GCSqG SIb3DQEBCwUAA4IBAQAxPJBAfPEZodkFYlgMEgBPagaqhTdpuQUf0h4mMbfJxr0q J1gvyld0vs2zW7Rk+UN1L3g1HI9Ais9KaJqdb7oisISyz/Km8yHVbh6j9btGNoIe cdjW1vq2Qv8eWo9tnY+enWtp9CdOQ8damXegZT6K6Hu4td0Fn7KpLw8cpOU87NE4 G11LPXmJM4vmpyKRgg+fiMOBFp3MFusoFtDwSC2QRRveNKZ34YuIxOumoU51+r9F vuvg68KT7ZWismxPzj8/r0piOu3kOzXQLU2nixJ51+PKZsf6PpoZ+ki8p8tgWp8n sxZwoxEp4wXKfEl/Xnf5XTsYzMH6oi139dH0VbOd -----END CERTIFICATE-----Generated at Tue Oct 28 06:32:37 2025 by rpki-client