$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36362e302f32342d3234203d3e20313338313036.roa File: 3230322e34372e36362e302f32342d3234203d3e20313338313036.roa (raw, json) Hash identifier: 9ONX+mDl1Jj5P9OXYWWfQJp+9GA+K7q1hje2+Cod9xM= Subject key identifier: 86:C9:95:8B:9D:C0:54:81:A1:0D:36:38:8F:20:7E:68:7C:B1:ED:87 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 58335900B39B53BF5AC7D08BF12BD5A6C5FD1022 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36362e302f32342d3234203d3e20313338313036.roa Signing time: Wed 22 Oct 2025 05:02:06 +0000 ROA not before: Wed 22 Oct 2025 04:57:06 +0000 ROA not after: Wed 21 Oct 2026 05:02:06 +0000 asID: 138106 IP address blocks: 202.47.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 02:39:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:33:59:00:b3:9b:53:bf:5a:c7:d0:8b:f1:2b:d5:a6:c5:fd:10:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Oct 22 04:57:06 2025 GMT Not After : Oct 21 05:02:06 2026 GMT Subject: CN=86C9958B9DC05481A10D36388F207E687CB1ED87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:45:d4:f0:7e:ab:a0:36:a9:0e:a3:6f:ac:3d: f7:25:29:00:eb:aa:4e:df:e5:08:a2:98:0f:03:f2: 59:b9:ca:ef:02:6f:4c:fd:9e:09:21:c7:2d:fc:13: ce:14:fa:4a:e4:58:3e:13:37:4b:5a:89:b4:aa:fd: 1e:94:b4:a4:eb:5d:f2:ee:3d:d7:fa:3c:86:75:f3: eb:10:cb:3a:ac:7a:7d:3c:78:62:82:54:7f:bb:94: 5b:3e:c1:a6:0e:e6:c5:7c:c3:06:13:aa:eb:d3:2b: 22:43:f7:0b:be:d9:13:1d:c2:e3:d5:59:f1:07:7a: c9:fb:97:d2:c5:38:a8:5f:d6:29:4d:d4:bc:a2:5f: 7f:73:34:0e:4b:34:02:86:0c:20:84:31:0e:8d:dd: ec:dc:74:d4:2b:53:f9:57:1c:a5:2b:da:8f:0d:0a: c6:3f:03:1e:cb:95:22:75:87:df:5c:c8:07:e3:bf: 0d:b7:2e:78:9d:a7:e1:c4:5a:28:9b:ee:41:ce:b2: 78:63:9b:f6:dc:8e:04:09:38:39:a9:b2:62:e1:6b: 7f:0c:67:2c:fb:37:f6:84:84:1f:45:e1:e9:88:b8: c7:36:cf:8f:64:5a:cf:7e:5d:a6:3b:02:aa:1c:d5: e9:b1:b2:57:ec:2b:6c:42:7b:9d:0f:e8:de:2e:f8: e5:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:C9:95:8B:9D:C0:54:81:A1:0D:36:38:8F:20:7E:68:7C:B1:ED:87 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36362e302f32342d3234203d3e20313338313036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.66.0/24 Signature Algorithm: sha256WithRSAEncryption 45:1d:a7:ea:47:6f:f8:6f:ca:b3:7e:47:7b:c6:3e:15:91:ea: d7:f1:23:b1:4f:ab:a8:e9:28:ea:1e:26:ab:11:39:84:55:8a: af:5f:cb:64:ab:df:90:ec:fd:45:3f:b1:b7:7a:b3:64:ea:4a: 6d:71:db:8f:38:3f:34:e9:0f:1a:9e:dd:c7:79:e9:01:c0:b4: 9d:d8:96:21:0c:0c:92:43:17:ce:c8:1c:0b:93:60:40:88:53: 20:3d:3f:1f:f3:b1:0f:96:c2:26:5d:e6:1f:83:9a:58:e3:b6: 36:66:39:28:ab:78:86:bf:ac:77:40:0e:59:37:de:e2:e6:7d: 1f:76:a6:f3:a5:59:fb:c9:cd:9b:dc:2f:e1:2c:32:ab:71:48: ad:ab:10:d5:d6:24:7a:b5:ef:ba:ab:8b:46:01:5f:2a:67:84: 9e:ae:22:f7:e9:4a:85:17:e2:14:9a:4a:e9:01:3a:55:c1:07: 72:af:7c:eb:1b:f2:4e:5d:b8:df:c9:ee:e2:20:4e:47:ab:c8: f1:eb:3c:1f:ff:e4:dc:c2:9b:51:6b:c6:82:a5:cc:e8:67:e8: 98:36:c5:17:35:de:12:fd:99:b1:3b:cb:87:22:02:ba:c8:6f: a9:fb:2d:dd:85:ea:3f:b5:91:35:63:bc:ac:35:df:a3:af:62: ac:fb:e3:43 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWDNZALObU79ax9CL8SvVpsX9ECIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTEwMjIwNDU3MDZaFw0yNjEwMjEwNTAyMDZaMDMxMTAvBgNV BAMTKDg2Qzk5NThCOURDMDU0ODFBMTBEMzYzODhGMjA3RTY4N0NCMUVEODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDERdTwfqugNqkOo2+sPfclKQDr qk7f5QiimA8D8lm5yu8Cb0z9ngkhxy38E84U+krkWD4TN0taibSq/R6UtKTrXfLu Pdf6PIZ18+sQyzqsen08eGKCVH+7lFs+waYO5sV8wwYTquvTKyJD9wu+2RMdwuPV WfEHesn7l9LFOKhf1ilN1LyiX39zNA5LNAKGDCCEMQ6N3ezcdNQrU/lXHKUr2o8N CsY/Ax7LlSJ1h99cyAfjvw23Lnidp+HEWiib7kHOsnhjm/bcjgQJODmpsmLha38M Zyz7N/aEhB9F4emIuMc2z49kWs9+XaY7Aqoc1emxslfsK2xCe50P6N4u+OV/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhsmVi53AVIGhDTY4jyB+aHyx7YcwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzODMxMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMovQjANBgkqhkiG 9w0BAQsFAAOCAQEARR2n6kdv+G/Ks35He8Y+FZHq1/EjsU+rqOko6h4mqxE5hFWK r1/LZKvfkOz9RT+xt3qzZOpKbXHbjzg/NOkPGp7dx3npAcC0ndiWIQwMkkMXzsgc C5NgQIhTID0/H/OxD5bCJl3mH4OaWOO2NmY5KKt4hr+sd0AOWTfe4uZ9H3am86VZ +8nNm9wv4Swyq3FIrasQ1dYkerXvuquLRgFfKmeEnq4i9+lKhRfiFJpK6QE6VcEH cq986xvyTl2438nu4iBOR6vI8es8H//k3MKbUWvGgqXM6GfomDbFFzXeEv2ZsTvL hyICushvqfst3YXqP7WRNWO8rDXfo69irPvjQw== -----END CERTIFICATE-----Generated at Mon Oct 27 14:41:51 2025 by rpki-client