$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133372e302f32342d3234203d3e20323134313433.roa File: 3230332e38342e3133372e302f32342d3234203d3e20323134313433.roa (raw, json) Hash identifier: gGq3gtPXXpT8qmppXJpdYMGRNCe8MtmuCS9LRZ9VUgI= Subject key identifier: 1C:74:C6:30:C5:FE:6A:57:E4:99:7B:37:41:25:0D:47:F1:73:ED:B4 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 66A8AE2EE1FC5D680F41AD8291C735B4159A157A Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133372e302f32342d3234203d3e20323134313433.roa Signing time: Mon 08 Sep 2025 10:30:04 +0000 ROA not before: Mon 08 Sep 2025 10:25:04 +0000 ROA not after: Mon 07 Sep 2026 10:30:04 +0000 asID: 214143 IP address blocks: 203.84.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Oct 2025 12:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:a8:ae:2e:e1:fc:5d:68:0f:41:ad:82:91:c7:35:b4:15:9a:15:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Sep 8 10:25:04 2025 GMT Not After : Sep 7 10:30:04 2026 GMT Subject: CN=1C74C630C5FE6A57E4997B3741250D47F173EDB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1c:01:b0:f8:b7:ed:5d:2e:6b:e5:87:4a:df: 37:b9:cd:5f:b8:f1:2a:ff:0f:5b:15:eb:49:20:70: 28:1c:9e:93:88:41:8b:30:e9:3c:25:7b:15:9b:fa: d9:ac:9a:0a:6b:ea:ef:d0:78:f3:2a:0f:ec:c3:03: 66:f1:19:b8:c2:30:87:cb:4d:7d:5e:17:55:79:f8: 3f:b7:4c:8e:a3:04:91:7f:be:ea:97:63:13:5c:29: 88:bf:a3:4b:ad:d2:ce:d2:07:79:49:23:be:8e:96: 74:a8:5b:4e:8a:b5:4a:2c:1c:57:36:5c:2e:86:d0: c6:65:dd:71:e1:f0:3e:be:bc:3d:57:07:55:da:1a: 88:1e:fb:af:00:da:66:34:bb:cf:74:bf:d0:4e:36: 8e:c9:ac:14:9d:22:e7:3c:c5:c1:7e:b8:7c:b7:c9: ee:27:ac:12:76:b4:fe:61:4c:f4:9d:38:24:0c:15: 51:16:ed:a3:c2:b4:39:e7:90:58:33:08:3d:f8:31: bb:ec:40:57:62:e7:69:8b:00:9a:b6:2d:08:2d:13: 95:53:fe:a2:a9:63:af:2c:c3:b7:ff:cb:fd:16:70: 6c:2c:4a:9e:ce:a2:a1:7d:44:2b:5f:c6:c5:d1:dc: 35:35:6c:cc:71:3c:51:55:ae:5a:2a:83:13:19:6c: 3f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:74:C6:30:C5:FE:6A:57:E4:99:7B:37:41:25:0D:47:F1:73:ED:B4 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133372e302f32342d3234203d3e20323134313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.137.0/24 Signature Algorithm: sha256WithRSAEncryption 72:98:64:6f:03:b7:91:04:85:e5:16:bf:26:49:23:cd:d3:1c: c0:a1:e4:ea:a5:20:66:11:2d:fb:fb:9c:0d:6a:a2:80:a0:54: a9:59:74:77:b1:bd:8d:0f:c5:b8:20:c3:07:ee:a3:fe:20:30: 67:c5:23:18:40:9e:9d:92:8b:bc:d2:05:d5:7e:bf:40:e2:ea: 07:57:20:5d:dc:30:5d:7e:28:52:fb:2e:09:cb:3f:8e:7f:5b: fb:69:f4:91:f4:fd:84:33:d0:36:83:0a:01:17:16:b9:e1:08: ed:a9:dd:65:dc:40:f5:41:0f:a3:a0:58:08:44:6f:03:03:59: 0a:69:8c:28:3b:d6:37:d6:37:89:06:bb:83:ab:21:cd:24:d9: 14:f9:e9:2e:0c:a8:c4:37:6f:65:8b:17:31:66:09:c0:e1:3d: 9e:13:de:29:b0:82:46:a5:7b:4b:f2:5d:fc:bc:06:f5:ec:d1: 76:fd:59:2c:36:85:16:8f:01:54:15:79:ef:65:50:7c:44:c9: ff:d5:c8:c3:7a:04:dd:83:0e:51:b4:f6:75:ca:65:96:8d:9d: ec:5a:a6:ca:43:b4:d4:71:a4:82:4c:a3:81:c8:82:8e:27:ac: eb:11:f1:19:00:6e:89:70:6c:8e:2e:82:d7:97:f1:c6:19:fd: 8f:22:10:a8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZqiuLuH8XWgPQa2Ckcc1tBWaFXowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNTA5MDgxMDI1MDRaFw0yNjA5MDcxMDMwMDRaMDMxMTAvBgNV BAMTKDFDNzRDNjMwQzVGRTZBNTdFNDk5N0IzNzQxMjUwRDQ3RjE3M0VEQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQHAGw+LftXS5r5YdK3ze5zV+4 8Sr/D1sV60kgcCgcnpOIQYsw6TwlexWb+tmsmgpr6u/QePMqD+zDA2bxGbjCMIfL TX1eF1V5+D+3TI6jBJF/vuqXYxNcKYi/o0ut0s7SB3lJI76OlnSoW06KtUosHFc2 XC6G0MZl3XHh8D6+vD1XB1XaGoge+68A2mY0u890v9BONo7JrBSdIuc8xcF+uHy3 ye4nrBJ2tP5hTPSdOCQMFVEW7aPCtDnnkFgzCD34MbvsQFdi52mLAJq2LQgtE5VT /qKpY68sw7f/y/0WcGwsSp7OoqF9RCtfxsXR3DU1bMxxPFFVrloqgxMZbD9xAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHHTGMMX+alfkmXs3QSUNR/Fz7bQwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzAzMzJlMzgzNDJlMzEzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMTM0MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy1SJMA0GCSqG SIb3DQEBCwUAA4IBAQBymGRvA7eRBIXlFr8mSSPN0xzAoeTqpSBmES37+5wNaqKA oFSpWXR3sb2ND8W4IMMH7qP+IDBnxSMYQJ6dkou80gXVfr9A4uoHVyBd3DBdfihS +y4Jyz+Of1v7afSR9P2EM9A2gwoBFxa54Qjtqd1l3ED1QQ+joFgIRG8DA1kKaYwo O9Y31jeJBruDqyHNJNkU+ekuDKjEN29lixcxZgnA4T2eE94psIJGpXtL8l38vAb1 7NF2/VksNoUWjwFUFXnvZVB8RMn/1cjDegTdgw5RtPZ1ymWWjZ3sWqbKQ7TUcaSC TKOByIKOJ6zrEfEZAG6JcGyOLoLXl/HGGf2PIhCo -----END CERTIFICATE-----Generated at Fri Oct 17 04:34:07 2025 by rpki-client